Home
/
Dell
/
Force10 S4810P
/
Reference Manual

Dell Force10 S4810P, Reference Manual

Share

Page: 1433 / 1637

Dell Force10 S4810P Reference Manual Download Page 1433

Port Authentication (802.1X) Commands

An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only

Extensible Authentication Protocol over LAN ( EAPOL) traffic is allowed through the port to which a client is connected.

After authentication is successful, normal traffic passes through the port.
FTOS supports RADIUS and Active Directory environments using 802.1X Port Authentication.

Important Points to Remember

FTOS limits network access for certain users by using VLAN assignments. 802.1X with VLAN assignment has these
characteristics when configured on the switch and the RADIUS server.

•

802.1X is supported on C-Series, E-Series, S-Series, Z-Series, and S4810.

•

802.1X is not supported on the LAG or the channel members of a LAG.

•

If no VLAN is supplied by the RADIUS server or if 802.1X authorization is disabled, the port is configured in its

access VLAN after successful authentication.

•

If 802.1X authorization is enabled but the VLAN information from the RADIUS server is not valid, the port returns

to the Unauthorized state and remains in the configured access VLAN. This prevents ports from appearing

unexpectedly in an inappropriate VLAN due to a configuration error. Configuration errors create an entry in

Syslog.

•

If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the

specified VLAN after authentication.

•

If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS server

assigned VLAN.

•

If 802.1X is disabled on the port, it is returned to the configured access VLAN.

•

When the port is in the Force Authorized, Force Unauthorized, or Shutdown state, it is placed in the configured

access VLAN.

•

If an 802.1X port is authenticated and put in the RADIUS server assigned VLAN, any change to the port access

VLAN configuration does not take effect.

•

The 802.1X with VLAN assignment feature is not supported on trunk ports, dynamic ports, or with dynamic-

access port assignment through a VLAN membership.

dot1x authentication (Configuration)

Enable dot1x globally; dot1x must be enabled both globally and at the interface level.

C-Series, E-Series, S-Series, Z-Series, S4810

Syntax

dot1x authentication

To disable dot1x on an globally, use the

no dot1x authentication

command.

Defaults

Disabled.

Command Modes

CONFIGURATION

Command History

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

1433

«
...
1431
1432
1433
1434
1435
...
»

Summary of Contents for Force10 S4810P

Page 1: ...FTOS Command Line Reference Guide for the S4810 System FTOS 9 1 0 0 ...

Page 2: ... AMD Sempron are trademarks of Advanced Micro Devices Inc Microsoft Windows Windows Server Internet Explorer MS DOS Windows Vista and Active Directory are either trademarks or registered trademarks of Microsoft Corporation in the United States and or other countries Red Hat and Red Hat Enterprise Linux are registered trademarks of Red Hat Inc in the United States and or other countries Novell and ...

Page 3: ...Filtering show Commands 54 Command Modes 55 Determining Chassis Mode 61 3 File Management 63 boot config 63 boot host 65 boot network 65 boot system S4810 and Z9000 66 boot system gateway 67 cd 67 change bootflash image 68 copy 69 copy Streamline Upgrade 71 copy running config startup config 72 delete 72 dir 73 download alt boot image 74 download alt full image 74 download alt system image 75 form...

Page 4: ...Series management unit and Z Series 96 upgrade fpga image 98 restore fpga image 99 upgrade fpga image 100 4 Control and Monitoring 103 asf mode 103 audible cut off 104 banner exec 104 banner login 105 banner motd 106 cam acl 107 cam acl vlan 108 cam audit linecard 109 clear alarms 109 clear command history 110 clear line 110 configure 111 debug cpu traffic stats 112 debug ftpserver 112 disable 113...

Page 5: ...anner 133 ping 133 power off 137 power on 137 reload 138 reset 139 rpm slot location led 140 send 140 service timestamps 141 show alarms 142 show cam acl vlan 143 show chassis 143 show command history 145 show command tree 146 show console lp 147 show cpu traffic stats 148 show debugging 149 show environment C Series and E Series 150 show environment S Series 152 show inventory C Series and E Seri...

Page 6: ... 192 ssh peer stack unit 193 telnet 193 telnet peer stack unit 195 terminal length 195 terminal xml 196 traceroute 197 undebug all 199 upload trace log 199 virtual ip 200 write 201 5 802 1ag 203 ccm disable 203 ccm transmit interval 203 clear ethernet cfm traceroute cache 204 database hold time 204 disable 204 domain 205 ethernet cfm 205 ethernet cfm mep 206 ethernet cfm mip 206 mep cross check 20...

Page 7: ... mode 222 dot1x mac auth bypass 223 dot1x max eap req 223 dot1x max supplicants 224 dot1x port control 224 dot1x quiet period 225 dot1x reauthentication 225 dot1x reauth max 226 dot1x server timeout 226 dot1x supplicant timeout 227 dot1x tx period 228 show dot1x cos mapping interface 228 show dot1x interface 229 7 Access Control Lists ACL 233 Commands Common to all ACL Types 233 remark 233 show co...

Page 8: ...it tcp 270 permit udp 273 resequence access list 275 resequence prefix list ipv4 276 seq arp 277 seq ether type 279 seq 281 Common MAC Access List Commands 283 clear counters mac access group 284 mac access group 284 show mac access lists 285 show mac accounting access list 286 Standard MAC ACL Commands 287 deny 287 mac access list standard 289 permit 290 seq 291 Extended MAC ACL Commands 292 deny...

Page 9: ... 310 match metric 311 match origin 312 match route type 312 match tag 313 route map 314 set as path 315 set automatic tag 316 set comm list delete 316 set community 317 set level 318 set local preference 319 set metric 320 set metric type 320 set next hop 321 set origin 322 set tag 323 set weight 323 show config 324 show route map 324 AS Path Commands 325 deny 325 ip as path access list 326 permit...

Page 10: ...isable 345 show bfd counters 346 show bfd neighbors 347 vrrp bfd 349 9 Border Gateway Protocol 351 BGP IPv4 Commands 351 address family 352 aggregate address 352 bgp add path 353 bgp always compare med 354 bgp asnotation 354 bgp bestpath as path ignore 355 bgp bestpath as path multipath relax 356 bgp bestpath med confed 356 bgp bestpath med missing as best 357 bgp bestpath router id ignore 357 bgp...

Page 11: ...ing 374 debug ip bgp events 375 debug ip bgp keepalives 375 debug ip bgp notifications 376 debug ip bgp soft reconfiguration 377 debug ip bgp updates 377 default metric 378 description 379 distance bgp 379 max paths 380 neighbor activate 381 neighbor add path 381 neighbor advertisement interval 382 neighbor advertisement start 383 neighbor allowas in 383 neighbor default originate 384 neighbor des...

Page 12: ...e 404 redistribute isis 405 redistribute ospf 406 router bgp 407 show capture bgp pdu neighbor 408 show config 409 show ip bgp 409 show ip bgp cluster list 411 show ip bgp community 412 show ip bgp community list 414 show ip bgp dampened paths 416 show ip bgp detail 416 show ip bgp extcommunity list 418 show ip bgp filter list 419 show ip bgp flap statistics 420 show ip bgp inconsistent as 422 sho...

Page 13: ...mum prefix 449 neighbor next hop self 450 neighbor remove private as 451 neighbor route map 451 neighbor route reflector client 452 network 452 redistribute 453 redistribute ospf 454 show ip bgp ipv4 multicast 455 show ip bgp cluster list 456 show ip bgp community 457 show ip bgp community list 458 show ip bgp dampened paths 458 show ip bgp filter list 459 show ip bgp flap statistics 459 show ip b...

Page 14: ...ion peers 481 bgp dampening 481 bgp default local preference 482 bgp enforce first as 483 bgp fast external fallover 483 bgp four octet as support 484 bgp graceful restart 484 bgp log neighbor changes 485 bgp non deterministic med 486 bgp recursive bgp next hop 486 bgp regex eval optz disable 487 bgp router id 487 bgp soft reconfig backup 488 capture bgp pdu neighbor ipv6 488 capture bgp pdu max b...

Page 15: ...bor filter list 508 neighbor maximum prefix 508 neighbor X X X X password 509 neighbor next hop self 510 neighbor peer group assigning peers 510 neighbor peer group creating group 511 neighbor peer group passive 512 neighbor remote as 512 neighbor remove private as 513 neighbor route map 514 neighbor route reflector client 514 neighbor send community 515 neighbor shutdown 516 neighbor soft reconfi...

Page 16: ...p paths 533 show ip bgp paths as path 534 show ip bgp paths community 534 show ip bgp paths extcommunity 535 show ip bgp regexp 535 show ipv6 prefix list 536 timers bgp 536 IPv6 MBGP Commands 537 address family ipv6 unicast 537 aggregate address 538 bgp dampening 539 clear ip bgp ipv6 unicast 539 clear ip bgp ipv6 unicast dampening 540 clear ip bgp ipv6 unicast flap statistics 540 debug ip bgp ipv...

Page 17: ... bgp ipv6 unicast peer group 561 show ip bgp ipv6 unicast summary 561 show ipv6 mbgproutes 563 10 Bare Metal Provisioning BMP 565 reload conditional nvram cfg change 565 reload type 566 script post config 567 show reload type 567 stop bmp 568 stop jumpstart 569 11 Content Addressable Memory CAM 571 CAM Profile Commands 571 cam acl Configuration 572 cam acl EXEC Privilege 573 cam acl egress 573 cam...

Page 18: ...c counters 596 dcb input 596 dcb policy input 597 dcb policy input stack unit stack ports all 598 dcb stack unit pfc buffering pfc port pfc queues 599 description 599 pfc link delay 600 pfc mode on 600 pfc no drop queues 601 pfc priority 602 show dcb 603 show interface pfc 603 show interface pfc statistics 606 show qos dcb input 606 show stack unit stack ports pfc detail 607 ETS Commands 607 bandw...

Page 19: ... Debugging and Diagnostics 633 Offline Diagnostic Commands 633 diag stack unit 633 offline stack unit 634 online stack unit 635 Buffer Tuning Commands 636 buffer Buffer Profile 636 buffer Configuration 637 buffer profile Configuration 638 buffer profile Interface 639 show buffer profile 639 show buffer profile interface 640 Hardware Commands 641 clear hardware stack unit 641 Object Missing 643 har...

Page 20: ... 663 arp inspection trust 663 clear ip dhcp snooping 663 ip dhcp relay 664 ip dhcp snooping 664 ip dhcp snooping binding 665 ip dhcp snooping database 666 ip dhcp snooping database renew 666 ip dhcp snooping trust 666 ip dhcp source address validation 667 ip dhcp snooping vlan 667 ip dhcp relay information option 668 ip dhcp relay information agent remote id 668 ip dhcp snooping verify mac address...

Page 21: ...face vlan 689 clear fip snooping statistics 690 debug fip snooping 690 feature fip snooping 691 fip snooping enable 691 fip snooping fc map 692 fip snooping port mode fcf 692 fip snooping port mode fcoe trusted 693 show fip snooping config 693 show fip snooping enode 694 show fip snooping fcf 694 show fip snooping sessions 695 show fip snooping statistics 696 show fip snooping system 699 show fip ...

Page 22: ...ble 726 redundancy auto failover limit 726 redundancy disable auto reboot 727 redundancy force failover 728 redundancy primary 729 redundancy protocol 729 redundancy reset counter 730 redundancy sfm standby 731 redundancy synchronize 732 show patch 732 show processes restartable 733 show redundancy 734 22 ICMP Message Types 737 23 Internet Group Management Protocol IGMP 739 IGMP Commands 739 clear...

Page 23: ... igmp snooping querier 755 show ip igmp snooping mrouter 756 24 Interfaces 757 Basic Interface Commands 757 clear counters 757 clear dampening 759 cx4 cable length 760 dampening 761 description 762 disable on sfm failure 763 duplex Management 763 duplex 10 100 Interfaces 764 flowcontrol 765 interface 768 interface loopback 769 interface ManagementEthernet 769 interface null 770 interface range 771...

Page 24: ...terfaces switchport 805 show interfaces transceiver 807 show range 812 show running config ecmp group 812 shutdown 813 speed for 10 100 1000 interfaces 814 speed Management interface 815 stack unit portmode 816 switchport 816 wanport 818 Port Channel Commands 818 channel member 819 group 820 interface port channel 821 minimum links 822 port channel failover group 823 show config 823 show interface...

Page 25: ...packet 847 ip address 850 ip directed broadcast 850 ip domain list 851 ip domain lookup 852 ip domain name 852 ip fib download igp only 853 ip helper address 854 ip helper address hop count disable 855 ip host 855 ip max frag count 856 ip mtu 857 ip name server 858 ip proxy arp 859 ip redirects 859 ip route 860 ip source route 862 ip unreachables 862 ip vlan flooding 863 load balance C Series S Se...

Page 26: ... table 896 show tcp statistics 897 26 IPv6 Access Control Lists IPv6 ACLs 901 IPv6 ACL Commands 901 cam acl 901 cam acl egress 902 clear counters ipv6 access group 903 deny 904 deny icmp 904 deny tcp 906 deny udp 909 ipv6 access group 911 ipv6 access list 912 ipv6 control plane egress filter 912 permit 913 permit icmp 913 permit tcp 914 permit udp 917 remark 919 resequence access list 920 resequen...

Page 27: ... ipv6 flowlabel zero 939 ipv6 host 939 ipv6 name server 940 ipv6 nd dad attempts 941 ipv6 nd prefix 941 ipv6 route 942 ipv6 unicast routing 944 show ipv6 cam linecard 945 show ipv6 cam stack unit 947 show ipv6 control plane icmp 948 show ipv6 fib linecard 948 show ipv6 fib stack unit 949 show ipv6 flowlabel zero 950 show ipv6 interface 950 show ipv6 mld_host 953 show ipv6 route 954 trust ipv6 diff...

Page 28: ... 973 debug isis update packets 974 default information originate 974 description 976 distance 976 distribute list in 977 distribute list out 978 distribute list redistributed override 979 domain password 979 graceful restart ietf 980 graceful restart interval 981 graceful restart restart wait 981 graceful restart t1 982 graceful restart t2 982 graceful restart t3 983 hello padding 984 hostname dyn...

Page 29: ...ute 1001 redistribute bgp 1003 redistribute ospf 1004 router isis 1006 set overload bit 1006 show config 1007 show isis database 1008 show isis graceful restart detail 1010 show isis hostname 1011 show isis interface 1011 show isis neighbors 1012 show isis protocol 1014 show isis traffic 1014 spf interval 1016 30 Link Aggregation Control Protocol LACP 1019 clear lacp counters 1019 debug lacp 1020 ...

Page 30: ...imit station move violation 1036 mac learning limit reset 1037 show cam mac linecard count 1037 show cam maccheck linecard 1038 show cam mac linecard dynamic or static 1039 show cam mac stack unit 1041 show mac address table 1042 show mac address table aging time 1044 show mac accounting destination 1045 show mac cam 1046 show mac learning limit 1047 Virtual LAN VLAN Commands 1048 description 1049...

Page 31: ...p neighbors 1076 show lldp statistics 1077 show running config lldp 1077 LLDP MED Commands 1078 advertise med guest voice 1078 advertise med guest voice signaling 1079 advertise med location identification 1080 advertise med power via mdi 1081 advertise med softphone voice 1081 advertise med streaming video 1082 advertise med video conferencing 1083 advertise med video signaling 1083 advertise med...

Page 32: ... forward delay 1103 hello time 1103 max age 1104 max hops 1105 msti 1105 name 1106 protocol spanning tree mstp 1107 revision 1108 show config 1108 show spanning tree mst configuration 1109 show spanning tree msti 1110 spanning tree 1112 spanning tree msti 1113 spanning tree mstp edge port 1114 tc flush standard 1114 35 Multicast 1117 IPv4 Multicast Commands 1117 clear ip mroute 1117 ip mroute 1118...

Page 33: ... config flag 1134 ipv6 nd max ra interval 1135 ipv6 nd mtu 1135 ipv6 nd other config flag 1136 ipv6 nd prefix 1136 ipv6 nd ra lifetime 1137 ipv6 nd reachable time 1137 ipv6 nd suppress ra 1138 ipv6 neighbor 1138 show ipv6 neighbors 1139 37 Open Shortest Path First OSPFv2 and OSPFv3 1141 OSPFv2 Commands 1141 area default cost 1143 area nssa 1144 area range 1144 area stub 1145 area virtual link 1146...

Page 34: ...riority 1167 ip ospf retransmit interval 1168 ip ospf transmit delay 1168 log adjacency changes 1169 maximum paths 1169 mib binding 1170 network area 1171 passive interface 1171 redistribute 1173 redistribute bgp 1174 redistribute isis 1175 router id 1176 router ospf 1177 show config 1178 show ip ospf 1178 show ip ospf asbr 1180 show ip ospf database 1180 show ip ospf database asbr summary 1182 sh...

Page 35: ... default information originate 1215 graceful restart grace period 1216 graceful restart mode 1217 ipv6 ospf area 1217 ipv6 ospf authentication 1218 ipv6 ospf cost 1219 ipv6 ospf dead interval 1220 ipv6 ospf encryption 1220 ipv6 ospf graceful restart helper reject 1222 ipv6 ospf hello interval 1222 ipv6 ospf priority 1223 ipv6 router ospf 1223 maximum paths 1224 passive interface 1224 redistribute ...

Page 36: ...r 1246 show ip pim interface 1247 show ip pim neighbor 1248 show ip pim rp 1249 show ip pim snooping interface 1250 show ip pim snooping neighbor 1251 show ip pim snooping tib 1252 show ip pim summary 1254 show ip pim tib 1255 show running config pim 1257 IPv6 PIM Sparse Mode Commands 1257 ipv6 pim bsr border 1257 ipv6 pim bsr candidate 1258 ipv6 pim dr priority 1259 ipv6 pim join filter 1260 ipv6...

Page 37: ... show vlan private vlan 1282 show vlan private vlan mapping 1284 switchport mode private vlan 1284 41 Per VLAN Spanning Tree Plus PVST 1287 description 1287 disable 1288 extend system id 1288 protocol spanning tree pvst 1289 show spanning tree pvst 1290 spanning tree pvst 1293 spanning tree pvst err disable 1295 tc flush standard 1296 vlan bridge priority 1297 vlan forward delay 1297 vlan hello ti...

Page 38: ...ch mac dot1p 1319 match mac vlan 1320 policy aggregate 1320 policy map input 1321 policy map output 1322 qos policy input 1323 qos policy output 1324 queue backplane ignore backpressure 1325 queue egress 1325 queue ingress 1326 rate limit 1327 rate police 1328 rate shape 1329 service policy input 1330 service policy output 1331 service queue 1331 set 1332 show cam layer2 qos 1333 show cam layer3 q...

Page 39: ...e 1357 distribute list in 1358 distribute list out 1359 ip poison reverse 1360 ip rip receive version 1361 ip rip send version 1362 ip split horizon 1362 maximum paths 1363 neighbor 1364 network 1364 offset list 1365 output delay 1366 passive interface 1367 redistribute 1368 redistribute isis 1369 redistribute ospf 1369 router rip 1370 show config 1371 show ip rip database 1372 show running config...

Page 40: ...spanning tree rstp 1396 show config 1397 show spanning tree rstp 1397 spanning tree rstp 1399 tc flush standard 1401 46 Security 1403 AAA Accounting Commands 1403 aaa accounting 1403 aaa accounting suppress 1405 accounting 1405 show accounting 1406 Authorization and Privilege Commands 1407 authorization 1407 aaa authorization commands 1407 aaa authorization config commands 1408 aaa authorization e...

Page 41: ...r timeout 1429 TACACS Commands 1429 debug tacacs 1429 ip tacacs source interface 1430 tacacs server host 1431 tacacs server key 1432 Port Authentication 802 1X Commands 1433 dot1x authentication Configuration 1433 dot1x authentication Interface 1434 dot1x auth fail vlan 1434 dot1x auth server 1435 dot1x guest vlan 1435 dot1x mac auth bypass 1436 dot1x max eap req 1436 dot1x port control 1437 dot1x...

Page 42: ...issing 1455 Secure DHCP Commands 1455 clear ip dhcp snooping 1455 ip dhcp relay 1455 ip dhcp snooping 1456 ip dhcp snooping binding 1456 ip dhcp snooping database 1457 ip dhcp snooping database renew 1457 ip dhcp snooping trust 1458 ip dhcp source address validation 1458 ip dhcp snooping vlan 1459 show ip dhcp snooping 1459 47 Service Provider Bridging 1461 debug protocol tunnel 1461 protocol tunn...

Page 43: ... 1482 snmp server community 1483 snmp server contact 1485 snmp server enable traps 1485 snmp server engineID 1487 snmp server group 1488 snmp server host 1489 snmp server location 1492 snmp server packetsize 1492 snmp server trap source 1493 snmp server user 1494 snmp server view 1496 snmp trap link status 1497 Syslog Commands 1497 clear logging 1498 default logging buffered 1498 default logging c...

Page 44: ...ade system stack unit S Series stack member 1527 52 Storm Control 1529 show storm control broadcast 1529 show storm control multicast 1531 show storm control unknown unicast 1532 storm control broadcast Configuration 1533 storm control broadcast Interface 1534 storm control multicast Configuration 1535 storm control multicast Interface 1535 storm control unknown unicast Configuration 1536 storm co...

Page 45: ... broadcast client 1562 ntp disable 1563 ntp multicast client 1563 ntp server 1564 ntp source 1565 ntp trusted key 1566 ntp update calendar 1567 show calendar 1567 show clock 1568 show ntp associations 1569 show ntp status 1570 55 u Boot 1573 printenv 1573 reset 1574 save 1575 setenv 1575 56 Uplink Failure Detection UFD 1577 clear ufd disable 1577 debug uplink state group 1578 description 1578 down...

Page 46: ...ual Link Trunking VLT 1599 back up destination 1599 clear vlt statistics 1600 delay restore 1601 lacp ungroup member independent 1601 peer link port channel 1602 primary priority 1603 show vlt brief 1603 show vlt backup link 1604 show vlt counter 1605 show vlt detail 1606 show vlt role 1606 show vlt statistics 1607 show vlt statistics igmp snoop 1608 system mac 1609 unit id 1609 vlt domain 1610 vl...

Page 47: ...l address 1623 vrrp delay minimum 1624 vrrp delay reload 1625 vrrp group 1626 IPv6 VRRP Commands 1626 clear counters vrrp ipv6 1627 debug vrrp ipv6 1627 show vrrp ipv6 1628 vrrp ipv6 group 1630 advertise interval 1631 description 1632 disable 1632 hold time 1633 preempt 1634 priority 1634 show config 1635 track 1636 virtual address 1637 ...

Page 48: ...48 ...

Page 49: ...ith usage information and sample output NOTE For more information about when to use the CLI commands refer to the FTOS Configuration Guide for your system Audience This book is intended for system administrators who are responsible for configuring or maintaining networks This guide assumes that you are knowledgeable in Layer 2 and Layer 3 networking technologies Conventions This book uses the foll...

Page 50: ... all of the options Information Icons This book uses the following information symbols NOTE The Note icon signals important operational information CAUTION The Caution icon signals information about situations that could result in equipment damage or loss of data WARNING The Warning icon signals information about hardware handling that could result in injury 50 ...

Page 51: ... 53 Trying 172 31 1 53 Connected to 172 31 1 53 Escape character is Login username Password FTOS After you log in to the switch the prompt provides you with the current command level information For example Prompt CLI Command Mode FTOS EXEC FTOS EXEC Privilege FTOS conf CONFIGURATION NOTE For a list of all the command mode prompts refer to the Command Modes section Multiple Configuration Users Whe...

Page 52: ...s path BGP autonomous system path filter community list Add a community list entry domain list Domain name to complete unqualified host name domain lookup Enable IP Domain Name System hostname translation domain name Define the default domain name fib FIB configuration commands ftp FTP configuration commands host Add an entry to the ip hostname table max frag count Max fragmented packets allowed i...

Page 53: ... the cursor CNTL E Moves the cursor to the end of the line CNTL F Moves the cursor forward one character CNTL I Completes a keyword CNTL K Deletes all the characters from the cursor to the end of the command line CNTL L Re enters the previous command CNTL N Returns to the more recent commands in the history buffer after recalling commands with Ctrl P or the up Arrow key CNTL P Recalls commands beg...

Page 54: ...f a show command When you execute a show command and then enter a pipe one of the parameters listed below and a regular expression the resulting output either excludes or includes those parameters NOTE FTOS accepts a space before or after the pipe no space before or after the pipe or any combination For example FTOS command grep gigabit except regular expression find regular expression display dis...

Page 55: ...h by default you are logged in to EXEC mode This mode allows you to view settings and enter EXEC Privilege mode which is used to configure the device When you are in EXEC mode the prompt is displayed following the host name prompt which is FTOS by default You can change the host name prompt using the hostname command NOTE Each mode prompt is preceded by the host name EXEC Privilege Mode The enable...

Page 56: ... 0 Ten Gigabit Ethernet interface followed by slot port information FTOS conf if fo 0 0 Forty Gigabit Ethernet interface followed by slot port information FTOS conf if lo 0 Loopback interface number FTOS conf if nu 0 Null Interface followed by zero FTOS conf if po 0 Port channel interface number FTOS conf if vl 0 VLAN Interface followed by VLAN number range 1 4094 FTOS conf if so 0 0 SONET interfa...

Page 57: ...cl You can return to CONFIGURATION mode by using the exit command IP ACCESS LIST Mode You must use the ip access list standard or ip access list extended command to enter IP ACCESS LIST mode and configure either standard or extended access control lists ACLs To enter IP ACCESS LIST mode 1 Verify that you are logged in to CONFIGURATION mode 2 Use the ip access list standard or ip access list extend...

Page 58: ... refer to Access Control Lists ACL To enter IP COMMUNITY LIST mode 1 Verify that you are logged in to CONFIGURATION mode 2 Enter the ip community list command Include a name for the Community list The prompt changes to include config community list You can return to CONFIGURATION mode by using the exit command REDIRECT LIST Mode You must use REDIRECT LIST mode to configure a Redirect list on the E...

Page 59: ...P To enter RSTP mode 1 Verify that you are logged in to CONFIGURATION mode 2 Enter the protocol spanning tree rstp command You can return to CONFIGURATION mode by using the exit command MULTIPLE SPANNING TREE MSTP Mode You must use MULTIPLE SPANNING TREE mode to enable and configure MSTP For more information refer to Multiple Spanning Tree Protocol MSTP To enter MULTIPLE SPANNING TREE mode 1 Verif...

Page 60: ... to ROUTER OSPF mode by using the router ospf command ROUTER ISIS Mode You must use ROUTER ISIS mode to configure intermediate system to intermediate system ISIS on the E Series For more information refer to the Intermediate System to Intermediate System IS IS chapter in the E Series FTOS Command Line Reference Guide To enter ROUTER ISIS mode 1 Verify that you are logged in to CONFIGURATION mode 2...

Page 61: ... logged into CONFIGURATION mode 2 Enter the openflow of instance command followed by the OpenFlow ID number of the instance you want to create or configure The prompt changes to include conf of instance of id You can return to the CONFIGURATION mode by entering the exit command Determining Chassis Mode Chassis mode in FTOS determines which hardware is being supported in an E Series chassis Chassis...

Page 62: ...62 ...

Page 63: ...rds remote first to attempt to load the boot configuration files from a remote location rpm0 Enter the keywords rpm0 first to specify the local boot configuration file for route processor module RPM 0 rpm1 Enter the keywords rpm1 first to specify the local boot configuration file for RPM 1 file url Enter the location information For a file on the internal Flash enter flash followed by the filename...

Page 64: ...AL CONFIG FILE variable does not exist PRIMARY HOST CONFIG FILE variable does not exist SECONDARY HOST CONFIG FILE variable does not exist PRIMARY NETWORK CONFIG FILE variable does not exist SECONDARY NETWORK CONFIG FILE variable does not exist CURRENT IMAGE FILE flash FTOS EF 8 2 1 0 bin CURRENT CONFIG FILE 1 flash startup config CURRENT CONFIG FILE 2 variable does not exist CONFIG LOAD PREFERENC...

Page 65: ...NFIGURATION Command History Version 7 5 1 0 Introduced on C Series E Series Original command Usage Information To display these changes in the show bootvar command output save the running configuration to the startup configuration using the copy command Related Commands show bootvar displays the variable settings for the E Series boot parameters boot network Set the location of the configuration f...

Page 66: ...FTOS 8 3 12 0 boot system gateway ip address stack unit 0 11 0 7 all default primary system A B tftp secondary To return to the default boot sequence use the no boot system command Parameters gateway Enter the IP address of the default next hop gateway for the management subnet stack unit Enter the stack unit number for the master switch ip address Enter an IP address in dotted decimal format 0 11...

Page 67: ...default next hop gateway for the management subnet C Series E Series Syntax boot system gateway ip address Parameters ip address Enter an IP address in dotted decimal format Command Modes CONFIGURATION Command History Version 7 5 1 0 Introduced on C Series E Series Original command Usage Information To display these changes in the show bootvar command output save the running configuration to the s...

Page 68: ... image on the control processor on the RPM linecard linecard slot Enter the keyword linecard followed by the slot number to change the bootflash image on a specific line card The C Series range is 0 7 The E Series range is 0 to 13 on the E1200 0 on 6 on the E600 and 0 to 5 on the E300 rp Enter the keyword rp to change the bootflash image on the RPM Defaults Not configured Command Modes EXEC Privil...

Page 69: ...path To copy a file from the external FLASH on RPM0 enter rpm0slot0 filepath To copy a file from the internal FLASH on RPM1 enter rpm1flash filepath To copy a file from the external FLASH on RPM1 enter rpm1slot0 filepath To copy the running configuration enter the keyword running config To copy the startup configuration enter the keyword startup config To copy using a Secure Copy SCP enter the key...

Page 70: ...n enter copy running config scp where running config is the source and the target is specified in the ensuing prompts FTOS prompts you to enter any required information as needed for the named destination remote destination destination filename user ID password etc When you use the copy running config startup config command to copy the running configuration the startup configuration file amended b...

Page 71: ... image Image validation is automatic target url Enter the local target file in url format boot image Enter the keyword boot image to designate this copy command as a streamline update synchronize rpm Enter the keyword synchronize rpm to copy the new image file to the peer RPM external Enter the keyword external to designate the target device on the peer RPM as external flash instead of the default...

Page 72: ... chassis available on external flash in order to move it to another chassis When you use the copy running config startup config duplicate command to copy the running configuration to the startup configuration FTOS creates a backup file on the internal flash of the startup configuration delete Delete a file from the flash After deleted files cannot be restored C Series E Series S Series Syntax dele...

Page 73: ...e following For a file or directory on the internal Flash enter flash followed by the filename or directory name For a file or directory on the external Flash enter slot0 followed by the filename or directory name Command Modes EXEC Privilege Command History Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS dir Directory of...

Page 74: ...tes Related Commands upgrade E Series version upgrades the bootflash or boot selector versions upgrade C Series version upgrades the bootflash or boot selector versions download alt full image Download an alternate FTOS image to the chassis E Series Syntax download alt full image file url Command Modes EXEC Privilege Command History Version 7 7 1 0 Removed from E Series Version 6 5 1 0 Introduced ...

Page 75: ...image upgrades the bootflash or boot selector versions format C Series and E Series Erase all existing files and reformat a file system After the file system is formatted files cannot be restored C Series E Series Syntax format filesystem dosFs1 0 dosFs2 0 Parameters filesystem Enter one of the following To reformat the internal Flash enter flash To reformat the external Flash enter slot0 dosFs1 0...

Page 76: ...ase all existing files and reformat the filesystem in the internal flash memory After the filesystem is formatted files cannot be restored S Series Syntax format flash Defaults flash memory Command Modes EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Usage Information You must include the colon when entering this command After reformatting is complete three empty directo...

Page 77: ...mory Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Usage Information You must include the colon when entering this command CAUTION This command deletes all files including the startup configuration file So after executing this command consider saving the running config as the startup config use the write memory command or copy run start command fsck flash S ...

Page 78: ...write memory command or copy run start command Related Commands copy copy one file to another location show file Display contents of a text file in the local file system show file systems Display information about the file systems on the system pwd Display the current working directory C Series E Series Syntax pwd Defaults Crash kernel files are uploaded to flash by default Command Modes EXEC Priv...

Page 79: ...ies S4810 Syntax show boot system all linecard slot all rpm Parameters all Enter the keyword all to display boot image information for all linecards and RPMs linecard Enter the keyword linecard to display boot image information for the specified line card s on the system rpm Enter the keyword rpm to display boot image information for all RPMs on the system Defaults none Command Modes EXEC EXEC Pri...

Page 80: ...eload mode normal or Jumpstart Version 8 3 11 1 Introduced on the Z9000 Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS show bootvar PRIMARY IMAGE FILE ftp box password 10 31 1 205 home 5 3 1 5 3 1 0 FTOS ED RPM1 5 3 1 0 bin SECONDARY IMAGE FILE variable does not exist DEFAULT IMAGE FILE flash FTOS ED 5 3 1 0 bin LOCAL CONFIG FILE variable does not exist PRIMARY H...

Page 81: ...filesystem Enter one of the following For internal flash enter flash For external Flash enter slot0 Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS show file flash startup config boot system rpm0 primary ftp test server 10 16 1 144 home ...

Page 82: ...ile systems Command Modes EXEC Privilege Command History Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS show file systems Size b Free b Feature Type Flags Prefixes 63938560 51646464 dosFs2 0 MMC rw flash 63938560 18092032 dosFs1 0 MMC rw slot0 network rw ftp network rw tftp network rw scp FTOS Command Fields Field Descri...

Page 83: ... local filesystem show sfm Displays the current SFM status show linecard View the current linecard status C Series E Series Syntax show linecard number all boot information Parameters number Enter a number to view information on that linecard Range 0 to 6 all OPTIONAL Enter the keyword all to view a table with information on all present linecards boot information OPTIONAL Enter the keyword boot in...

Page 84: ...FTP server enter ftp user password hostip filepath For a file on the external Flash enter slot0 followed by the filename For a file on a TFTP server enter tftp hostip filepath NOTE ftp and tftp are the only S Series options Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the...

Page 85: ...1 control processor passed boot flash 1 0 0 40 linecard passed boot selector 2 7 0 1 control processor passed boot selector 1 0 0 40 linecard passed FPGA IMAGE INFORMATION Card Version Release Date Primary RPM 4 1 May 02 2007 Secondary RPM 4 1 May 02 2007 LC0 3 2 May 02 2007 LC5 3 2 May 02 2007 LC6 2 2 May 02 2007 FTOS show running config Display the current configuration and display changes from ...

Page 86: ... current host configuration hardware monitor for hardware monitor action on error settings hypervisor for the current hypervisor configuration igmp for the current IGMP configuration interface for the current interface configuration ip for the current IP configuration isis for the current ISIS configuration line for the current line configuration lldp for the current LLDP configuration load balanc...

Page 87: ... for the current RADIUS configuration redirect list for the current redirect list configuration redundancy for the current RPM redundancy configuration resolve for the current DNS configuration rip for the current RIP configuration rmon for the current RMON configuration route map for the current route map configuration sflow for the current sFlow configuration snmp for the current SNMP configurat...

Page 88: ...d on the C Series Version 7 4 1 0 Expanded to include the last configuration change start up last updated date and time and who made the change Version 6 5 4 0 Added the status option Example FTOS show running config Current Configuration Version 7 4 1 0 Last configuration change at Tue Apr 10 17 43 38 2007 by admin Startup config last updated at Thu Mar 29 02 35 08 2007 by default boot system rpm...

Page 89: ...es Original command Example FTOS show sfm Switch Fabric State up SFM card 0 Status active Card Type SFM Switch Fabric Module Up Time 37 min 24 sec Temperature 49C Power Status PEM0 absent or down PEM1 up Serial Number 0018102 Part Number 7520012900 Rev 02 Vendor Id 02 Date Code 06182004 Country Code 01 Command Fields Field Description Switch Fabric State States that the Switch Fabric is up eight S...

Page 90: ...0 active 1 active 2 active 3 active 4 active 5 active 6 active 7 active 8 active FTOS show startup config Display the startup configuration C Series E Series S Series Syntax show startup config Command Modes EXEC Privilege Command History Version 7 6 1 0 Introduced on S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Expanded to include the last configuration change start up last...

Page 91: ...rimary flash FTOS EF 7 4 1 0 bin boot system rpm0 secondary flash FTOS EF 6 3 1 2 bin boot system rpm0 default flash FTOS EF 6 5 1 8 bin Related Commands show running config displays the current running configuration 91 ...

Page 92: ...92 ...

Page 93: ...standby RPM Enter the keyword all after the keyword linecard to upgrade the bootflash or boot selector image on all linecards linecard number Enter the keyword linecard followed by the line card slot number Range 0 to 7 for the C300 and 0 to 2 for the C150 rpm Enter the keyword rpm to upgrade the system image of a selector image on all processors on the RPM repair Enter this keyword repair to upgr...

Page 94: ...individual RPM line cards SFM FPGA and system image for cache boot without specifying the file url again using the command upgrade bootflash image bootselector image system image all linecard linecard slot rpm After 20 minutes the cached memory is released and returned for general use but the URL is maintained and you do not have to specify it for subsequent upgrades Related Commands upgrade fpga ...

Page 95: ...e Command Modes EXEC Privilege Command History Version 7 7 1 0 Removed alt bootflash image alt bootselector image alt system image options and the rp1 rp2 and cp options E Series Original command Usage Information RFC 3986 specifies that IPv6 host addresses in a uniform resource identifier URI should be enclosed in square brackets X X X X X For maximum flexibility this command accepts IPv6 host ad...

Page 96: ...pt sequence tftp After entering the keyword tftp you can either follow it with the location of the source file in this form hostlocation filepath or press Enter to launch a prompt sequence flash After entering the keyword flash you can either follow it with the location of the source file in this form flash filepath or press Enter to launch a prompt sequence A B Enter the partition to upgrade from...

Page 97: ...e identifier URI must be enclosed in square brackets X X X X X For maximum flexibility this command accepts IPv6 host addresses with or without the square brackets You must reload FTOS after executing this command Use the upgrade system stack unit S Series stack member command to copy FTOS from the management unit to one or more stack members Example FTOS upgrade system ftp Copy from remote file s...

Page 98: ...A using an FTOS image other than the one currently running To specify an FTOS image on the internal flash enter flash file path filename To specify an FTOS image on an FTP server enter ftp user password hostip filepath To specify an FTOS image on the external flash on the primary RPM enter slot0 file path filename To copy a file on a TFTP server enter tftp hostip filepath filename where hostip is ...

Page 99: ...one Command Modes EXEC Privilege Command History Version 7 7 1 0 Renamed the keyword primary fpga flash to fpga image Version 7 5 1 0 Introduced on the C Series Example FTOS restore fpga image linecard 4 Current FPGA information in the system Card FPGA Name Current Version New Version LC4 48 Port 1G LCM FPGA A 3 6 restore Warning Upgrading FPGA is inherently risky and should only be attempted when...

Page 100: ...L Enter the keywords system fpga to upgrade only the system FPGA on a fiber linecard NOTE Contact Dell Force10 TAC before using this keyword link fpga OPTIONAL Enter the keywords link fpga to upgrade only the link FPGA on a fiber linecard NOTE Contact the Dell Force10 TAC before using this keyword booted Upgrade the FPGA image using the currently running FTOS image file url Enter the following loc...

Page 101: ... all keyword Version 7 5 1 0 Introduced on the C Series Example FTOS conf FTOS conf upgrade primary fpga flash rpm Proceed to upgrade primary fpga flash for rpm 0 confirm yes no yes FTOS Usage Information Reset the card using the power cycle option after restoring the FPGA command Related Commands reset resets a line card or RPM restore fpga image this command copies the backup FPGA image to the p...

Page 102: ...102 ...

Page 103: ...imple network management protocol SNMP management information base MIB asf mode Enable Alternate Store and Forward ASF mode and forward packets as soon as a threshold is reached S4810 Z Series Syntax asf mode stack unit unit id all queue size To return to standard Store and Forward mode use the no asf mode stack unit command Parameters unit id Enter the stack member unit identifier of the stack me...

Page 104: ... exec c line c To delete a banner use the no banner exec command Parameters c Enter the keywords banner exec then enter a character delineator represented here by the letter c Press ENTER line Enter a text string for your banner message ending the message with your delineator In the example below the delineator is a percent character the banner message is testing testing Defaults No banner is disp...

Page 105: ...sets a Message of the Day banner exec banner Enables the display of a text string when you enter EXEC mode line enables and configures the console and virtual terminal lines to the system banner login Set a banner to be displayed when logging on to the system C Series E Series S Series Z Series Syntax banner login keyboard interactive no keyboard interactive c line c Parameters keyboard interactiv...

Page 106: ...er login keyboard interactive Prompt will be displayed by default cr FTOS conf banner login keyboard interactive Enter TEXT message End with the character This is the banner FTOS conf end FTOS exit 13d21h9m RPM0 P CP SEC 5 LOGOUT Exec session is terminated for user on line console This is the banner FTOS con0 now available Press RETURN to get started 13d21h10m RPM0 P CP SEC 5 LOGIN_SUCCESS Login s...

Page 107: ...g the enable command followed by the password These banners are not displayed to users in EXEC non privilege mode Related Commands banner exec enables the display of a text string when you enter EXEC mode banner login sets a banner to be displayed after successful login to the system cam acl Allocate CAM for IPv4 and IPv6 ACLs C Series S Series Z Series Syntax cam acl default l2acl number ipv4acl ...

Page 108: ...write mem or copy run start then reload the system for the new settings to take effect The total amount of space allowed is 16 FP Blocks System flow requires three blocks and these cannot be reallocated The ipv4acl profile range is 1 to 4 When configuring space for IPv6 ACLs the total number of Blocks must equal 13 Ranges for the CAM profiles are 1 to 10 except for the ipv6acl profile which is 0 t...

Page 109: ...ters all Enter the keyword all to enable CAM audit on all line cards ipv4 fib Enter the keyword ipv4 fib to designate the CAM audit on the IPv4 forwarding entries interval time in minutes Enter the keyword interval followed by the frequency in minutes of the CAM audit Range 5 to 1440 minutes 24 hours Default 60 minutes Defaults Disabled Command Modes CONFIGURATION Command History Version 7 4 1 0 I...

Page 110: ...history Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Related Commands show command history displays a buffered log of all the commands entered by all users along with a time stamp clear line Rese...

Page 111: ...s Version 7 5 1 0 Introduced on the C Series E Series Original command configure Enter CONFIGURATION mode from EXEC Privilege mode C Series E Series S Series Z Series Syntax configure terminal Parameters terminal OPTIONAL Enter the keyword terminal to specify that you are configuring from the terminal Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1...

Page 112: ...lection of CPU traffic statics The following message is an indication that collection of CPU traffic is automatically turned on To view the traffic statistics use the show cpu traffic stats command If excessive traffic is received by the CPU traffic will be rate controlled NOTE This command must be enabled before the show cpu traffic stats command displays traffic statistics Dell Force10 recommend...

Page 113: ...ersion 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command do Allows the execution of most EXEC level commands from all CONFIGURATION levels without returning to the EXEC level C Series E Series S Series Z Series Sy...

Page 114: ...ar logging buffer confirm FTOS conf if te 5 0 FTOS conf if te 5 0 do reload System configuration has been modified Save yes no n Proceed with reload confirm yes no n FTOS conf if te 5 0 enable Enter EXEC Privilege mode or any other privilege level configured After entering this command you may need to enter a password C Series E Series S Series Z Series Syntax enable level Parameters level OPTIONA...

Page 115: ... Syntax enable optical info update interval seconds To disable optical power information updates use the no enable optical info update interval command Parameters interval seconds Enter the keyword interval followed by the polling interval in seconds Range 120 to 6000 seconds Default 300 seconds 5 minutes Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 4 Introduced on ...

Page 116: ... monitoring in the SNMP MIB Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series and E Series Usage Information The chassis MIB contains the entry chSysXfpRecvPower in the chSysPortTable table Periodically IFA polls the XFP power for each of the ports and sends the values to IFM where it is cached Use this command...

Page 117: ...E Series ExaScale systems only 3 2 Enter the keyword 3 2 to set the epoch to 3 2 micro seconds and lower the latency This option is available on the E600 E600i and E1200 E1200i only ExaScale does not supports this setting with FTOS 8 3 1 0 and later 10 4 Enter the keyword 10 4 to set the epoch to 10 4 micro seconds This is the default setting and is available on the E300 E600 E600i and E1200 Defau...

Page 118: ... FTOS version 8 3 1 0 and later The 10 4 setting is supported on all ExaScale FTOS versions The 3 2 setting is only supported on FTOS versions 8 2 1 0 and earlier exec banner Enable the display of a text string when the user enters EXEC mode C Series E Series S Series Z Series Syntax exec banner To disable the banner on terminal lines use the no exec banner command Defaults Enabled on all lines if...

Page 119: ...OPTIONAL Enter the number of seconds Range 0 to 2147483 Default 0 seconds Defaults 10 minutes for console line 30 minutes for VTY lines 0 seconds Command Modes LINE Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information To remove the time interval enter exec timeout 0...

Page 120: ...ies Original command Related Commands end returns to EXEC Privilege mode ftp server enable Enable FTP server functions on the system C Series E Series S Series Z Series Syntax ftp server enable Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version ...

Page 121: ...rectory to be accessed when an incoming FTP connection request is made C Series E Series S Series Z Series Syntax ftp server topdir directory Parameters directory Enter the directory path Defaults The internal flash is the default directory Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introd...

Page 122: ...ters long as the user name password password Enter the keyword password followed by a string up to 40 characters long as the password Without specifying an encryption type the password is unencrypted encryption type OPTIONAL After the keyword password enter one of the following numbers 0 zero for an unecrypted clear text password 7 seven for a hidden text password Defaults Not enabled Command Mode...

Page 123: ... 1 0 Introduced on the C Series E Series Original command Usage Information The hostname is used in the prompt ip ftp password Specify a password for outgoing FTP connections C Series E Series S Series Z Series Syntax ip ftp password encryption type password To remove a password and return to the default setting use the no ip ftp password password command Parameters encryption type OPTIONAL Enter ...

Page 124: ...ace use the no ip ftp source interface interface command Parameters interface Enter the following keywords and slot port or number information For an 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Loopback interfaces enter the keyword l...

Page 125: ...on 7 5 1 0 Introduced on the C Series E Series Original command Related Commands copy copies files from and to the switch ip ftp username Assign a user name for outgoing FTP connection requests C Series E Series S Series Z Series Syntax ip ftp username username To return to anonymous FTP connections use the no ip ftp username username command Parameters username Enter a text string as the user nam...

Page 126: ... ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series Related Commands ip ssh server enables the secure shell SSH server on the system ip telnet source interface Set an interface s IP address as the source address in outgoing packets for Telnet sessions C Series E Series S Series Z Series Syntax ip telnet source i...

Page 127: ...tion For VLAN interface enter the keyword vlan followed by a number from 1 to 4094 Defaults The IP address on the system that is closest to the Telnet address is used in the outgoing packets Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 2 1 0 Increased number of VLANs on ExaScale to...

Page 128: ... the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For VLAN interface enter the keyword vlan followed by a number from 1 to 4094 Defaults The IP address on the system that is closest to the Telnet address is used in the outgoing packets Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 ...

Page 129: ... 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information You cannot delete a terminal connection Related Commands access class restricts the incoming connections to a particular IP address in an IP access control list ACL password specifies a password for users on terminal lines show lin...

Page 130: ...d type IDs NOTE It is advisable to shut down interfaces on a line card that you are hot swapping Example FTOS show linecard 3 Line card 11 Status not present FTOS linecard 3 E46TB 36 port GE 10 100 1000Base T with RJ45 8 port FE GE with SFP 2 port 10GE with SFP E46VB 36 port GE 10 100 1000Base T with RJ45 and PoE 8 port FE GE with SFP 2 port 10GE with SFP E48PB 48 port FE GE line card with SFP opt...

Page 131: ...rts Enable the active ports for the specified mode linerate or oversubscribed port set0 port number port number Enter the port number s used to specify the active ports on port pipe 0 Port number range 0 2 On port pipe 0 0 2 corresponds to ports 0 1 and 2 on the line card If you configure linerate mode enter one port number for port pipe 0 If you configure oversubscribed mode enter two port number...

Page 132: ...ify two ports on each pipe Example FTOS conf linecard 5 EX04PJ oversubscribed active ports port set0 1 2 port set1 0 1 FTOS conf linecard 13 EX04PH linerate active ports port set0 2 port set1 0 FTOS conf linecard 5 EX04PJ linerate active ports port set0 1 port set1 1 Updating the linecard mode or active ports will require a linecard reboot Proceed with reset of linecard confirm yes no Related Comm...

Page 133: ...s E Series Original command ping Test connectivity between the system and another device by sending echo requests and waiting for replies C Series E Series S Series Z Series S4810 Syntax ping vrf id host ip address ipv6 address count number continuous datagram size timeout source ip src ipv4 address interface tos df bit y n validate reply y n outgoing interface pattern pattern sweep min size sweep...

Page 134: ...llowed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keyword port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale E Series only For the SONET interfaces enter ...

Page 135: ...owed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale E Series only For the SONET interfaces enter the keyword sonet followed by slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter th...

Page 136: ...tion Each exclamation point indicates receipt of a reply Each period indicates the network server timed out while waiting for a reply U A destination unreachable error PDU was received Q Source quench destination too busy M Could not fragment Unknown packet type Packet lifetime exceeded Example IPv4 FTOS ping 172 31 1 255 Type Ctrl C to abort Sending 5 100 byte ICMP Echos to 172 31 1 255 timeout i...

Page 137: ...lts Disabled Command Modes EXEC Privilege Command History Version 8 1 1 2 Introduced on the E Series ExaScale E600i Version 8 1 1 0 Introduced on the E Series ExaScale E1200i Version 7 5 1 0 Introduced on the C Series E Series Original command Related Commands power on powers on a line card or standby SFM power on Turn on power to a line card or the standby extra SFM C Series E Series Syntax power...

Page 138: ...u must select nvram cfg change to reload the switch Command Modes EXEC Privilege Command History Version 9 1 0 0 Added conditional parameter Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information If there is a change in the configuration FTOS prompts you to save the new configuration...

Page 139: ...keyword power cycle after upgrading a C Series FPGA to cause the FPGA to be reprogrammed based on the contents of the FPGA PROM NOTE This option is supported on the C Series only rpm number Enter the keyword rpm followed by a number for the RPM slot number Range 0 to 1 Optional Add the keyword hard or power cycle C Series only to power cycle the RPM sfm slot number Enter the keyword sfm followed b...

Page 140: ...ed on off Parameters rpm slot number Enter the slot number For the E1200i the range is 0 13 For the E600i the range is 0 6 on off Toggles the LED on the RPM on or off Defaults OFF Command Modes EXEC Command History Version 8 2 1 0 Introduced on the E Series ExaScale Usage Information The LED setting is not saved through power cycles send Send messages to one or all terminal line users C Series E S...

Page 141: ...Add time stamps to debug and log messages This command adds either the uptime or the current time and date C Series E Series S Series Z Series Syntax service timestamps debug log datetime localtime msec show timezone uptime To disable timestamping use the no service timestamps debug log command Parameters debug OPTIONAL Enter the keyword debug to add timestamps to debug messages log OPTIONAL Enter...

Page 142: ...tion Use the show running config command to view the current options set for the service timestamps command show alarms View alarms for the route process module RPM switch fabric modules SFMs line cards and fan trays C Series E Series S Series Z Series Syntax show alarms threshold Parameters threshold OPTIONAL Enter the keyword threshold to display the temperature thresholds set for the line cards...

Page 143: ... PEM A failed or rmvd 7 hr 36 min only 8 SFMs in chassis 7 hr 35 min Major Alarms Alarm Type Duration No major alarms FTOS show cam acl vlan Display the block sizes allocated for the VLAN CAM ACL S4810 Z9000 Syntax show cam acl vlan Command Modes EXEC Command History Version 9 1 0 0 Introduced on S4810 and Z9000 show chassis View the configuration and status of modules in the system Use this comma...

Page 144: ...1 0 48 12 not present E48PF 13 not present E48PF Route Processor Modules Slot Status NxtBoot Version 0 active online 6 1 1 0 1 not present Switch Fabric State up Switch Fabric Modules Slot Status 0 active 1 active 2 active 3 active 4 active 5 active 6 active 7 active 8 active Power Entry Modules Bay Status 0 up 1 up Fan Status Tray Status Temp Volt Speed PEM0 PEM1 Fan1 Fan2 Fan3 0 up 50C 12 16V lo...

Page 145: ... console 11 20 15 47 22 CMD CLI service password encryption hostname Force10 by default from console Repeated 3 times 11 20 15 47 23 CMD CLI service timestamps log datetime by default from console 11 20 15 47 23 CMD CLI hostname Force10 by default from console 11 20 15 47 23 CMD CLI enable password 7 by default from console 11 20 15 47 23 CMD CLI username admin password 7 by default from console 1...

Page 146: ... CLI shutdown by default from console 11 20 21 17 35 CMD CLI line console 0 by default from console 11 20 21 17 36 CMD CLI exec timeout 0 by default from console 11 20 21 17 36 CMD CLI exit by default from console 11 20 21 19 25 CMD CLI show command history by default from console FTOS Related Commands clear command history clears the command history log show command tree Display the entire CLI co...

Page 147: ...1 Global configuration mode aaa authentication enable command usage 1 WORD option usage 1 default option usage 0 enable option usage 0 line option usage 0 none option usage 0 radius option usage 1 tacacs option usage 0 show console lp View the buffered boot up log of a line card C Series E Series Syntax show console lp number Parameters number Enter the line card slot number Range 0 7 for the C300...

Page 148: ...ort only Range 1 to 1568 all OPTIONAL Enter the keyword all to display traffic statistics on all the interfaces receiving traffic sorted based on the traffic cp OPTIONAL Enter the keyword cp to display traffic statistics on the specified CPU NOTE This option is supported on the E Series only linecard OPTIONAL Enter the keyword linecard followed by either all or the slot number to display traffic s...

Page 149: ...o shut off traffic statistics collection Example FTOS show cpu traffic stats Processor CP Received 100 traffic on GigabitEthernet 8 2 Total packets 100 LLC 0 SNAP 0 IP 100 ARP 0 other 0 Unicast 100 Multicast 0 Broadcast 0 Processor RP1 Received 62 traffic on GigabitEthernet 8 2 Total packets 500 LLC 0 SNAP 0 IP 500 ARP 0 other 0 Unicast 500 Multicast 0 Broadcast 0 Received 37 traffic on GigabitEth...

Page 150: ...rd voltage PEM RPM SFM Parameters all Enter the keyword all to view all components fan Enter the keyword fan to view information on the fans The output of this command is chassis dependent Refer to the Examples for the show chassis show command history and show cpu traffic stats commands for a comparison of output linecard Enter the keyword linecard to view only information on line cards linecard ...

Page 151: ... up up up 1 up 50C 12 16V low 2100 2700 RPM up up up up up 2 up 50C 12 16V low 2100 2700 RPM up up up up up 3 up 50C 12 16V low 2100 2700 RPM up up up up up 4 up 50C 16 20V med 2700 3200 RPM up up up up up 5 up 50C 12 16V low 2100 2700 RPM up up up up up Power Entry Modules Bay Status 0 absent or down 1 up Line Card Environment Status Slot Status Temp PEM0 PEM1 Voltage 0 not present 1 not present ...

Page 152: ...n stack unit unit id pem Parameters all Enter the keyword all to view all components fan Enter the keyword fan to view information on the fans The output of this command is chassis dependent stack unit unit id Enter the keyword stack unit followed by the unit id to display information on a specific stack member The range is 0 to 1 pem Enter the keyword pem to view only information on power entry m...

Page 153: ...y Status Type 0 0 up AC 0 1 absent Unit Environment Status Unit Status Temp Voltage 0 online 50C ok Management Unit Fan Status Unit Status Speed Fan1 Fan2 Fan3 Fan4 Fan5 Fan6 Serial Num Version 1 up high up up up up up up 1234 1 Example fan FTOS show environment fan Fan Status Unit TrayStatus Fan0 Fan1 Fan2 Fan3 Fan4 Fan5 0 up up up up up up up Example pem FTOS show environment pem Power Supplies ...

Page 154: ... include the Software Protocol Configured field on the E Series Version 5 3 1 0 Introduced on the E Series Usage Information The show inventory media command provides some details about installed pluggable media for example SFP and XFP Use the show interfaces command to get more details about installed pluggable media Example The display output might include a double asterisk next to the SFMs 0 CC...

Page 155: ...E 24P 0031151 7520014206 04 4 LC EF3 1GE 24P 0017291 7520014202 02 0 LC EF3 RPM 0031177 7520013808 05 0 CC E SFM 0019071 7520003706 A 1 CC E SFM 0019120 7520003706 A 1 CC E300 PWR DC TDX0524 00031 7520015400 A 0 CC E300 FAN N A N A N A standby Software Protocol Configured BFD BGP ISIS OSPF RIP OSPFV3 FTOS Example media slot FTOS show inventory media 3 Slot Port Type Media Serial Number F10Qualifie...

Page 156: ...ry media slot Parameters media slot OPTIONAL Enter the keyword media followed by the stack ID of the stack member for which you want to display pluggable media inventory NOTE This parameter is available but not supported in FTOS version 8 3 11 4 Because stacking is not supported if you use this parameter the output displays Media not present or accessible refer to the Usage Information section Def...

Page 157: ...ample Z9000 ct z9000 2 show inventory System Type Z9000 System Mode 1 0 Software Version 8 3 11 3b Unit Type Serial Number Part Number Rev Piece Part ID Ver Service Tag 0 Z9000 01 40GE AC Z8FX113100314 7520052401 E MY 08R4VK 75412 1BA 0474 A00 ABC1234 0 Z9000 PWR AC N A N A N A N A N A N A 0 Z9000 FAN Z5FX112500170 7520051702 A MY 08R4VK 75412 1BA 0474 A00 ABC1234 0 Z9000 FAN Z5FX113300293 7520051...

Page 158: ...age Information show linecard output Field Description Line card Displays the line card slot number only listed in the show linecard all command output Status Displays the line card s status Next Boot Displays whether the line card is to be brought online at the next system reload Required Type Displays the line card type configured for the slot The Required Type and Current Type must match If the...

Page 159: ...l number Part Num Displays the line card part number Vendor ID Displays an internal code which specifies the manufacturing vendor Date Code Displays the line card s manufacturing date Example E Series FTOS show linecard 11 Line card 11 Status online Next Boot online Required Type E48PF 48 port GE line card with SFP optics EF Current Type E48PF 48 port GE line card with SFP optics EF Hardware Rev B...

Page 160: ...SFP optics EF Current Type E48PF 48 port GE line card with SFP optics EF Hardware Rev Base 1 0 PP0 n a PP1 n a Num Ports 48 Up Time 11 hr 24 min FTOS Version 6 1 1 0 Jumbo Capable yes FTOS Related Commands linecard pre configures a line card in a currently empty slot of the system or a different line card type for the slot show interfaces linecard displays information on all interfaces on a specif...

Page 161: ...n A 6 5 1 4 or B 6 5 1 4 If the line card system booted the display is the current FTOS version number 6 5 1 4 Next boot Indicates if the next line card boot is a cache boot or system boot and which image is used in the boot Cache boot Displays the system image in cache boot flash partition A and B for the line card If the cache boot does not contain a valid image invalid is displayed Boot flash D...

Page 162: ...Series only Command Modes EXEC EXEC Privilege Command History Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information The output for show memory displays the memory usage of LP part sysdlp of the system The sysdlp is an aggregate task that handles all the tasks running on the C Series and E Series LP In FTOS Release 7 4 1 0 and higher the total counter size for all 3...

Page 163: ...Z Series switch S Series Z Series Syntax show memory stack unit id Parameters stack unit id OPTIONAL Enter the keyword stack unit followed by the stack unit ID of the S Series stack member to display memory information on the designated stack member The unit ID range for the S4810 is 0 to 11 Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 ...

Page 164: ...ord lp all to view CPU utilization on all active line cards lp summary OPTIONAL Enter the keyword lp summary to view a summary of the line card CPU utilization Command Modes EXEC EXEC Privilege Command History Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added the lp all option Version 6 5 1 0 The granularity of the output for rp1 and rp2 is changed The output is at the process level...

Page 165: ...sysd1 0x00000062 20 2 10000 0 00 0 00 0 00 0 sysmon 0x00000024 880 88 10000 0 00 0 00 0 00 0 sshd 0x00000022 0 0 0 0 00 0 00 0 00 0 inetd 0x00000020 2580 258 10000 0 00 0 00 0 00 0 mount_mfs 0x00000013 0 0 0 0 00 0 00 0 00 0 mount_mfs 0x00000006 80 8 10000 0 00 0 00 0 00 0 sh 0x00000005 30 3 10000 0 00 0 00 0 00 0 aiodoned 0x00000004 840 84 10000 0 00 0 00 0 00 0 ioflush 0x00000003 250 25 10000 0 ...

Page 166: ...management unit 1 99 details stack unit id summary ipc memory stack unit id Parameters management unit 1 99 details OPTIONAL Display processes running in the control processor The 1 99 variable sets the number of tasks to display in order of the highest CPU usage in the past five 5 seconds Add the keyword details to display all running processes except sysdlp Refer to Example management unit stack...

Page 167: ...uSecs 5Sec 1Min 5Min TTY Process 272 20 2 10000 0 00 0 00 0 00 0 topoDPC 271 0 0 0 0 00 0 00 0 00 0 bcmNHOP 270 0 0 0 0 00 0 00 0 00 0 bcmDISC 269 0 0 0 0 00 0 00 0 00 0 bcmATP RX 268 0 0 0 0 00 0 00 0 00 0 bcmATP TX 267 30 3 10000 0 00 0 00 0 00 0 bcmSTACK 266 380 38 10000 0 00 0 00 0 08 0 bcmRX 265 30 3 10000 0 00 0 00 0 00 0 bcmLINK 0 264 0 0 0 0 00 0 00 0 00 0 bcmXGS3AsyncTX 263 0 0 0 0 00 0 0...

Page 168: ...9 0 0 0 0 00 0 00 0 00 0 bcmXGS3AsyncTX 58 0 0 0 0 00 0 00 0 00 0 bcmTX 57 340 34 10000 0 00 0 00 0 00 0 bcmCNTR 0 55 0 0 0 0 00 0 00 0 00 0 bcmDPC 117 60 6 10000 0 00 0 00 0 00 0 frrp 28 0 0 0 0 00 0 00 0 00 0 inetd 21 450 45 10000 0 00 0 00 0 00 0 mount_mfs 18 130 13 10000 0 00 0 00 0 00 0 mount_mfs 11 0 0 0 0 00 0 00 0 00 0 syslogd 6 30 3 10000 0 00 0 00 0 00 0 sh 5 10 1 10000 0 00 0 00 0 00 0 ...

Page 169: ...t 124 KernLrnAgMv 140410880 0 0 0 0 0 117 frrp 5677056 217088 87650 0 87650 87650 116 xstp 7585792 1536000 551812 49692 518684 502120 109 span 5709824 221184 55386 0 55386 55386 108 pim 5869568 720896 12300 0 12300 12300 103 igmp 5513216 327680 18236 16564 18236 1672 100 mrtm 6905856 516096 72846 0 72846 72846 96 l2mgr 6107136 491520 254858 115948 172038 138910 92 l2pm 5607424 221184 667578 579740...

Page 170: ...PQ statistics on Route Processor 1 NOTE Not supported in the S Series rp2 OPTIONAL Enter the keyword rp2 to view the control processor s SWPQ statistics on Route Processor 2 NOTE Not supported in the S Series lp linecard number OPTIONAL Enter the keyword lp followed by the line card number to view the control processor s SWPQ statistics on the specified line card NOTE Not supported in the S Series...

Page 171: ...ime the SWP timeout mechanism resubmits the message at the head of the FIFO queue After retrying a defined number of times the SWP 2 NOMORETIMEOUT timeout message is generated In the S Series example a retry Retries value of zero indicates that the SWP mechanism reached the maximum number of retransmissions without an acknowledgement Example C Series FTOS show processes ipc flow control cp Q Stati...

Page 172: ...f msg msg Retr total Len Mark to Retr Sent Ackd 1 unknown2 unknown2 0 0 0 0 0 0 3 3 2 l2pm0 spanMgr0 0 2 0 0 2298 2298 25 25 3 fvrp0 macMgr0 0 0 0 0 0 0 25 25 4 l2pm0 fvrp0 0 2 0 0 1905 1905 25 25 5 fvrp0 l2pm0 0 0 0 0 0 25 25 6 stp0 l2pm0 0 0 0 0 0 0 25 25 7 spanMgr0 macMgr0 0 0 0 0 0 0 25 25 8 spanMgr0 ipMgr0 0 0 0 0 0 0 25 25 FTOS Example lp FTOS show processes ipc flow control lp 10 Q Statisti...

Page 173: ... 0 2 0 0 3 3 8 8 DIFFSERV0 ACL_AGENT0 0 0 0 0 0 0 100 100 output truncated show processes memory C Series and E Series View memory usage information based on processes running in the system C Series E Series Syntax show processes memory cp lp slot number lp all lp summary rp1 rp2 Parameters cp OPTIONAL Enter the keyword cp to view memory usage of the control processor lp slot number OPTIONAL Enter...

Page 174: ...Field Description Total Total system memory available MaxUsed Total maximum memory used ever history indicated with a time stamp CurrentUsed Total memory currently in use CurrentFree Total system memory available SharedUsed Total used shared memory SharedFree Total free shared memory PID Process ID Process Process Name ResSize Actual resident size of the process in memory Size Process test stack a...

Page 175: ...Mgr 9376 32 9344 9344 ev 133188 0 133188 133188 evterm 26752 0 26752 26752 evhdlr 2528 8064 2528 0 dlm 7556256 7366960 1239104 189296 dla 416 0 416 416 tsm 15136 0 15136 15136 fmg 766560 0 766560 766560 fileProc 416 0 416 416 sysAdmTsk 42028 0 42028 42028 Example rp1 FTOS show processes memory rp1 Total 954650624 MaxUsed 114135040 3 8 2006 15 1 42 CurrentUsed 114135040 CurrentFree 840515584 Shared...

Page 176: ...08 132144 0 132144 132144 100 sysd2 11657216 1679360 998834 0 998834 998834 98 sysmon 528384 94208 0 0 0 0 36 sshd 1286144 430080 0 0 0 0 34 inetd 663552 98304 0 0 0 0 32 mount_mfs 41791488 2514944 0 0 0 0 19 mount_mfs 364544 2449408 0 0 0 0 6 sh 446464 73728 0 0 0 0 0 5 aiodoned 76967936 0 0 0 0 0 4 ioflush 76967936 0 0 0 0 0 3 reaper 76967936 0 0 0 0 0 2 pagedaemon 76967936 0 0 0 0 0 1 init 1392...

Page 177: ...esident size of the process in memory Size Process test stack and data size Allocs Total dynamic memory allocated Frees Total dynamic memory freed Max Maximum dynamic memory allocated Current Current dynamic memory in use The output for the show process memory command displays the memory usage statistics running on CP part sysd of the system The sysd is an aggregate task that handles all the tasks...

Page 178: ...68 0 62168 62168 314 igmp 4960256 380928 18588 16564 18588 2024 313 mrtm 6742016 1130496 72758 0 72758 72758 308 l2mgr 5607424 552960 735214 380972 619266 354242 301 l2pm 5001216 167936 1429522 1176044 286606 253478 298 arpm 4628480 217088 71092 33128 71092 37964 294 ospf 5468160 503808 724204 662560 78208 61644 288 dsm 6778880 1159168 39490 16564 39490 22926 287 rtm 5713920 602112 442280 198768 3...

Page 179: ...w the current RPM status C Series E Series Syntax show rpm number brief all Parameters number OPTIONAL Enter either zero 0 or 1 for the RPM all OPTIONAL Enter the keyword all to view a table with information on all present RPMs brief OPTIONAL Enter the keyword brief to view an abbreviated list of RPM information Command Modes EXEC EXEC Privilege Command History Version 8 1 1 0 Introduced on the E ...

Page 180: ...PM resetting peer force failover redundancy force failover command FTOS Version Displays the operating software version Jumbo Capable Displays a Yes or No indicating if the RPM is capable of sending and receiving Jumbo frames This field does not indicate if the chassis is in Jumbo mode for that determination use the show chassis brief command CP Boot Flash Displays the two possible Boot Flash vers...

Page 181: ...igin 01 USA Example E Series FTOS show RPM 0 RPM card 0 Status active Next Boot online Card Type RPM Route Processor Module LC EF RPM Hardware Rev 2 0 Num Ports 1 Up Time 36 min 51 sec Last Restart reset FTOS Version 6 2 1 0 Jumbo Capable yes CP Boot Flash A 2 4 0 6 B 2 4 0 7 booted RP1 Boot Flash A 2 4 0 7 booted B 2 4 0 5 RP2 Boot Flash A 2 4 0 7 booted B 2 4 0 5 CP Mem Size 536870912 bytes RP1 ...

Page 182: ...nterface enter the keyword port channel followed by a number The C Series and S Series range is 1 to 128 The E Series range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10G Ethernet interface enter the keyword TenGigabitEthernet For a 40 Gigabit Ethernet interface enter the keyword fortyGigE C Series options also include For a Fast Ethernet interface enter the keyword fastethernet For...

Page 183: ...00 0 SNMP 0 0x00000000 0x00000000 0x800302c0 0x00000002 30 EVTTERM 0 0x00000000 0x00000000 0x800002c0 0x00000000 29 MRTM 0 0x00000000 0x00000200 0x81f7103f 0x00000000 38 DSM 0 0x00000000 0x00000000 0x80771003 0x00000000 32 LACP 0 0x00000000 0x00000000 0x8000383f 0x00000000 35 DHCP 0 0x00000000 0x00000000 0x800000c2 0x0000c000 37 V6RAD 0 0x00000433 0x00030000 0x00000000 0x00000000 0 Unidentified Cl...

Page 184: ...S Series Z Series Syntax show system brief stack unit unit id stack ports status topology Parameters brief OPTIONAL Enter the keyword brief to view an abbreviated list of system information stack unit unit id OPTIONAL Enter the keywords stack unit followed by the stack member ID for information on that stack member The unit ID range for the S4810 is 0 11 For all other S Series the unit ID range is...

Page 185: ...y online S50V S50V 7 7 1 0 52 2 Mgmt online S50V S50V 7 7 1 0 52 3 Member not present 4 Member not present 5 Member not present 6 Member not present 7 Member not present Module Info Unit Module No Status Module Type Ports 1 0 online S50 01 10GE 2P 2 1 1 online S50 01 24G 2S 1 2 0 online S50 01 10GE 2P 2 2 1 online S50 01 24G 2S 1 Power Supplies Unit Bay Status Type 1 0 up AC 1 1 absent Example Z90...

Page 186: ...it 0 Unit 0 Unit Type Management Unit Status online Next Boot online Required Type S4810 48 port E FE GE SC Current Type S4810 48 port E FE GE SC Master priority 0 Hardware Rev 2 0 Num Ports 52 Up Time 2 hr 16 min FTOS Version 1 2 0 205 Jumbo Capable yes POE Capable no Boot Flash 1 0 0 2 Memory Size 2147483648 bytes Temperature 50C Voltage ok Serial Number 00AS101900013 Part Number 7520044101 Rev ...

Page 187: ...mber to view information relating to a specific linecard page OPTIONAL Enter the keyword page to view 24 lines of text at a time Press the SPACE BAR to view the next 24 lines Press ENTER to view the next line of text display except find grep no more If you use the pipe command enter one of these keywords to filter command output save Enter the keyword save following the pipe to save the command ou...

Page 188: ... redundancy show rpm show running conf show sfm show version Example C Series FTOS show tech support page show version Dell Force10 Networks Real Time Operating System Software Dell Force10 Operating System Version 1 0 Dell Force10 Application Software Version FTOS 7 5 1 0 Copyright c 1999 2007 by Force10 Networks Inc Build Time Tue Sep 12 15 39 17 IST 2006 Build Path sites maa work sw C SERIES SW...

Page 189: ...ystem flash filename max 20 chars slot0 Save to local file system slot0 filename max 20 chars FTOS show tech support linecard 3 save flash LauraSave Start saving show command report FTOS dir Directory of flash 1 drwx 32768 Jan 01 1980 00 00 00 00 00 2 drwx 512 Aug 22 2008 14 21 13 00 00 3 drwx 8192 Mar 30 1919 10 31 04 00 00 TRACE_LOG_DIR 4 drwx 8192 Mar 30 1919 10 31 04 00 00 CRASH_LOG_DIR 5 drwx...

Page 190: ... Parameters stack unit OPTIONAL Enter the keywords stack unit to view CPU memory usage for the stack member designated by unit id The unit ID range for the S4810 is 0 11 For all other S Series the range is 0 7 page OPTIONAL Enter the keyword page to view 24 lines of text at a time Press the SPACE BAR to view the next 24 lines Press the ENTER key to view the next line of text When using the pipe co...

Page 191: ...xample S Series FTOS show tech support page Page through output stack unit Unit Number Pipe through a command cr FTOS show tech support stack unit 1 Pipe through a command cr FTOS show tech support stack unit 1 except Show only text that does not match a pattern find Search for the first occurrence of a pattern grep Show only text that matches a pattern no more Don t paginate output save Save outp...

Page 192: ...abitEthernet IEEE 802 3 interface s show clock 12 03 01 695 UTC Wed Nov 21 2007 show running config Current Configuration Version E_MAIN4 7 5 414 Last configuration change at Wed Nov 21 11 42 19 2007 by default service timestamps log datetime hostname FTOS enable password 7 xxxxxxxx username admin password 7 xxxxxxxx enable restricted 7 xxxxxxxx Related Commands show version displays the FTOS vers...

Page 193: ...eases ssh peer stack unit Open an SSH connection to the peer RPM S Series Z Series Syntax ssh peer stack unit l username Parameters l username OPTIONAL Enter the keyword l followed by your user name The default is the user name associated with the terminal Defaults Not configured Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 11 1 Introduced ...

Page 194: ...nformation For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Loopback interface enter the keyword loopback followed by a number from zero 0 to 16383 For the Null interface enter the keyword null followed by 0 For a Port Channel interface enter the keyword port channel followed by a number For the C Series and S Series the range is 1 to...

Page 195: ...ly telnet peer stack unit Open a Telnet connection to the peer stack unit S Series Z Series Syntax telnet peer stack unit Defaults Not configured Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 11 1 Introduced on the S Series terminal length Configure the number of lines displayed on the terminal screen C Series E Series S Series Z Series Synt...

Page 196: ...E Series Syntax terminal xml To exit XML mode enter terminal no xml Defaults Disabled Command Modes EXEC EXEC Privilege Command History Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the C Series Version 6 5 1 0 Introduced for the E Series Usage Information This command enables the XML input mode where you can either cut and paste XML requests or enter the XML re...

Page 197: ...34 Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the E Series ExaScale with IPv6 Version 8 1 1 0 Introduced on the E Series ExaScale IPv4 only Version 7 9 1 0 Introduced VRF Version 7 6 1 0 Added support for the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added support for IPv6 address on the E Serie...

Page 198: ...1 000 ms 3 fw sjc 01 force10networks com 10 11 127 254 000 000 ms 000 000 ms 000 000 ms 4 www force10networks com 10 11 84 18 000 000 ms 000 000 ms 000 000 ms FTOS Example IPv6 FTOS traceroute 100 1 Type Ctrl C to abort Tracing the route to 100 1 64 hops max 60 byte packets Hops Hostname Probe1 Probe2 Probe3 1 100 1 000 000 ms 000 000 ms 000 000 ms FTOS traceroute 3ffe 501 ffff 100 201 e8ff fe00 4...

Page 199: ...g Upload trace log files from the three CPUs cp rp1 and rp2 C Series E Series Syntax upload trace log cp cmd history hw trace sw trace rp1 cmd history hw trace sw trace rp2 cmd history hw trace sw trace Parameters cp rp1 rp2 Enter the keyword cp rp1 rp2 to upload the trace log from that CPU cmd history OPTIONAL Enter the keyword cmd history to upload the CPU s command history hw trace OPTIONAL Ent...

Page 200: ...interface in a dotted decimal format A B C D ipv6 address Enter an IPv6 address of the active management interface in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros Defaults none Command Modes CONFIGURATION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 5 1 0 Introduced on the C Series E...

Page 201: ...the show running config command Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information The write memory command saves the running configuration to the file labeled startup configuration W...

Page 202: ...202 ...

Page 203: ...troduced on the S4810 Version 8 3 1 0 Introduced on the S Series ccm transmit interval Configure the transmit interval mandatory The interval specified applies to all maintenance endpoints MEPs in the domain S Series S4810 Syntax ccm transmit interval seconds Parameters seconds Enter a transmit interval The range is 1 10 60 and 600 Defaults 10 seconds Command Modes ECFM DOMAIN Command History Vers...

Page 204: ...he amount of time that data from a missing MEP is kept in the continuity check database S Series S4810 Syntax database hold time minutes Parameters minutes Enter a hold time The range is 100 to 65535 minutes Defaults 100 minutes Command Modes ECFM DOMAIN Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series disable Disable Ethernet CFM without stopping ...

Page 205: ...nance domain level The range is 0 to 7 Defaults none Command Modes ETHERNET CFM Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series ethernet cfm Spawn the CFM process No CFM configuration is allowed until the CFM process is spawned S Series S4810 Syntax ethernet cfm Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 7 0 Introduc...

Page 206: ...he keyword domain and then enter the domain name or domain level ma name name Enter the keyword ma name and then enter the name of the maintenance association mepid mep id Enter an MEP ID The range is 1 to 8191 Defaults none Command Modes INTERFACE Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series ethernet cfm mip Create a maintenance intermediate p...

Page 207: ...lts none Command Modes ECFM DOMAIN Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series mep cross check enable Enable cross checking S Series S4810 Syntax mep cross check enable port vlan id Parameters port Down service with no VLAN association vlan id Enter the VLAN to apply the cross check Defaults none Command Modes ECFM DOMAIN Command History Versi...

Page 208: ...back message S Series S4810 Syntax ping ethernet domain name l level ma name ma name remote dest mep id mac addr mac address source src mep id port interface Parameters name level Enter the domain name or level ma name ma name Enter the keyword ma name and then enter the maintenance association name dest mep id Enter the MEP ID that is the target of the ping mac addr mac address Enter the keyword ...

Page 209: ...efaults none Command Modes EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series Example FTOS show ethernet cfm domain Domain Name customer Level 7 Total Service 1 Services MA Name VLAN CC Int X CHK Status My_MA 200 10s enabled Domain Name My_Domain Level 6 Total Service 1 Services MA Name VLAN CC Int X CHK Status Your_MA 100 10s enabled ...

Page 210: ...P 00 01 e8 0b c6 36 show ethernet cfm maintenance points remote Display the MEP Database S Series S4810 Syntax show ethernet cfm maintenance points remote detail active domain level name expired waiting Parameters active Enter the keyword active to display only the MEPs in active state domain name level Enter the keyword domain and then enter the domain name or domain level expired Enter the keywo...

Page 211: ... none Command Modes EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series show ethernet cfm statistics Display MEP statistics S Series S4810 Syntax show ethernet cfm statistics domain name level vlan id vlan id mpid mpid Parameters domain Enter the keyword domain to display statistics for a particular domain name level Enter the domain na...

Page 212: ...810 Syntax show ethernet cfm port statistics interface type slot port Parameters interface type Enter the keyword interface and then enter the interface type slot port Enter the slot and port numbers for the port Defaults none Command Modes EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series Example FTOS show ethernet cfm port statistic...

Page 213: ...ion 8 3 1 0 Introduced on the S Series Example FTOS show ethernet cfm traceroute cache Traceroute to 00 01 e8 52 4a f8 on Domain Customer2 Level 7 MA name Test2 with VLAN 2 Hops Host IngressMAC Ingr Action Relay Action Next Host Egress MAC Egress Action FWD Status 4 00 00 00 01 e8 53 4a f8 00 01 e8 52 4a f8 IngOK RlyHit 00 00 00 01 e8 52 4a f8 Terminal MEP service Create maintenance association S ...

Page 214: ... traceroute cache hold time minutes Parameters minutes Enter a hold time The range is 10 to 65535 minutes Defaults 100 minutes Command Modes ETHERNET CFM Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the S Series traceroute cache size Set the size of the link trace cache S Series S4810 Syntax traceroute cache size entries Parameters entries Enter the number ...

Page 215: ... address Parameters domain name level Enter the keyword domain and then enter the domain name or level ma name ma name Enter the keyword ma name and then enter the maintenance association name mepid mep id Enter the MEP ID that is the trace target mac addr mac address Enter the MAC address of the trace target Defaults none Command Modes EXEC Privilege Command History Version 8 3 7 0 Introduced on ...

Page 216: ...216 ...

Page 217: ...802 1X authorization the port configures in its access VLAN after successful authentication If you enable 802 1X authorization but the VLAN information from the RADIUS server is not valid the port returns to the Unauthorized state and remains in the configured access VLAN This safeguard prevents ports from appearing unexpectedly in an inappropriate VLAN due to a configuration error Configuration e...

Page 218: ...he S4810 Version 8 4 1 0 Introduced on the C Series and S Series dot1x auth fail vlan Configure an authentication failure VLAN for users and devices that fail 802 1X authentication C Series E Series S Series S4810 Syntax dot1x auth fail vlan vlan id max attempts number To delete the authentication failure VLAN use the no dot1x auth fail vlan vlan id max attempts number command Parameters vlan id E...

Page 219: ...t the next reauthentication interval dot1x reauthentication Related Commands dot1x port control dot1x guest vlan show dot1x interface dot1x auth server Configure the authentication server to RADIUS C Series E Series S Series S4810 Syntax dot1x auth server radius Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Se...

Page 220: ...y authentication fails the host is placed in the guest VLAN if configured To disable MAB only authentication on a port enter the no dot1x auth type mab only command Related Commands dot1x mac auth bypass dot1x authentication Configuration Enable dot1x globally Enable dot1x both globally and at the interface level C Series E Series TeraScale S Series S4810 Syntax dot1x authentication To disable dot...

Page 221: ... S4810 Syntax dot1x guest vlan vlan id To disable the guest VLAN use the no dot1x guest vlan vlan id command Parameters vlan id Enter the VLAN Identifier The range is 1 to 4094 Defaults Not configured Command Modes CONFIGURATION conf if interface slot port Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series E Series and S Series Usage Information 1X ...

Page 222: ...ntax dot1x host mode single host multi host multi auth Parameters single host Enable single host authentication multi host Enable multi host authentication multi auth Enable multi supplicant authentication Defaults single host Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 0 Added the multi auth option on the C Series and S Series Version 8 3 2 0 Add...

Page 223: ...he C Series and S Series Related Commands dot1x auth type mab only dot1x max eap req Configure the maximum number of times an extensive authentication protocol EAP request is transmitted before the session times out C Series E Series S Series S4810 Syntax dot1x max eap req number To return to the default use the no dot1x max eap req command Parameters number Enter the number of times an EAP reques...

Page 224: ...ACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 0 Introduced on the C Series and S Series Related Commands dot1x host mode dot1x port control Enable port control on an interface C Series E Series S Series S4810 Syntax dot1x port control force authorized auto force unauthorized Parameters force authorized Enter the keywords force authorized to forcibly authorize a port au...

Page 225: ...ts 60 seconds Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series dot1x reauthentication Enable periodic reauthentication of the client C Series E Series S Series S4810 Syntax dot1x reauthentication interval seconds To disable periodic reauthentication use the no dot1x re...

Page 226: ...thentications The range is 1 to 10 The default is 2 Defaults 2 Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series dot1x server timeout Configure the amount of time after which exchanges with the server time out C Series E Series S Series S4810 Syntax dot1x server timeout...

Page 227: ... timeout 30 seconds radius server retransmit 3 seconds and radius server timeout 5 seconds For example FTOS conf radius server host 10 11 197 105 timeout 6 FTOS conf radius server host 10 11 197 105 retransmit 4 FTOS conf interface gigabitethernet 2 23 FTOS conf if gi 2 23 dot1x server timeout 40 dot1x supplicant timeout Configure the amount of time after which exchanges with the supplicant time o...

Page 228: ...dot1x cos mapping interface Display the CoS priority mapping table the RADIUS server provides and applied to authenticated supplicants on an 802 1X enabled C Series S Series S4810 Syntax show dot1x cos mapping interface interface mac address mac address Parameters interface Enter one of the following keywords and slot port or number information For a Gigabit Ethernet interface enter the keyword Gi...

Page 229: ...s that are in Single Hot Multi Host and Multi Supplicant authentication modes Example FTOS show dot1x cos mapping interface gigabitethernet 2 21 802 1p CoS re map table on Gi 2 21 Dot1p Remapped Dot1p 0 7 1 6 2 5 3 4 4 3 5 2 6 1 7 0 FTOS show dot1x cos mapping int g 2 21 mac address 00 00 01 00 07 00 802 1p CoS re map table on Gi 2 21 802 1p CoS re map table for Supplicant 00 00 01 00 07 00 Dot1 R...

Page 230: ...ries and S Series only Enter a supplicant s MAC address using the mac address option to display information only on the 802 1X enabled port to which the supplicant is connected If you enable 802 1X multi supplicant authentication on a port additional 802 1X configuration details Port Authentication status Untagged VLAN ID Authentication PAE state and Backend state are displayed for each supplicant...

Page 231: ...licants 128 Port status and State info for Supplicant 00 00 01 00 07 00 Port Auth Status AUTHORIZED MAC AUTH BYPASS Untagged VLAN id 4094 Auth PAE State Authenticated Backend State Idle FTOS Example Interface FTOS show dot1x interface g 0 21 802 1x information on Gi 0 21 Dot1x Status Enable Port Control AUTO Re Authentication Disable Guest VLAN Enable Guest VLAN id 100 Auth Fail VLAN Disable Auth ...

Page 232: ...t 00 00 00 00 00 11 192 802 1X www dell com s u p p o r t d e l l com Port Auth Status AUTHORIZED Untagged VLAN id 300 Auth PAE State Authenticated Backend State Idle Port status and State info for Supplicant 00 00 00 00 00 15 Port Auth Status AUTHORIZED GUEST VLAN Untagged VLAN id 100 Auth PAE State Authenticated Backend State Idle 232 ...

Page 233: ...mands that use the Trace function refer to the Trace List Commands section in the Security chapter NOTE For IPv6 ACL commands refer to IPv6 Access Control Lists IPv6 ACLs Commands Common to all ACL Types The following commands are available within each ACL mode and do not have mode specific options Some commands in this chapter may use similar names but require different options to support the dif...

Page 234: ...f the remark command twice within CONFIGURATION STANDARD ACCESS LIST mode The same sequence number was used for the remark and for an associated ACL rule The remark precedes the rule in the running config because it is assumed that the remark is for the rule with the same sequence number or the group of rules that follow the remark Example FTOS config std nacl remark 10 Deny rest of the traffic FT...

Page 235: ...ended and do not have mode specific options When an ACL is created without a rule and then is applied to an interface ACL behavior reflects an implicit permit C Series and S Series non S4810 platforms support Ingress IP ACLs only The S4810 and Z Series support both Ingress and Egress IP ACLs NOTE Also refer to the Commands Common to all ACL Types section access class Apply a standard ACL to a term...

Page 236: ...story Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Increase the name string to accept up to 140 characters Prior to 7 8 1 0 names were up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series ip access group Assign an IP access list IP...

Page 237: ...o accept up to 140 characters Prior to 7 8 1 0 names were up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information You can assign one ACL standard or extended ACL to an interface NOTE This command supports Loopback interfaces EE3 and EF series route processor modules RPMs This com...

Page 238: ...on For a Port Channel interface enter the keyword port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port in...

Page 239: ...e ACL behavior reflects an implicit permit The C Series and S Series platforms except the S4810 support Ingress IP ACLs only The S4810 and Z9000 support both Ingress and Egress IP ACLs NOTE Also refer to the Commands Common to all ACL Types and Common IP ACL Commands sections deny Configure a filter to drop packets with a certain IP address C Series E Series S Series Z Series S4810 Syntax deny sou...

Page 240: ...OPTIONAL Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface NOTE For more information refer to the Flow based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide fragments Enter the keyword fragments to use ACLs to control packet fragments Defau...

Page 241: ...standard ACL permit configures a permit filter ip access list standard Create a standard IP access list IP ACL to filter based on IP address C Series E Series S Series Z Series S4810 Syntax ip access list standard access list name To delete an access list use the no ip access list standard access list name command Parameters access list name Enter a string up to 140 characters long as the ACL name...

Page 242: ...u know the filter s sequence number Use the no permit source mask any host ip address command Parameters source Enter the IP address in dotted decimal format of the network from which the packet was sent mask OPTIONAL Enter a network mask in prefix format x or A B C D The mask when specified in A B C D format may be either contiguous or non contiguous any Enter the keyword any to specify that all ...

Page 243: ...ries Version 7 4 1 0 Added support for the non contiguous mask and added the monitor option Version 6 5 10 Expanded to include the optional QoS order priority for the ACL entry Usage Information The order option is relevant in the context of the Policy QoS feature only For more information refer to the Quality of Service chapter of the FTOS Configuration Guide When you use the log option the CP pr...

Page 244: ...r The range is 1 to 4294967290 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the E Series ExaScale IPv6 Version 8 1 1 0 Introduced on the E Series ExaScale IPv4 Version 7 8 1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names were up to 16 characters long Version 7 6 1 0 Introduc...

Page 245: ...e E Series ExaScale Version 7 8 1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names were up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Usage Information When you have exhausted all the sequence numbers this feature permits re assigning a new sequence number to...

Page 246: ... the keyword byte to count bytes the filter processes log OPTIONAL E Series only Enter the keyword log to enter ACL matches in the log dscp OPTIONAL Enter the keyword dcsp to match to the IP DCSCP values order OPTIONAL Enter the keyword order to specify the QoS order for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a higher prio...

Page 247: ...sequence number If sequence number is not configured the rules with the same order value are ordered according to their configuration order If sequence number is configured the sequence number is used as a tie breaker for rules with the same order When you use the log option the CP processor logs details about the packets that match Depending on how many packets match the log entry and at what rat...

Page 248: ...in the IP protocol header source Enter the IP address of the network or host from which the packets were sent mask Enter a network mask in prefix format x or A B C D The mask when specified in A B C D format may be either contiguous or noncontiguous any Enter the keyword any to specify that all routes are subject to the filter host ip address Enter the keyword host and then enter the IP address to...

Page 249: ...dded support for the noncontiguous mask and added the monitor option Version 6 5 1 0 Expanded to include the optional QoS order priority for the ACL entry Usage Information The order option is relevant in the context of the Policy QoS feature only For more information refer to the Quality of Service chapter of the FTOS Configuration Guide When you use the log option the CP processor logs detail th...

Page 250: ...ies that match exactly any Enter the keyword any to match and drop any ARP traffic on the interface vlan vlan id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN The range is 1 to 4094 and 1 to 2094 for ExaScale you can use IDs 1 to 4094 To filter all VLAN traffic specify VLAN 1 ip address Enter an IP address in dotted decimal format A B C D as th...

Page 251: ... Port Monitoring When you use the log option the CP processor logs details the packets that match Depending on how many packets match the log entry and at what rate the CP may become busy as it has to log these packets details You cannot include IP TCP or UDP Layer 3 filters in an ACL configured with ARP or Ether type Layer 2 filters Apply Layer 2 ACLs ARP and Ether type to Layer 2 interfaces only...

Page 252: ...f ff ff ff ff ff ff allows entries that do not match and a mask of 00 00 00 00 00 00 only allows entries that match exactly count OPTIONAL Enter the keyword count to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to have the information kept in an ACL log file order OPTIONAL Enter th...

Page 253: ...ct value Configure packet counters with logging instead deny icmp Configure a filter to drop all or specific internet control message protocol ICMP messages E Series Z Series S4810 Syntax deny icmp source mask any host ip address destination mask any host ip address dscp message type count byte log order monitor fragments To remove this filter you have two choices Use the no seq sequence number co...

Page 254: ...f the FTOS Configuration Guide fragments Enter the keyword fragments to use ACLs to control packet fragments Defaults Not configured Command Modes CONFIGURATION EXTENDED ACCESS LIST Command History Version 8 3 1 0 Added the keyword dscp Version 8 2 1 0 Allows ACL control of fragmented packets for IP Layer 3 ACLs Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Added support for ...

Page 255: ...ost redirect for TOS host tos unreachable Host unreachable for TOS host unknown Host unknown host unreachable Host unreachable information reply Information replies information request Information requests mask reply Mask replies mask request Mask requests mobile redirect Mobile host redirect net redirect Network redirect net tos redirect Network redirect for TOS net tos unreachable Network unreac...

Page 256: ...eroute Traceroute ttl exceeded TTL exceeded unreachable All unreachables deny tcp Configure a filter that drops transmission control protocol TCP packets meeting the filter criteria C Series E Series S Series Z Series Syntax deny tcp source mask any host ip address bit operator port port destination mask any host ip address dscp bit operator port port count byte log order monitor fragments To remo...

Page 257: ...rator OPTIONAL Enter one of the following logical operand eq equal to neq not equal to gt greater than lt less than range inclusive range of ports you must specify two ports for the port command port port Enter the application layer port number Enter two port numbers if using the range logical operand The range is 0 to 65535 The following list includes some common TCP port numbers 23 Telnet 20 and...

Page 258: ...eries ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added support for non contiguous mask and added the monitor option Deprecated the keyword established Version 6 5 1 0 Expanded to include the optional QoS order priority for the ACL entry Usage Information The order option is relevant in the context of the Policy QoS feature only Fo...

Page 259: ...0000000 0 1023 1024 Total Ports 1024 Related Commands deny assigns a filter to deny IP traffic deny udp assigns a filter to deny UDP traffic deny udp Configure a filter to drop user datagram protocol UDP packets meeting the filter criteria C Series E Series S Series Z Series Syntax deny udp source mask any host ip address operator port port destination mask any host ip address dscp operator port p...

Page 260: ...e OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to have the information kept in an ACL log file Supported on Jumbo enabled line cards only order OPTIONAL Enter the keyword order to specify the QoS priority for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a...

Page 261: ...s and bytes when you enter the count byte options only bytes are incremented NOTE When ACL logging and byte counters are configured simultaneously byte counters may display an incorrect value Configure packet counters with logging instead Most ACL rules require one entry in the CAM However rules with TCP and UDP port operators for example gt lt or range may require more than one entry The range of...

Page 262: ...ory Version 8 3 11 1 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names were up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usa...

Page 263: ...e network from which the packet was sent mask OPTIONAL Enter a network mask in prefix format x or A B C D The mask when specified in A B C D format may be either contiguous or non contiguous any Enter the keyword any to specify that all routes are subject to the filter host ip address Enter the keyword host and then enter the IP address to specify a host IP address or hostname destination Enter th...

Page 264: ... and added the monitor option Version 6 5 10 Expanded to include the optional QoS order priority for the ACL entry Usage Information The order option is relevant in the context of the Policy QoS feature only For more information refer to the Quality of Service chapter of the FTOS Configuration Guide When you use the log option the CP processor logs details about the packets that match Depending on...

Page 265: ...0 00 00 only allows entries that match exactly any Enter the keyword any to match and drop specific Ethernet traffic on the interface vlan vlan id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN The range is 1 to 4094 and 1 to 2094 for ExaScale you can use IDs 1 to 4094 To filter all VLAN traffic specify VLAN 1 ip address Enter an IP address in d...

Page 266: ...ssor logs details about the packets that match Depending on how many packets match the log entry and at what rate the CP may become busy as it has to log these packets details The monitor option is relevant in the context of flow based monitoring only For more information refer to Port Monitoring You cannot include IP TCP or UDP filters in an ACL configured with ARP filters NOTE When ACL logging a...

Page 267: ...y which bits in the MAC address must match The MAC ACL supports an inverse mask therefore a mask of ff ff ff ff ff ff allows entries that do not match and a mask of 00 00 00 00 00 00 only allows entries that match exactly count OPTIONAL Enter the keyword count to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series ...

Page 268: ...monitoring only For more information refer to Port Monitoring You cannot include IP TCP or UDP filters in an ACL configured with ARP filters permit icmp Configure a filter to allow all or specific ICMP messages E Series Syntax permit icmp source mask any host ip address destination mask any host ip address dscp message type count byte log order monitor fragments To remove this filter you have two ...

Page 269: ... to the monitored interface NOTE For more information refer to the Flow based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide fragments Enter the keyword fragments to use ACLs to control packet fragments Defaults Not configured Command Modes CONFIGURATION STANDARD ACCESS LIST Command History Version 8 3 1 0 Added the keyword dscp Version 8 2 1 0 Allows ACL control...

Page 270: ...ny host ip address command Parameters source Enter the IP address of the network or host from which the packets were sent mask Enter a network mask in prefix format x or A B C D The mask when specified in A B C D format may be either contiguous or non contiguous any Enter the keyword any to specify that all routes are subject to the filter host ip address Enter the keyword host and then enter the ...

Page 271: ... file order OPTIONAL Enter the keyword order to specify the QoS priority for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a higher priority If you do not use the keyword order the ACLs have the lowest order by default 255 monitor OPTIONAL Enter the keyword monitor when the rule is describing the traffic that you want to monitor ...

Page 272: ...w based monitoring only For more information refer to Port Monitoring Most ACL rules require one entry in the CAM However rules with TCP and UDP port operators for example gt lt or range may require more than one entry The range of ports is configured in the CAM based on bit mask boundaries the space required depends on exactly what ports are included in the range Example An ACL rule with a TCP po...

Page 273: ...t may be either contiguous or non contiguous any Enter the keyword any to specify that all routes are subject to the filter host ip address Enter the keyword host and then enter the IP address to specify a host IP address dscp Enter the keyword dscp to deny a packet based on the DSCP value The range is 0 to 63 operator OPTIONAL Enter one of the following logical operand eq equal to neq not equal t...

Page 274: ... Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added support for non contiguous mask and added the monitor option Version 6 5 10 Expanded to include the optional QoS order priority for the ACL entry Usage Information The order option is relevant in the context of the Policy QoS feature only For more information refer to the Qu...

Page 275: ...ntry in the CAM Rule Data Mask From To Covered 1 0000000000000000 1111110000000000 0 1023 1024 Total Ports 1024 Related Commands ip access list extended creates an extended ACL permit assigns a permit filter for IP packets permit tcp assigns a permit filter for TCP packets resequence access list Re assign sequence numbers to entries of an existing access list C Series E Series S Series Z Series Sy...

Page 276: ...s to entries of an existing prefix list C Series E Series S Series Z Series Syntax resequence prefix list ipv4 prefix list name StartingSeqNum Step to increment Parameters prefix list name Enter the name of the configured prefix list up to 140 characters long StartingSeqNum Enter the starting sequence number to resequence The range is 0 to 65535 Step to Increment Enter the step to increment the se...

Page 277: ...o forward all traffic meeting the filter criteria destination mac address mac address mask Enter a MAC address and mask in the nn nn nn nn nn format For the MAC address mask specify which bits in the MAC address must match The MAC ACL supports an inverse mask therefore a mask of ff ff ff ff ff ff allows entries that do not match and a mask of 00 00 00 00 00 00 only allows entries that match exactl...

Page 278: ...ntry Usage Information The monitor option is relevant in the context of flow based monitoring only For more information refer to Port Monitoring The order option is relevant in the context of the Policy QoS feature only The following applies The seq sequence number command is applicable only in an ACL group The order option works across ACL groups that have been applied on an interface via the QoS...

Page 279: ...ddress must match The MAC ACL supports an inverse mask therefore a mask of ff ff ff ff ff ff allows entries that do not match and a mask of 00 00 00 00 00 00 only allows entries that match exactly any Enter the keyword any to match and drop specific Ethernet traffic on the interface vlan vlan id Enter the keyword vlan and then enter the VLAN ID to filter traffic associated with a specific VLAN The...

Page 280: ...evant in the context of flow based monitoring only For more information refer to Port Monitoring The order option is relevant in the context of the Policy QoS feature only The following applies The seq sequence number command is applicable only in an ACL group The order option works across ACL groups that have been applied on an interface via the QoS policy framework The order option takes precede...

Page 281: ...mp Enter the keyword icmp to configure an ICMP access list filter ip Enter the keyword ip to configure a generic IP access list The keyword ip specifies that the access list permits all IP protocols tcp Enter the keyword tcp to configure a TCP access list filter udp Enter the keyword udp to configure a UDP access list filter source Enter a IP address in dotted decimal format of the network from wh...

Page 282: ...ne cards only dscp OPTIONAL Enter the keyword dcsp to match to the IP DCSCP values order OPTIONAL Enter the keyword order to specify the QoS order for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a higher priority If you do not use the keyword order the ACLs have the lowest order by default 255 monitor OPTIONAL Enter the keyword...

Page 283: ...e same order value are ordered according to their configuration order If sequence number is configured the sequence number is used as a tie breaker for rules with the same order When you use the log option the CP processor logs details about the packets that match Depending on how many packets match the log entry and at what rate the CP may become busy as it has to log these packets details If you...

Page 284: ...rface C Series E Series S Series Z Series Syntax mac access group access list name in vlan vlan range out To delete a MAC access group use the no mac access group mac list name command Parameters access list name Enter the name of a configured MAC access list up to 140 characters vlan vlan range OPTIONAL Enter the keyword vlan and then enter a range of VLANs The range is 1 to 4094 and 1 to 2094 fo...

Page 285: ... interface in out Parameters access list name Enter the name of a configured MAC ACL up to 140 characters interface interface Enter the keyword interface followed by the one of the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet and then enter the slot port information For a Port Channel interface enter the keyword port ch...

Page 286: ... S Series Range is 1 to 128 The E Series range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet and then enter the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet and then enter the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE and then enter the slot port informa...

Page 287: ... host 00 00 00 00 00 31 host 00 00 00 00 00 39 count 0 packets seq 20 deny host 00 00 00 00 00 41 host 00 00 00 00 00 49 count 0 packets seq 25 permit any any count 0 packets FTOS Standard MAC ACL Commands When you create an access control list without any rule and then apply it to an interface the ACL behavior reflects implicit permit These commands configure standard MAC ACLs The C Series and S ...

Page 288: ...erface For more information refer to the Flow based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide Defaults Not enabled Command Modes CONFIGURATION MAC ACCESS LIST STANDARD Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Seri...

Page 289: ...Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information FTOS supports one ingress and one egress MAC ACL per interface The number of entries allowed per ACL is hardware dependent For detailed spec...

Page 290: ... filter allows only MAC addresses that match count OPTIONAL Enter the keyword count to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to log the packets monitor OPTIONAL Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which yo...

Page 291: ...er between 0 to 65535 deny Enter the keyword deny to configure a filter to drop packets meeting this condition permit Enter the keyword permit to configure a filter to forward packets meeting this criteria any Enter the keyword any to filter all packets mac source address Enter a MAC address in nn nn nn nn nn nn format mac source address mask OPTIONAL Specify which bits in the MAC address must mat...

Page 292: ...Commands deny configures a filter to drop packets permit configures a filter to forward packets Extended MAC ACL Commands When an access list is created without any rule and then applied to an interface ACL behavior reflects implicit permit The following commands configure Extended MAC ACLs The C Series and S Series platforms support Ingress MAC ACLs only The S4810 and Z9000 support both Ingress a...

Page 293: ...ff allows entries that do not match and a mask of 00 00 00 00 00 00 only allows entries that match exactly ethertype operator OPTIONAL To filter based on protocol type enter one of the following Ethertypes ev2 is the Ethernet II frame format llc is the IEEE 802 3 frame format snap is the IEEE 802 3 SNAP frame format count OPTIONAL Enter the keyword count to count packets processed by the filter by...

Page 294: ... Series Z Series S4810 Syntax mac access list extended access list name cpu qos To delete a MAC access list use the no mac access list extended access list name command Parameters access list name Enter a text string as the MAC access list name up to 140 characters cpu qos Enter the keywords cpu qos to assign this ACL to control plane traffic only CoPP Defaults none Command Modes CONFIGURATION Com...

Page 295: ...dd count bytes 7751519 packets 797843521 bytes Related Commands mac access list standard configures a standard MAC access list show mac accounting access list displays MAC access list configurations and counters if configured permit Configure a filter to pass packets matching the criteria specified C Series E Series S Series Z Series Syntax permit any host mac address mac source address mac source...

Page 296: ...02 3 frame format snap is the IEEE 802 3 SNAP frame format count OPTIONAL Enter the keyword count to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to log the packets monitor OPTIONAL Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the A...

Page 297: ... number The range is zero 0 to 65535 deny Enter the keyword deny to drop any traffic matching this filter permit Enter the keyword permit to forward any traffic matching this filter any Enter the keyword any to filter all packets host mac address Enter the keyword host and then enter a MAC address to filter packets with that host address mac source address Enter a MAC address in nn nn nn nn nn nn ...

Page 298: ...the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added the monitor option pre Version 6 1 1 0 Introduced on the E Series Usage Information When you use the log option the CP processor logs details about the packets that match Depending on how many packets match the log entry and at wh...

Page 299: ...ters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands ip prefix list configures a prefix list deny Configure a filter to drop packets meeting the criteria specified C Series E Series S Series Z Series Syntax deny ip prefix ge min prefix length le max prefix length To delete a drop filter use t...

Page 300: ... Enter a string up to 16 characters long as the name of the prefix list up to 140 characters long Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Seri...

Page 301: ...000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Sequence numbers for this filter are automatically assigned starting at sequence number 5 If you do not use the ge or le options only packets with an exact match to the prefix are filtered Rela...

Page 302: ...s a number from zero 0 to 32 bitmask number Enter the keyword bitmask and then enter a bit mask number in dotted decimal format Defaults Not configured Command Modes PREFIX LIST Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Added the b...

Page 303: ...the E Series ExaScale Version 7 8 1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show ip prefix list detail Prefix list with the last deletion insertion filter_ospf ip prefix list filter_i...

Page 304: ...to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show ip prefix summary Prefix list with the last deletion insertion test ip prefix list test count 3 range entries 1 sequences 5 15 ip prefix list test1 count 2 range entries 2 sequences 5 10 ip prefix list t...

Page 305: ...simply moves to the next sequence number also known as an implied continue If a match clause exists the continue feature executes only after a successful match occurs If there are no successful matches the continue feature is ignored Match clause with Continue clause The continue feature can exist without a match clause A continue clause without a match clause executes and jumps to the specified r...

Page 306: ...iption to this route map C Series E Series S Series Z Series Syntax description description To remove the description use the no description description command Parameters description Enter a description to identify the route map 80 characters maximum Defaults none Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale p...

Page 307: ...S Series Z Series Syntax match community community list name exact To delete a community match filter use the no match community command Parameters community list name Enter the name of a configured community list exact OPTIONAL Enter the keywords exact to process only those routes with this community list name Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introd...

Page 308: ... to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet and then enter the slot port information For a Ten Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE and then enter the slot port information For a VLAN enter the keyword vlan and then enter...

Page 309: ...0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Related Commands match interface redistributes routes that match the next hop interface match ip next hop redistributes routes that match the next hop IP ad...

Page 310: ...outes advertised by other routers match metric redistributes routes that match a specific metric match route type redistributes routes that match a route type match tag redistributes routes that match a specific tag match ip route source Configure a filter to match based on the routes advertised by routes specified in IP access lists or IP prefix lists C Series E Series S Series Z Series Syntax ma...

Page 311: ...ue To delete a value use the no match metric metric value command Parameters metric value Enter a value to match The range is zero 0 4294967295 Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6...

Page 312: ... E Series ExaScale pre Version 6 1 1 0 Introduced on the E Series match route type Configure a filter to match routes based on the how the route is defined C Series E Series S Series Z Series S4810 Syntax match route type external type 1 type 2 internal level 1 level 2 local To delete a match use the no match route type local internal external type 1 type 2 level 1 level 2 command Parameters exter...

Page 313: ...at match routes advertised by other routers match metric redistributes routes that match a specific metric match tag redistributes routes that match a specific tag match tag Configure a filter to redistribute only routes that match a specified tag value C Series E Series S Series Z Series S4810 Syntax match tag tag value To remove a match use the no match tag command Parameters tag value Enter a v...

Page 314: ...0 characters to name the route map for easy identification permit OPTIONAL Enter the keyword permit to set the route map default as permit If you do not specify a keyword the default is permit deny OPTIONAL Enter the keyword deny to set the route map default as deny sequence number OPTIONAL Enter a number to identify the route map for editing and sequencing with other route maps You are prompted f...

Page 315: ...enter up to eight AS numbers to be inserted into the BGP path information The range is 1 to 65535 Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0...

Page 316: ...ute redistribution set metric specify the metric value assigned to redistributed routes set metric type specify the metric type assigned to redistributed routes set tag specify the tag assigned to redistributed routes set comm list delete Configure a filter to remove the specified community list from the BGP route s COMMUNITY attribute C Series E Series S Series Z Series S4810 Syntax set comm list...

Page 317: ...ute set community specifies a COMMUNITY attribute set community Allows you to assign a BGP COMMUNITY attribute C Series E Series S Series Z Series S4810 Syntax set community community number local as no advertise no export none additive To delete a BGP COMMUNITY attribute assignment use the no set community community number local as no advertise no export none command Parameters community number E...

Page 318: ...ity redistributes routes that match the COMMUNITY attribute neighbor send community assigns the COMMUNITY attribute show ip bgp community displays BGP community groups show ip community lists displays configured Community access lists set level Configure a filter to specify the IS IS level or OSPF area to which matched routes are redistributed C Series E Series S Series Z Series S4810 Syntax set l...

Page 319: ...e assigned to redistributed routes set tag specifies the tag assigned to redistributed routes set local preference Configure a filter to set the BGP LOCAL_PREF attribute for routers within the local autonomous system C Series E Series S Series Z Series S4810 Syntax set local preference value To delete a BGP LOCAL_PREF attribute use the no set local preference command Parameters value Enter a numbe...

Page 320: ...e Enter a number as the new metric value The range is zero 0 to 4294967295 Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Se...

Page 321: ... E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Related Commands set automatic tag computes the tag value of the route set level specifies the OSPF area for route redistribution set metric specifies the metric value assigned to redistributed routes set tag specifies the tag assigned to redistrib...

Page 322: ...the next hop for a BGP neighbor set origin Configure a filter to manipulate the BGP ORIGIN attribute C Series E Series S Series Z Series S4810 Syntax set origin igp egp incomplete To delete an ORIGIN attribute setting use the no set origin command Parameters egp Enter the keyword egp to set routes originating from outside the local AS igp Enter the keyword igp to set routes originating within the ...

Page 323: ...putes the tag value of the route set level specifies the OSPF area for route redistribution set metric specifies the metric value assigned to redistributed routes set metric type specifies the route type assigned to redistributed routes set weight Configure a filter to add a non RFC compliant attribute to the BGP route to assist with route selection C Series E Series S Series Z Series S4810 Syntax...

Page 324: ...weight attribute of zero show config Display the current route map configuration C Series E Series S Series Z Series S4810 Syntax show config Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series...

Page 325: ...es Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show route map route map firpo permit sequence 10 Match clauses Set clauses tag 34 FTOS Related Commands route map configures a route map AS Path Commands The following commands configure AS Path ACLs deny Create a filter to drop routes that match the route s AS PATH attribute Use regular expr...

Page 326: ...ace right brace left parenthesis right parenthesis the beginning of the input string the end of the input string or a space pipe matches either character Defaults Not configured Command Modes AS PATH ACL Usage Information The regular expression must match part of the ASCII text in the AS PATH attribute of the BGP route Command History Version 8 1 1 0 Introduced on the E Series ExaScale pre Version...

Page 327: ... a regular expression to match BGP AS PATH attributes Use one or a combination of the following period matches on any single character including white space asterisk matches on sequences in a pattern zero or more sequences plus sign matches on sequences in a pattern one or more sequences question mark matches sequences in a pattern 0 or 1 sequences NOTE You must enter an escape sequence CNTL v pri...

Page 328: ...onfig as path show config ip as path access list snickers deny 3 FTOS config as path show ip as path access lists Display the all AS PATH access lists configured on the E Series E Series S4810 Syntax show ip as path access lists Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale pre Version 6 1 1 0 Introduce...

Page 329: ...sed to external BGP peers no advertise Enter the keywords no advertise to drop all routes containing the well known community attribute of NO_ADVERTISE All routes with the NO_ADVERTISE 0xFFFFFF02 community attribute must not be advertised to other BGP peers no export Enter the keywords no export to drop all routes containing the well known community attribute of NO_EXPORT All routes with the NO_EX...

Page 330: ...text in the AS PATH attribute of the BGP route Command History Version 8 1 1 0 Introduced on the E Series ExaScale pre Version 6 1 1 0 Introduced on the E Series ip community list Enter COMMUNITY LIST mode and create an IP community list for BGP E Series S4810 Syntax ip community list comm list name To delete a community list use the no ip community list comm list name command Parameters comm list...

Page 331: ...advertised to other BGP peers no export Enter the keywords no export to drop all routes containing the well known community attribute of NO_EXPORT All routes with the NO_EXPORT 0xFFFFFF01 community attribute must not be advertised outside a BGP confederation boundary regexp regular expression Enter the keyword regexp and then enter a regular expression Use one or a combination of the following per...

Page 332: ...current configuration E Series Syntax show config Command Modes COMMUNITY LIST Command History Version 8 1 1 0 Introduced on the E Series ExaScale pre Version 6 1 1 0 Introduced on the E Series Example FTOS config std community list show config ip community list standard patches deny 45 1 permit no export FTOS config std community list show ip community lists Display configured IP community lists ...

Page 333: ... 1 0 names are up to 16 characters long pre Version 6 1 1 0 Introduced on the E Series Example FTOS show ip community lists ip community list standard 1 deny 701 20 deny 702 20 deny 703 20 deny 704 20 deny 705 20 deny 14551 20 deny 701 112 deny 702 112 deny 703 112 deny 704 112 deny 705 112 deny 14551 112 deny 701 666 deny 702 666 deny 703 666 deny 704 666 deny 705 666 deny 14551 666 FTOS 333 ...

Page 334: ...334 ...

Page 335: ...nterval interval min_rx min_rx multiplier value role active passive Parameters interval milliseconds OPTIONAL Enter the keyword interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keyword min_rx to specify the minimum rate at which the local system would like to receive control pack...

Page 336: ...disable BFD on an interface if BFD is explicitly enabled using the isis bfd all neighbors command Neighbors that have been explicitly enabled or disabled for a BFD session with the bfd neighbor or neighbor bfd disable commands in ROUTER BGP mode do not inherit the global BFD enable disable values configured with the bfd neighbor command or configured for the peer group to which a neighbor belongs ...

Page 337: ...ATION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series bfd enable Interface Enable BFD on an interface C Series E Series Z Series S4810 Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BF...

Page 338: ... is 100 multiplier value Enter the keywords multiplier to specify the number of packets that must be missed in order to declare a session down The range is 3 to 50 The default is 3 role active passive Enter the role that the local system assumes Active The active system initiates the BFD session Both systems can be active for the same session Passive The passive system does not initiate a session ...

Page 339: ...ion 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series Version 7 5 1 0 Added support for VLAN and port channel interfaces on the E Series Version 7 4 1 0 Introduced on the E Series Related Commands show bfd neighbors displays the BFD neighbor information on all interfaces or a specified interface bfd protocol liveness Enable the BFD protocol liveness feature E S...

Page 340: ...hen enter the slot port information For a 10 Gigabit Ethernet interface enter the keyword tengigabitethernet and then enter the slot port information For a SONET interface enter the keyword sonet and then enter the slot port information For a port channel interface enter the keyword port channel and then enter a number For the C Series the range is 1 to 128 For the E Series the range is 1 to 255 f...

Page 341: ... and then enter the slot port information For a SONET interface enter the keyword sonet and then enter the slot port information For a port channel interface enter the keyword port channel and then enter a number For the C Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For VLAN interfaces enter the keyword vlan and then enter a number fr...

Page 342: ...assive command Parameters interval milliseconds OPTIONAL Enter the keywords interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keywords min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system The range is 50 to 1000 ...

Page 343: ...disable BFD on this interface interval milliseconds OPTIONAL Enter the keywords interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keywords min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system The range is 50 to 1...

Page 344: ...name bfd Parameters ip address Enter the IP address of the BGP neighbor that you want to explicitly enable for BFD sessions in dotted decimal format A B C D peer group name Enter the name of the peer group that you want to explicitly enable for BFD sessions Defaults none Command Modes ROUTER BGP Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Version...

Page 345: ...essions Defaults none Command Modes ROUTER BGP Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Version 8 4 1 3 Introduced on the E Series ExaScale Usage Information When you explicitly disable a BGP neighbor for a BFD session with the neighbor bfd disable command The neighbor does not inherit the global BFD disable values configured with the bfd neig...

Page 346: ... the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For VLAN interfaces enter the keyword vlan and then enter a number from 1 to 4094 For ExaScale VLAN interfaces the range is 1 to 2730 VLAN IDs can be 0 to 4093 bgp OPTIONAL Enter the keyword bgp to display counter information for BFD sessions established with BGP neighbors isis OPTIONAL Enter the ...

Page 347: ...e of the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword gigabitethernet and then enter the slot port information For a 10 Gigabit Ethernet interface enter the keyword tengigabitethernet and then enter the slot port information For a SONET interface enter the keyword sonet and then enter the slot port information For a port channel interf...

Page 348: ... OSPF R Static Route RTM LocalAddr RemoteAddr Interface State Rx int Tx int Mult Clients 10 1 3 2 10 1 3 1 Gi 1 3 Up 300 250 3 C Example Detail FTOS show bfd neighbors detail Session Discriminator 1 Neighbor Discriminator 1 Local Addr 10 1 3 2 Local MAC Addr 00 01 e8 02 15 0e Remote Addr 10 1 3 1 Remote MAC Addr 00 01 e8 27 2b f1 Int GigabitEthernet 1 3 State Up Configured parameters TX 100ms RX 1...

Page 349: ...e BFD neighbor interval milliseconds OPTIONAL Enter the keyword interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keyword min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system The range is 50 to 1000 The default i...

Page 350: ...Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series Version 7 5 1 0 Introduced on the E Series 350 ...

Page 351: ...mmunities RFC 4360 IPv6 BGP Commands IPv6 MBGP Commands BGP IPv4 Commands Border Gateway Protocol BGP is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems AS BGP supports classless interdomain routing CIDR and the aggregation of routes and AS paths Basically two routers called neighbors or peers exchange information including full rou...

Page 352: ...p name Parameters ip address mask Enter the IP address and mask of the route to be the aggregate address Enter the IP address in dotted decimal format A B C D and mask in prefix format x advertise map map name OPTIONAL Enter the keywords advertise map followed by the name of a configured route map to set filters for advertising an aggregate route as set OPTIONAL Enter the keyword as set to generat...

Page 353: ...er words they are allowed The opposite is also true routes meeting the permit clause are suppressed If the route is injected via the network command that route still appears in the routing table if the summary only parameter is configured in the aggregate address command The summary only parameter suppresses all advertisements If you want to suppress advertisements to only specific neighbors use t...

Page 354: ...no bgp always compare med Defaults Disabled that is the software only compares MEDs from neighbors within the same AS Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced command Version 7 7 1 0 Introduced on the C Series Usage Information Any update without a MED attribute is the least preferred route ...

Page 355: ...on asdot FTOS conf router_bgp ex FTOS conf do show run grep bgp router bgp 1 bgp four octet as support bgp asnotation asdot FTOS conf router bgp 1 FTOS conf router_bgp bgp asnotation asdot FTOS conf router_bgp ex FTOS conf do show run grep bgp router bgp 1 bgp four octet as support bgp asnotation asdot FTOS conf router bgp 1 FTOS conf router_bgp bgp asnotation asplain FTOS conf router_bgp ex FTOS ...

Page 356: ...mmand History Version 8 3 11 4 Introduced on the Z9000 8 3 7 0 Introduced on the S4810 Usage Information The bestpath router bgp configuration mode command changes the default bestpath selection algorithm The multipath relax option allows load sharing across providers with different but equal length autonomous system paths Without this option ECMP expects the AS paths to be identical for load shar...

Page 357: ...ersion 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 6 3 1 0 Introduced Usage Information The MED is a 4 byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295 This command causes a missing MED to be treated as 0 During path selection paths...

Page 358: ... 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information Route reflection to clients is not necessary if all client routers are fully meshed Related Commands bgp cluster id assigns an ID to a BGP cluster with two or more route reflectors neighbor route reflector client configures a route reflector and clients bgp cluster id Assign a cluster ID to a BGP cluster wit...

Page 359: ...igure an identifier for a BGP confederation C Series E Series S Series Z Series S4810 Syntax bgp confederation identifier as number To delete a BGP confederation identifier use the no bgp confederation identifier as number command Parameters as number Enter the AS number The range is 0 to 65535 2 byte 1 to 4294967295 4 byte or 0 1 to 65535 65535 dotted format Defaults Not configured Command Modes ...

Page 360: ...5 2 byte 1 to 4294967295 4 byte or 0 1 to 65535 65535 dotted format Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Added support for the 4 byte format Usage Information All the routers in the Confederation must be 4...

Page 361: ... suppress value which is compared to the flapping route s Penalty value If the Penalty value is greater than the suppress value the flapping route is no longer advertised that is it is suppressed The range is 1 to 20000 The default is 2000 max suppress time OPTIONAL Enter the maximum number of minutes a route can be suppressed The default is four times the half life value The range is 1 to 255 The...

Page 362: ...d History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information The bgp default local preference command setting is applied by all routers within the AS To set the local preference for a specific route use the set local preference command in ROUTE MAP mode Related Comm...

Page 363: ...nable the fast external fallover feature which immediately resets the BGP session if a link to a directly connected external peer fails C Series E Series S Series Z Series S4810 Syntax bgp fast external fallover To disable fast external fallover use the no bgp fast external fallover command Defaults Enabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8...

Page 364: ...hbor a BGP node or designate a local router to support graceful restart as a receiver only C Series E Series S Series Z Series S4810 Syntax bgp graceful restart restart time seconds stale path time seconds role receiver only To return to the default use the no bgp graceful restart command Parameters restart time seconds Enter the keyword restart time followed by the maximum number of seconds neede...

Page 365: ...ntroduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information Use the show logging command in EXEC mode to view BGP neighbor resets The bgp log neighbor changes command appears in the show config command output Related Commands show logging views logging settings and system messages logged to the system bgp non deterministic med Compare MEDs of paths from different autonom...

Page 366: ...he no bgp recursive bgp next hop command Defaults Enabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 2 1 0 Introduced Usage Information This command is a knob to disable BGP next hop resolution using BGP learned routes During...

Page 367: ...ressions use up CPU cycles particularly with large databases The Regex Engine Performance Enhancement feature optimizes the CPU usage by caching and reusing regular expression evaluation results This caching and reuse may be at the expensive of RP1 processor memory Examples FTOS conf router_bgp no bgp regex eval optz disable FTOS conf router_bgp do show ip protocols Routing Protocol is ospf 22222 ...

Page 368: ...ig backup To return to the default setting use the no bgp soft reconfig backup command Defaults Off Command Modes ROUTER BGP Command History Version 9 1 0 0 Added support for IPv6 Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 2 1 0 Introduced Usage Information When you...

Page 369: ...8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 5 1 0 Introduced Related Commands capture bgp pdu max buffer size specifies a size for the capture buffer show capture bgp pdu neighbor displays BGP packet capture information capture bgp pdu max buffer size Set the size of the BGP packet capture buffer This buffer size p...

Page 370: ...535 dotted format ip address Enter an IP address in dotted decimal format to reset all prefixes from that neighbor flap statistics OPTIONAL Enter the keyword flap statistics to reset the flap statistics on all prefixes from that neighbor soft OPTIONAL Enter the keyword soft to configure and activate policies without resetting the BGP TCP session that is BGP Soft Reconfiguration NOTE If you enter t...

Page 371: ...GP bgp soft reconfig backup turns on BGP Soft Reconfiguration clear ip bgp dampening Clear information on route dampening and return the suppressed route to the Active state C Series E Series S Series Z Series S4810 Syntax clear ip bgp dampening ip address mask Parameters ip address mask OPTIONAL Enter an IP address in dotted decimal format and the prefix mask in slash format x to clear dampening ...

Page 372: ...s question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of a sequence o...

Page 373: ...out To disable all BGP debugging use the no debug ip bgp command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group peer group name Enter the keywords peer group followed by the name of the peer group to debug in OPTIONAL Enter the keyword in to view only information on inbound BGP routes out OPTIONAL Enter the keyword out to view only information on out...

Page 374: ... Entering a no debug ip bgp command removes all configured debug commands for BGP Related Commands debug ip bgp events views information about BGP events debug ip bgp keepalives views information about BGP keepalives debug ip bgp notifications views information about BGP notifications debug ip bgp updates views information about BGP updates show debugging views enabled debugging operations debug i...

Page 375: ...outbound BGP messages Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information Enter the no debug ip bgp command to remove all configured debug commands for BGP debug ip bgp keepalives Display information about BGP keepalive me...

Page 376: ...ess peer group peer group name notifications in out To disable debugging use the no debug ip bgp ip address peer group peer group name notifications in out command Parameters ip address OPTIONAL Enter the IP address of the neighbor in dotted decimal format peer group peer group name OPTIONAL Enter the keyword peer group followed by the name of the peer group in OPTIONAL Enter the keyword in to vie...

Page 377: ... on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 2 1 0 Introduced Usage Information This command turns on BGP soft reconfiguration inbound debugging If no neighbor is specified debug turns on for all neighbors debug ip bgp updates Allows you to view information about BGP updates C Series E Series S...

Page 378: ...etric Allows you to change the metric of redistributed routes to locally originated routes Use this command with the redistribute command C Series E Series S Series Z Series S4810 Syntax default metric number To return to the default setting use the no default metric command Parameters number Enter a number as the metric to be assigned to routes from other protocols The range is 1 to 4294967295 De...

Page 379: ...bgp enters ROUTER mode on the switch distance bgp Define an administrative distance for routes C Series E Series TeraScale Z Series S Series Syntax distance bgp external distance internal distance local distance To return to default values use the no distance bgp command Parameters external distance Enter a number to assign to routes learned from a neighbor external to the AS The range is 1 to 255...

Page 380: ...nfigure the maximum number of parallel routes multipath support BGP supports C Series E Series S Series Z Series S4810 Syntax max paths ebgp ibgp number To return to the default values enter the no maximum paths command Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes number En...

Page 381: ...0 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information By default when you create a neighbor peer group configuration in the Router BGP context this enables IPv4 Unicast AFI SAFI When you use activate in the new context the neighbor peer group enables for AFI SAFI neighbor add path This command allows the sp...

Page 382: ...r ip address peer group name advertisement interval seconds To return to the default value use the no neighbor ip address peer group name advertisement interval command Parameters ip address OPTIONAL Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to set the advertisement interval for all routers in the peer group seconds Enter a numbe...

Page 383: ...0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series neighbor allowas in Set the number of times an AS number can occur in the AS path C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name allowas in number To return to the default value use the no neighbor ip address peer group name allowas in command Parame...

Page 384: ... of the peer group to set the default route of all routers in that peer group route map map name OPTIONAL Enter the keyword route map followed by the name of a configured route map Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on ...

Page 385: ...p address peer group name distribute list prefix list name in out To delete a neighbor distribution list use the no neighbor ip address peer group name distribute list prefix list name in out command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to apply the distribute list filter to all routers in the peer grou...

Page 386: ...ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group ttl OPTIONAL Enter the number of hops as the Time to Live ttl value The range is 1 to 255 The default is 255 Defaults Disabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on...

Page 387: ...n with the peer Related Commands show ip bgp neighbors displays information on the BGP neighbors neighbor filter list Configure a BGP filter based on the AS PATH attribute C Series E Series S Series Z Series Syntax neighbor ip address peer group name filter list as path name in out To delete a BGP filter use the no neighbor ip address peer group name filter list as path name in out command Paramet...

Page 388: ...nds role receiver only To return to the default enter the no bgp graceful restart command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to apply the filter to all routers in the peer group restart time seconds Enter the keyword restart time followed by the maximum number of seconds needed to restart and bring up...

Page 389: ...or all routers in the peer group as number Enter the AS number to reset all neighbors belonging to that AS The range is 0 to 65535 2 byte 1 to 4294967295 4 byte or 0 1 to 65535 65535 dotted format no prepend Specifies that local AS values do not prepend to announcements from the neighbor Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Versi...

Page 390: ...n 7 7 1 0 Introduced on the C Series Usage Information If you configure the neighbor maximum prefix command and the neighbor receives more prefixes than allowed by the neighbor maximum prefix command configuration the neighbor goes down and the show ip bgp summary command displays prfxd in the State PfxRcd column for that neighbor The neighbor remains down until you enter the clear ip bgp command ...

Page 391: ...me Enter the name of a configured peer group encryption type OPTIONAL Enter 7 as the encryption type for the password entered 7 means that the password is encrypted and hidden password Enter a text string up to 80 characters long The first character of the password must be a letter You cannot use spaces in the password Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11...

Page 392: ...es S Series Z Series S4810 Syntax neighbor ip address peer group peer group name To delete a peer from a peer group use the no neighbor ip address peer group peer group name command Parameters ip address Enter the IP address of the router to be included in the peer group peer group name Enter the name of a configured peer group Defaults Not configured Command Modes ROUTER BGP Command History Versi...

Page 393: ...eer group and assign it a name C Series E Series S Series Z Series S4810 Syntax neighbor peer group name peer group To delete a peer group use the no neighbor peer group name peer group command Parameters peer group name Enter a text string up to 16 characters long as the name of the peer group Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z900...

Page 394: ...he Z9000 Version 8 3 8 0 Introduced the limit keyword on the S4810 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information After you configure a peer group as passive you must assign it a subnet using the neighbor soft reconfiguration inbound command For passive eBGP limits the Remote AS must be different from ...

Page 395: ...entry in the neighbor is considered an internal BGP peer entry This command creates a peer and the newly created peer is disabled Shutdown Related Commands router bgp enters ROUTER BGP mode and configures routes in an AS bgp four octet as support enables 4 byte support for the BGP process neighbor remove private as Remove private AS numbers from the AS PATH of outgoing updates C Series E Series S ...

Page 396: ...dress peer group name route map map name in out command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group map name Enter the name of an established route map If the Route map is not configured the default is deny to drop all routes in Enter the keyword in to filter inbound routes out Enter the keyword out to filter ...

Page 397: ...eflects routes to the neighbors assigned to the cluster Neighbors in the cluster do not need not be fully meshed By default when you use no route reflector the internal BGP IBGP speakers in the network must be fully meshed The first time you enter this command the router configures as a route reflector and the specified BGP neighbors configure as clients in the route reflector cluster When you rem...

Page 398: ...eries Version 7 7 1 0 Introduced on the C Series Usage Information To configure a COMMUNITY attribute use the set community command in ROUTE MAP mode neighbor shutdown Disable a BGP neighbor or peer group C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name shutdown To enable a disabled neighbor or peer group use the neighbor ip address peer group name no shutdown c...

Page 399: ...d Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to disable or enable all routers within the peer group Defaults Disabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced ...

Page 400: ...rsion 7 7 1 0 Introduced on the C Series neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name timers keepalive holdtime To return to the default values use the no neighbor ip address peer group name timers command Parameters ip address Enter the IP address of the peer router in dot...

Page 401: ... value is the new keepalive value neighbor update source Enable the E Series software to use Loopback interfaces for TCP connections for BGP sessions C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name update source interface To use the closest interface use the no neighbor ip address peer group name update source interface command Parameters ip address Enter the I...

Page 402: ...he default is 0 Defaults 0 Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information In the FTOS best path selection process the path with the highest weight value is preferred NOTE In the FTOS best path selection process the path w...

Page 403: ...d Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information FTOS software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable using non B...

Page 404: ...ute redistribute Redistribute routes into BGP C Series E Series S Series Z Series S4810 Syntax redistribute connected static route map map name To disable redistribution use the no redistribution connected static command Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces static Enter the keyword static to redistribute manually configured ro...

Page 405: ...c the metric for redistributed static and connected is 0 To redistribute the default route 0 0 0 0 0 configure the neighbor default originate command Related Commands neighbor default originate injects the default route redistribute isis Redistribute IS IS routes into BGP E Series Syntax redistribute isis WORD level 1 level 1 2 level 2 metric metric value route map map name To return to the defaul...

Page 406: ...ic type internal and applied outbound to an EBGP peer peer group the advertised routes corresponding to those peer peer group have the IGP cost set as MED IS IS to BGP redistribution supports matching of level 1 or level 2 routes or all routes default You can perform more advanced match options using route maps You can set the metric value of redistributed routes by the redistribution command Exam...

Page 407: ...distribute command to advertise the IGP cost as the MED on redistributed routes When you set the route map with metric type internal and apply outbound to an EBGP peer peer group the advertised routes corresponding to those peer peer group have the IGP cost set as MED When you enter the redistribute isis process id command without any other parameters FTOS redistributes all OSPF internal routes ex...

Page 408: ...0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 5 1 0 Introduced Example FTOS conf router_bgp show capture bgp pdu neighbor 20 20 20 2 Incoming packet capture enabled for BGP neighbor 20 20 20 2 Available buffer size 40958758 26 packet s captured using 680 bytes PDU 1 len 101 captured 00 34 51 ago ffffffff ffffffff ffffffff ...

Page 409: ...ed on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Example FTOS conf router_bgp show confi router bgp 45 neighbor suzanne peer group neighbor suzanne no shutdown neighbor sara peer group neighbor sara shutdown neighbor 13 14 15 20 peer group suzanne neighbor 13 14 15 20 shutdown neighbor 123 34 55 123 peer g...

Page 410: ...gp non deterministic med command the show ip bgp command output for a BGP route does not list the INACTIVE reason The following describes the show ip bgp command shown in the Example below Field Description Network Displays the destination network prefix of each BGP route Next Hop Displays the next hop address of the BGP router If 0 0 0 0 is listed in this column then local routes exist in the rou...

Page 411: ...8 33 0 0 18508 More Related Commands show ip bgp community views the BGP communities neighbor maximum prefix controls the number of network prefixes received show ip bgp cluster list View BGP neighbors in a specific cluster C Series E Series S Series Z Series S4810 Syntax show ip bgp ipv4 unicast cluster list cluster id Parameters ipv4 unicast OPTIONAL Enter the keywords ipv4 unicast to view infor...

Page 412: ...es i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path I 10 10 10 1 32 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 10 19 75 5 32 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 10 30 1 0 24 192 68 16 1 ...

Page 413: ...0xFFFFFF01 community attribute must not be advertised outside a BGP confederation boundary Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information To view the total number of COMMUNITY attributes found use the show ip bgp...

Page 414: ...71 0 16 100 0 209 i i 4 24 187 12 30 205 171 0 16 100 0 209 i i 4 24 202 0 30 205 171 0 16 100 0 209 i i 4 25 88 0 30 205 171 0 16 100 0 209 3561 3908 i i 6 1 0 0 16 205 171 0 16 100 0 209 7170 1455 i i 6 2 0 0 22 205 171 0 16 100 0 209 7170 1455 i i 6 3 0 0 18 205 171 0 16 100 0 209 7170 1455 i i 6 4 0 0 16 205 171 0 16 100 0 209 7170 1455 i i 6 5 0 0 19 205 171 0 16 100 0 209 7170 1455 i i 6 8 0...

Page 415: ...nd output The following describes the show ip bgp community list pass command shown in the Example below Field Description Network Displays the destination network prefix of each BGP route Next Hop Displays the next hop address of the BGP router If 0 0 0 0 is listed in this column then local routes exist in the routing table Metric Displays the BGP route s metric if assigned LocPrf Displays the BG...

Page 416: ...e route is dampened From Displays the IP address of the neighbor advertising the dampened route Reuse Displays the hour minutes seconds until the dampened route is available Path Lists all the ASs the dampened route passed through to reach the destination network Example FTOS show ip bgp damp BGP table version is 210708 local router ID is 63 114 8 2 Status codes s suppressed d damped h history val...

Page 417: ...0 NdTmpRRClP 0x41a4b000 NdTmpOptP 0x41a4b800 NdTmpNHP NdOrigPAP 0 NdOrgNHP 0 NdModPathP 0x419efcc0 NdModASPAP 0x41a4c000 NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 NdModNHP NdComSortBufP 0x41a19110 NdComSortHdP 0x41a19d04 NdUpdAFMsk 0 AFRstSet 0x41a1a298 NHopDfrdHdP 0x41a1a3e0 NumNhDfrd 0 CfgHdrAFMsk 1 AFChkNetTmrP 0x41ee705c AFRtDamp 0 AlwysCmpMed 0 LocrHld 10 LocrRem 10 softReconfig 0x41a1a58c D...

Page 418: ...CtxAdd 1101110868 NdRedCtxAddrLen 255 NdAfRedMkrP 0x41a19e88 AFAggRttP 0x41a0d600 AfAggCtxAddr 1101111028 AfAggrCtxAddrLen 255 AfNumAggrPfx 0 AfNumAggrASSet 0 AfNumSuppmap 0 AfNumAggrValidPfx 0 AfMPathRttP 0x41a0d700 MpathCtxAddr 1101111140 MpathCtxAddrlen 255 AfEorSet 0x41a19f98 NumDfrdPfx 0 AfActPeerHd 0x41a1a3a4 AfExtDist 1101112312 AfIntDist 200 AfLocDist 200 AfNumRRc 0 AfRR 0 AfNetRttP 0x41a0...

Page 419: ...lter list View the routes that match the filter lists C Series E Series S Series S Series S4810 Syntax show ip bgp ipv4 unicast filter list as path name Parameters ipv4 unicast OPTIONAL Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes as path name Enter the name of an AS PATH Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the...

Page 420: ...al a aggregate c confed external r redistributed n network Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path I 6 1 5 0 24 192 100 11 2 20000 9999 0 I 192 100 8 2 20000 9999 0 I 192 100 9 2 20000 9999 0 I 192 100 10 2 20000 9999 0 I 6 1 5 1 20000 9999 0 I 6 1 6 1 20000 9999 0 I 6 1 20 1 20000 9999 0 I 6 1 6 0 24 192 100 11 2 20000 9999 0 I 192 100 8 2 20000 9999 0 I 192...

Page 421: ...more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of...

Page 422: ...stributed n network Origin codes i IGP e EGP incomplete Network From Flaps Duration Reuse Path FTOS show ip bgp inconsistent as View routes with inconsistent originating autonomous system AS numbers that is prefixes that are announced from the same neighbor AS but with a different AS Path C Series E Series S Series Z Series S4810 Syntax show ip bgp ipv4 unicast inconsistent as Command Modes EXEC E...

Page 423: ... i 63 114 8 60 0 18508 209 7018 80 i 63 114 8 33 0 18508 701 80 i 3 18 135 0 24 63 114 8 60 0 18508 209 7018 63 114 8 34 0 18508 209 7018 63 114 8 33 0 18508 701 7018 63 114 8 33 0 18508 209 7018 4 0 0 0 8 63 114 8 60 0 18508 209 1 i 63 114 8 34 0 18508 209 1 i 63 114 8 33 0 18508 701 1 i 63 114 8 33 0 18508 209 1 i 6 0 0 0 20 63 114 8 60 0 18508 209 3549 i 63 114 8 34 0 18508 209 3549 i 63 114 8 ...

Page 424: ...om neighbors NOTE You must configure the neighbor soft reconfiguration inbound command prior to viewing all the information received from the neighbors denied routes network network mask OPTIONAL Enter the keywords denied routes followed by either the network address in dotted decimal format or the network mask in slash prefix format to view all information on routes denied via neighbor inbound fi...

Page 425: ... error messages and the number of messages waiting in a queue for processing Sent messages The line displays the number of BGP messages sent the number of notifications error messages and the number of messages waiting in a queue for processing Received updates This line displays the number of BGP updates received and sent Soft reconfiguration This line indicates that soft reconfiguration inbound ...

Page 426: ...rnal link BGP version 4 remote router ID 192 168 2 101 BGP state ESTABLISHED in this state for 00 16 12 Last read 00 00 12 last write 00 00 03 Hold time is 180 keepalive interval is 60 seconds Received 1404 messages 0 in queue 3 opens 1 notifications 1394 updates 6 keepalives 0 route refresh requests Sent 48 messages 0 in queue 3 opens 2 notifications 0 updates 43 keepalives 0 route refresh reques...

Page 427: ...damped h history valid best Path source I internal a aggregate c confed external r redistributed n network D denied S stale Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path D 70 70 21 0 24 100 10 10 2 0 0 100 200 D 70 70 22 0 24 100 10 10 2 0 0 100 200 D 70 70 23 0 24 100 10 10 2 0 0 100 200 D 70 70 24 0 24 100 10 10 2 0 0 100 200 70 70 25 0 24 100 10 10 2 0 0 100 200...

Page 428: ...describes the show ip bgp next hop command shown in the Example below Field Description Next hop Displays the next hop IP address Via Displays the IP address and interface used to reach the next hop RefCount Displays the number of BGP routes using this next hop Cost Displays the cost associated with using this next hop Flaps Displays the number of times the next hop has flapped Time Elapsed Displa...

Page 429: ...tterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of a sequence or range it matches on everything BUT the characters specified dollar sign the end of the output string Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z...

Page 430: ...0x1efe7b1c 287 336 20000 0x1efe7d1c 295 10000 13 0x1efe7c5c 339 6 92 93 0x1efe7cdc 351 10000 12 0x1efe7c1c 395 6 82 83 0x1efe7bdc 451 6 72 73 0x1efe7b5c 491 78 0 0x1efe7adc 883 2 120 i 0x1efe7e9c 983 10000 33 0x1efe7b9c 1003 6 0 i FTOS show ip bgp paths as path View all unique AS PATHs in the BGP database C Series E Series S Series Z Series S4810 Syntax show ip bgp paths as path Command Modes EXEC...

Page 431: ... 0x1ea3c144 763 1 102 103 0x1ea3c17c 763 1 12 0x1ea3c2cc 763 1 32 0x1ea3c09c 764 1 72 73 0x1ea3c0d4 764 1 82 83 0x1ea3c224 1019 1 43 0x1ea3c294 1019 1 23 0x1ea3c02c 1021 4 FTOS show ip bgp paths community View all unique COMMUNITY numbers in the BGP database C Series E Series S Series Z Series S4810 Syntax show ip bgp paths community Command Modes EXEC EXEC Privilege Command History Version 8 3 11...

Page 432: ... 209 209 4069 209 21362 3908 900 19092 300 0x1c9f88e4 53 4 209 209 209 3193 209 21362 3908 900 19092 300 0x1f58a944 57 6 209 209 209 2073 209 21362 3908 900 19092 300 0x1ce6be44 80 2 209 209 209 999 209 40832 0x1c6e2374 80 2 209 777 209 41528 0x1f58ad6c 82 46 209 209 209 41528 0x1c6e2064 83 2 209 777 209 40832 0x1f588ecc 85 570 209 209 209 40832 0x1f57cc0c 98 2 209 209 209 21226 286 3031 13646 104...

Page 433: ... command shown in the Example below Line beginning with Description Peer group Displays the peer group s name Administratively shut Displays the peer group s status if the peer group is not enabled If you enable the peer group this line is not displayed BGP version Displays the BGP version supported Minimum time Displays the time interval between BGP advertisements For address family Displays IPv4...

Page 434: ... 12 4 1 2 12 4 1 3 12 4 1 4 12 4 1 5 12 4 1 6 Related Commands neighbor peer group assigning peers assigns a peer to a peer group neighbor peer group creating group creates a peer group show ip bgp peer group multicast views information on the BGP peers in a peer group show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified C Series E Series S Seri...

Page 435: ...d on the C Series Usage Information The following describes the show ip bgp regexp command shown in the Example below Field Description Network Displays the destination network prefix of each BGP route Next Hop Displays the next hop address of the BGP router If 0 0 0 0 is listed in this column then non BGP routes exist in the router s routing table Metric Displays the BGP router s metric if assign...

Page 436: ...3 180 0 24 1 1 1 2 0 100 0 2914 3561 6128 30576 i I 4 36 200 0 21 1 1 1 2 0 100 0 2914 14742 11854 14135 i I 4 67 64 0 22 1 1 1 2 0 100 0 2914 11608 19281 i I 4 78 32 0 21 1 1 1 2 0 100 0 2914 3491 29748 i I 6 1 0 0 16 1 1 1 2 0 100 0 2914 701 668 i I 6 2 0 0 22 1 1 1 2 0 100 0 2914 701 668 i I 6 3 0 0 18 1 1 1 2 0 100 0 2914 701 668 i show ip bgp summary Allows you to view the status of all BGP c...

Page 437: ...s more details on the COMMUNITY attributes Dampening enabled Displayed only when you enable dampening Displays the number of paths designated as history dampened or penalized Neighbor Displays the BGP neighbor address AS Displays the AS number of the neighbor MsgRcvd Displays the number of BGP messages that neighbor received MsgSent Displays the number of BGP messages that neighbor sent TblVer Dis...

Page 438: ...2 bytes of memory 5 paths using 380 bytes of memory 4 denied paths using 164 bytes of memory BGP RIB over all using 385 bytes of memory 2 BGP path attribute entrie s using 168 bytes of memory 1 BGP AS PATH entrie s using 39 bytes of memory 1 BGP community entrie s using 43 bytes of memory 2 neighbor s using 7232 bytes of memory Neighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State Pfx 100 10 1...

Page 439: ...fault is 180 seconds Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series MBGP Commands Multiprotocol BGP MBGP is an enhanced BGP that enables multicast routing policy throughout the I...

Page 440: ...xt aggregate address Summarize a range of prefixes to minimize the number of entries in the routing table C Series E Series TeraScale S Series Syntax aggregate address ip address mask advertise map map name as set attribute map map name summary only suppress map map name Parameters ip address mask Enter the IP address and mask of the route to be the aggregate address Enter the IP address in dotted...

Page 441: ... The opposite is also true routes meeting the permit clause are suppressed If the route is injected via the network command that route still appears in the routing table if the summary only parameter is configured in the aggregate address command The summary only parameter suppresses all advertisements If you want to suppress advertisements to only specific neighbors use the neighbor distribute li...

Page 442: ...flap statistics OPTIONAL Enter the keywords flap statistics to reset the flap statistics on all prefixes from that neighbor peer group OPTIONAL Enter the keywords peer group to clear all members of a peer group Command Modes EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series clear ip bgp dampening Clear information on route dampenin...

Page 443: ...d by regular expressions Use one or a combination of the following period any single character including a white space asterisk the sequences in a pattern 0 or more sequences plus the sequences in a pattern 1 or more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of singl...

Page 444: ...oup updates View information about BGP peer group updates C Series E Series TeraScale S Series Syntax debug ip bgp peer group peer group name updates in out To disable debugging use the no debug ip bgp peer group peer group name updates in out command Parameters peer group peer group name Enter the keywords peer group followed by the name of the peer group updates Enter the keyword updates to view...

Page 445: ...0 Introduced IPv6 MGBP on the E Series distance bgp Configure three administrative distances for routes C Series E Series TeraScale S Series S4810 Syntax distance bgp external distance internal distance local distance To return to default values use the no distance bgp command Parameters external distance Enter a number to assign to routes learned from a neighbor external to the AS The range is 1 ...

Page 446: ...AFI SAFI C Series E Series TeraScale S Series Syntax neighbor ip address peer group name activate To disable use the no neighbor ip address peer group name activate command Parameters ip address OPTIONAL Enter the IP address of the neighbor in dotted decimal format peer group name OPTIONAL Enter the name of the peer group activate Enter the keyword activate to enable the neighbor peer group in the...

Page 447: ...lt is 5 seconds for internal BGP peers and 30 seconds for external BGP peers Defaults seconds 5 seconds internal peers seconds 30 seconds external peers Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series neighbor default originate Inject...

Page 448: ...format peer group name Enter the name of the peer group to apply the distribute list filter to all routers in the peer group prefix list name Enter the name of an established prefix list If the prefix list is not configured the default is permit to allow all routes in Enter the keyword in to distribute only inbound traffic out Enter the keyword out to distribute only outbound traffic Defaults Not ...

Page 449: ...tes out Enter the keyword out to filter outbound BGP routes Defaults Not configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Usage Information Use the ip as path access list command in CONFIGURATION mode to enter AS PATH ACL mo...

Page 450: ... is reached Defaults threshold 75 Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series neighbor next hop self Allows you to configure the router as the next hop for a BGP neighbor C Series E Series TeraScale S Series Syntax neighbor ip add...

Page 451: ...on the C Series Added 4 byte support Version 7 6 1 0 Introduced IPv6 MGBP on the E Series neighbor route map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group C Series E Series TeraScale S Series Syntax neighbor ip address peer group name route map map name in out To remove the route map use the no neighbor ip address peer group name route map map...

Page 452: ...uration use the no neighbor ip address peer group name route reflector client command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group All routers in the peer group receive routes from a route reflector Defaults Not configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 ...

Page 453: ...nfigured the default is deny to drop all routes Defaults Not configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Usage Information FTOS software resolves the network address configured by the network command with the routes in ...

Page 454: ... configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Usage Information If you do not configure the default metric command in addition to the redistribute command or there is no route map to set the metric the metric for redistr...

Page 455: ...e E Series Usage Information When you enter the redistribute isis process id command without any other parameters FTOS redistributes all OSPF internal routes external type 1 routes and external type 2 routes This feature is not supported by an RFC This feature is not supported by an RFC show ip bgp ipv4 multicast View the current MBGP routing table for the system C Series E Series TeraScale S Seri...

Page 456: ... weight Path Lists all the ASs the route passed through to reach the destination network Example FTOS show ip bgp ipv4 multicast BGP table version is 14 local router ID is 100 10 10 1 Status codes s suppressed S stale d damped h history valid best Path source I internal a aggregate c confed external r redistributed n network Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight...

Page 457: ...l AS Enter the keywords local AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED All routes with the NO_EXPORT_SUBCONFED 0xFFFFFF03 community attribute must not be advertised to external BGP peers no advertise Enter the keywords no advertise to view all routes containing the well known community attribute of NO_ADVERTISE All routes with the NO_ADVERTISE 0xFFFFFF02 community ...

Page 458: ... Parameters community list name Enter the name of a configured IP community list max 16 characters Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series show ip bgp dampened paths View BGP routes that are dampened non active C Series E Series S Series Z Series S481...

Page 459: ...al r redistributed n network Origin codes i IGP e EGP incomplete Network From Reuse Path FTOS show ip bgp filter list View the routes that match the filter lists C Series E Series TeraScale S Series Syntax show ip bgp ipv4 multicast filter list as path name Parameters as path name Enter the name of an AS PATH Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Ser...

Page 460: ...t enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of a sequence or range it matches on everything BUT the characters specified dollar sign t...

Page 461: ... OPTIONAL Display detailed neighbor information flap statistics OPTIONAL Enter the keywords flap statistics to view flap statistics on the neighbor s routes routes OPTIONAL Enter the keyword routes to view only the neighbor s feasible routes Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introd...

Page 462: ...of the Route map AS PATH ACL or Prefix list configured for the policy For address family Displays IPv4 Unicast as the address family BGP table version Displays the which version of the primary BGP routing table the router and the neighbor are using accepted prefixes Displays the number of network prefixes accepted by the router and the amount of memory used to process those prefixes Prefix adverti...

Page 463: ...0 from peer Connections established 2 dropped 1 Last reset 00 03 17 due to user reset Notification History Connection Reset Sent 1 Recv 0 Local host 100 10 10 1 Local port 179 Foreign host 25 25 25 25 Foreign port 2290 BGP neighbor is 211 1 1 129 remote AS 640 external link BGP version 4 remote router ID 0 0 0 0 BGP state ACTIVE in this state for 00 00 36 Last read 00 00 41 hold time is 180 keepal...

Page 464: ... Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Version 7 5 1 0 Added the detail option Related Commands neighbor peer group assigning peers assigns a peer to a peer group neighbor peer group creating group creates a peer group show ip bgp peer group multica...

Page 465: ...ighbor Displays the BGP neighbor address AS Displays the AS number of the neighbor MsgRcvd Displays the number of BGP messages that neighbor received MsgSent Displays the number of BGP messages that neighbor sent TblVer Displays the version of the BGP table that was sent to that neighbor InQ Displays the number of messages from that neighbor waiting to be processed OutQ Displays the number of mess...

Page 466: ... 4 octet AA NN to 8 octet Type Value to provide enough number communities Communities are structured using a new Type field 1 or 2 octets allowing you to provide granular control filter routing information based on the type of extended communities deny Use this feature to reject deny from the two types of extended communities route origin rt or site of origin soo C Series E Series S Series Z Serie...

Page 467: ...tures allows you to specify an extended communities to reject deny using a regular expressions regex C Series E Series S Series Z Series Syntax deny regex regex To remove use the no deny regex regex command Parameters regex Enter a regular expression Defaults Not configured Command Modes CONFIGURATION conf ext community list Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 ...

Page 468: ... Series Version 7 6 1 0 Introduced on the E Series ip extcommunity list Use this feature to enter the Extended Community list mode C Series E Series S Series Z Series Syntax ip extcommunity list word To exit from this mode use the exit command Parameters word Enter a community list name maximum 16 characters Defaults none Command Modes CONFIGURATION conf ext community list Command History Version ...

Page 469: ...tch the attribute Example FTOS config route map match extcommunity Freedombird FTOS config route map permit Use this feature to add rules permit from the two types of extended communities Route Origin rt or Site of Origin soo C Series E Series S Series Z Series Syntax permit rt soo as4 ASN4 NN ASN NNNN IPADDR NN To change the rules use the no permit rt soo as4 ASN4 NN ASN NNNN IPADDR NN command Pa...

Page 470: ...atures allows you specify an extended communities to forward permit using a regular expressions regex C Series E Series S Series Z Series Syntax permit regex regex To remove use the no permit regex regex command Parameters regex Enter a regular expression Defaults Not configured Command Modes CONFIGURATION conf ext community list Command History Version 7 8 1 0 Introduced on the S Series Version 7...

Page 471: ...te community value additive OPTIONAL Enter the keyword additive to add to the existing extended community non trans OPTIONAL Enter the keywords non trans to indicate a non transitive BGP extended community Defaults none Command Modes ROUTE MAP config route map Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E S...

Page 472: ... byte IPv4 Unicast Address 2 byte community value non trans OPTIONAL Enter the keywords non trans to indicate a non transitive BGP extended community Defaults none Command Modes ROUTE MAP config route map Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series Usage Information If the set community rt and soo ...

Page 473: ... E Series Usage Information If there is a type or sub type that is not well known it is displayed as TTSS XX YYYY Where TT is type SS is sub type displayed in hexadecimal format XX YYYY is the value divided into 2 byte and 4 byte values in decimal format This format is consistent with other vendors For example if the extended community has type 0x04 sub type 0x05 value 0x20 00 00 00 10 00 it displ...

Page 474: ...own in the Example below Field Description Address Displays the internal address where the path attribute is stored Hash Displays the hash bucket where the path attribute is stored Refcount Displays the number of BGP routes using these extended communities Community Displays the extended community attributes in this BGP path Example FTOS show ip bgp paths extcommunity Total 1 Extended Communities ...

Page 475: ...the current configuration of the extended community lists C Series E Series S Series Z Series Syntax show running config extcommunity list word Parameters word Enter the name of the extended community list you want to view Defaults none Command Modes EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on th...

Page 476: ...rmation Enter ipv6unicast to enter the BGP for IPv6 mode CONF ROUTER_BGPv6_AF aggregate address Summarize a range of prefixes to minimize the number of entries in the routing table C Series E Series Syntax aggregate address ipv6 address prefix length advertise map map name as set attribute map map name summary only suppress map map name Parameters ipv6 address prefix length Enter the IPv6 address ...

Page 477: ...rack of the changes in the AS_PATH In route maps used in the suppress map parameter routes meeting the deny clause are not suppress in other words they are allowed The opposite is true routes meeting the permit clause are suppressed If the route is injected via the network command that route still appears in the routing table if the summary only parameter is configured in the aggregate address com...

Page 478: ...eries ExaScale Version 7 4 1 0 Introduced Usage Information If you enable this command use the clear ip bgp command to recompute the best path bgp bestpath med confed Enable MULTI_EXIT_DISC MED attribute comparison on paths learned from BGP confederations C Series E Series Syntax bgp bestpath med confed To disable MED comparison on BGP confederation paths use the no bgp bestpath med confed command...

Page 479: ...ED to be treated as 0 During the path selection paths with a lower MED are preferred over those with a higher MED bgp client to client reflection Allows you to enable route reflection between clients in a cluster C Series E Series Syntax bgp client to client reflection To disable client to client reflection use the no bgp client to client reflection command Defaults Enabled when a route reflector ...

Page 480: ... assign a cluster ID with the bgp cluster id command Without a cluster ID the route reflector cannot recognize route updates from the other route reflectors within the cluster The default format for displaying the cluster id is dotted decimal but if you enter the cluster id as an integer it is displayed as an integer Related Commands bgp client to client reflection enables route reflection between...

Page 481: ...mmand use the no bgp confederation peer command Parameters as number Enter the AS number The range is 1 to 65535 as number OPTIONAL Enter up to 16 confederation numbers The range is 1 to 65535 Defaults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information The autonomous systems configured in this com...

Page 482: ...ult is 2000 max suppress time OPTIONAL Enter the maximum number of minutes a route can be suppressed The default is four times the half life value The range is 1 to 255 The default is 60 minutes route map map name OPTIONAL Enter the keywords route map followed by the name of a configured route map Only match commands in the configured route map are supported Defaults Disabled Command Modes ROUTER ...

Page 483: ...nd Defaults Enabled Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information This is enabled by default that is for all updates received from EBGP peers BGP ensures that the first AS of the first AS segment is always the AS of the peer If not the update is dropped and a counter is incremented Use the show ip bgp neigh...

Page 484: ...uters supporting 4 Byte ASNs advertise that function in the OPEN message The behavior of a 4 Byte router is slightly different depending on whether it is speaking to a 2 Byte router or a 4 Byte router When creating Confederations all the routers in the Confederation must be 4 or 2 byte identified routers You cannot mix them Where the 2 Byte format is 1 65535 the 4 Byte format is 1 4294967295 Both ...

Page 485: ... router to support graceful restart as a receiver only Defaults As above Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information This feature is advertised to BGP neighbors through a capability advertisement In Receiver Only mode BGP saves the advertised routes of peers that support this capability when they restart ...

Page 486: ... all paths in the AS group are from the same AS When you change the path selection from deterministic to non deterministic the path selection for existing paths remains deterministic until you enter the clear ip bgp command to clear existing paths bgp recursive bgp next hop Enable next hop resolution through other routes learned by BGP C Series E Series Syntax bgp recursive bgp next hop To disable...

Page 487: ...taining regular expressions to match as path and communities tend to use a lot of CPU processing time which in turn affects the BGP routing convergence Additionally the show bgp commands which are filtered through regular expressions use up CPU cycles particularly with large databases The regex engine performance enhancement feature optimizes the CPU usage by caching and reusing regular expression...

Page 488: ... 0 Introduced on the C Series Version 7 2 1 0 Introduced Usage Information When you enable soft reconfiguration for a neighbor and you execute the clear ip bgp soft in command the update database stored in the router is replayed and updates are reevaluated With this command the replay and update process is triggered only if route refresh request is not negotiated with the peer If the request is in...

Page 489: ... reflector and clients capture bgp pdu neighbor enables capture of an IPv4 BGP neighbor packet capture bgp pdu max buffer size Set the size of the BGP packet capture buffer This buffer size pertains to both IPv4 and IPv6 addresses C Series E Series Syntax capture bgp pdu max buffer size 100 102400000 Parameters 100 102400000 Enter a size for the capture buffer Defaults 40960000 bytes Command Modes...

Page 490: ...NOTE If you enter clear ip bgp ip6 address soft both inbound and outbound policies are reset in OPTIONAL Enter the keyword in to activate only inbound policies out OPTIONAL Enter the keyword out to activate only outbound policies Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced clear ip bgp as number Reset BGP sessions on t...

Page 491: ...t OPTIONAL Enter the keyword out to activate only outbound policies Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced clear ip bgp ipv6 address Reset BGP sessions specific to an IPv6 address on the E Series The soft parameter BGP Soft Reconfiguration clears the policies without resetting the TCP connection C Series E Series ...

Page 492: ...e reset in OPTIONAL Enter the keyword in to activate only inbound policies out OPTIONAL Enter the keyword out to activate only outbound policies Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced clear ip bgp peer group Reset a peer group s BGP sessions C Series E Series Syntax clear ip bgp peer group peer group name Paramete...

Page 493: ...th name regexp regular expression Parameters ipv6 address OPTIONAL Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros filter list as path name OPTIONAL Enter the keywords filter list followed by the name of a configured AS PATH list regexp regular expression OPTIONAL E...

Page 494: ...ters Clear and reapply policies for all BGP sessions as number Clear and reapply policies for all neighbors belonging to the AS The range is 0 to 65535 2 Byte 1 to 4294967295 4 Byte or 0 1 to 65535 65535 Dotted format ipv4 neighbor addr ipv6 neighbor addr Clear and reapply policies for a neighbor peer group name Clear and reapply policies for all BGP routers in the specified peer group ipv6 unicas...

Page 495: ... view only information on inbound BGP routes out OPTIONAL Enter the keyword out to view only information on outbound BGP routes Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information To view information on both incoming and outgoing routes do not include the in and out parameters in the debugging command The in ...

Page 496: ...onfigured debug commands for BGP Related Commands show ip bgp dampened paths View BGP dampened routes debug ip bgp events Allows you to view information on local BGP state changes and other BGP events C Series E Series Syntax debug ip bgp ipv6 address peer group peer group name events in out To disable debugging use the no debug ip bgp ipv6 address peer group peer group name events command Paramet...

Page 497: ...uration command Parameters ipv4 address ipv6 address Enter the IP address of the neighbor on which you want to enable soft reconfiguration debugging peer group name Enter the name of the peer group on which you want to enable soft reconfiguration debugging ipv6 unicast Debug soft reconfiguration for IPv6 unicast routes Defaults Disabled Command Modes EXEC Privilege Command History Version 8 4 1 0 ...

Page 498: ...nbound keepalive routes out OPTIONAL Enter the keyword out to view only information on outbound keepalive routes Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Enter the no debug ip bgp command to remove all configured debug commands for BGP debug ip bgp notifications Allows you to view information about...

Page 499: ...er group name ipv6 unicast ipv6 address updates in out prefix list prefix list name To disable debugging use the no debug ip bgp ip address peer group peer group name ipv6 unicast ipv6 address updates in out command Parameters ipv6 address OPTIONAL Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successi...

Page 500: ...ced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information The default metric command in BGP sets the value of the BGP MULTI_EXIT_DISC MED attribute for redistributed routes only Related Commands bgp always compare med enables comparison of all BGP MED attributes redistribute redistributes routes from other routing protocols into BGP description Enter a description of the BGP routin...

Page 501: ... is 1 to 255 The default is 200 Defaults external distance 20 internal distance 200 local distance 200 Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information CAUTION Dell Force10 recommends that you do not change the administrative distance of internal routes Changing the administrative distances ma...

Page 502: ... multipath support for External BGP routes ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes number Enter a number as the maximum number of parallel paths The range is 1 to 16 The default is 1 Defaults 1 Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information If you enab...

Page 503: ...bor advertisement interval Set the advertisement interval between BGP neighbors or within a BGP peer group C Series E Series Syntax neighbor ipv6 address peer group name advertisement interval seconds To return to the default value use the no neighbor ipv6 address peer group name advertisement interval command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation...

Page 504: ...vertisement interval for all routers in the peer group number Enter a number of times to allow this neighbor ID to use the AS path The range is 1 to 10 Defaults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Related Commands bgp four octet as support enables 4 Byte support for the BGP process neighbor default o...

Page 505: ...the set filters in the route map to that BGP peer or neighbor neighbor description Assign a character string describing the neighbor or group of neighbors peer group C Series E Series Syntax neighbor ipv6 address peer group name description text To delete a description use the no neighbor ipv6 address peer group name description text command Parameters ipv6 address Enter the IPv6 address in the x ...

Page 506: ... inbound traffic out Enter the keyword out to distribute only outbound traffic Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Other BGP filtering commands include the neighbor filter list and neighbor route map commands Related Commands neighbor filter list assigns a ...

Page 507: ...neighbor ipv6 address peer group name fall over To disable use the no neighbor ipv6 address peer group name fall over command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group Defaults Disabled Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced o...

Page 508: ...e AS PATH access list the default is permit to allow routes The maximum is 16 characters in Enter the keyword in to filter inbound BGP routes out Enter the keyword out to filter outbound BGP routes Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced neighbor maximum prefix Control the numbe...

Page 509: ...formation If you configure the neighbor maximum prefix command and the neighbor receives more prefixes than allowed by the neighbor maximum prefix command configuration the neighbor goes down and the show ip bgp summary command displays prfxd in the State PfxRcd column for that neighbor The neighbor remains down until you enter the clear ip bgp command for the neighbor or the peer group to which t...

Page 510: ...DDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information If you configure the set ipv6 next hop command in ROUTE MAP mode its configuration takes precedence over the neighbor next hop self C E and S Series command neighbor peer group assigning peers Allows you to assign one peer to a existing peer group C Series E Series Syntax ...

Page 511: ...eighbor s configuration does not affect outgoing updates A peer group must exist before you add a peer to it If the peer group is disabled shutdown the peers within the group are also disabled shutdown Related Commands clear ip bgp resets BGP sessions neighbor peer group creating group creates a peer group show ip bgp peer group view BGP peers show ip bgp neighborsshow ip bgp neighbors View BGP ne...

Page 512: ...r a text string up to 16 characters long as the name of the peer group Defaults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information After you configure a peer group as passive you must assign it a subnet using the neighbor subnet command Related Commands neighbor subnet assigns a subnet to a dynami...

Page 513: ...ntax neighbor ipv6 address peer group name remove private as To return to the default use the no neighbor ipv6 address peer group name remove private as command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group to remove the private AS numbers Defaults Disabled t...

Page 514: ...d routes Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information When you apply a route map to outbound routes only routes that match at least one section of the route map are permitted If you identify a peer group by name the peers in that peer group inherit the characteristi...

Page 515: ...isabled the neighbor is no longer a route reflector neighbor send community Send a COMMUNITY attribute to a BGP neighbor or peer group A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping C Series E Series Syntax neighbor ipv6 address peer group name send community To disable sending a COMMUNITY attribute use the no neighbor ipv6 address peer gr...

Page 516: ...led when their peer group is disabled The neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer group Use this command with caution as it terminates the specified BGP sessions When a neighbor or peer group is shutdown use the show ip bgp summary command to confirm its status Related Commands show ip bgp summary displays the current BGP configuration show ip bgp neig...

Page 517: ... memory regardless of the inbound policy results applied on the neighbor Related Commands show ip bgp ipv6 unicast neighbors displays IPv6 routing information exchanged by BGP neighbors neighbor subnet Enable passive peering so that the members of the peer group are dynamic C Series E Series Syntax neighbor peer group name subnet subnet number mask To remove passive peering use the no neighbor pee...

Page 518: ...o 65535 The default is 60 seconds holdtime Enter a number for the time interval in seconds between the last keepalive message and declaring the router dead The range is 3 to 65535 The default is 180 seconds Defaults keepalive 60 seconds holdtime 180 seconds Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Time...

Page 519: ...aults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Loopback interfaces are up constantly and the BGP session may need one interface constantly up to stabilize the session The neighbor update source command is not necessary for directly connected internal BGP sessions neighbor weight Assign a...

Page 520: ...ork use the no network ip address mask route map map name command Parameters ipv6 address prefix length Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros mask Enter the mask of the IP address in the slash prefix length format for example 24 The mask appears in command...

Page 521: ...he IPv6 address in the x x x x x format followed by the prefix length in the x format The r range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Though FTOS does not generate a route due to...

Page 522: ...ommand or there is no route map to set the metric the metric for redistributed static and connected is 0 To redistribute the default route 0 0 0 configure the neighbor default originate command Related Commands neighbor default originate injects the default route redistribute isis Redistribute IS IS routes into BGP E Series Syntax redistribute isis level 1 level 1 2 level 2 metric metric value met...

Page 523: ...Syntax redistribute ospf process id match external 1 2 match internal route map map name To stop redistribution of OSPF routes use the no redistribute ospf process id command Parameters process id Enter the number of the OSPFv3 process The range is 1 to 65535 match external 1 2 OPTIONAL Enter the keywords match external to redistribute OSPF external routes You can specify 1 or 2 to redistribute th...

Page 524: ...nable BGP E Series Syntax router bgp as number To disable BGP use the no router bgp as number command Parameters process id Enter the number of the OSPFv3 process The range is 1 to 65535 Defaults Not configured Command Modes CONFIGURATION Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced show capture bgp pdu neighbor Display BGP packet capture informati...

Page 525: ...NT PASSIV no shutdown neighbor 1109 33 remote as 18508 neighbor 1109 33 update source Loopback 101 neighbor 1109 33 no shutdown neighbor 2222 220 remote as 18508 neighbor 2222 220 route reflector client neighbor 2222 220 update source Loopback 100 neighbor 2222 220 no shutdown neighbor 4000 33 remote as 18508 neighbor 4000 33 no shutdown neighbor 4000 60 remote as 18508 neighbor 4000 60 no shutdow...

Page 526: ...r id Parameters cluster id OPTIONAL Enter the cluster id in dotted decimal format Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced show ip bgp ipv6 unicast community View information on all routes with Community attributes or view specific BGP community groups C Series E Series Syntax show ip bgp ipv6 unicast community...

Page 527: ...ivilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information To view the total number of COMMUNITY attributes found use the show ip bgp summary command The text line above the route table states the number of COMMUNITY attributes found show ip bgp ipv6 unicast community list View routes that are affected by a specific community list C Ser...

Page 528: ...6 unicast detail Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced show ip bgp ipv6 unicast extcommunity list View information on all routes with Extended Community attributes C Series E Series S Series Syntax show ip bgp ipv6 unicast extcommunity list list name Parameters list name Enter the extended comm...

Page 529: ...s ExaScale Version 7 4 1 0 Introduced show ip bgp ipv6 unicast flap statistics View flap statistics on BGP routes C Series E Series Syntax show ip bgp ipv6 unicast flap statistics ipv6 address prefix length filter list as path name regexp regular expression Parameters ipv6 address prefix length Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range i...

Page 530: ...s with inconsistent originating autonomous system AS numbers that is prefixes that are announced from the same neighbor AS but with a different AS Path C Series E Series Syntax show ip bgp ipv6 unicast inconsistent as Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced show ip bgp ipv6 unicast neighbors Allows you to view...

Page 531: ...e routes Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Related Commands show ip bgp view the current BGP routing table show ip bgp ipv6 unicast peer group Allows you to view information on the BGP peers in a peer group C Series E Series Syntax show ip bgp ipv6 unicast peer group peer group name summary Parameters pe...

Page 532: ... 2 FTOS show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections C Series E Series Syntax show ip bgp ipv6 unicast summary Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Example FTOS show ip bgp summary BGP router identifier 55 55 55 55 local AS number 18508 BGP table version is 0 main routing table version 0 6 BGP...

Page 533: ...xt hop local routes Parameters local routes OPTIONAL Show next hop information for local routes Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Example FTOS show ip bgp next hop Next hop Via RefCount Cost Flaps Time Elapsed 9000 5 2 9000 5 2 Gi 8 38 2 0 0 00 23 22 9000 6 2 9000 6 2 Gi 8 38 2 0 0 00 23 22 9000 7 2 9000...

Page 534: ...ing of the input string If the caret is used at the beginning of a sequence or range it matches on everything BUT the characters specified dollar sign the end of the output string Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced show ip bgp paths as path View all unique AS PATHs in the BGP database C Series E Series Sy...

Page 535: ... Syntax show ip bgp regexp regular expression character Parameters regular expression character Enter a regular expression then use one or a combination of the following characters to match period any single character including a white space asterisk the sequences in a pattern 0 or more sequences plus the sequences in a pattern 1 or more sequences question mark sequences in a pattern either 0 or 1...

Page 536: ... EXEC Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 Related Commands ipv6 prefix list configures an IPv6 prefix list timers bgp Allows you to adjust the BGP network timers for all neighbors C Series E Series Syntax timers bgp keepalive holdtimer To return to the default values use the no timers bgp command Parameters keepalive Enter the time inter...

Page 537: ...58 address family ipv6 unicast This command changes the context to subsequent address family identifier SAFI E Series Syntax address family ipv6 unicast To remove SAFI context use the no address family ipv6 unicast command Parameters ipv6 Enter the keyword ipv6 to specify the address family as IPv6 unicast Enter the keyword unicast to specify multicast as SAFI Defaults IPv6 Unicast Command Modes R...

Page 538: ...s of the aggregate excluding AS_PATH and NEXT_HOP attributes summary only OPTIONAL Enter the keywords summary only to advertise only the aggregate address Specific routes are not advertised suppress map map name OPTIONAL Enter the keywords suppress map followed by the name of a configured route map to identify which more specific routes in the aggregate are suppressed Defaults Not configured Comma...

Page 539: ...L Enter the keywords route map followed by the name of a configured route map Only match commands in the configured route map are supported Defaults Disabled Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced clear ip bgp ipv6 unicast Reset MBGP sessions E Series Syntax clear ip bgp ipv6 unicast ipv6 address prefix length dampening flap statistics peer group Param...

Page 540: ...GP flap statistics which includes number of flaps and the time of the last flap E Series Syntax clear ip bgp ipv6 unicast flap statistics network filter list list regexp regexp Parameters network OPTIONAL Enter the IPv6 network address in x x x x x format to clear flap statistics filter list list OPTIONAL Enter the keywords filter list followed by the name of a configured AS PATH list A maximum of...

Page 541: ...ing Enter the keyword dampening to clear route flap dampening information Command Modes EXEC Privilege Command History Version 7 4 1 0 Introduced debug ip bgp ipv6 unicast peer group updates View information about BGP peer group updates E Series Syntax debug ip bgp ipv6 unicast peer group peer group name updates in out To disable debugging use the no debug ip bgp ipv6 unicast peer group peer group...

Page 542: ...eyword updates to view BGP update information in OPTIONAL Enter the keyword in to view only BGP updates received from neighbors out OPTIONAL Enter the keyword out to view only BGP updates sent to neighbors Defaults Disabled Command Modes EXEC Privilege Command History Version 7 4 1 0 Introduced distance bgp Define an administrative distance for routes E Series Syntax distance bgp external distance...

Page 543: ...ns are treated as internal BGP routes neighbor activate This command allows the specified neighbor peer group to be enabled for the current AFI SAFI E Series Syntax neighbor ipv6 address peer group name activate To disable use the no neighbor ipv6 address peer group name activate command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive h...

Page 544: ...al for all routers in the peer group seconds Enter a number as the time interval in seconds between BGP advertisements The range is 0 to 600 seconds The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers Defaults seconds 5 seconds internal peers seconds 30 seconds external peers Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced neig...

Page 545: ...mmand Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group prefix list name Enter the name of an established prefix list If you do not configure the prefix list the default is permit to allow all routes in Enter the keyword in to distribute only inbound traffic out ...

Page 546: ...ccess list If you do not configure the AS PATH access list the default is permit to allow routes in Enter the keyword in to filter inbound BGP routes out Enter the keyword out to filter outbound BGP routes Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced neighbor maximum prefix Control the number of network prefixes received E Series Synt...

Page 547: ...Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced neighbor next hop self Allows you to configure the router as the next hop for a BGP neighbor E Series Syntax neighbor ipv6 address peer group name next hop self To return to the default setting use the no neighbor ipv6 address peer group name next hop self command Parameters ipv6 address Enter the IPv6 address in the x x ...

Page 548: ... 4 1 0 Introduced neighbor route map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group E Series Syntax neighbor ipv6 address peer group name route map map name in out To remove the route map use the no neighbor ipv6 address peer group name route map map name in out command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE...

Page 549: ... route reflector client command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group All routers in the peer group receive routes from a route reflector Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced Usag...

Page 550: ...software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable via non BGP routes and non default routes Related Commands redistribute redistributes routes into BGP redistribute Redistribute routes into BGP C Series E Series Syntax redistribute connected static route map map name To disable redistribution ...

Page 551: ...ghbor default originate command Related Commands neighbor default originate injects the default route show ip bgp ipv6 unicast View the current BGP routing table for the E Series E Series Syntax show ip bgp ipv6 unicast network network mask length Parameters network OPTIONAL Enter the network address in dotted decimal format of the BGP network to view information only on that network network mask ...

Page 552: ...stributed n network Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path h dead 1 100 5ffe 10 3 0 0 1 i h 5ffe 11 3 0 0 1 i dead 2 100 5ffe 10 3 0 0 1 i 5ffe 11 3 0 0 1 i dead 3 100 5ffe 10 3 0 0 1 i 5ffe 11 3 0 0 1 i h dead 4 100 5ffe 10 3 0 0 1 i h 5ffe 11 3 0 0 1 i FTOS show ip bgp ipv6 unicast dead 3 100 BGP routing table entry for dead 3 100 version 3 Paths 2 availab...

Page 553: ...cific to that autonomous system You can specify up to eight community numbers to view information on those community groups local AS Enter the keywords local AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED All routes with the NO_EXPORT_SUBCONFED 0xFFFFFF03 community attribute must not be advertised to external BGP peers no advertise Enter the keywords no advertise to view...

Page 554: ...ommunity list community list name Parameters community list name community list name Enter the name of a configured IP community list Command Modes EXEC EXEC Privilege Command History Version 7 4 1 0 Introduced show ip bgp ipv6 unicast dampened paths View BGP routes that are dampened non active E Series Syntax show ip bgp ipv6 unicast dampened paths Command Modes EXEC EXEC Privilege Command Histor...

Page 555: ...dRRClsTblP 0x41a190a8 NdPktPA 0 NdLocCBP 0x41a6f000 NdTmpPAP 0x419efc80 NdTmpASPAP 0x41a25000 NdTmpCommP 0x41a25800 NdTmpRRClP 0x41a4b000 NdTmpOptP 0x41a4b800 NdTmpNHP NdOrigPAP 0 NdOrgNHP 0 NdModPathP 0x419efcc0 NdModASPAP 0x41a4c000 NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 NdModNHP NdComSortBufP 0x41a19110 NdComSortHdP 0x41a19d04 NdUpdAFMsk 0 AFRstSe t 0x41a1a298 NHopDfrdHdP 0x41a1a3e0 NumNhDf...

Page 556: ... a pattern 0 or more sequences plus the sequences in a pattern 1 or more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns caret the beginning of the input string If you use the caret at the beginning of a sequence or range it matches on everythi...

Page 557: ... neighbor sent dampened routes OPTIONAL Enter the keywords dampened routes to view information on dampened routes from the BGP neighbor detail OPTIONAL Enter the keyword detail to view neighbor specific internal information for the IPv6 address family flap statistics OPTIONAL Enter the keywords flap statistics to view flap statistics on the neighbor s routes routes OPTIONAL Enter the keyword route...

Page 558: ... the minimum time in seconds between advertisements list of inbound and outbound policies Displays the policy commands configured and the names of the Route map AS PATH ACL or Prefix list configured for the policy For address family Displays IPv6 Unicast as the address family BGP table version Displays the which version of the primary BGP routing table the router and the neighbor are using accepte...

Page 559: ...drawn 0 by peer Prefixes advertised 0 rejected 0 withdrawn 0 from peer Connections established 3 dropped 2 Last reset 00 00 39 due to Closed by neighbor Notification History OPEN error Bad AS Sent 0 Recv 1 Local host 5ffe 10 4 Local port 179 Foreign host 5ffe 10 3 Foreign port 35470 BGP neighbor is 5ffe 11 3 remote AS 1 external link BGP version 4 remote router ID 5 5 5 3 BGP state ESTABLISHED in ...

Page 560: ... by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros or enter an IP address in dotted decimal format to reset all prefixes from that neighbor advertised routes OPTIONAL Enter the keywords advertised routes to view only the routes the neighbor sent dampened routes OPTIONAL Enter the keywords dampened routes to view informatio...

Page 561: ... bgp summary command Command Modes EXEC EXEC Privilege Command History Version 7 4 1 0 Introduced Related Commands neighbor peer group assigning peers assigns a peer to a peer group neighbor peer group creating group creates a peer group show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections E Series Syntax show ip bgp ipv6 unicast summary Command Modes EXEC EXEC Pri...

Page 562: ...splays the number of messages waiting to be sent to that neighbor If a number appears in parentheses the number represents the number of messages waiting to be sent to the peer group Up Down Displays the amount of time in hours minutes seconds that the neighbor is in the Established stage If the neighbor has never moved into the Established stage the word never is displayed State Pfx If the neighb...

Page 563: ...MBGP routes in the table Z Series Syntax show ipv6 mbgproutes ipv6 address prefix length summary Parameters ipv6 address prefix length OPTIONAL Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros summary Display a summary of RPF routes Command Modes EXEC Command History...

Page 564: ...564 ...

Page 565: ...h Switch access is allowed through all ports management and user ports with or without DHCP based dynamic IP address configuration of a switch Booting up in Layer 3 mode with interfaces already in No Shutdown mode Enables only some basic protocols to protect the system and the network Supports preconfiguration and postconfiguration scripts to automatically load predefined configurations and FTOS i...

Page 566: ...d user defined string Optional Enter a brief description for DHCP Option 60 Defaults A switch running BMP 3 0 reloads in BMP mode as a DHCP client with all ports configured for Layer 3 traffic Command Modes GLOBAL CONFIGURATION Command History Version 9 1 0 0 Introduced on the Z9000 Updated Command Mode from EXEC Privilege to GLOBAL CONFIGURATION Updated parameter from jumpstart to bmp Added suppo...

Page 567: ...the current reload mode Normal or BMP mode stop bmp stops the BMP process and prevents a loop if the DHCP server is not found script post config Run this command to execute the post configuration script after applying the start up configuration Z Series S4810 Syntax script post config script name Parameter post config scriptname Enter the name of the script to be run after the BMP start up configu...

Page 568: ...ad mode as Normal or BMP stop bmp Stop the switch from reloading in BMP mode to prevent an infinite loop Z Series S4810 Syntax stop bmp NOTE Replaces the stop jumpstart command Defaults none Command Modes CONFIGURATION Command History Version 9 1 0 0 Introduced on Z9000 and S4810 Replaces the stop jumpstart command Usage Information Use the stop bmp command on a switch running BMP 3 0 if the switc...

Page 569: ...n 8 3 10 1 Introduced for the S4810 Usage Information Use the stop jumpstart command on a switch running BMP 2 0 if the switch enters a loop while reloading in jumpstart mode loop occurs when the switch is continuously trying to contact a DHCP server and a DHCP server is not found The stop jumpstart command stops the switch from connecting to the DHCP server After you use the stop jumpstart comman...

Page 570: ...570 ...

Page 571: ...LANs for IP egress ACLs Important Points to Remember CAM Profiles are available on FTOS versions 6 3 1 1 and later for the E Series TeraScale FTOS versions 7 8 1 0 and later support CAM allocations on the C Series and S Series All line cards within a single system must have the same CAM profile including CAM sub region configurations this profile must match the system CAM profile the profile on th...

Page 572: ...qos number l2pt number ipmacacl number ecfmacl number vman qos vman dual qos number ipv4pbr numberopenflow 4 8 Allocate space to each CAM region Enter the CAM profile name followed by the amount of CAM space to be allotted The total space allocated must equal 13 The range for ipv4acl is 1 to 4 The ipv6acl range must be a factor of 2 Enter 4 or 8 for the number of OpenFlow FP blocks 4 Creates 242 e...

Page 573: ...on must be a factor of 2 2 4 6 8 10 If allocation values are not entered for the CAM regions the value is 0 If BMP 3 0 is enabled use the command reload conditional nvram cfg change to perform a reload on the chassis to upgrade any configuration changes that have changed the NVRAM content cam acl EXEC Privilege Adjust the linecard CAM setting to match chassis settings NOTE This command is deprecat...

Page 574: ...ardless of the number of interfaces For more information refer to the IP Access Control Lists Prefix Lists and Route map sections in the FTOS Configuration Guide cam profile Set the default CAM profile and the required microcode E Series Syntax cam profile profile microcode microcode Parameters profile Choose one of the following CAM profiles Enter the keyword default to specify the default CAM pr...

Page 575: ...at require the same hashing for bi directional traffic Enter the keywords lag hash mpls to select the microcode for hashing based on MPLS labels up to five labels deep Enter the keywords ipv6 extacl to select the microcode for IPv6 Enter the keywords acl group to select the microcode for applications that need 16k egress IPv4 ACLs Enter the keywords ipv4 vrf to select the microcode for IPv4 VRF ap...

Page 576: ...to unexpected behavior After you reload the chassis you may make changes to the IPv4 Flow partition show cam acl Display the details of the CAM profiles on the chassis and all line cards C Series Z SEries S4810 Syntax show cam acl Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on...

Page 577: ... Ipv4Acl 5 Ipv6Acl 1 Ipv4Qos 1 L2Qos 1 L2PT 0 IpMacAcl 0 VmanQos 0 VmanDualQos 0 Ipv4pbr 0 FTOS show cam usage Display Layer 2 Layer 3 ACL or all CAM usage statistics E Series Syntax show cam usage acl router switch Parameters acl OPTIONAL Enter the keyword acl to display Layer 2 and Layer 3 ACL CAM usage router OPTIONAL Enter the keyword router to display Layer 3 CAM usage switch OPTIONAL Enter t...

Page 578: ...88 12286 IN L3 FIB 262141 14 262127 IN L3 SysFlow 2878 44 2834 More Example acl FTOS show cam usage switch Linecard Portpipe CAM Partition Total CAM Used CAM AvailableCAM 11 0 IN L2 ACL 7152 0 7152 IN L2 FIB 32768 1081 31687 OUT L2 AC 0 0 0 11 1 IN L2 ACL 7152 0 7152 IN L2 FIB 32768 1081 31687 OUT L2 ACL 0 0 0 FTOS Example router FTOS show cam usage router Linecard Portpipe CAM Partition Total CAM...

Page 579: ...ides 320K entries for the IPv4 FIB Enter the keywords ipv4 egacl 16k to specify the CAM profile that provides 16K entries for egress ACLs Enter the keywords ipv6 extacl to specify the CAM profile that provides IPv6 functionality Enter the keywords l2 ipv4 inacl to specify the CAM profile that provides 32K entries for ingress ACLs Enter the keywords unified default to specify the CAM profile that m...

Page 580: ...6 VRF applications Enter the keyword ipv4 64k ipv6 to specify the CAM profile that provides an alternate to ipv6 extacl that redistributes CAM space from the IPv4FIB to IPv4Flow and IPv6FIB summary OPTIONAL Enter the keyword summary to view a summary listing of the CAM profile and microcode on the chassis and all line cards Defaults none Command Modes EXEC Privilege Command History Version 8 2 1 0...

Page 581: ...xt Boot Profile Name DEFAULT DEFAULT L2FIB 32K entries 32K entries L2ACL 1K entries 1K entries IPv4FIB 256K entries 256K entries IPv4ACL 12K entries 12K entries IPv4Flow 24K entries 24K entries EgL2ACL 1K entries 1K entries EgIPv4ACL 1K entries 1K entries Reserved 8K entries 8K entries IPv6FIB 0 entries 0 entries IPv6ACL 0 entries 0 entries IPv6Flow 0 entries 0 entries EgIPv6ACL 0 entries 0 entrie...

Page 582: ...inecards that are checked Entering all shows the status for linecards in the chassis Portpipe Lists the portpipe port set or port pipes port sets that are checked Entering all shows the status for linecards and port pipes in the chassis CAM Partition Shows the CAM profile of the CAM Available CAM Identifies the amount of CAM space remaining for that profile Estimated CAM per Port Estimates the amo...

Page 583: ...are checked Entering all shows the status for linecards and port pipes in the chassis CAM Partition Shows the CAM profile of the CAM Available CAM Identifies the amount of CAM space remaining for that profile Estimated CAM per Port Estimates the amount of CAM space the listed policy will require Status Indicates whether or not the policy will be allowed in the CAM Example S Series FTOS test cam us...

Page 584: ...e IPv4flow sub regions NOTE This command is deprecated as of FTOS version 8 3 1 0 TeraScale Syntax cam ipv4flow chassis all linecard number default acl value multicast fib value pbr value qos value system flow value trace list value Command Modes EXEC Privilege Command History Version 8 3 1 0 COMMAND DEPRECATED Version 6 3 1 0 Introduced on the E Series cam ipv4flow CONFIGURATION Configure the amo...

Page 585: ...mand Modes CONFIGURATION Command History Version 6 3 1 0 Introduced on the E Series Usage Information CAM profile changes take effect after the next chassis reboot Related Commands copy saves the running configuration show cam ipv4flow displays the CAM IPv4flow entries show cam ipv4flow Display details about the IPv4Flow sub regions TeraScale Syntax show cam ipv4flow Command Modes EXEC Privilege C...

Page 586: ...ed into multiple regions such as Layer 2 FIB Layer 3 FIB IPv4Flow IPv4 Ingress ACL etc The Layer 2 ACL region is further sub divided into six regions Sysflow L2ACL PVST QoS L2PT and FRRP You can change the amount of CAM space in percentage allocated to each sub region The amount of space that you can distribute to the sub partitions is equal to the amount of CAM space that the selected CAM profile...

Page 587: ...M space for system flow entries Enter the keywords system flow and specify the percentage The range is 5 to 100 l2acl percentage Allocate a percentage of the Layer 2 ACL CAM space for Layer 2 ACL entries Enter the keyword l2acl and specify the percentage The range is 5 to 95 pvst percentage Allocate a percentage of the Layer 2 ACL CAM space for PVST entries Enter the keyword pvst and specify the p...

Page 588: ...changed the command displays the current configuration and the configuration that FTOS will write to the CAM after the next chassis reboot TeraScale Syntax show cam l2acl Command Modes EXEC Privilege Command History Version 7 7 1 0 Introduced on the E Series Example FTOS show cam l2acl Chassis Cam L2 ACL Current Settings in percent Sysflow 6 L2Acl 14 Pvst 50 Qos 12 L2pt 13 Frrp 5 Line card 1 Curre...

Page 589: ...ry Version 8 3 11 1 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 service policy rate limit cpu queues Apply a policy map for the system to rate limit control traffic on a per queue basis S4810 Z Series Syntax service policy rate limit cpu queues policy name Parameters policy name Enter the service policy name using a string up to 32 characters Defaults Not configured Command Mod...

Page 590: ...ers policy name Enter the service policy name using a string up to 32 characters Defaults Not configured Command Modes CONTROL PLANE CPUQOS Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Usage Information This command applies the service policy based on the type of protocol defined in the ACL rules You must create ACL and QoS policies prior to enab...

Page 591: ...ust create ACL and QoS policies prior to enabling this command Example FTOS show cpu queue rate cp Service Queue Rate PPS Q0 1300 Q1 300 Q2 300 Q3 300 Q4 2000 Q5 400 Q6 400 Q7 1100 FTOS show ip protocol queue mapping Display the queue mapping for each configured protocol Z Series S4810 Syntax show ip protocol queue mapping Defaults Not configured Command Modes EXEC Privilege Command History Versio...

Page 592: ...TELNET any 23 _ Q6 CP _ VRRP any any _ Q7 CP _ FTOS show ipv6 protocol queue mapping Display the queue mapping for each configured IPv6 protocol Z Series S4810 Syntax show ipv6 protocol queue mapping Defaults Not configured Command Modes EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Example FTOS show ipv6 protocol queue mapping Proto...

Page 593: ...d on the Z9000 Version 8 3 8 0 Introduced on the S4810 Example FTOS show mac protocol queue mapping Protocol Destination Mac EtherType Queue EgPort Rate kbps ARP any 0x0806 Q5 Q6 CP _ FRRP 01 01 e8 00 00 10 11 any Q7 CP _ LACP 01 80 c2 00 00 02 0x8809 Q7 CP _ LLDP any 0x88cc Q7 CP _ GVRP 01 80 c2 00 00 21 any Q7 CP _ STP 01 80 c2 00 00 00 any Q7 CP _ ISIS 01 80 c2 00 00 14 15 any Q7 CP _ 09 00 2b ...

Page 594: ...594 ...

Page 595: ...and PFC Commands ETS Commands DCBX Commands DCB Command The following DCB command is supported on the S4810 platform dcb enable Enable data center bridging S4810 Syntax dcb enable To disable DCB use the no dcb enable command Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Infor...

Page 596: ...words stack unit followed by the stack unit number to be cleared all stack ports all Enter the keywords all stack ports all to clear the counters on all interfaces Defaults none Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module dcb input Create a DCB input policy to apply pause or flow control for ...

Page 597: ...nterface S4810 Syntax dcb policy input policy name To delete the input policy use the no dcb policy input command Parameters policy name Enter the input policy name with the PFC configuration to an ingress interface Defaults none Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information If you...

Page 598: ...ll dcb input policy name To remove all DCB input policies applied to the stacked ports and rest the PFC to its default settings use the no dcb policy input stack unit all command To remove only the DCB input policies applied to the specified switch use the no dcb policy input stack unit command Parameters stack unit id Enter the stack unit identification dcb input policy name Enter the policy name...

Page 599: ... 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information If you configure PFC on a 40GbE port count the 40GbE port as four PFC enabled ports in the pfc port number you enter in the command syntax To achieve lossless PFC operation the PFC port count and queue number used for the reserved buffer size that is created must be greater than or ...

Page 600: ...nd Parameters value The range is in quanta 712 to 65535 One quantum is equal to a 512 bit transmission Defaults 45556 quantum Command Modes DCB INPUT POLICY Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information The minimum link delay must be greater than the round trip transmission time a peer needs to honor a PF...

Page 601: ...k level flow control at the same time on an interface Related Commands dcb input creates a DCB input policy pfc no drop queues Configure the port queues that still functions as no drop queues for lossless traffic S4810 Syntax pfc no drop queues queue range To remove the no drop port queues use the no pfc no drop queues command Parameters queue range Enter the queue range Separate the queue values ...

Page 602: ...des DCB INPUT POLICY Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information You can enable any number of 802 1p priorities for PFC Queues to which PFC priority traffic is mapped are lossless by default Traffic may be interrupted due to an interface flap going down and coming up when you reconfigure the lossless qu...

Page 603: ...rt set 0 DCB Status Enabled PFC Port Count 56 current 56 configured PFC Queue Count 2 current 2 configured show interface pfc Displays the PFC configuration applied to ingress traffic on an interface including priorities and link delay S4810 Syntax show interface port type slot port pfc summary detail Parameters port type slot port pfc Enter the port type slot and port PFC information summary deta...

Page 604: ...ion parameters were exchanged with the peer Recommend Remote PFC configuration parameters were received from the peer Internally propagated PFC configuration parameters were received from the configuration source PFC DCBX Oper status Operational status for the exchange of the PFC configuration on the local port match up or mismatch down State Machine Type Type of state machine used for DCBX exchan...

Page 605: ...mmary Interface TenGigabitEthernet 0 49 Admin mode is on Admin is enabled Remote is enabled Priority list is 4 Remote Willing Status is enabled Local is enabled Oper status is Recommended PFC DCBX Oper status is Up State Machine Type is Feature TLV Tx Status is enabled PFC Link Delay 45556 pause quantams Application Priority TLV Parameters FCOE TLV Tx Status is disabled ISCSI TLV Tx Status is disa...

Page 606: ... the port type slot port Enter the slot port number Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Example Summary FTOS show interfaces te 0 0 pfc statistics Interface TenGigabitEthernet 0 0 Priority Received PFC Frames Transmitted PFC Frames 0 0 0 1 0 0 2 0 0 3 0 0 4 0 0 5 0 0 6 0 0 7 0 0 show qos d...

Page 607: ...l Parameters stack unit Enter the stack unit port number Enter the port number Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Example Summary FTOS conf show stack unit all stack ports all pfc details stack unit 0 stack port all Admin mode is On Admin is enabled Priority list is 4 5 Local is enab...

Page 608: ...p The sum of the allocated bandwidth to all queues in a priority group must be 100 of the bandwidth on the link ETS assigned bandwidth allocation applies only to data queues not to control queues The configuration of bandwidth allocation and strict queue scheduling is not supported at the same time for a priority group If you configure both the configured bandwidth allocation is ignored for priori...

Page 609: ...he no dcb enable command Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information By default iSCSI is enabled on the unit and flowcontrol is enabled on all of the interfaces or if link level flow control is enabled on one or more interfaces To enable DCB do one of the follow...

Page 610: ...n apply a DCB output policy on multiple egress ports When you apply an ETS output policy on an interface ETS configured scheduling and bandwidth allocation take precedence over any configured settings in QoS output policies The ETS configuration associated with 802 1 priority traffic in a DCB output policy is used in DCBX negotiation with ETS peers Related Commands dcb policy output applies the ou...

Page 611: ...nit all command To remove only the DCB output policies applied to the specified switch use the no dcb policy output stack unit command Parameters stack unit id Enter the stack unit identification dcb output policyname Enter the policy name for the DCB output policy Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the ...

Page 612: ...policy output applies the output policy ets mode on Enable the ETS configuration so that scheduling and bandwidth allocation configured in an ETS output policy or received in a DCBX TLV from a peer can take effect on an interface S4810 Syntax ets mode on To remove the ETS configuration use the no ets mode on command Defaults ETS mode is on Command Modes DCB OUTPUT POLICY Command History Version 8 ...

Page 613: ...and History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information By default All 802 1p priorities are grouped in priority group 0 100 of the port bandwidth is assigned to priority group 0 The complete bandwidth is equally assigned to each priority class so that each class has 12 to 13 Related Commands priority group creates an ...

Page 614: ...er numbered priority queue is given preference when scheduling data traffic Related Commands priority list configures the 802 1p priorities for an ETS output policy set pgid configures the priority group priority group qos policy Associate the 802 1p priority traffic in a priority group with the ETS configuration in a QoS output policy S4810 Syntax priority group group name qos policy ets policy n...

Page 615: ...ccurs in an ETS output policy configuration the configuration is ignored and the scheduler and bandwidth allocation settings are reset to the ETS default values all priorities are in the same ETS priority group and bandwidth is allocated equally to each priority If an error occurs when a port receives a peer s ETS configuration the port s configuration is reset to the previously configured ETS out...

Page 616: ...If you configure both the configured bandwidth allocation is ignored for priority group traffic when you apply the output policy on an interface Related Commands qos policy output ets configures the ETS bandwidth allocation bandwidth percentage bandwidth percentage allocated to priority traffic in port queues set pgid Configure the priority group identifier S4810 Syntax set pgid value To remove th...

Page 617: ...nterface type with stack unit and port number Max Supported TC Group Maximum number of priority groups supported Number of Traffic Classes Number of 802 1p priorities currently configured Admin mode ETS mode on or off When on the scheduling and bandwidth allocation configured in an ETS output policy or received in a DCBX TLV from a peer can take effect on an interface Admin Parameters ETS configur...

Page 618: ...versions Asymmetric for an IEEE version Conf TLV Tx Status Status of ETS Configuration TLV advertisements enabled or disabled ETS TLV Statistic Input Conf TLV pkts Number of ETS Configuration TLVs received ETS TLV Statistic Output Conf TLV pkts Number of ETS Configuration TLVs transmitted ETS TLV Statistic Error Conf TLV pkts Number of ETS Error Configuration TLVs received Example Summary FTOS con...

Page 619: ...LV Pkts 1955 Output Reco TLV Pkts 0 Error Reco TLV Pkts FTOS conf qos policy out ets do sho int te 0 3 ets de Interface TenGigabitEthernet 0 3 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters Admin is enabled TC grp Priority Bandwidth TSA 0 1 0 1 2 100 ETS 2 3 0 SP 3 4 5 6 7 0 SP 4 5 6 7 Remote Parameters Remote is disabled Local Parameters Local is ena...

Page 620: ...min is enabled TC grp Priority Bandwidth TSA 0 0 1 2 3 4 5 6 7 100 ETS 1 0 ETS 2 0 ETS 3 0 ETS 4 0 ETS 5 0 ETS 6 0 ETS 7 0 ETS Priority Bandwidth TSA 0 13 ETS 1 13 ETS 2 13 ETS 3 13 ETS 4 12 ETS 5 12 ETS 6 12 ETS 7 12 ETS Remote Parameters Remote is disabled Local Parameters Local is enabled TC grp Priority Bandwidth TSA 0 0 1 2 3 4 5 6 7 100 ETS 1 0 ETS 2 0 ETS 3 0 ETS 4 0 ETS 5 0 ETS 6 0 ETS 7 0...

Page 621: ... 0 ETS 2 0 ETS 3 0 ETS 4 0 ETS 5 0 ETS 6 0 ETS 7 0 ETS Priority Bandwidth TSA 0 13 ETS 1 13 ETS 2 13 ETS 3 13 ETS 4 12 ETS 5 12 ETS 6 12 ETS 7 12 ETS Remote Parameters Remote is disabled Local Parameters Local is enabled TC grp Priority Bandwidth TSA 0 0 1 2 3 4 5 6 7 100 ETS 1 0 ETS 2 0 ETS 3 0 ETS 4 0 ETS 5 0 ETS 6 0 ETS 7 0 ETS Priority Bandwidth TSA 0 13 ETS 1 13 ETS 2 13 ETS 3 13 ETS 4 12 ETS...

Page 622: ... Switch IO Module Example Summary FTOS show qos dcb output dcb output ets priority group san qos policy san priority group ipc qos policy ipc priority group lan qos policy lan show qos priority groups Displays the ETS priority groups configured on the switch including the 802 1p priority classes and ID of each group S4810 Syntax show qos priority groups Command Modes EXEC Privilege Command History...

Page 623: ... Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Example Summary FTOS conf show stack unit all stack ports all ets details Stack unit 0 stack port all Max Supported TC Groups is 4 Number of Traffic Classes is 1 Admin mode is on Admin Parameters Admin is enabled TC grp Priority Bandwidth TSA 0 0 1 2 3 4 5...

Page 624: ...ither globally or on a specified interface The interface configuration takes priority over global configuration advertise dcbx appln tlv On a DCBX port with a manual role configure the application priority TLVs advertised on the interface to DCBX peers S4810 Syntax advertise dcbx appln tlv fcoe iscsi To remove the application priority TLVs use the no advertise dcbx appln tlv fcoe iscsi command Par...

Page 625: ...eco enables the advertisement of ETS recommend TLVs pfc enables the advertisement of PFC TLVs Defaults All PFC and ETS TLVs are advertised Command Modes PROTOCOL LLDP Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information You can configure the transmission of more than one TLV type at a time for example advertise ...

Page 626: ...ed DCB configuration from a configuration source manual configures the port to operate only on administer configured DCB parameters The port does not accept a DCB configuration received form a peer or a local configuration source Defaults Manual Command Modes INTERFACE PROTOCOL LLDP Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO M...

Page 627: ...NTERFACE level on a switch or globally on the switch To verify the DCBX configuration on a port use the show interface dcbx detail command debug dcbx Enable DCBX debugging S4810 Syntax debug dcbx all auto detect timer config exchng fail mgmt resource sem tlv To disable DCBX debugging use the no debug dcbx command Parameters all auto detect timer config exchng fail mgmt resource sem tlv Enter the t...

Page 628: ...sion 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Usage Information This command is available at the global level only iscsi priority bits Configure the iSCSI priority advertised for the iSCSI protocol in application priority TLVs S4810 Syntax iscsi priority bits priority bitmap To remove the configured iSCSI priority use the no iscsi priority b...

Page 629: ...tional status enabled or disabled used to elect a configuration source and internally propagate a DCB configuration The DCBX operational status is the combination of PFC and ETS operational status Configuration Source Specifies whether the port serves as the DCBX configuration source on the switch true yes or false no Local DCBX Compatibility mode DCBX version accepted in a DCB configuration as co...

Page 630: ...ment Number Acknowledgement number transmitted in Control TLVs received from the peer device Total DCBX Frames transmitted Number of DCBX frames sent from the local port Total DCBX Frames received Number of DCBX frames received from the remote peer port Total DCBX Frame errors Number of DCBX frames with errors received Total DCBX Frames unrecognized Number of unrecognizable DCBX frames received Ex...

Page 631: ...Transmitted ErPfi Local DCBX Status DCBX Operational Version is 0 DCBX Max Version Supported is 0 Sequence Number 2 Acknowledgment Number 2 Protocol State In Sync Peer DCBX Status DCBX Operational Version is 0 DCBX Max Version Supported is 255 Sequence Number 2 Acknowledgment Number 2 Total DCBX Frames transmitted 27 Total DCBX Frames received 6 Total DCBX Frame errors 0 Total DCBX Frames unrecogn...

Page 632: ...632 ...

Page 633: ...onnected via the console In other words you cannot run diagnostics on a unit to which you are connected to via a stacking link Diagnostic results are printed to the screen FTOS does not write them to memory Diagnostics only test connectivity not the entire data path diag stack unit Run offline diagnostics on a stack unit S Series Z Series Syntax diag stack unit number alllevels level0 level1 level...

Page 634: ...using VLAN configurations You must physically remove the unit from the stack to test 10G links verbose Enter the keyword verbose to run the diagnostic in Verbose mode Verbose mode gives more information in the output than Standard mode testname Enter the keyword level2 to run a specific test case Enclose the test case name in double quotes For example diag stack unit 1 level1 testname first Defaul...

Page 635: ...ies Syntax online stack unit number Parameters number Enter the stack unit number S4810 range is 0 to 11 Z9000 range is 0 to 7 Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 7 1 0 Introduced on the S Series Usage Information You cannot enter this command on a Master or Standby unit The system reboots when the off line diagnostics compl...

Page 636: ...configure the number of packet pointers per queue queue0 number Enter the keyword queue0 and the number to allocate an amount of buffer space or packet pointers to Queue 0 Dedicated Buffer Range 0 to 2013 Dynamic Buffer Range FP 0 to 2013 CSF 0 to 131200 in multiples of 80 Packet Pointer Range 0 to 2047 queue1 number Enter the keyword queue1 and the number to allocate an amount of buffer space or ...

Page 637: ...nter the keyword linecard followed by the line card slot number port set port pipe Enter the keywords port set followed by the port pipe number The range is 0 to 3 on the C Series and 0 to 1 on the S Series buffer policy buffer profile Enter the keywords buffer policy followed by the name of a buffer profile you created Defaults none Command Modes BUFFER PROFILE Command History Version 7 7 1 0 Int...

Page 638: ... 1Q Enter the keyword 1Q to choose a pre defined buffer profile for single queue for example non QoS applications 4Q Enter the keyword 4Q to choose a pre defined buff fer profile for four queue for example QoS applications Defaults global 4Q Command Modes CONFIGURATION Command History Version 8 3 11 0 Introduced on the Z9000 Version 7 8 1 0 Added the global keyword Version 7 7 1 0 Introduced on th...

Page 639: ...erface C Series S Series Syntax show buffer profile detail summary csf fp uplink Parameters detail Display the buffer allocations of the applied buffer profiles summary Display the buffer profiles that are applied to line card port pipes in the system csf Display the Switch Fabric Processor buffer profiles that you have applied to line card port pipes in the system fp uplink Display the Field Proc...

Page 640: ...interface interface Enter the keyword interface followed by the interface type either gigabitethernet or tengigabitethernet slot port Enter the slot and port number of the interface Defaults none Command Modes INTERFACE Command History Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Example FTOS show buffer profile detail csf linecard 4 port set 0 Linecard 4 P...

Page 641: ...t pipe number from 0 to 1 followed by the keyword counters to clear the counters on the selected port pipe NOTE S25 models S25N S25P S25V etc have only port pipe 0 cpu data plane statistics Enter the keywords cpu data plane statistics to clear the data plane statistics cpu party bus statistics Enter the keywords cpu party bus statistics to clear the management statistics stack port 0 52 Enter the ...

Page 642: ...642 ...

Page 643: ... to prevent a manual power cycle show hardware layer2 Display Layer 2 ACL or eg data for the selected stack member and stack member port pipe S Series Z Series Syntax show hardware layer2 eg acl in acl stack unit id port set 0 3 Parameters eg acl in acl Enter either the keyword eg acl or the keyword in acl to select between ingress or egress ACL data stack unit id Enter the keyword stack unit to s...

Page 644: ...mmand History Version 8 3 11 0 Introduced on the Z9000 Version 7 8 1 0 Introduced on the S Series show hardware stack unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member S Series Z Series Syntax show hardware stack unit stack unit cpu data plane statistics stack port 0 52 cpu i2c statistics cpu party bus statistics ...

Page 645: ...tail register Enter the keyword unit followed by 0 or 3 and then enter one of the following keywords to troubleshoot errors on the selected port pipe and to give status on why a port is not coming up to register level counters details port stats detail or register TI monitor S55 only Enter the unit keyword to show information regarding the TI register Defaults none Command Modes EXEC EXEC Privileg...

Page 646: ...8 bytes 0 dropped 0 errors Output Statistics 366 packets 133100 bytes 0 errors FTOS Example Drops FTOS sh hard stack unit 0 drops UNIT No 0 Total Ingress Drops 0 Total IngMacDrops 0 Total MmuDrops 0 Total EgMacDrops 0 Total Egress Drops 0 FTOS Example Drops Unit FTOS sh hard stack unit 0 drops unit 0 PortNumberIngress Drops IngMac Drops Total Mmu Drops 1 0 0 0 2 0 0 0 3 0 0 0 4 0 0 0 EgMac Drops E...

Page 647: ...2 ge11 ena SW Yes Forward Tag F SGMII 9252 ge12 ena SW Yes Forward Tag F SGMII 1554 ge13 ena SW Yes Forward Tag F SGMII 1554 ge14 ena SW Yes Forward Tag F SGMII 1554 ge15 ena SW Yes Forward Tag F SGMII 1554 ge16 ena SW Yes Forward Tag F SGMII 1554 ge17 ena SW Yes Forward Tag F SGMII 1554 ge18 ena SW Yes Forward Tag F SGMII 1554 ge19 ena SW Yes Forward Tag F SGMII 1554 ge20 ena SW Yes Forward Tag F...

Page 648: ...6102 BCAST_BLOCK_MASK ge6 0x00000000 0x0e707102 BCAST_BLOCK_MASK ge7 0x00000000 0x0e708102 BCAST_BLOCK_MASK ge8 0x00000000 0x0e709102 BCAST_BLOCK_MASK ge9 0x00000000 0x0e70a102 BCAST_BLOCK_MASK ge10 0x00000000 0x0e70b102 BCAST_BLOCK_MASK ge11 0x00000000 0x0e70c102 BCAST_BLOCK_MASK ge12 0x00000000 0x0e70d102 BCAST_BLOCK_MASK ge13 0x00000000 0x0e70e102 BCAST_BLOCK_MASK ge14 0x00000000 0x0e70f102 BCA...

Page 649: ...4 is FALSE The linkStatus of Front End Port 5 is FALSE The linkStatus of Front End Port 6 is FALSE The linkStatus of Front End Port 7 is FALSE The linkStatus of Front End Port 8 is FALSE The linkStatus of Front End Port 9 is FALSE The linkStatus of Front End Port 10 is FALSE The linkStatus of Front End Port 11 is FALSE The linkStatus of Front End Port 12 is FALSE The linkStatus of Front End Port 1...

Page 650: ...ries displays the CPU usage information based on the processes running in an S Series show system S Series and Z Series displays the current status of all the stack members or a specific member show hardware system flow Display Layer 3 ACL or QoS data for the selected stack member and stack member port pipe S Series Z Series Syntax show hardware system flow layer2 stack unit id port set 0 3 counte...

Page 651: ...4 Unknown L2MC Packets 0 3 L2DLF Packets 0 2 L2UCAST Packets 0 1 L2BCASTPackets 0 25 FTOS Example param1 0 0x00 action act CosQCpuNew param0 7 0x07 param1 0 0x00 action act CopyToCpu param0 0 0x00 param1 0 0x00 action act UpdateCounter param0 1 0x01 param1 0 0x00 meter NULL counter idx 1 mode 0x01 entries 1 FP Entry for redirecting LACP traffic to CPU Port EID 2045 gid 1 slice 15 slice_idx 0x02 pr...

Page 652: ... act UpdateCounter param0 1 0x01 param1 0 0x00 meter NULL counter idx 3 mode 0x01 entries 1 FP Entry for redirecting ARP Replies to RSM EID 2043 gid 1 slice 15 slice_idx 0x04 prio 0x7fb flags 0x82 Installed tcam color_indep 0 higig 0 higig_mask 0 KEY 0x00000000 00000000 00000000 00000000 00000000 00000806 00001600 FPF4 0x00 MASK 0x00000000 00000000 00000000 00000000 00000000 0000ffff 00001600 0x00...

Page 653: ...DHCP Server Use the following commands to configure the system to ba DHCP server clear ip dhcp Reset the DHCP counters C Series S Series Z Series S4810 Syntax clear ip dhcp binding address conflict server statistics Parameters binding Enter the keyword binding to delete all entries in the binding table address Enter the IP address to clear the binding entry for a single IP address conflicts Enter ...

Page 654: ...e Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series and S Series default router Assign a default gateway to clients based on the address pool C Series S Series Z Series S4810 Syntax default router address address2 address8 Parameters address Enter a list of routers that may be the default gateway for clients on the subnet You may specify up to eigh...

Page 655: ...based on address pool C Series S Series Z Series S4810 Syntax dns server address address2 address8 Parameters address Enter the a list of DNS servers that may service clients on the subnet You may list up to eight servers in order of preference Defaults none Command Modes DHCP POOL Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Intr...

Page 656: ...dress in a range of addresses to be excluded from the pool high address Enter the highest address in a range of addresses to be excluded from the pool Defaults none Command Modes DHCP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series hardware address For manual configurations specify the client h...

Page 657: ...troduced on the C Series and S Series lease Specify a lease time for the addresses in a pool C Series S Series Z Series S4810 Syntax lease days hours minutes infinite Parameters days Enter the number of days of the lease The range is 0 to 31 hours Enter the number of hours of the lease The range is 0 to 23 minutes Enter the number of minutes of the lease The range is 0 to 59 infinite Specify that ...

Page 658: ...on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series netbios node type Specify the NetBIOS node type for a Microsoft DHCP client Dell Force10 recommends specifying clients as hybrid C Series S Series Z Series S4810 Syntax netbios node type type Parameters type Enter the NETBIOS node type Broadcast Enter the keyword b node Hybrid Enter the key...

Page 659: ... on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series pool Create an address pool C Series S Series Z Series S4810 Syntax pool name Parameters name Enter the address pool s identifying name Defaults none Command Modes DHCP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series show ip ...

Page 660: ... EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series and S Series show ip dhcp conflict Display the address conflict log C Series S Series Z Series Syntax show ip dhcp conflict address Parameters address Display a particular conflict log entry Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the...

Page 661: ...rsion 8 2 1 0 Introduced on the C Series and S Series Commands to Configure Secure DHCP DHCP as defined by RFC 2131 provides no authentication or security mechanisms Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks 661 ...

Page 662: ...662 ...

Page 663: ...he S4810 Version 8 3 1 0 Introduced on the E Series Version 8 2 1 0 Introduced on the C Series and S Series Related Commands arp inspection enables dynamic ARP inspection on a VLAN clear ip dhcp snooping Clear the DHCP binding table C Series E Series Z Series S Series Syntax clear ip dhcp snooping binding Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the...

Page 664: ...abled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Introduced on the E Series Version 8 2 1 0 Introduced on the C Series and S Series on Layer 2 interfaces Version 7 8 1 0 Introduced on the C Series and S Series on Layer 3 interfaces Usage Information When enabled no learning takes place until you enable snooping on a VLAN After disabling DHC...

Page 665: ...Ethernet interface enter the keyword fastethernet For a Gigabit Ethernet interface enter the keyword gigabitethernet For a SONET interface enter the keyword sonet For a Ten Gigabit Ethernet interface enter the keyword tengigabitethernet For a 40 Gigabit Ethernet interface enter the keyword fortyGigE slot port Enter the slot and port number of the interface lease time Enter the keyword lease follow...

Page 666: ...the C Series and S Series ip dhcp snooping database renew Renew the binding table C Series E Series S Series Z Series S4810 Syntax ip dhcp snooping database renew Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Version 7 8 1 0 Introduced on the C Series and S ...

Page 667: ...sion 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Version 8 2 1 0 Added the keyword ipmac Version 7 8 1 0 Introduced on the C Series and S Series Usage Information You must allocate at least one FP block to ipmacacl before you can enable IP MAC Source Address Validation 1 Use the cam acl l2acl command from CONFIGURATION mode 2 ...

Page 668: ...Syntax ip dhcp relay information option trust downstream Parameters trust downstream Configure the system to trust Option 82 when it is received from the previous hop router Default Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Introduced on the E Series Version 7 8 1 0 Introduced on C Series and S Series ip dhcp relay information age...

Page 669: ...p snooping verify mac address Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Introduced on the E Series Version 7 2 1 0 Introduced on the C Series and S Series show ip dhcp snooping Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard C Series E Series S Series Z Series Synta...

Page 670: ...Related Commands clear ip dhcp snooping clears the contents of the DHCP binding table 670 ...

Page 671: ...e monitor command Parameters ecmp group ID Enter the identifier number for the ECMP group The range is 2 to 64 interface Enter the following keywords and slot port to add the interface to the ECMP group 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port inf...

Page 672: ... seed value To return to the default hash algorithm use the no hash algorithm command To return to the default ECMP hash algorithm use the no hash algorithm ecmp algorithm value command To remove the hash algorithm on a particular line card use the no hash algorithm linecard number command Parameters algorithm number Enter the algorithm number The range is 0 to 47 ecmp crc16 crc16cc crc32MSB crc32...

Page 673: ...C16_BISYNC_AND_XOR8 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor8 xor16 Use CR16 16 bit XOR Enter the keywords stack unit followed by a stack unit number to specify a stack unit The range is 0 to 7 Enter the keywords port set port pipe followed by the port pipe number The range is 0 to 5 hg seed seed value stack unit Z Series only Enter the keywords hg seed followed by the hash algorithm s...

Page 674: ...hash value calculated with the hash algorithm command is unique to the entire chassis The hash algorithm command with the line card option changes the hash for a particular line card by applying the mask specified in the IPSA and IPDA fields The line card option is applicable with the lag hash align microcode only refer to cam profile Config Any other microcode returns an error message as follows ...

Page 675: ...the ECMP LAG and NH hashing algorithm E Series Syntax hash algorithm d value linecard slot port set number Parameters d value Enter the keyword d followed by the d value The range is 0 to 4095 linecard slot Enter the keyword linecard followed by the linecard slot number port set number Enter the keywords port set followed by the linecard port pipe number Defaults none Command Modes CONFIGURATION C...

Page 676: ...es the destination IP for ECMP hashing Default enabled lsb Returns the LSB of the key as the hash Default crc lower Defaults crc lower dest ip enabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Usage Information The hash...

Page 677: ... bits of xor1 xor2 Use CRC16_BISYNC_AND_XOR2 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor2 xor4 Use CRC16_BISYNC_AND_XOR4 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor4 xor8 Use CRC16_BISYNC_AND_XOR8 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor8 xor16 Use CR16 16 bit XOR crc16cc Use CRC16_CCITT 16 bit CRC16 using CRC16 CCITT polynomial crc32MSB Use CRC32_UPPER MSB 16 bits of...

Page 678: ... 0 to 5 Defaults 32 bit chassis MAC and system time Command Modes CONFIGURATION Command History Version 8 3 11 4 Introduced on the Z9000 hash algorithm seed Select the seed value for the ECMP LAG and NH hashing algorithm E series Z Series Syntax hash algorithm seed value linecard slot port set number Parameters seed value Enter the keyword seed followed by the seed value The range is 0 to 4095 lin...

Page 679: ...n each port pipe to achieve deterministic behavior If the hash algorithm configuration is removed the hash seed does not go to the original factory default setting ip ecmp deterministic Deterministic ECMP Next Hop arranges all ECMPs in order before writing them into the CAM E Series Syntax ip ecmp deterministic Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 1 0 Introduce...

Page 680: ...ION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 Usage Information You must save the new ECMP settings to the startup config write mem then reload the system for the new settings to take effect Related Commands show ip cam stack unit Display content addressable memory CAM entries for an S Series switch ipv6 ecmp deterministic Deterministic ECMP N...

Page 681: ...undle Z Series S4810 Syntax link bundle distribution trigger threshold percent To exit from ecmp group mode use the exit command Parameters percent Indicate the threshold value when traffic distribution will start being monitored on an ECMP link bundle The range is 1 to 90 The default is 60 Command Modes EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 10 0 Introd...

Page 682: ...tribution Display the link bundle distribution for the interfaces in the bundle type of bundle LAG or ECMP and the most recently calculated interface utilization either bytes per second rate or maximum rate for each interface S4810 Syntax show link bundle distribution Command Modes EXEC Privilege Command History Version 8 3 10 0 Introduced on the S4810 Example FTOS show link bundle distribution Li...

Page 683: ...mode enable command to disable the FIPS cryptography mode Default Disabled Command Modes CONFIGURATION Example FTOS conf fips mode enable WARNING Enabling FIPS mode will close all SSH Telnet connection restart those servers and destroy all configured host keys proceed y n y FTOS conf Command History Version 9 1 0 0 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Related Commands i...

Page 684: ...ssions show system S Series and S4810 Display the current status of all units in the system show ip ssh Configure the port for bridge to FCF links Z Series S4810 Syntax show ip ssh Defaults None Command Modes EXEC EXEC Privilege Example FTOS show ip ssh SSH server enabled SSH server version v1 and v2 Password Authentication enabled Hostbased Authentication disabled RSA Authentication disabled Vty ...

Page 685: ...Some of the parameters in this command require licensing to access For more information contact your Dell Force10 representative Z Series S4810 Syntax ssh hostname ipv4 address ipv6 address c encryption cipher l username m HMAC alogorithm p port number v 1 2 Parameters hostname OPTIONAL Enter the IP address or the hostname of the remote device vrf instance OPTIONAL E Series Only Enter the keyword ...

Page 686: ... algorithm hmac md5 96 Force ssh to use the hmac md5 96 HMAC algorithm With the FIPS mode enabled hmac sha1 Force ssh to use the hmac sha1 HMAC algorithm hmac sha1 96 Force ssh to use the hmac sha1 96 HMAC algorithm p port number OPTIONAL Enter the keyword p followed by the port number Range 1 to 65536 Default 22 v 1 2 OPTIONAL Enter the keyword v followed by the SSH version 1 or 2 Default The ver...

Page 687: ...o use hmac sha1 96 HMAC algorithm hmac md5 Force ssh to use hmac md5 HMAC algorithm hmac md5 96 Force ssh to use hmac md5 96 HMAC algorithm With FIPS mode enabled FTOS ssh 10 11 8 12 c Encryption cipher to use for v2 client l User name option m HMAC algorithm to use for v2 clients only p SSH server port option default 22 cr FTOS ssh 10 11 8 12 c aes128 cbc Force ssh to use aes128 cbc encryption ci...

Page 688: ...688 ...

Page 689: ...FCF clear fip snooping database interface vlan Clear FIP snooping information on a VLAN for a specified FCoE MAC address ENode MAC address or FCF MAC address and remove the corresponding ACLs generated by FIP snooping S4810 and MXL Switch Syntax clear fip snooping database interface vlan vlan id enode enode mac address fcf fcf mac address session session mac address Parameters enode mac address En...

Page 690: ...Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module debug fip snooping Enable debugging on FIP snooping S4810 and MXL Switch Syntax debug fip snooping all acl error ifm info ipc rx Parameters all Enter the keyword all to enable debugging on all the options acl Enter the keyword acl for ACL specific debugging...

Page 691: ...Module fip snooping enable Enable FIP snooping on all VLANs or on a specified VLAN S4810 and MXL Switch Syntax fip snooping enable To disable the FIP snooping feature on all or a specified VLAN use the no fip snooping enable command Defaults FIP snooping is disabled on all VLANs Command Modes CONFIGURATION VLAN INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Int...

Page 692: ...mand History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module fip snooping port mode fcf Configure the port for bridge to FCF links S4810 and MXL Switch Syntax fip snooping port mode fcf To disable the bridge to FCF link on a port use the no fip snooping port mode fcf command Command Modes INTERFACE Command History Version 8 3 12 0 Introduce...

Page 693: ...ule Usage Information The maximum number of FCoE VLANs supported on the switch is eight show fip snooping config Display the FIP snooping status and configured FC MAP values S4810 and MXL Switch Syntax show fip snooping config Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Example FTOS show...

Page 694: ... fip snooping enode command shown in the Example below Field Description ENode MAC MAC address of the ENode ENode Interface Slot port number of the interface connected to the ENode FCF MAC MAC address of the FCF VLAN VLAN ID number the session uses FC ID Fibre Channel session ID the FCF assigns Example FTOS show fip snooping enode Enode MAC Enode Interface FCF MAC VLAN FC ID d4 ae 52 1b e3 cd Te 0...

Page 695: ...o the ENode FKA_ADV_PERIOD Time in milliseconds during which FIP keep alive advertisements transmit No of ENodes Number of ENodes connected to the FCF FC ID Fibre Channel session ID the FCF assigns Example FTOS show fip snooping fcf FCF MAC FCF Interface VLAN FC MAP FKA_ADV_PERIOD No of Enodes 54 7f ee 37 34 40 Po 22 100 0e fc 00 4000 2 show fip snooping sessions Display information on FIP snooped...

Page 696: ...ibre Channel ID the FCF assigns Port WWPN Worldwide port name of the CNA port Port WWNN Worldwide node name of the CNA port Example FTOS show fip snooping sessions Enode MAC Enode Intf FCF MAC FCF Intf VLAN FCoE MAC FC ID Port WWPN Port WWNN 00 00 c9 f1 e1 37 Te 0 28 54 7f ee 34 77 4e Te 1 47 111 0e fc 00 b5 00 07 b5 00 07 10 00 00 00 c9 f1 e1 37 20 00 00 00 c9 f1 e1 37 00 c0 dd 12 c0 05 Te 1 26 5...

Page 697: ...e Number of Multicast Discovery Solicits Number of FIP snoop multicast discovery solicit frames received on the interface Number of Unicast Discovery Solicits Number of FIP snoop unicast discovery solicit frames received on the interface Number of FLOGI Number of FIP snoop FLOGI request frames received on the interface Number of FDISC Number of FIP snoop FDISC request frames received on the interf...

Page 698: ...ue to Hardware Config Number of session failures due to hardware configuration that occurred on the interface Example FTOS show fip snooping statistics interface vlan 100 Number of Vlan Requests 0 Number of Vlan Notifications 0 Number of Multicast Discovery Solicits 2 Number of Unicast Discovery Solicits 0 Number of FLOGI 2 Number of FDISC 16 Number of FLOGO 0 Number of Enode Keep Alive 9021 Numbe...

Page 699: ...its 0 Number of Unicast Discovery Solicits 0 Number of FLOGI 0 Number of FDISC 0 Number of FLOGO 0 Number of Enode Keep Alive 0 Number of VN Port Keep Alive 0 Number of Multicast Discovery Advertisement 4451 Number of Unicast Discovery Advertisement 2 Number of FLOGI Accepts 2 Number of FLOGI Rejects 0 Number of FDISC Accepts 16 Number of FDISC Rejects 0 Number of FLOGO Accepts 0 Number of FLOGO R...

Page 700: ...ing vlan Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Example FTOS show fip snooping vlan Default VLAN VLAN FC MAP FCFs Enodes Sessions 1 100 0X0EFC00 1 2 17 show fips status Display the FIPs status on the platform S4810 and MXL Switch Syntax show fips status NOTE You must have a license ...

Page 701: ...Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module 701 ...

Page 702: ...702 ...

Page 703: ...roprietary protocol that does not interoperate with any other vendor Spanning Tree must be disabled on both primary and secondary interfaces before Resilient Ring protocol is enabled A VLAN configured as the control VLAN for a ring cannot be configured as a control or member VLAN for any other ring Member VLANs across multiple rings are not supported in Master nodes If multiple rings share one or ...

Page 704: ...guration debug frrp Clear the FRRP statistics counters C Series E Series S Series Z Series S4810 Syntax debug frrp event packet detail ring id count number To disable debugging use the no debug frrp event packet detail ring id countnumber command Parameters event Enter the keyword event to display debug information related to ring protocol transitions packet Enter the keyword packet to display bri...

Page 705: ...es S Series Z Series Syntax description Word To remove the ring description use the no description Word command Parameters Word Enter a description of the ring Maximum 255 characters Defaults none Command Modes CONFIGURATION conf frrp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced disable Disable the Resilient Ring Pro...

Page 706: ...net interface enter the keyword FastEthernet followed by the slot port information 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information Port Channel interface enter the keyword port channel followed by a number C Series and S Series Range 1 128 E Series Range 1 to 255 for TeraScale and 1 to 512 for ExaScale SONET interface enter the keyword sonet fol...

Page 707: ...0 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information control vlan vlan id Enter the keyword control vlan followed by the VLAN ID Range 1 to 4094 Defaults none Command Modes CONFIGURATION conf frrp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced Usage Information This command cau...

Page 708: ... frrp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced mode Set the Master or Transit mode of the ring C Series E Series S Series Z Series S4810 Syntax mode master transit To reset the mode use the no mode master transit command Parameters master Enter the keyword master to set the...

Page 709: ... Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced Usage Information This command places you into the resilient ring protocol After executing this command the command line prompt changes to conf frrp show frrp Display the Resilient Ring Protocol configuration C Series E Series S Series Z Series S4810 Syntax show frrp ring id summary summa...

Page 710: ...owing counters hello Rx and Tx counters Topology change Rx and Tx counters The number of state change counters Example Summary FTOS show frrp summary Ring ID State Mode Ctrl_Vlan Member_Vlans 2 UP Master 2 11 20 25 27 30 31 UP Transit 31 40 41 50 Down Transit 50 32 FTOS Example 1 FTOS show frrp 1 Ring protocol 1 is in Master mode Ring Protocol Interface Primary GigabitEthernet 0 16 State Forwardin...

Page 711: ... is generated Range 50 to 2000 ms Default 500 ms dead interval milliseconds Enter the keyword dead interval followed by the time in milliseconds to set the dead interval of the control packets Range 50 to 6000 ms Default 1500 ms NOTE The configured dead interval must be at least three times the hello interval Defaults 500 ms for hello interval milliseconds 1500 ms for dead intervalmilliseconds Com...

Page 712: ...712 ...

Page 713: ... All VLAN ports added by GVRP are tagged GVRP is supported on untagged ports belonging to a default VLAN and tagged ports GVRP cannot be enabled on untagged ports belonging to a non default VLAN unless native VLAN is turned on GVRP requires end stations with dynamic access NICs Based on updates from GVRP enabled devices GVRP allows the system to dynamically create a port based VLAN unspecified wit...

Page 714: ...rt or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to ...

Page 715: ...et followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10 Gigabit Ethernet interface ent...

Page 716: ...ax garp timers join leave leave all To return to the previous setting use the no garp timers join leave leave all command Parameters join Enter the keyword join followed by the number of milliseconds to configure the join time The range is 100 to 147483647 milliseconds The default is 200 milliseconds NOTE Designate the milliseconds in multiples of 100 leave Enter the keyword leave followed by the ...

Page 717: ...age sent for de registering some attribute information If a Join message is not received before the Leave time expires the GARP application entity removes the attribute information as requested Leave All Timer The Leave All timer starts when a GARP application entity starts When this timer expires the entity sends a Leave all message so that other entities can reregister their attribute informatio...

Page 718: ...7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on C Series E Series and S Series Usage Information Fixed registration prevents an interface configured using the command line to belong to a VLAN static configuration from being unconfigured when it receives a Leave message Therefore Registration mode on that interface is fixed Normal registration is the default registration The port s member...

Page 719: ...e global GVRP configuration C Series E Series S Series Z Series S4810 Syntax show config Command Modes CONFIGURATION GVRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on C Series E Series and S Series Related Commands gvrp enable enables GVRP on physical interfaces and LAGs protocol gvrp accesses the GVRP protocol show ...

Page 720: ...rief to display a brief summary of the GVRP configuration interface OPTIONAL Enter the following keywords and slot port or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port...

Page 721: ...sabled No R3 show gvrp brief Related Commands show gvrp statistics displays the GVRP statistics show gvrp statistics Display the GVRP configuration statistics C Series E Series S Series Z Series Syntax show gvrp statistics interface interface summary Parameters interface interface OPTIONAL Enter the keyword interface followed by one of the interface keywords and slot port or number information For...

Page 722: ...bute that was being parsed was not the GVRP VID Attribute Type 0x01 The attribute that was being parsed had an invalid attribute length The attribute that was being parsed had an invalid GARP event The attribute that was being parsed had an invalid VLAN ID The valid range is 1 to 4095 A failed registration can occur for the following reasons Join requests were received on a port that was blocked f...

Page 723: ...Related Commands show gvrp displays the GVRP configuration 723 ...

Page 724: ...724 ...

Page 725: ...ed as hitless for example the redundancy protocol command patch flash RUNTIME_PATCH_DIR Insert an In Service Modular Hot Fix patch E Series S4810 Syntax patch flash RUNTIME_PATCH_DIR patch filename To remove the patch use the no patch flash RUNTIME_PATCH_DIR patch filename command Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 8 2 1 0 Int...

Page 726: ... 60 minutes Default By default a process can be restarted a maximum of three times within one hour On the exception that exceeds this limit the system reloads or fails over Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 0 Introduced on the E Series Related Commands show processes restartable redundancy auto failover limit Specify an auto failover...

Page 727: ... command to view the redundancy status When you change one or both of the optional parameters FTOS checks that the interval between auto failovers is more than five 5 minutes If the interval is less FTOS returns a configuration error message redundancy disable auto reboot Prevent the system from auto rebooting the failed module C Series E Series S4810 Syntax redundancy disable auto reboot rpm card...

Page 728: ...ollowed by the SFM slot number The range is 0 to 8 Default Not configured Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 5 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series Usage Information Use this command to provide a hitless or warm upgrade A hitless upgrade means that a...

Page 729: ...d rpm0 to set the RPM in slot R0 as the primary RPM rpm1 Enter the keyword rpm1 to set the RPM in slot R1 as the primary RPM Default The RPM in slot R0 is the Primary RPM Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 5 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series redund...

Page 730: ... 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the E Series Related Commands show lacp displays the lacp configuration show redundancy displays the current redundancy configuration redundancy reset counter Reset failover counter and timestamp information displayed in the show redundancy command E Series S4810 Syntax redundancy reset counter Default Not configured Command ...

Page 731: ...oid traffic disruption use this command when you insert the secondary RPM When you execute this command the logical SFM on the standby RPM is immediately taken offline and the SFM state is set as standby NOTE This command could affect traffic when taking the secondary SFM offline Example FTOS show sfm all Switch Fabric State up Switch Fabric Modules Slot Status 0 active 1 active FTOS configure FTO...

Page 732: ...he keywords persistent data to synchronize the startup configuration between RPMs system data Enter the keywords system data to synchronize persistent data and the running configuration file event log SFM and line card states Default Not configured Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 5 1...

Page 733: ...sses restartable history Parameters history Display the last time the restartable processes crashed Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 0 Introduced on the E Series Example FTOS sho processes restartable Process name State How many times restarted Timestamp last restarted radius enabled 0 tacplus enabled 0 FTOS show processes restarta...

Page 734: ...s up or down PEER RPM Status Displays the state of the second RPM if present RPM Redundancy Configuration Displays the following information which RPM is the preferred Primary on next boot the redundancy primary command the data sync method configured the redundancy synchronize command the failover type you cannot change this type it is software dependent Hot Failover means that the running config...

Page 735: ... from the Primary RPM Example FTOS show redundancy RPM Status RPM Slot ID 1 RPM Redundancy Role Primary RPM State Active RPM SW Version 7 5 1 0 Link to Peer Up PEER RPM Status RPM State Standby RPM SW Version 7 5 1 0 RPM Redundancy Configuration Primary RPM rpm0 Auto Data Sync Full Failover Type Hot Failover Auto reboot RPM Enabled Auto failover limit 3 times in 60 minutes RPM Failover Record Fail...

Page 736: ...736 ...

Page 737: ... 0 network unreachable 1 host unreachable 2 protocol unreachable 3 port unreachable 4 fragmentation needed but don t fragment bit set 5 source route failed 6 destination network unknown 7 destination host unknown 8 source host isolated obsolete 9 destination network administratively prohibited 10 destination host administratively prohibited 11 network unreachable for TOS 12 host unreachable for TO...

Page 738: ...vertisement 10 0 router solicitation 11 time exceeded 0 time to live equals 0 during transit 1 time to live equals 0 during reassembly 12 parameter problem 1 IP header bad catchall error 2 required option missing 13 0 timestamp request 14 0 timestamp reply 15 0 information request obsolete 16 0 information reply obsolete 17 0 address mask request 18 0 address mask reply 738 ...

Page 739: ...umber of interfaces supported 31 The Z9000 supports up to 95 interfaces There is no hard limit on the maximum number of groups supported IGMPv3 router interoperability with IGMPv2 and IGMPv1 routers on the same subnet is not supported An administrative command ip igmp version is added to manually set the IGMP version All commands previously used for IGMPv2 are compatible with IGMPv3 clear ip igmp ...

Page 740: ...0 Syntax debug ip igmp group address interface To disable IGMP debugging use the no debug ip igmp group address interface command To disable all debugging use the undebug all command Parameters group address OPTIONAL Enter the IP multicast group address in dotted decimal format interface interface Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface e...

Page 741: ...no ip igmp access group access list command Parameters access list Enter the name of the extended ACL 16 characters maximum Defaults Not configured Command Modes INTERFACE conf if interface slot port Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the C Series and S Series Version 7 6 1 0 Introduced on E Series Usage In...

Page 742: ...st prefix list name Enter the keywords group list followed by a string up to 16 characters long of the prefix list name Defaults Not configured Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series E Series legacy command Usage Information Querier...

Page 743: ...d on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series E Series legacy command ip igmp querier timeout Change the interval that must pass before a multicast router decides that there is no longer another multicast router that should be the querier C Series E Series S Series Z Series S4810 Syntax ip igmp querier t...

Page 744: ...ds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the S Series in Interface VLAN mode only to enable the system to act as an IGMP Proxy Querier Version 7 5 1 0 Introduced on the C Series in Interface VLAN mode ...

Page 745: ... S G states and replace them with G state use the ip igmp ssm map std access list source address command Parameters std access list Specify the standard IP access list that contains the mapping rules for multicast groups source address Specify the multicast source address to which the groups are mapped Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3...

Page 746: ...sion 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 5 1 0 Expanded to support the exclude and include options E Series legacy command Usage Information A group in include mode must have at least one source address defined In exclude mode if you do not specify a source address F...

Page 747: ...groups group address detail detail interface group address detail Parameters group address OPTIONAL Enter the group address in dotted decimal format to view information on that group only interface OPTIONAL Enter the interface type and slot port information For a 100 1000 Ethernet interface enter the keyword gigabitethernet followed by the slot port information For a 1 Gigabit Ethernet interface e...

Page 748: ...cific interfaces or specific groups on specific interfaces The following describes the show ip igmp groups command shown in the Example below Field Description Group Address Lists the multicast address for the IGMP group Interface Lists the interface type slot and port number Mode Displays the IGMP version used Uptime Displays the amount of time the group has been operational Expires Displays the ...

Page 749: ...00 02 04 3 0 0 51 Member Ports Po 2 show ip igmp interface View information on the interfaces participating in IGMP C Series E Series S Series Z Series S4810 Syntax show ip igmp interface interface Parameters interface OPTIONAL Enter the interface type and slot port information For a 100 1000 Ethernet interface enter the keyword gigabitethernet followed by the slot port information For a 1 Gigabit...

Page 750: ...is down Internet protocol processing disabled GigabitEthernet 0 7 is up line protocol is down Internet protocol processing disabled GigabitEthernet 7 9 is up line protocol is up Internet address is 10 87 5 250 24 IGMP is enabled on interface IGMP query interval is 60 seconds IGMP querier timeout is 120 seconds IGMP max query response time is 10 seconds IGMP last member query response interval is 1...

Page 751: ...uring VLAN Stack related commands IGMP snooping does not react to Layer 2 topology changes triggered by spanning tree protocol STP IGMP snooping reacts to Layer 2 topology changes triggered by multiple spanning tree protocol MSTP by sending a general query on the interface that comes in the FWD state Important Points to Remember for IGMP Querier The IGMP snooping Querier supports version 2 You mus...

Page 752: ...uced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information You must enter this command to enable IGMP snooping When you enable this from CONFIGURATION mode IGMP snooping enables on all VLAN interfaces except the default VLAN NOTE You must execute the no shutdown command on the VLAN interface for IGMP Snooping to function Related Commands shutdown no s...

Page 753: ...d Defaults Enabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Seris and S Series Version 7 7 1 0 Introduced on the E Series E Series legacy command Usage Information On the E Series when you enable flooding the default unregistered multicast data traffic floods to all ports in a VL...

Page 754: ...Series E Series legacy command Usage Information This last member query interval is also the interval between successive Group Specific Query messages Use this command to change the last member query interval ip igmp snooping mrouter Statically configure a VLAN member port as a multicast router interface C Series E Series S Series Z Series S4810 Syntax ip igmp snooping mrouter interface interface ...

Page 755: ...atic connection to the multicast router enter the ip igmp snooping mrouter interface command in the VLAN context The interface to the router must be a part of the VLAN where you are entering the command ip igmp snooping querier Enable IGMP querier processing for the VLAN interface C Series E Series S Series Z Series S4810 Syntax ip igmp snooping querier To disable IGMP querier processing for the V...

Page 756: ... 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information If the port channel is a VLT port channel an asterisk after the port channel number Po 100 indicates the port channel is locally down and that a remote VLT port is up Example FTOS show ip igmp snoopin...

Page 757: ...networks VLANs and physical interfaces or selected ones C Series E Series S Series Z Series S4810 Syntax clear counters interface vrrp ipv6 vrid vrf instance learning limit Parameters interface OPTIONAL Enter any of the following keywords and slot port or number to clear counters from a specified interface For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot po...

Page 758: ...unknown source address SA drop counters when MAC learning limit is configured on the interface Defaults Without an interface specified the command clears all interface counters Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 4 1 0 Added support E Series only for VRRP groups in a VRF ...

Page 759: ...by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Defaults Without an interface specified the command clears all interface dampening counters Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introdu...

Page 760: ...ing a long CX4 cable between the C Series and the S Series to avoid errors configure the cable using the cx4 cable length short command only NOTE The 15M CX4 active cable is not supported on the C Series and S series It is only supported for S2410 with active end on the device NOTE For information about using XFP ports with CX4 cables refer to your S Series hardware guide Example Unsuccessful FTOS...

Page 761: ...umber for which a route can be suppressed The default is four times the half life value The range is 1 to 86400 The default is 20 seconds Defaults Disabled Command Modes INTERFACE conf if Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 I...

Page 762: ...troduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Modified for E Series Revised from 78 to 240 characters Usage Information Important Points Spaces between characters are not preserved after entering this command unless you enclose the entire description in quotation marks ...

Page 763: ...lly When you install or replace a second SFM all ports are booted up and treated as normally This feature does not take affect until a single SFM is active in the E300 system duplex Management Set the mode of the Management interface C Series E Series Z Series Syntax duplex half full To return to the default setting use the no duplex command Parameters half Enter the keyword half to set the Manage...

Page 764: ...e to transmit only in one direction full Enter the keyword full to set the physical interface to transmit in both directions Defaults Not configured Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C...

Page 765: ...he default value on the send side tx off Enter the keywords tx off so that flow control frames are not sent from this port to the connected device when a higher rate of traffic is received threshold C Series and S Series only When you configure tx on you can set the threshold values for Number of flow control packet pointers 1 to 2047 default 75 Flow control buffer threshold in KB 1 to 2013 defaul...

Page 766: ...o Remember Do not enable tx pause when buffer carving is enabled For information and assistance consult Dell Force10 TAC Asymmetric flow control rx on tx off or rx off tx on setting for the interface port less than 100 Mb s speed is not permitted The following error is returned Can t configure Asymmetric flowcontrol when speed 1G config ignored The only configuration applicable to half duplex port...

Page 767: ...off off off on on off on on off on off off off on on off on on on off off off off on on off on on on on off off off on on off on on LocNegRx LocNegTx RemNegRx RemNegTx off off off off off off off off off off off off off off off off off off off off off off off off off on on off off off off off off off off off on off off on on on on on on on on on off off off off off off off off on on on on on on on...

Page 768: ...he slot port information Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 4 1 0 Introduced Usage Information You cannot dele...

Page 769: ...s Version 7 5 1 0 Introduced on the C Series Version 6 4 1 0 Introduced Example FTOS conf interface loopback 1655 FTOS conf if lo 1655 Related Commands interface configures a physical interface interface null configures a Null interface interface port channel configures a port channel interface vlan configures a VLAN interface ManagementEthernet Configure the Management port on the system either t...

Page 770: ...a forwarding router duplex Management clears the forwarding information base FIB entries on a specified line card speed Management interface clears the FIB entries on a specified line card interface null Configure a Null interface on the switch C Series E Series S Series Z Series Syntax interface null number Parameters number Enter zero 0 as the Null interface number Defaults Not configured number...

Page 771: ...s can include VLANs port channels and physical interfaces Slot Port information must contain a space before and after the dash For example interface range gigabitethernet 0 1 5 is valid interface range gigabitethernet 0 1 5 is not valid For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port cha...

Page 772: ...s are specified the port range is extended to the smallest start port and the biggest end port Example Bulk FTOS conf interface range so 2 0 1 te 10 0 gi 3 0 fa 0 0 Warning Non existing ports not configured are ignored by interface range Example Multiple Ports FTOS conf interface range gi 2 0 23 gi 2 1 10 FTOS conf if range gi 2 0 23 Example Overlapping Ports FTOS conf interface range gi 2 1 11 gi...

Page 773: ...nterface show config from INTERFACE RANGE mode shows the bulk configuration interfaces show range shows the bulk configuration ranges interface range macro define defines a macro for an interface range interface range macro define Defines a macro for an interface range and then saves the macro in the running configuration C Series E Series S Series Z Series Syntax define interface range macro name...

Page 774: ...s on ExaScale Version 8 2 1 0 Added support for 4093 VLANs on E Series ExaScale Prior releases supported 2094 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example Single Range This example shows how to define an interface range macro named test Execute the sho...

Page 775: ...ange te 0 0 3 gi 5 0 47 gi 13 0 89 FTOS Related Commands interface range configures a range of command bulk configuration interface range macro define defines a macro for an interface range bulk configuration interface vlan Configure a VLAN You can configure up to 4096 VLANs Z Series S4810 and MXL Switch Syntax interface vlan vlan id of instance of id Parameters vlan id Enter a number as the VLAN ...

Page 776: ...onf if vl 3 Related Commands interface configures a physical interface interface loopback configures a loopback interface interface null configures a null interface interface port channel configures a port channel group show vlan displays the current VLAN configuration on the switch shutdown disables enables the VLAN tagged adds a Layer 2 interface to a VLAN as a tagged interface untagged adds a L...

Page 777: ... 8 11 bytes packet size dependent Defaults averaging the IPG Command Mode INTERFACE Command History pre Version 6 1 1 0 Introduced for E Series EtherScale only Usage Information For 10 Gigabit Ethernet interfaces only IPG equals 96 bits times from the end of the previous packet to the start of the pre amble of the next packet keepalive On SONET interfaces send keepalive packets periodically to kee...

Page 778: ...erScale Enable link fault signaling LFS on EtherScale 10 Gigabit Ethernet interfaces only E Series Syntax lfs enable To disable LFS use the no lfs enable command Defaults Enabled Command Mode INTERFACE 10 Gigabit Ethernet interfaces only Command History pre Version 6 1 1 0 Introduced for E Series Usage Information If there is a failure on the link FTOS brings down the interface The interface will ...

Page 779: ... the keyword GigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For the management port enter the keyword managementethernet followed by the slot 0 1 and the port 0 For a SONET interface enter the keyword sonet followed by the slot port For a 10 Gigabit Ethernet interface enter the keyword...

Page 780: ...face on the line card or if in line card mode the next line card in the chassis a Change the view to the previous interface on the line card or if in line card mode the previous line card in the chassis T Increase the screen refresh rate t Decrease the screen refresh rate q Return to the CLI prompt Example Single Interface systest 3 Monitor time 00 00 06 Refresh Intvl 2s Time 03 26 26 Interface Gi...

Page 781: ...7184747584 138 Gi 0 12 Up 18182682056 0 3682 1 Gi 0 13 Up 18182681434 43 6592378911 144 Gi 0 14 Up 61349 55 86281941 15 Gi 0 15 Up 59808 58 62060 27 Gi 0 16 Up 59889 1 61616 1 Gi 0 17 Up 0 0 14950126 81293 Gi 0 18 Up 0 0 0 0 Gi 0 19 Down 0 0 0 0 Gi 0 20 Up 62734 54 62766 18 Gi 0 21 Up 60198 9 200899 9 Gi 0 22 Up 17304741100 3157554 10102508511 1114221 Gi 0 23 Up 17304769659 3139507 7133354895 5233...

Page 782: ...value and the same IP MTU value The port channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members For example if the members have a link MTU of 2100 and an IP MTU 2000 the port channel s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU VLANs All members of a VLAN must have same IP MTU value Members can hav...

Page 783: ... 100Mbits The negotiation auto command provides a mode option for configuring an individual port to forced master forced slave after you enable auto negotiation NOTE The mode option is not available on non 10 100 1000 Base T Ethernet line cards If you do not use the mode option the default setting is slave If you do not configure forced master or forced slave on a port the port negotiates to eithe...

Page 784: ...bit Mode full duplex Master ARP type ARPA ARP Timeout 04 00 00 Last clearing of show interfaces counters 00 12 42 Queueing strategy fifo Input Statistics User Information Both sides of the link must have auto negotiation enabled or disabled for the link to come up The following details the possible speed and auto negotiation combinations for a line between two 10 100 1000 Base T Ethernet interface...

Page 785: ...ies Usage Information The following describes the interface command shown in the Example below This example sets a port as hybrid makes the port a tagged member of VLAN 20 and an untagged member of VLAN 10 which becomes the native VLAN of the port The port will now accept untagged frames and classify them as VLAN 10 frames VLAN 20 tagged frames The following describes the do show interfaces comman...

Page 786: ...ces the interface in a Layer 2 mode vlan stack trunk specifies an interface as a trunk port to the Stackable VLAN network rate interval Configure the traffic sampling interval on the selected interface C Series E Series S Series Z Series Syntax rate interval seconds Parameters seconds Enter the number of seconds for which to collect traffic data The range is 30 to 299 seconds NOTE Because polling ...

Page 787: ...on 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series Example FTOS conf if show conf interface GigabitEthernet 1 7 no ip address switchport no shutdown FTOS conf if show config from INTERFACE RANGE mode Display the bulk configured interfaces interface range C Series E Serie...

Page 788: ...owed by the slot port information For a Loopback interface enter the keyword loopback followed by a number from 0 to 16383 For the management interface on an RPM enter the keyword ManagementEthernet followed by the slot port information The slot range is 0 to 1 and the port range is 0 For a Null interface enter the keywords null 0 For a Port Channel interface enter the keywords port channel follow...

Page 789: ...ion 6 3 1 0 Added the Pluggable Media Type field in the E Series TeraScale output Usage Information Use the show interfaces command for details on a specific interface Use the show interfaces linecard command for details on all interfaces on the designated line card On the S4810 the show interface output displays incorrect rate information details over time for link monitoring when the rate interv...

Page 790: ...dentify the interface Internet address States whether an IP address is assigned to the interface If an IP address is assigned that address is displayed MTU 1554 Displays link and IP MTU information LineSpeed Displays the interface s line speed duplex mode and Slave ARP type Displays the ARP type and the ARP timeout value for the interface Last clearing Displays the time when the show interfaces co...

Page 791: ...ount both packets discarded in the MAC and in the hardware based queues Rate information Estimate of the input and output traffic rate over a designated interval 30 to 299 seconds Traffic rate is displayed in bits packets per second and percent of line rate Time since Elapsed time since the last interface status change hh mm ss format Example FTOS show interfaces TenGigabitEthernet 2 0 is down lin...

Page 792: ...ce are auto configured The first IPv6 address that is configured on the management interface will be the primary address If deleted it must be re added the secondary address is not promoted Example TeraScale FTOS show interfaces tengigabitethernet 0 0 TenGigabitEthernet 3 0 is up line protocol is up Hardware is Force10Eth address is 00 01 e8 41 77 c5 Current address is 00 01 e8 41 77 c5 Pluggable ...

Page 793: ...tles 0 CRC 0 overrun 0 discarded Output Statistics 0 packets 0 bytes 0 underruns 0 64 byte pkts 0 over 64 byte pkts 0 over 127 byte pkts 0 over 255 byte pkts 0 over 511 byte pkts 0 over 1023 byte pkts 0 Multicasts 0 Broadcasts 0 Unicasts 0 Vlans 0 throttles 0 discarded 0 collisions 0 wreddrops Rate info interval 299 seconds Input 00 00 Mbits sec 0 packets sec 0 00 of line rate Output 00 00 Mbits s...

Page 794: ...nternet address is 10 16 130 5 16 Link local IPv6 address fe80 201 e8ff fea0 bff3 64 Global IPv6 address 1 1 Global IPv6 address 2 1 64 Virtual IP is not set Virtual IP IPv6 address is not set MTU 1554 bytes IP MTU 1500 bytes LineSpeed 1000 Mbit Mode full duplex ARP type ARPA ARP Timeout 04 00 00 Last clearing of show interface counters 00 06 14 Queueing strategy fifo Input 791 packets 62913 bytes...

Page 795: ...es show linecard displays the line card s status show range displays all interfaces configured using the interface range command show interfaces configured Display any interface with a non default configuration C Series E Series S Series Z Series S4810 Syntax show interfaces configured Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introd...

Page 796: ...s S Series Z Series Syntax show interfaces dampening interface summary detail Parameters interface Optional Enter one of the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series t...

Page 797: ...ual interface show interfaces configured displays any interface with a non default configuration show interfaces debounce Display information on interfaces with the debounce timer configured E Series Syntax show interfaces debounce interface Parameters interface Optional Enter one of the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword Gig...

Page 798: ... by the slot port information The slot range is 0 1 and the port range is 0 For the Null interface enter the keywords null 0 For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the ...

Page 799: ...n down down connected to host GigabitEthernet 4 18 NO admin down down connected to Tom GigabitEthernet 4 19 NO admin down down connected to marketing GigabitEthernet 4 20 NO admin down down connected to Bill GigabitEthernet 4 21 NO up down connected to Radius Server GigabitEthernet 4 22 NO admin down down connected to Web Server GigabitEthernet 4 23 NO admin down down connected to PC client TenGig...

Page 800: ...rk but its details might not be readable by FTOS and not displayed here Example FTOS show interfaces linecard 0 TenGigabitEthernet 0 0 is down line protocol is down Hardware is Force10Eth address is 00 01 e8 51 b2 d4 Current address is 00 01 e8 51 b2 d4 Pluggable media present XFP type is 10GBASE SR Medium is MultiRate Wavelength is 850 00nm XFP receive power reading is 2 3538 Interface index is 3...

Page 801: ...e AutoNegotiation Advertise Displays the control words advertised by the local interface during negotiation Duplex is either half or full Asym and Sym Pause is the types of flow control supported by the local interface AutoNegotiation Remote Partner s Ability Displays the control words advertised by the remote interface during negotiation Duplex is either half or full Asym and Sym Pause is the typ...

Page 802: ...PowerDown False Isolate False DuplexMode Full Mode Status AutoNegComplete False RemoteFault False LinkStatus False JabberDetect False AutoNegotation Advertise 100MegFullDplx True 100MegHalfDplx True 10MegFullDplx False 10MegHalfDplx True Asym Pause False Sym Pause False AutoNegotiation Remote Partner s Ability 100MegFullDplx False 100MegHalfDplx False 10MegFullDplx False 10MegHalfDplx False Asym P...

Page 803: ...ics 0 packets 0 bytes 5144 64 byte pkts 0 over 64 byte pkts 0 over 127 byte pkts 0 over 255 byte pkts 0 over 511 byte pkts 0 over 1023 byte pkts 0 Multicasts 0 Broadcasts 0 runts 0 giants 0 throttles 0 CRC 0 overrun 0 discarded Output Statistics 0 packets 0 bytes 0 underruns 0 64 byte pkts 0 over 64 byte pkts 0 over 127 byte pkts 0 over 255 byte pkts 0 over 511 byte pkts 0 over 1023 byte pkts 0 Mu...

Page 804: ... OPTIONAL Enter the keyword linecard followed by the slot number For the C Series the range is 0 to 7 for C300 and 0 to 3 for C150 For the E Series the range is 0 to 13 on the E1200 0 to 6 on the E600 and 0 to 5 on the E300 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Ver...

Page 805: ...ds port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For SONET interfaces enter the keyword sonet followed by the slot port information This keyword is only available on E Series and C Series For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot...

Page 806: ... untagged False or hybrid Hybrid which supports both untagged and tagged VLANs by port 13 0 Vlan membership Lists the VLANs to which the interface is a member Starting with FTOS version 7 6 1 this field can display native VLAN membership by port 13 0 Example FTOS show interfaces switchport Name GigabitEthernet 13 0 802 1QTagged Hybrid Vlan membership Vlan 2 Vlan 20 Native VlanId 20 Name GigabitEth...

Page 807: ...followed by the slot port information Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Output augmented with diagnostic data for pluggable media Version 7 7 1 0 Removed three fields in the output Vendor Name Vendor OUI and...

Page 808: ...etween SFP and SFP Voltage High Warning threshold Factory defined setting Value can differ between SFP and SFP Bias High Warning threshold Factory defined setting Value can differ between SFP and SFP TX Power High Warning threshold Factory defined setting Value can differ between SFP and SFP RX Power High Warning threshold Factory defined setting Value can differ between SFP and SFP Temp Low Warni...

Page 809: ...chieved power up and data is ready This is set to true if data is ready to be sent and set to false if data is being transmitted Rx LOS state This is the digital state of the Rx_LOS output pin This is set to true if the operating status is down Tx Fault state This is the digital state of the Tx Fault output pin Rate Select state This is the digital state of the SFP rate_select input pin RS state T...

Page 810: ...bove Rx Power High Warning Flag This can be either true or false depending on the Current Tx power value displayed above Temperature Low Warning Flag This can be either true or false depending on the Current Temperature value displayed above Voltage Low Warning Flag This can be either true or false depending on the Current voltage value displayed above Tx Bias Low Warning Flag This can be either t...

Page 811: ...r High Warning threshold 0 631mW SFP 1 RX Power High Warning threshold 0 794mW SFP 1 Temp Low Warning threshold 20 000C SFP 1 Voltage Low Warning threshold 2 900V SFP 1 Bias Low Warning threshold 2 000mA SFP 1 TX Power Low Warning threshold 0 079mW SFP 1 RX Power Low Warning threshold 0 016mW SFP 1 Temperature 39 930C SFP 1 Voltage 3 293V SFP 1 Tx Bias Current 6 894mA SFP 1 Tx Power 0 328mW SFP 1 ...

Page 812: ...VLANs on E Series ExaScale Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced Example FTOS conf if range so 2 0 1 fa 0 0 show range interface sonet 2 0 1 interface fastethernet 0 0 FTOS conf if range so 2 0 1 fa 0 0 Related Commands interface configures a physical interface on the swit...

Page 813: ...how ip interface brief command Disabled interfaces are listed as down Disabling a VLAN or a port channel causes different behavior When a VLAN is disabled the Layer 3 functions within that VLAN are disabled Layer 2 traffic continues to flow Entering the shutdown command on a port channel disables all traffic on the port channel and the individual interfaces within the port channel To enable a port...

Page 814: ...1000 to set the interface s speed to 1000 Mb s Auto negotiation is enabled For more information refer to negotiation auto NOTE When this setting is enabled only 100oBase FX optics are supported on the LC EH GE 50P or the LC EJ GE 50P card auto Enter the keyword auto to set the interface to auto negotiate its speed Auto negotiation is enabled For more information refer to negotiation auto Defaults ...

Page 815: ...on on an interface speed Management interface Set the speed for the Management interface C Series E Series Z Series S4810 Syntax speed 10 100 auto To return to the default setting use the no speed 10 100 command Parameters 10 Enter the keyword 10 to set the interface s speed to 10 Mb s 100 Enter the keyword 100 to set the interface s speed to 10 100 Mb s auto Enter the keyword auto to set the inte...

Page 816: ... stack an S4810 Split ports S4810 unit cannot be a part of any stacked system The unit number with the split ports must be the default stack unit 0 This can be verified using CLI show system brief If the unit ID is different than 0 it must be renumbered to 0 before ports are split by using the stackunit id renumber 0 command in EXEC mode The quad port must be in a default configuration before it c...

Page 817: ... for 4 port 40G line cards on ExaScale Version 8 4 1 0 Added support for port channel interfaces the port channel number option Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Added the backup interface option Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Seri...

Page 818: ...own FTOS conf if te 13 0 FTOS conf if te 13 0 wanport Error Port should be in shutdown mode config ignored Te 13 0 FTOS conf if te 13 0 FTOS conf if te 13 0 shutdown FTOS conf if te 13 0 FTOS conf if te 13 0 wanport FTOS conf if te 13 0 Port Channel Commands A Link Aggregation Group LAG is a group of links that appear to a MAC client as if they were a single link according to IEEE 802 3ad In FTOS ...

Page 819: ...ce command Parameters interface OPTIONAL Enter any of the following keywords and slot port or number information For a 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port info...

Page 820: ...same Port Channel If the Port Channel contains a mix of interfaces with 100 Mb s speed and 1000 Mb s speed the software disables those interfaces whose speed does not match the speed of the first interface configured and enabled in the Port Channel If that first interface goes down the Port Channel does not change its designated speed you must disable and re enable the Port Channel or change the o...

Page 821: ...Port Channel interface which is a link aggregation group LAG containing up to 16 physical interfaces on the E Series and eight physical interfaces on C Series and S Series C Series E Series S Series Z Series S4810 Syntax interface port channel channel number To delete a Port Channel use the no interface port channel channel number command Parameters channel number For a Port Channel interface ente...

Page 822: ...e Link MTU and IP MTU values configured on the channel members must be greater than the Link MTU and IP MTU values configured on the Port Channel interface NOTE In a Jumbo enabled system all members of a Port Channel must be configured with the same link MTU values and the same IP MTU values Example FTOS conf int port channel 2 FTOS conf if po 2 Related Commands channel member adds a physical inte...

Page 823: ...NFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Usage Information This feature groups two LAGs to work in tandem as a supergroup For example if one LAG goes down the other LAG is taken down automatically providing an alternate path to reroute t...

Page 824: ...rd port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale brief OPTIONAL Enter the keyword brief to display only the port channel number the state of the port channel and the number of interfaces in the port channel Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introdu...

Page 825: ...isplays the number of packets with IP headers VLAN tagged headers and MPLS headers The number of packets may not add correctly because a VLAN tagged IP packet counts as both a VLAN packet and an IP packet 0 64 byte Displays the size of packets and the number of those packets entering that interface This information is displayed over two lines Received 0 Displays the type and number of errors or ot...

Page 826: ...r Information The following describes the show interfaces port channel brief command shown in the Example below Field Description LAG Lists the port channel number Mode Lists the mode L3 for Layer 3 L2 for Layer 2 Status Displays the status of the port channel down if the port channel is disabled shutdown up if the port channel is enabled no shutdown Uptime Displays the age of the port channel in ...

Page 827: ...the interface type and slot port or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet in...

Page 828: ...ror occurs if MAC based hashing is configured for a Layer 2 interface and you are trying to display a Layer 3 flow The output displays three entries Egress port for unfragmented packets In the event of fragmented packets the egress port of the first fragment In the event of fragmented packets the egress port of the subsequent fragments NOTE In the show port channel flow command output the egress p...

Page 829: ...t establishing a link either it is flapping or not coming up at all TDR detects open or short conditions of copper cables on 100 1000 Base T modules Important Points to Remember The interface and port must be enabled configured refer to the interface command before running TDR An error message is generated if you have not enabled the interface The interface on the far end device must be shut down ...

Page 830: ...lays the results of the TDR test show tdr Display the TDR test results C Series E Series S Series S4810 Syntax show tdr interface Parameters interface Enter the keyword GigabitEthernet followed by the slot port information for the 100 1000 Ethernet interface Defaults none Command Modes EXEC Command History Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the E Series ExaScale ...

Page 831: ...col UDP broadcast feature is a software based method to forward low throughput not to exceed 200 pps IP UDP broadcast traffic arriving on a physical or VLAN interface Important Points to Remember This feature is available only on the E Series and S4810 platforms This feature applies only to E Series Layer 3 physical or VLAN interfaces Routing information protocol RIP is not supported with the UDP ...

Page 832: ...or broadcast E Series S4810 Syntax ip udp broadcast address address To delete the configuration use the no ip udp broadcast address address command Parameters address Enter an IP broadcast address in dotted decimal format A B C D Defaults Not configured Command Modes INTERFACE config if Command History Version 8 3 7 0 Introduced on the S4810 Pre version 8 3 7 0 Introduced on the E Series ExaScale ...

Page 833: ...ommand the behavior is that the UDP broadcast traffic with port numbers 67 68 is unicast relayed to the DHCP server per the ip helper address configuration This occurs regardless if the ip udp helper udp port command contains port numbers 67 68 or not If you only configure the ip udp helper udp port command all the UDP broadcast traffic is flooded including ports 67 68 traffic if those ports are p...

Page 834: ...6 658 Gi 10 1 All Related Commands debug ip udp helper enables debug and displays the debug information on a console ip udp broadcast address configures a UDP IP address for broadcast ip udp helper udp port enables the UDP broadcast feature on an interface either for all UDP ports or a specified list of UDP ports 834 ...

Page 835: ...following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For the Management interface enter the keyword ManagementEthernet followed by the slot port information The slot range is 0 to 1 and the port range is 0 For a Port Channel interface enter the keywords port channel followed by a number For...

Page 836: ...rs dynamic ARP entries from the ARP table show arp displays the ARP table arp backoff time Set the an exponential timer for resending unresolved ARPs Z Series S4810 Syntax arp backoff time seconds Parameters seconds Enter the number of seconds an ARP entry is black holed The range is 1 to 3600 The default is 30 Defaults 30 Command Mode CONFIGURATION Command History Version 8 3 11 1 Introduced on t...

Page 837: ...request for IP A B C D 2 At time t 1 FTOS receives an ARP request for IP A B C D 3 At time t 2 FTOS installs an ARP entry for A B C D only on RP2 Beginning with FTOS version 8 3 1 0 when a gratuitous ARP is received FTOS installs an ARP entry on all three CPUs arp retries Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request C Series E Series ...

Page 838: ...History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands show interfaces displays the ARP timeout value for all available interfaces clear arp cache Clear the dynamic...

Page 839: ... the keyword fortyGigE followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 ip ip address OPTIONAL Enter the keyword ip followed by the IP address of the ARP entry you wish to clear no refresh OPTIONAL Enter the keywords no refresh to delete the ARP entry from CAM Or use this option with interface or ip ip address to specify which dynamic ARP ...

Page 840: ... 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series clear ip fib linecard Clear all forwarding information base fib entries in the specified line card use this command with caution refer to Usage Information below C Series E Series Syntax clear ip fib linecard slot number vrf vrf instance Parameters slot number Enter th...

Page 841: ...mands show ip fib linecard shows FIB entries clear ip fib stack unit Clear all FIB entries in the specified stack unit use this command with caution refer to Usage Information below S Series Z Series Syntax clear ip fib stack unit unit number Parameters unit number Enter the number of the stack unit The range is 0 to 7 Command Modes EXEC Command History 9 0 0 0 Introduced on the Z9000 Usage Inform...

Page 842: ... Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands ip route assigns an IP route to the switch show ip route views the routing table show ip route summary views a...

Page 843: ...debug arp command Parameters interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For the Management interface enter the keyword ManagementEthernet followed by the slot port information The slot range is 0 to 1 and the port range is 0 For a Port Channel interfac...

Page 844: ...rsion 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Added the count option Usage Information Use the count option to stop packets from flooding the user terminal when debugging is turned on debug ip dhcp Enable debug information for dynamic host configuration protocol DHCP relay transactions and display the information on the console C Series E Series S Series Z Series S4810 Syntax debug ip d...

Page 845: ... REPLY Unicast received at interface 14 4 4 1 BOOTP Reply hops 0 XID 0xda4f9503 secs 0 hwaddr 00 60 CF 20 7B 8C giaddr 113 3 3 17 00 12 42 RELAY I BOOTREPLY Forwarded BOOTREPLY for 00 60 CF 20 7B 8C to 113 3 3 254 00 12 42 RELAY I PACKET BOOTP REQUEST Unicast received at interface 113 3 3 17 BOOTP Request hops 0 XID 0xda4f9503 secs 0 hwaddr 00 60 CF 20 7B 8C giaddr 0 0 0 0 00 12 42 RELAY I BOOTREQ...

Page 846: ...GigE followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 count value OPTIONAL Enter the keyword count followed by the count value The range is 1 to 65534 The default is Infinity Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 ...

Page 847: ...thernet interface enter the keyword GigabitEthernet followed by the slot port information For the Management interface enter the keyword ManagementEthernet followed by the slot port information The slot range is 0 1 and the port range is 0 For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range...

Page 848: ...ch line lists the status of the packet TCP src Displays the source and destination ports the sequence number the acknowledgement number and the window size of the packets in that TCP packets UDP src Displays the source and destination ports for the UDP packets ICMP type Displays the ICMP type and code IP Fragment States that it is a fragment and displays the unique number identifying the fragment ...

Page 849: ...lso not supported in the access group option The entire rule is skipped to compose the filter The access group option pertains to IP Protocol Number 0 to 255 Internet Control Message Protocol icmp but not the ICMP message type 0 255 Any Internet Protocol ip Transmission Control Protocol tcp but not on the rst syn or urg bits User Datagram Protocol udp In the case of ambiguous access control list r...

Page 850: ...e Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Usage Information You must be in INTERFACE mode before you add an IP address to an interface Assign an IP address to an interface prior to entering ROUTER OSPF mode ip directed broadcast Enables the interface to re...

Page 851: ...ntroduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Usage Information Configure the ip domain list command up to six times to configure a list of possible domain names If you configure both the ip domain name and ip domain list commands the software tries to resolve the name using the ip domain name command If the name is not res...

Page 852: ... specify one or more domain name servers with the ip name server command FTOS does not support sending DNS queries over a VLAN DNS queries are sent out all other interfaces including the Management port To view current bindings use the show hosts command Related Commands ip name server specifies a DNS server show hosts Views the current bindings ip domain name Configure one domain name for the swi...

Page 853: ... Commands ip domain list configures additional names ip fib download igp only Configure the E Series to download only IGP routes for example OSPF on to line cards When the command is configured or removed it clears the routing table similar to the clear ip route command and only IGP routes populate the table E Series Syntax ip fib download igp only small fib To return to default setting use the no...

Page 854: ...r IPv6 Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information You can add multiple DHCP servers by entering the ip helper ad...

Page 855: ...crementing of the hops field when boot requests are relayed to a DHCP server through FTOS If the incoming boot request already has a non zero hops field the message is relayed with the same value for hops However the message is discarded if the hops field exceeds 16 to comply with the relay agent behavior specified in RFC 1542 Related Commands ip helper address specifies the destination broadcast ...

Page 856: ...g count count To place no limit on the number of fragments allowed use the no ip max frag count command Parameters count Enter a number for the number of fragments allowed for re assembly The range is 2 to 256 Defaults No limit is set on number of fragments allowed Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8...

Page 857: ... difference between the link MTU and IP MTU the ip mtu command must be enough bytes to include for the Layer 2 header Link MTU and IP MTU considerations for Port Channels and VLANs are as follows Port Channels All members must have the same link MTU value and the same IP MTU value The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the ch...

Page 858: ...d Parameters ipv4 address Enter the IPv4 address in dotted decimal format of the name server to be used ipv4 address2 ipv4 address6 OPTIONAL Enter up five more IPv4 addresses in dotted decimal format of name servers to be used Separate the addresses with a space Defaults No name servers are configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 ...

Page 859: ...he Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Related Commands show ip interface displays the interface routing status and configuration ip redirects Enable the interface to send ICMP redirect messages E Series S...

Page 860: ...e static route to the VRF instance destination Enter the IP address in dotted decimal format of the destination device mask Enter the mask in slash prefix formation x of the destination device s IP address ip address Enter the IP address in dotted decimal format of the forwarding router interface Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface en...

Page 861: ...sion 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Added support for 4094 VLANs on the E Series ExaScale the prior limit was 2094 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Using the followin...

Page 862: ...S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series ip unreachables Enable the generation of internet control message protocol ICMP unreachable messages C Series E Series S Series Z Series S4810 Syntax ip unreachables To disable the generation of ICMP messages use the no ip unreachables command Defaults Disabled Command Modes INTERFACE Command History...

Page 863: ...TOS uses an IP 4 tuple IP SA IP DA Source Port and Destination Port to distribute IP traffic over members of a Port Channel as well as equal cost paths To designate another method to balance traffic over Port Channel members use the load balance command C Series S Series Z Series S4810 Syntax load balance ip selection dest ip source ip mac dest mac source dest mac source mac tcp udp ingress port e...

Page 864: ...o distribute traffic based on the following enable Takes the TCP UDP source and destination ports into consideration when doing hash computations By default this is enabled ingress port enable Enter the keywords to distribute traffic based on the following enable Takes the source port into consideration when doing hash computations By default this is disabled Defaults IP 4 tuple IP SA IP DA Source...

Page 865: ...nly the first 32 bits LSB of IP SA and IP DA are used for hash generation ip selection packet based Enter the keywords ip selection packet based to distribute IPV4 traffic based on the IP Identification field in the IPV4 header This option does not affect IPV6 traffic that is IPV6 traffic is not distributed when this command is executed NOTE Hash based load balancing on MPLS does not work when pac...

Page 866: ...ed IP 3 tuple MAC based ip selection packet based Packet based IPV4 No distribution IPV6 Packet based IPV4 MAC based ip selection packet based and mac MAC based Packet based IPV4 MAC based Related Commands ip address change the algorithm used to distribute traffic on an E Series chassis load balance hg Choose the traffic flow parameters to be used in the hash calculation while distributing the tra...

Page 867: ... port Use IPv4 L4 dest port field in hash calculation mac source mac source port id source module id dest mac dest port id dest module id vlan ethertype source dest mac To use MAC key fields in hash computation enter the keyword mac followed by one of the parameters source mac Use source mac field in hash calculation source port id Use src port id field in hash calculation source module id Use src...

Page 868: ...Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros forwarding router address Enter an IP address dotted decimal format or an IPv6 address x x x x x format of a forwarding router managementethe rnet Enter the keyword managementethernet for the Management interface on th...

Page 869: ... one of the following keywords to view ARP entries on that CPU cp view ARP entries on the control processer rp1 view ARP entries on Routing Processor 1 rp2 view ARP entries on Routing Processor 2 interface interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For...

Page 870: ...cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Added support for 4094 VLANs on the E Series ExaScale the prior limit was 2094 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 8 1 0 Augmented to display local ARP entries learned from private VLANs PVLANs Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 ...

Page 871: ...92 2 1 246 1 00 00 c0 02 01 02 Gi 9 13 CP Internet 192 2 1 245 1 00 00 c0 02 01 02 Gi 9 13 CP Example Private VLAN NOTE In this example Line 1 shows community VLAN 200 in primary VLAN 10 in a PVLAN Line 2 shows primary VLAN 10 FTOS show arp Protocol Address Age min Hardware Address Interface VLAN CPU Internet 5 5 5 1 00 01 e8 43 96 5e Vl 10 pv 200 CP Internet 5 5 5 10 00 01 e8 44 99 55 Vl 10 CP In...

Page 872: ...ables disables Layer 3 communication in secondary VLANs switchport mode private vlan sets PVLAN mode of the selected port show arp retries Display the configured number of ARP retries C Series E Series S Series Z Series S4810 Syntax show arp retries Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Introduced Related Commands arp retries set...

Page 873: ...ervice If DNS is not enabled the Name Address lookup is static mapping Name servers are Lists the name servers if configured Host Displays the host name assigned to the IP address Flags Classifies the entry as one of the following perm the entry was manually configured and will not time out temp the entry was learned and will time out after 72 hours of inactivity Also included in the flag is an in...

Page 874: ...number of the line card s port pipe The range is 0 to 1 ip address mask longer prefix OPTIONAL Enter the IP address and mask of a route to CAM entries for that route only Enter the keyword longer prefixes to view routes with a common prefix index index number OPTIONAL Enter the keyword index followed by the CAM index number The range depends on CAM size summary OPTIONAL Enter the keyword summary t...

Page 875: ...rt of a VLAN Mac Addr Displays the next hop router s MAC address Port Displays the egress interface Use the second half of the entry to determine the interface For example in the entry 17cl CP the CP is the pertinent portion CP control processor RP2 route processor 2 Gi Gigabit Ethernet interface So SONET interface Te 10 Gigabit Ethernet interface Example FTOS show ip cam linecard 13 port set 0 In...

Page 876: ...g mask The CAM size is adjusted by FTOS if the number of routes for the mask exceeds the initial allocation Example Summary FTOS show ip cam linecard 4 port set 0 summary Total Number of Routes in the CAM is 13 Total Number of Routes which can be entered in CAM is 131072 Prefix Len Current Use Initial Sz 32 7 37994 31 0 1312 30 0 3932 29 0 1312 28 0 1312 27 0 1312 26 0 1312 25 0 1312 24 6 40610 23...

Page 877: ...s which can be entered in to CAM Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 7 1 0 Added support for up to seven stack members Version 7 6 1 0 Introduced on the S Series Usage Information The following describes the show ip cam command shown in the Example below Field Description Destination Displays the destination route of the index EC Dis...

Page 878: ...ecard 0 port pipe 0 Initial Size Displays the CAM size allocated by FTOS for the corresponding mask The CAM size is adjusted by FTOS if the number of routes for the mask exceeds the initial allocation Example ECMP Group FTOS show ip cam stack unit 0 po 0 ecmp group detail Destination EC CG V C VId Mac Addr Port ECMP Group Index 1 1 1 2 0 0 1 0 0 00 01 e8 8a d6 58 0004 Te 0 3 2 1 1 2 0 0 1 0 0 00 0...

Page 879: ...al format A B C D You must enter the mask in slash prefix format X longer prefixes OPTIONAL Enter the keywords longer prefixes to view all routes with a common prefix summary OPTIONAL Enter the keyword summary to view the total number of prefixes in the FIB Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale ...

Page 880: ...via 100 10 10 10 So 2 8 100 10 10 10 00 01 e8 00 03 ff So 2 8 0 0 0 101 10 10 0 24 Direct So 2 9 0 0 0 0 00 00 00 00 00 00 RP2 0 11145 0 101 10 10 1 32 via 127 0 0 1 127 0 0 1 00 00 00 00 00 00 CP 0 3277 0 101 10 10 10 32 via 101 10 10 10 So 2 9 101 10 10 10 00 01 e8 01 62 32 So 2 9 0 1 0 FTOS Related Commands clear ip fib linecard clears the FIB entries on a specified line card show ip fib stack ...

Page 881: ...elow Field Description Destination Lists the destination IP address Gateway Displays either the word direct and an interface for a directly connected route or the remote IP address to be used to forward the traffic First Hop Displays the first hop IP address Mac Addr Displays the MAC address Port Displays the egress port information VId Displays the VLAN ID If no VLAN is assigned zero 0 is listed ...

Page 882: ...t followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information OPTIONAL Enter an in or out parameter in conjunction with the optional interface source ip address Enter the keywords source ip followed by the IP source address in IP address format destination ip address Enter the keywords destination ip followed by the IP...

Page 883: ...ort with the current trunk hash setting Example FTOS show ip flow interface Gi 1 8 189 1 1 1 63 0 0 1 protocol tcp source port 7898 destination port 8 flow 189 1 1 1 63 0 0 1 protocol 6 7868 8976 Ingress interface Gi 1 20 Egress interface Gi 1 14 to 1 7 1 2 CAM hit 103710 unfragmented packet Gi 1 10 to 1 2 1 2 CAM hit 103710 fragmented packet show ip interface View IP related information on all in...

Page 884: ... is assigned linecard slot number OPTIONAL Enter the keyword linecard followed by the number of the line card slot For the C Series the range is 0 7 For the E Series the range is 0 to 13 on a E1200 1200i 0 to 6 on a E600 E600i and 0 to 5 on a E300 NOTE This keyword is not available on the S Series configuration OPTIONAL Enter the keyword configuration to display the physical interfaces with non de...

Page 885: ...nGigabitEthernet 0 0 is down line protocol is down Internet address is not set IP MTU is 1500 bytes Inbound access list is not set Proxy ARP is enabled Split Horizon is enabled Poison Reverse is disabled ICMP redirects are not sent ICMP unreachables are not sent FTOS Usage Information The following describes the show ip interface brief command shown in the Example below Fields Description Interfac...

Page 886: ...the keyword all to view all IP addresses assigned to all Management interfaces on the switch connected OPTIONAL Enter the keyword connected to view only routes directly connected to the Management interface summary OPTIONAL Enter the keyword summary to view a table listing the number of active and non active routes and their sources static OPTIONAL Enter the keyword static to view non active route...

Page 887: ...t interface summary OPTIONAL Enter the keyword summary to view a table listing the number of active and non active routes and their sources static OPTIONAL Enter the keyword static to view non active routes also Command Modes EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 4 1 0 Introduced on the C and E Series Version 8 3 7 0 Introduced on the S4810 Example FTOS s...

Page 888: ...tion optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0 main routing table version 0 Distance external 20 internal 200 local 200 Neighbor s Address 20 20 20 2 Filter list in foo Route map in foo Weight 0 Address 5 6 Weight 0 FTOS show ip route View information including how they were learned about the IP routes on the switch C Series E Series Z Ser...

Page 889: ...OPTIONAL Specify that only OSPF routes with a certain process ID must be displayed routing tag OPTIONAL Specify that only ISIS routes with a certain routing tag must be displayed connected OPTIONAL Enter the keyword connected to view only the directly connected routes all OPTIONAL Enter the keyword all to view both active and non active routes static OPTIONAL Enter the keyword static to view only ...

Page 890: ...destination IP address Gateway Identifies whether the route is directly connected and on which interface the route is configured Dist Metric Identifies if the route has a specified distance or metric Last Change Identifies when the route was last changed or configured Example FTOS show ip route all Codes C connected S static R RIP B BGP IN internal BGP EX external BGP LO Locally Originated O OSPF ...

Page 891: ..._E600i show ip route static Destination Gateway Dist Metric Last Change S 0 0 0 0 0 via 10 10 91 9 Gi 1 2 1 0 3d2h FTOS show ip route list Display IP routes in an IP prefix list C Series E Series S Series Z Series S4810 Syntax show ip route list prefix list Parameters prefix list Enter the name of a configured prefix list Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduce...

Page 892: ...1 3d1h C 2 1 4 0 24 Direct Gi 4 43 0 0 3d1h Related Commands ip prefix list enters CONFIGURATION IP PREFIX LIST mode and configures a prefix list show ip prefix list summary displays a summary of the configured prefix lists show ip route summary View a table summarizing the IP routes in the switch C Series E Series S Series Z Series S4810 Syntax show ip route summary Command Modes EXEC EXEC Privil...

Page 893: ... route summary Route Source Active Routes Non active Routes connected 17 0 static 3 0 ospf 100 1368 2 Intra area 762 Inter area 1 External 1 600 External 2 5 Total 1388 2 Total 1388 active route s using 222440 bytes Total 2 non active route s using 128 bytes FTOS Related Commands show ip route displays information about the routes found in the switch show ip traffic View IP ICMP UDP TCP and ARP tr...

Page 894: ...chable security failures Counts the number of received unicast multicast packets that could not be forwarded due to route not found for unicast multicast ingress interfaces do not belong to the destination multicast group destination IP address belongs to reserved prefixes the host network is unreachable bad options Unrecognized IP option on a received packet Frags IP fragments received reassemble...

Page 895: ...istics Sent Proxy Object f10ArpProxySent OIDs 1 3 6 1 4 1 6027 3 3 5 2 5 Example FTOS show ip traffic Control Processor IP Traffic IP statistics Rcvd 23857 total 23829 local destination 0 format errors 0 checksum errors 0 bad hop count 0 unknown protocol 0 not a gateway 0 security failures 0 bad options Frags 0 reassembled 0 timeouts 0 too big 0 fragmented 0 couldn t fragment Bcast 28 received 0 s...

Page 896: ... 1 0 Introduced Usage Information The IPPTT table is used for looking up forwarding information for IP control traffic destined to the router For the listed control traffic types IPPTT contains the information for the following Which CPU to send the traffic CP RP1 or RP2 What QoS parameters to set Example FTOS show protocol termination table linecard 2 port set 0 Index Protocol Src Port Dst Port Q...

Page 897: ... tcp statistics View information on TCP traffic through the switch C Series E Series S Series Z Series S4810 Syntax show tcp statistics all cp rp1 rp2 Parameters all Enter the keyword all to view all TCP information cp Enter the keyword cp to view only TCP information from the Control Processor rp1 Enter the keyword rp1 to view only TCP statistics from Route Processor 1 rp2 Enter the keyword rp2 t...

Page 898: ...lose Displays the number of packet received after the TCP connection was closed 0 window probe packets Displays the number of window probe and update packets received 41 dup ack Displays the number of duplicate acknowledgement packets and acknowledgement packets with data received 10184 ack Displays the number of acknowledgement packets and bytes received Sent Displays the total number of TCP pack...

Page 899: ...ytes 7 out of order packets 0 bytes 0 packets 0 bytes with data after window 0 packets after close 0 window probe packets 41 window update packets 41 dup ack packets 0 ack packets with unsend data 10184 ack packets 12439508 bytes Sent 12007 Total 0 urgent packets 25 control packets including 24 retransmitted 11603 data packets 12439677 bytes 24 data packets 7638 bytes retransmitted 355 ack only pa...

Page 900: ...900 ...

Page 901: ...ermits any traffic ACLs are not applied to self originated traffic for example Control Protocol traffic not affected by IPv6 ACL because the routed bit is not set for Control Protocol traffic and for egress ACLs the routed bit must be set You can use the same access list name for both IPv4 and IPv6 ACLs You can apply both IPv4 and IPv6 ACLs on an interface at the same time You can apply IPv6 ACLs ...

Page 902: ...ettings to the startup config write mem or copy run start then reload the system The total amount of space allowed is 16 FP Blocks System flow requires three blocks and these cannot be reallocated When configuring space for IPv6 ACLs the total number of Blocks must equal 13 Ranges for the CAM profiles are 1 10 except for the ipv6acl profile which is 0 10 The ipv6acl allocation must be a factor of ...

Page 903: ...S configure FTOS conf cam acl egress default Reset Egress CAM ACL entries to default setting l2acl Set L2 ACL entries FTOS conf cam acl egress l2acl 1 4 Number of FP blocks for l2acl FTOS conf cam acl egress l2acl 1 ipv4acl Set IPV4 ACL entries FTOS conf cam acl egress l2acl 1 ipv4acl 1 ipv6acl Set IPV6 ACL entries FTOS conf cam acl egress l2acl 1 ipv4acl 1 ipv6acl 0 4 Number of FP blocks for IPV6...

Page 904: ...6 to deny any Internet Protocol version 6 tcp Enter the keyword tcp to deny the Transmission Control protocol udp Enter the keyword udp to deny the User Datagram Protocol Defaults Not configured Command Modes ACCESS LIST Command History Version 8 4 2 1 Introduced on the S Series Version 8 2 1 0 Introduced on the E Series TeraScale Version 7 8 1 0 Introduced on the C Series Version 7 4 1 0 Introduc...

Page 905: ...ccessive hexadecimal fields of zero message type On the E Series only enter an ICMP message type either with the type and code if necessary numbers or with the name of the message type The range is 0 to 255 for ICMP type and 0 to 255 for ICMP code count OPTIONAL Enter the keyword count to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the fil...

Page 906: ...ulticast router solicitation mrouter termination Multicast router termination nd na Neighbor advertisement nd ns Neighbor solicitation packet too big Packet is too big parameter problem Parameter problems redirect Neighbor redirect router advertisement Neighbor discovery router advertisement router renumbering All routers renumbering router solicitation Neighbor discovery router solicitation time ...

Page 907: ...sive hexadecimal fields of zero operator OPTIONAL Enter one of the following logical operand eq equal to neq not equal to gt greater than lt less than range inclusive range of ports you must specify two ports for the port command parameter port port Enter the application layer port number Enter two port numbers if using the range logical operand The range is 0 to 65535 The following list includes ...

Page 908: ...quire one entry in the CAM However rules with TCP and UDP port operators gt lt range may require more than one entry The range of ports is configured in the CAM based on bitmask boundaries the space required depends on exactly what ports are included in the range Example An ACL rule with a TCP port range of 4000 8000 uses eight entries in the CAM Rule Data Mask From To Covered 1 0000111110100000 1...

Page 909: ...elds of zero mask Enter a network mask in prefix format x any Enter the keyword any to specify that all routes are subject to the filter host ipv6 address Enter the keyword host followed by the IPv6 address of the host in the x x x x x format The notation specifies successive hexadecimal fields of zero operator OPTIONAL Enter one of the following logical operand eq equal to neq not equal to gt gre...

Page 910: ... with TCP and UDP port operators gt lt range may require more than one entry The range of ports is configured in the CAM based on bitmask boundaries the space required depends on exactly what ports are included in the range Example An ACL rule with a TCP port range of 4000 8000 uses eight entries in the CAM Rule Data Mask From To Covered 1 0000111110100000 1111111111100000 4000 4031 32 2 000011111...

Page 911: ...does not match the filters in the IPv6 ACL the traffic is permitted instead of dropped vlan range OPTIONAL Enter the keyword vlan followed by the VLAN range in a comma separated format The range is 1 to 4094 Defaults Disabled Command Modes INTERFACE Command History Version 8 4 2 1 Introduced on the S Series Version 7 8 1 0 Introduced on the C Series Increased the name string to accept up to 140 ch...

Page 912: ...on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series Increased the name string to accept up to 140 characters Prior to version 7 8 1 0 names are up to 16 characters long Version 7 4 1 0 Introduced on the E Series TeraScale Usage Information The number of entries allowed per ACL is hardware dependent For detailed specification on entries allowed per ACL refer to your line card docume...

Page 913: ...sion Control protocol udp Enter the keyword udp to filter the User Datagram Protocol Defaults Not configured Command Modes ACCESS LIST Command History Version 8 3 7 0 Introduced on the S4810 permit icmp Configure a filter to allow all or specific internet control message protocol ICMP messages C Series E Series S Series S4810 Syntax permit icmp source address mask any host ipv6 address destination...

Page 914: ... the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL Enter the keyword log to have the information kept in an ACL log file monitor OPTIONAL Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow based monitoring session along with the filter operation Defaults Not configured Command Modes ACCESS LIST Command Hi...

Page 915: ...d by the IPv6 address of the host in the x x x x x format The notation specifies successive hexadecimal fields of zero operator OPTIONAL Enter one of the following logical operand eq equal to neq not equal to gt greater than lt less than range inclusive range of ports you must specify two port for the port parameter port port Enter the application layer port number Enter two port numbers if using ...

Page 916: ...you enter the count byte options only bytes are incremented Most ACL rules require one entry in the CAM However rules with TCP and UDP port operators gt lt range may require more than one entry The range of ports is configured in the CAM based on bitmask boundaries the space required depends on exactly what ports are included in the range Example An ACL rule with a TCP port range 4000 8000 uses ei...

Page 917: ...n the x format The range is 0 to 128 The notation specifies successive hexadecimal fields of zero mask Enter a network mask in prefix format x any Enter the keyword any to specify that all routes are subject to the filter host ipv6 address Enter the keyword host followed by the IPv6 address of the host in the x x x x x format The notation specifies successive hexadecimal fields of zero operator OP...

Page 918: ... the CAM However rules with TCP and UDP port operators gt lt range may require more than one entry The range of ports is configured in the CAM based on bitmask boundaries the space required depends on exactly what ports are included in the range Example An ACL rule with a TCP port range 4000 8000 uses eight entries in the CAM Rule Data Mask From To Covered 1 0000111110100000 1111111111100000 4000 ...

Page 919: ... on the C Series Version 7 4 1 0 Introduced on the E Series TeraScale Usage Information As shown in the Example below the same sequence number is used for the remark and an ACL rule The remark precedes the rule in the running configuration because it is assumed that the remark is for that rule or that group of rules that follow the remark You can configure up to 4294967290 remarks in a given ACL E...

Page 920: ...4294967290 Step to Increment Enter the step to increment the sequence number The range is 1 to 4294967290 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 4 2 0 Introduced on the S Series Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series TeraScale Usage Information When all sequence num...

Page 921: ... been exhausted this feature permits re assigning new sequence number to entries of an existing access list Related Commands resequence access list resequences an access list seq Assign a sequence number to a deny or permit the filter in an IPv6 access list while creating the filter C Series E Series S Series Syntax seq sequence number deny permit ipv6 protocol number icmp ip tcp udp source addres...

Page 922: ...ecifies successive hexadecimal fields of zero operator OPTIONAL Enter one of the following logical operands eq equal to neq not equal to gt greater than lt less than range inclusive range of ports you must specify two ports for the port parameter port port OPTIONAL Enter the application layer port number Enter two port numbers if using the range logical operand The range is 0 to 65535 The followin...

Page 923: ...8 2 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series Version 7 4 1 0 Added the monitor option Related Commands deny configures a filter to drop packets permit configures a filter to forward packets show cam acl Show space allocated for IPv6 ACLs C Series E Series S Series S4810 Syntax show cam acl Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 I...

Page 924: ...elated Commands cam acl configures CAM profiles to support IPv6 ACLs show cam acl egress Show information on FP groups allocated for egress ACLs C Series E Series S Series S4810 Syntax show cam acl egress Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 4 2 1 Introduced on the S Series Version 8 4 2 0 Introduced on the E Series TeraScale Version 7...

Page 925: ...show config ipv6 access list Acl1 seq 5 permit ipv6 1111 2222 127 host 3333 1111 log count bytes seq 10 permit icmp host 3333 any mobile advertisement log seq 15 deny tcp any any rst seq 20 permit udp any any gt 100 count FTOS conf ipv6 acl show ipv6 accounting access list View the IPv6 access lists created on the E Series and the sequence of filters C Series E Series S Series Syntax show ipv6 acc...

Page 926: ... for 4 port 40G line cards on ExaScale Version 8 4 2 1 Introduced on the S Series Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series Increased the name string to accept up to 140 characters Prior to version 7 8 1 0 names are up to 16 characters long Version 7 4 1 0 Introduced on the E Series TeraScale Usage Information Field Description Ingress IPv6 Disp...

Page 927: ...q 5 permit ipv6 1111 2222 127 host 3333 1111 log count bytes remark 10 Remark for Entry 10 seq 10 permit icmp host 3333 any mobile advertisement log seq 15 deny tcp any any rst seq 20 permit udp any any gt 100 count FTOS test cam usage Verify that enough ACL CAM space is available for the IPv6 ACLs you have created C Series E Series S Series Syntax test cam usage service policy input input policy ...

Page 928: ...n the chassis Portpipe Lists the portpipe port set or port pipes port sets that are checked Entering all shows the status for linecards and port pipes in the chassis CAM Partition Shows the CAM profile of the CAM Available CAM Identifies the amount of CAM space remaining for that profile Estimated CAM per Port Estimates the amount of CAM space the listed policy requires Status Indicates whether or...

Page 929: ...0 characters Defaults Not configured Command Modes ROUTE MAP Command History Version 8 4 2 1 Introduced on the S Series Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series Increased the name string to accept up to 140 characters Prior to version 7 8 1 0 the names are up to 16 characters long Version 7 4 1 0 Introduced on the E Series TeraScale Related Com...

Page 930: ...ters match ipv6 route source Configure a filter which matches based on the routes advertised in the IPv6 prefix lists C Series E Series S Series Syntax match ipv6 route source prefix list prefix list name To delete a match use the no match ipv6 route source prefix list prefix list name command Parameters prefix list prefix list name Enter the keywords prefix list followed by the name of configured...

Page 931: ...up to 140 characters Prior to version 7 8 1 0 the names are up to 16 characters long Version 7 4 1 0 Introduced on the E Series TeraScale Example FTOS conf route map Rmap1 FTOS config route map match ip IP specific information ipv6 IPv6 specific information Related Commands show config views the current configuration set ipv6 next hop Configure a filter that specifies IPv6 address as the next hop ...

Page 932: ...Version 8 4 2 1 Introduced on the S Series Version 8 4 2 0 Introduced on the E Series TeraScale Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series Example FTOS conf ipv6 acl show config ipv6 access list Acl1 seq 5 permit ipv6 1111 2222 127 host 3333 1111 log count bytes seq 10 permit icmp host 3333 any mobile advertisement log seq 15 deny tcp any any rst...

Page 933: ...d on the E Series TeraScale Example FTOS show route map route map Rmap1 permit sequence 10 Match clauses ip address v4plist ipv6 address plist1 ipv6 next hop prefix lists plist2 ipv6 route source prefix lists plist3 Set clauses next hop 1 1 1 1 ipv6 next hop 3333 2222 Related Commands route map configures a route map 933 ...

Page 934: ...934 ...

Page 935: ... fib linecard slot stack unit unit number Parameters slot Enter the slot number to clear the FIB for a linecard unit number Enter the stack member number The rang is 0 to 7 for the Z9000 and 0 to 11 for the S4810 Command Modes EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 ...

Page 936: ...on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series TeraScale clear ipv6 mld_host Clear the IPv6 MLD host counters and reset the elapsed time S4810 Syntax clear ipv6 mld_host Command Modes EXEC Command History Version 8 3 12 0 Introduced on the S4810 ipv6 address autoconfig Configure IPv6 address auto configuration for the man...

Page 937: ...al IPv6 address from that management interface IPv6 addresses on a single management interface cannot be members of the same subnet IPv6 secondary addresses on management interfaces across a platform must be members of the same subnet IPv6 secondary addresses on management interfaces should not match the virtual IP address and should not be in the same subnet as the virtual IP ipv6 address Configu...

Page 938: ...ement interfaces should not match the virtual IP address and should not be in the same subnet as the virtual IP Example FTOS conf interface gigabitethernet 10 0 FTOS conf if gi 10 0 ipv6 address X X X X X IPv6 address FTOS conf if gi 10 0 ipv6 address 2002 1 2 3 0 128 Prefix length in bits FTOS conf if gi 10 0 ipv6 address 2002 1 2 3 96 cr FTOS conf if gi 10 0 ipv6 address 2002 1 2 3 96 FTOS conf ...

Page 939: ...ue is already set for BGP or SSH the system defaults to the already configured value All packets on the same connection are considered part of the same flow by the system For new connections set the new flowlabel to zero ipv6 host Assign a name and IPv6 address to be used by the host to IPv6 address mapping table C Series E Series S Series Z Series S4810 Syntax ipv6 host name ipv6 address To remov...

Page 940: ...mand Parameters ipv6 address Enter the IPv6 address X X X X X of the name server to be used Note The notation specifics successive hexadecimal fields of zeros ipv6 address2 ipv6 address6 OPTIONAL Enter up five more IPv6 addresses in the x x x x x format of name servers to be used Separate the IPv6 addresses with a space Defaults none Command Modes CONFIGURATION Command History Version 9 0 0 0 Intr...

Page 941: ... C Series E Series S Series Z Series S4810 Syntax ipv6 nd prefix ipv6 prefix prefix length default no advertise no autoconfig no rtr address off link lifetime valid infinite preferred infinite Parameters ipv6 prefix Enter an IPv6 prefix prefix length Enter the prefix followed by the prefix length The length range is 0 to 128 default Enter the keyword default to set default parameters for all prefi...

Page 942: ... you can use the default keyword to use the default parameters for all prefixes If a prefix has been configured with lifetime parameter values the default values cannot be applied using the ipv6 nd prefix default no autoconfig command ipv6 route Establish a static IPv6 route C Series E Series S Series Z Series S4810 Syntax ipv6 route ipv6 address prefix length ipv6 address interface interface ipv6...

Page 943: ... router IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros distance OPTIONAL Enter a number as the metric distance assigned to the route The range is 1 to 255 tag value OPTIONAL Enter the keyword tag followed by a tag value number The range is 1 to 4294967295 permanent OPTIONAL Enter the keyword permanent to specify that the route is not to be r...

Page 944: ...ace null Null interface port channel Port channel interface sonet Sonet interface tenGigabitethernet TenGigabit Ethernet interface vlan VLAN interface FTOS conf ipv6 route 55 0 64 gigabitethernet 9 0 1 255 Distance metric for this route X X X X X Forwarding router s address permanent Permanent route tag Set tag for this route FTOS conf ipv6 route 55 0 64 gigabitethernet 9 0 66 1 1 255 Distance met...

Page 945: ...al protocol adjacencies OSPFv3 and BGP4 are brought down and no new adjacencies are formed the IPv6 address family configuration under router bgp is deleted IPv6 Multicast traffic continues to flow unhindered show ipv6 cam linecard Displays the IPv6 CAM entries for the specified line card C Series E Series Syntax show ipv6 cam linecard slot number port set 0 1 summary index ipv6 address Parameters...

Page 946: ... neighbors commands to display statically configured addresses of IPv6 neighbors NOTE If a route has a mask greater than 64 no output is displayed Similarly if there is more than one ECMP object with a destination route that has a mask greater than 64 if the first 64 bits in the destination routes of the ECMP objects are the same only one route is installed in CAM even though multiple ECMP path en...

Page 947: ...xes and the total number prefixes which can be entered into the IPv6 CAM index OPTIONAL Enter the index in the IPv6 CAM ipv6 address Enter the IPv6 address in the x x x x x n format to display networks that have more specific prefixes The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros Defaults none Command Modes EXEC EXEC Privilege Command History Version 9 0 ...

Page 948: ...ipv6 control plane icmp Displays the status of the icmp control plane setting for the error eate limit setting S4810 Syntax show ipv6 control plane icmp Default 100 Command Modes EXEC Command History Version 8 3 12 0 Introduced on the S4810 Related Commands ipv6 flowlabel zero Configure IPv6 address auto configuration for the management interface show ipv6 fib linecard View all forwarding informat...

Page 949: ...y OPTIONAL Enter the keyword summary to view a summary of entries in IPv6 cam ipv6 address Enter the IPv6 address in the x x x x x n format to display networks that have more specific prefixes The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros Command Modes EXEC EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 7 0 Introduced o...

Page 950: ...engigabitethernet slot slot port fortyGigE slot slot port vlan vlan id Parameters interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Loopback interface enter the keyword Loopback followed by a number from 0 to 16383 For the Null interface enter the keywo...

Page 951: ...bitethernet interface fortyGigE OPTIONAL View information for an IPv6 fortygigabitethernet interface vlan OPTIONAL View information for IPv6 VLANs Defaults none Command Modes EXEC EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 4 2 1 Introduced on the S Serie...

Page 952: ...n 0 0 ManagementEthernet 0 0 is up line protocol is up IPV6 is enabled Link Local address fe80 201 e8ff fe8a e8f7 Global Unicast address es Actual address is 600 1 subnet is 600 64 Virtual IP IPv6 address is not set Global Anycast address es Joined Group address es IPv6 Basics 785 ff02 1 ff02 1 ff00 1 ff02 1 ff8a e8f7 ND MTU is 1500 ICMP redirects are not sent DAD is enabled number of DAD attempts...

Page 953: ...rts queries and unsolicited reports generated from joins or leaves that have been received or sent Leaves The number of Multicast leaves that have been sent MLDv1 queries The number of MLDv1 queries that have been received MLDv2 queries The number of MLDv2 queries that have been received Malformed Packets The number of MLDv1 and MLDv2 packets that do not match the requirement for a valid MLD packe...

Page 954: ...outes connected OPTIONAL View only the directly connected IPv6 routes isis OPTIONAL View information for all IPv6 IS IS routes list OPTIONAL View the IPv6 prefix list ospf OPTIONAL View information for all IPv6 OSPF routes rip OPTIONAL for E Series only View information for all IPv6 RIP routes static OPTIONAL View only routes configured by the ipv6 route command summary OPTIONAL View a brief list ...

Page 955: ...ted and on which interface the route is configured Dist Metric Identifies if the route has a specified distance or metric Last Change Identifies when the route was last changed or configured Example E Series FTOS show ipv6 route Codes C connected L local S static R RIP B BGP IN internal BGP EX external BGP LO Locally Originated O OSPF IA OSPF inter area N1 OSPF NSSA external type 1 N2 OSPF NSSA ex...

Page 956: ...t Gi 1 1 00 28 49 C 2002 120 0 0 Direct Gi 1 1 00 28 49 C 2003 120 0 0 Direct Gi 1 1 00 28 49 C 2004 32 0 0 Direct Gi 1 1 00 28 49 L fe80 10 0 0 Direct Nu 0 00 29 09 Example Summary FTOS show ipv6 route summary Route Source Active Routes Non active Routes connected 5 0 static 0 0 Total 5 0 Total 5 active route s using 952 bytes trust ipv6 diffserv Allows the dynamic classification of IPv6 DSCP C S...

Page 957: ... counters are not incremented in the show qos statistics command Trust diffserv IPv4 can co exist with trust ipv6 diffserv in an Input Policy Map Dynamic classification happens based on the mapping as shown IPv6 Service Class Field Queue ID 111XXXXX 7 110XXXXX 6 101XXXXX 5 100XXXXX 4 011XXXXX 3 010XXXXX 2 001XXXXX 1 000XXXXX 0 957 ...

Page 958: ...958 ...

Page 959: ...s use the no advertise dcbx app tlv iscsi command Defaults Enabled Command Modes PROTOCOL LLDP Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on MXL 10 40GbE Switch IO Module Usage Information You can configure iSCSI TLVs to send either globally or on a specified interface The interface configuration takes priority over global configuration iscsi aging time Se...

Page 960: ...ord disable to disable the application of preferential QoS treatment to iSCSI frames dot1p vlan priority value Enter the dot1p value of the VLAN priority tag assigned to the incoming packets in an iSCSI session The range is 0 to 7 The default is the dot1p value in ingress iSCSI frames is not changed and is used in iSCSI TLV advertisements if you did not enter the iscsi priority bits command dscp d...

Page 961: ...led Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on MXL 10 40GbE Switch IO Module iscsi priority bits Configure the priority bitmap that advertises in the iSCSI application TLVs S4810 Syntax iscsi priority bits To remove the configured priority bitmap use the no iscsi priority bits command Defaults 4 0x10 in the bitmap Command Mod...

Page 962: ...ameters tcp port 2 tcpport 16 Enter the tcp port number of the iSCSI target ports The tcp port n is the TCP port number or a list of TCP port numbers on which the iSCSI target listens to requests Separate port numbers with a comma The default is 860 3260 ip address Optional Enter the ip address that the iSCSI monitors The ip address specifies the IP address of the iSCSI target Defaults 860 3260 Co...

Page 963: ... aging time 10 Maximum number of connections is 256 iSCSI Targets and TCP Ports TCP Port Target IP Address 3260 860 Related Commands show iscsi session displays information about active iSCSI sessions on the switch show iscsi session detailed displays detailed information about active iSCSI sessions on the switch show run iscsi shows run iscsi show iscsi session Display information about active iS...

Page 964: ...switch picks up the communication after reloading it would detect a session was in progress but could not obtain complete information for it Any incomplete information of this type would not be available in the show commands Related Commands show iscsi displays the currently configured iSCSI settings show iscsi session detailed displays detailed information about active iSCSI sessions on the switc...

Page 965: ...on IP Address TCP Port IP Address TCPPort ID 10 10 0 53 33432 10 10 0 101 3260 0 Related Commands show iscsi displays the currently configured iSCSI settings show iscsi session displays information about active iSCSI sessions on the switch show run iscsi shows run iscsi show run iscsi Display all globally configured non default iSCSI settings in the current FTOS session S4810 Syntax show run iscsi...

Page 966: ...966 ...

Page 967: ...n the Standard Compliance chapter in the FTOS Configuration Guide NOTE The fundamental mechanisms of IS IS are the same between IPv4 and IPv6 Where there are differences between the two versions they are identified and clarified in this chapter Except where identified the information in this chapter applies to both protocol versions adjacency check Verify that the protocols supported field of the ...

Page 968: ...of the IP Prefix list are leaked Defaults level1 into level2 Level 1 to Level 2 leaking enabled Command Modes ROUTER ISIS for IPv4 CONFIGURATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added IPv6 ISIS support Version 6 3 1 0 Version 6 3 1 0 Introduced Usage Information You cannot disable leaking from one level to another how...

Page 969: ...ink state database from receiving incorrect routing information from unauthorized routers The configured password injects into Level 1 LSPs CSNPs and PSNPs Related Commands domain password allows you to set the authentication password for a routing domain isis password allows you to configure an authentication password for an interface clear config Clear IS IS configurations that display under the...

Page 970: ...the S4810 clns host Define a name to network service mapping point NSAP that you use with commands that require NSAPs and system IDs E Series S4810 Syntax clns host name nsap Parameters name Enter an alphanumeric string to identify the name to NSAP mapping nsap Enter a specific NSAP address that is associated with the name parameter Defaults Not configured Command Modes ROUTER ISIS Command History...

Page 971: ...eceived on IS IS adjacencies E Series S4810 Syntax debug isis adj packets interface To turn off debugging use the no debug isis adj packets interface command Parameters interface OPTIONAL Identifies the interface type slot port as one of the following For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keyw...

Page 972: ...interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethe...

Page 973: ...and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 Command Modes EXEC Pr...

Page 974: ...For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 Comm...

Page 975: ... this command to redistribute routes into a routing domain the router becomes an autonomous system AS boundary router An AS boundary router does not always generate a default route into a routing domain The router still requires its own default route before it can generate one How a metric value assigned to a default route advertises depends on the metric style command configuration If the metric ...

Page 976: ...stance for learned routes E Series S4810 Syntax distance weight ip address mask prefix list To return to the default values use the no distance weight command Parameters weight The administrative distance value indicates the reliability of a routing information source The range is 1 to 255 A higher relative value indicates lower reliability Routes with smaller values are given preference The defau...

Page 977: ... routing updates interface OPTIONAL Identifies the interface type slot port as one of the following For a1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 t...

Page 978: ...ting updates connected OPTIONAL Enter the keyword connected for directly connected routing process ospf process id OPTIONAL Enter the keyword ospf followed by the OSPF process ID number The range is 1 to 65535 bgp as number OPTIONAL Enter the BGP followed by the AS Number The range is 1 to 65535 rip OPTIONAL Enter the keyword rip for RIP routes static OPTIONAL Enter the keyword static for user con...

Page 979: ...URATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 8 1 0 Added IPv6 ISIS support Version 6 3 1 0 Introduced Usage Information When you execute this command IS IS does not download the route to the routing table if the same route was redistributed into IS IS routing protocol on the same router domain password Set the authentication pa...

Page 980: ...ceful restart ietf To return to the default use the no graceful restart ietf command Parameters ietf Enter ietf to enable graceful restart on the IS IS router Defaults Graceful restart disabled Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 6 3 1 0 Introduced on the E Series Usage Information Every graceful restart enabled router s HELLO PDUs includes a ...

Page 981: ...eries graceful restart restart wait Enable the graceful restart maximum wait time before a restarting peer comes up E Series S4810 Syntax NOTE Set the t3 timer to adjacency on the restarting router when implementing this command graceful restart restart wait seconds To return to the default use the no graceful restart restart wait command Parameters seconds Enter the graceful restart time in secon...

Page 982: ...m the helping router The range is 1 to 10 attempts The default is 1 Defaults Refer to Parameters Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series graceful restart t2 Configure the wait time for the graceful restart timer T2 that a restarting router uses as the wait time for each database to synchronize E Series S4810 Synt...

Page 983: ...Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Usage Information The running router sets the remaining time value to the current adjacency hold time You can override this setting by implementing this command Override the default restart wait time by entering the no graceful restart restart wait command When you disable ...

Page 984: ...Usage Information IS IS hellos are padded to the full maximum transmission unit MTU size Padding IS IS Hellos IIHS to the full MTU provides early error detection of large frame transmission problems or mismatched MTUs on adjacent interfaces Related Commands isis hello padding turns ON or OFF hello padding on an interface basis hostname dynamic Enables dynamic learning of hostnames from routers in ...

Page 985: ...he message A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption This process could cause disruption to your system operation ip router isis Configure IS IS routing processes on an interface and attach an area tag name to the routing process E Series S4810 Syntax ip router isis tag To disable IS...

Page 986: ...ecified The tag name must be unique for all IP router processes for a given router Defaults Not configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Introduced on the E Series Usage Information Configure a network entity title the net command to specify the area address and the router system ID Enable routing on one or more interfaces to est...

Page 987: ...eir interfaces are configured for Level 1 2 or Level 2 Level 1 adjacencies cannot be established on this interface Defaults level 1 2 Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Usage Information Because the default establishes Level 1 and Level 2 adjacencies you do not need to configure this command Routers in an IS IS system must be configured as a Level 1 on...

Page 988: ...ted intermediate system To maintain database synchronization the designated routers send CSNPs You can configure Level 1 and Level 2 CSNP intervals independently isis hello interval Specify the length of time between hello packets sent E Series S4810 Syntax isis hello interval seconds level 1 level 2 To return to the default values use the no isis hello interval seconds level 1 level 2 command Par...

Page 989: ... 1 level 2 command Parameters multiplier Specifies an integer that sets the multiplier for the hello holding time Never configure a hello multiplier lower than the default 3 The range is 3 to 1000 The default is 3 level 1 OPTIONAL Select this value to configure the hello multiplier independently for Level 1 adjacencies This value is the default level 2 OPTONAL Select this value to configure the he...

Page 990: ...tion E Series S4810 Syntax isis ipv6 metric default metric level 1 level 2 To return to the default values use the no ipv6 isis metric default metric level 1 level 2 command Parameters default metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations You can configure this metric for Level 1 or Level 2 routing The ra...

Page 991: ...estinations You can configure this metric for Level 1 or Level 2 routing The range is 0 to 63 for narrow and transition metric styles and 0 to 16777215 for wide metric styles The default is 10 level 1 OPTIONAL Enter the keywords level 1 to configure the shortest path first SPF calculation for Level 1 intra area routing This is the default level 2 OPTIONAL Enter the keywords level 2 to configure th...

Page 992: ...ype OPTIONAL Enter 7 to encrypt the password using DES hmac md5 OPTIONAL Enter the keywords hmac md5 to encrypt the password using MD5 password Assign the interface authentication password level 1 OPTIONAL Independently configures the authentication password for Level 1 The router acts as a station router for Level 1 routing This is the default level 2 OPTIONAL Independently configures the authent...

Page 993: ... 0 to 127 The default is 64 level 1 OPTIONAL Specify the priority for Level 1 This is the default level 2 OPTIONAL Specify the priority for Level 2 Defaults value 64 level 1 if not otherwise specified Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Usage Information You can configure priorities independently for Level 1 and Level 2 Priorities determine which router...

Page 994: ... and Level 2 routing separate Poorly planned use of this feature may cause configuration errors such as accidental area partitioning If you are configuring only one area in your network you do not need to run both Level 1 and Level 2 routing algorithms You can configure the IS type as Level 1 log adjacency changes Generate a log messages for adjacency state changes E Series S4810 Syntax log adjace...

Page 995: ...l seconds OPTIONAL Enter the wait interval in seconds between the first and second LSP generation The range is 0 to 120 seconds The default is 5 seconds Defaults Refer to Parameters Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added support for LSP Throttling Enhancement Usage Information LSP throttling slows down the frequency at which LSPs ar...

Page 996: ...ecause each device can generate a maximum of 255 LSPs consider carefully whether you should configure the lsp mtu command lsp refresh interval Set the link state PDU LSP refresh interval LSPs must be refreshed before they expire When the LSPs are not refreshed after a refresh interval they are kept in a database until their max lsp lifetime reaches zero and then LSPs is purged E Series S4810 Synta...

Page 997: ...x area addresses Configure manual area addresses E Series S4810 Syntax max area addresses number To return to the default values use the no max area addresses command Parameters number Set the maximum number of manual area addresses The range is 3 to 6 The default is 3 Defaults 3 addresses Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added supp...

Page 998: ...fied length of time If the value is higher the overhead is reduced on slower speed links Related Commands lsp refresh interval use this command to set the link state packet LSP refresh interval maximum paths Allows you to configure the maximum number of equal cost paths allowed in a routing table E Series S4810 Syntax maximum paths number To return to the default values use the no maximum paths co...

Page 999: ...215 level 1 Enables the metric style on Level 1 level 2 Enables the metric style on Level 2 Defaults narrow if no Level is specified Level 1 and Level 2 are configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Usage Information If you enter the metric style wide command the FTOS generates and accepts only new style TLVs The router uses less memory and other...

Page 1000: ...entity title Specify the area address and system ID for an IS IS routing process The first 1 to 13 bytes identify the area address The next 6 bytes identify the system ID The last 1 byte is the selector byte always identified as zero zero 00 This argument can be applied to an address or a name Defaults Not configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S481...

Page 1001: ... Not configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Usage Information Although the passive interface neither sends nor receives routing updates the network on that interface is still included in the IS IS updates sent using other interfaces redistribute Redistribute routes from one routing domain to another routing domain E Series S4810 Syntax redistr...

Page 1002: ...DRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added support for IPv6 ISIS Version 6 3 1 0 Introduced Usage Information To redistribute a default route 0 0 0 0 0 configure the default information originate command Changing or disabling a keyword in this command does not affect the state of the other command keywords When an LSP with an internal ...

Page 1003: ... IS Level 1 routes only level 1 2 OPTIONAL Routes are independently redistributed into IS IS Level 1 and Level 2 routes level 2 OPTIONAL Routes are independently redistributed into IS IS as Level 2 routes only This is the default metric metric value OPTIONAL The value used for the redistributed route Use a metric value that is consistent with the destination protocol The range is 0 to 16777215 The...

Page 1004: ...map isis to bgp redistribute ospf Redistribute routing information from an OSPF process E Series S4810 Syntax redistribute ospf process id level 1 level 1 2 level 2 match internal external metric metric value metric type external internal route map map name To return to the default values use the no redistribute ospf process id level 1 level 1 2 level 2 match internal external metric metric value ...

Page 1005: ...ot specify a map name all routes are redistributed If you specify a keyword but fail to list route map tags no routes are imported Defaults Refer to Parameters Command Modes ROUTER ISIS for IPv4 CONFIGURATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added support for IPv6 ISIS Version 6 3 1 0 Introduced Usage Information How ...

Page 1006: ... on one or more interfaces to establish adjacencies and establish dynamic routing You can configure only one IS IS routing process to perform Level 2 routing A level 1 2 designation performs Level 1 and Level 2 routing at the same time Related Commands ip router isis configures IS IS routing processes for IP on interfaces and attaches an area designator to the routing process net configures an IS ...

Page 1007: ...ax show config Command Modes ROUTER ISIS for IPv4 CONFIGURATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Example Router Isis The bold section identifies that Multi Topology IS IS is enabled in Transition mode FTOS conf router_isis show config router isis clns host ISIS 49 0000 0001 F100 E120 0013 00 log adjacency changes net 49 0000 0001 F100 E120 0013 00 address family ipv6 unicast maximum paths ...

Page 1008: ...1 Level 2 Link State Database Displays the IS IS link state database for Level 1 or Level 2 LSPID Displays the LSP identifier The first six octets are the System ID of the originating router The first six octets are the System ID of the originating router The next octet is the pseudonode ID If this byte is not zero the LSP describes system links If this byte is zero 0 the LSP describes the state o...

Page 1009: ...e this system as a transit router when calculating routes Example The bold sections identify that Multi Topology IS IS is enabled FTOS show isis database IS IS Level 1 Link State Database LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT P OL ISIS 00 00 0x00000006 0xCF43 580 0 0 0 IS IS Level 2 Link State Database LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT P OL ISIS 00 00 0x00000006 0xCF43 580 ...

Page 1010: ...w isis graceful restart detail Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Example FTOS show isis graceful restart detail Configured Timer Value Graceful Restart Enabled T3 Timer Manual T3 Timeout Value 30 T2 Timeout Value 30 level 1 30 level 2 T1 Timeout Value 5 retry count 1 Adjacency wait time 30 Operation...

Page 1011: ...and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Loopback interface enter the keyword loopback followed by a number from zero 0 to 16383 For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1...

Page 1012: ...t Type Level 1 2 Interface Index 38371358 Local circuit ID 2 Level 1 Metric 10 Priority 64 Circuit ID systest 3 02 Hello Interval 10 Hello Multiplier 3 CSNP Interval 10 Number of active level 1 adjacencies 1 Level 2 Metric 10 Priority 64 Circuit ID systest 3 02 Hello Interval 10 Hello Multiplier 3 CSNP Interval 10 More show isis neighbors Display information about neighboring adjacent routers E Se...

Page 1013: ...identifies a system in an area Interface The interface slot and port in which the router was discovered State The value providing status about the adjacency state The range is Up and Init Type This value displays the adjacency type Layer 2 Layer 2 or both Priority IS IS priority advertised by the neighbor The neighbor with highest priority becomes the designated router for the interface Uptime Dis...

Page 1014: ...3 IS Type level 1 2 Manual area address es 49 0000 0001 Routing for area address es 49 0000 0001 Interfaces supported by IS IS GigabitEthernet 1 0 IP IPv6 GigabitEthernet 1 1 IP IPv6 GigabitEthernet 1 10 IP IPv6 Loopback 0 IP IPv6 Redistributing Distance 115 Generate narrow metrics level 1 2 Accept narrow metrics level 1 2 Generate wide metrics none Accept wide metrics none Multi Topology Routing ...

Page 1015: ...XEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Usage Information The following describes the show isis traffic command shown in the Example below Item Description Level 1 Level 2 Hellos sent rcvd Displays the number of Hello packets sent and received PTP Hellos sent rcvd Displays the number of point to point Hellos sent and received Level 1 Level 2 LSPs sourced new refresh ...

Page 1016: ...ns 389 IS IS LSP checksum errors received 0 IS IS LSP authentication failures 0 FTOS spf interval Specify the minimum interval between shortest path first SPF calculations E Series S4810 Syntax spf interval level l level 2 interval seconds initial_wait_interval seconds second_wait_interval seconds To restore default values use the no spf interval level l level 2 interval seconds initial_wait_inter...

Page 1017: ...ROUTER ISIS mode for both IPv4 and IPv6 route computations SPF throttling slows down the frequency at which route calculations are performed during network instability Even though throttling route calculations slows down network convergence not throttling can result in a network not functioning as expected If network topology is unstable throttling slows down the scheduling of route calculations u...

Page 1018: ...1018 ...

Page 1019: ...e impact to dynamic LACP states after an route processor module RPM failover on the E Series For more information refer to the Redundancy Protocol in the High Availability chapter clear lacp counters Clear Port Channel counters C Series E Series S Series Z Series S4810 Syntax clear lacp port channel number counters Parameters port channel number Enter a port channel number For the C Series and S S...

Page 1020: ...erface in out OPTIONAL Enter the following keywords and slot port or number information For a 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information For a Ten Gigabit...

Page 1021: ...y Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Usage Information This command applies to dynamic port channel interfaces only When applied on a static port channel this command has no effect Related Commands show lacp displays the lacp configuration lacp port priority Configu...

Page 1022: ... Introduced on the E Series lacp system priority Configure the LACP system priority C Series E Series S Series Z Series S4810 Syntax lacp system priority priority value Parameters priority value Enter the port priority value The higher the value number the lower the priority The range is 1 to 65535 The default is 32768 Defaults 32768 Command Modes INTERFACE Command History Version 8 3 11 1 Introdu...

Page 1023: ...formation below Defaults off Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Usage Information LACP Modes Mode Function active An interface is in an active negotiating state in this mode LACP runs on any link configured in the active stat...

Page 1024: ...l groups show lacp Display the LACP matrix C Series E Series S Series Z Series S4810 Syntax show lacp port channel number sys id counters Parameters port channel number Enter a port channel number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale sys id OPTIONAL Enter the keywords sys id and the value that identifies ...

Page 1025: ...tion disabled M Partner Defaulted N Partner Non defaulted O Receiver is in expired state P Receiver is not in expired state Port Gi 10 6 is enabled LACP is enabled and mode is lacp Actor Admin State ACEHJLMP Key 1 Priority 128 Oper State ACEGIKNP Key 1 Priority 128 Partner Admin State BDFHJLMP Key 0 Priority 0 Oper State BCEGIKNP Key 1 Priority 128 FTOS Example Sys id FTOS show lacp 1 sys id Actor...

Page 1026: ...1026 ...

Page 1027: ...s E Series S Series Z Series S4810 Syntax clear mac address table dynamic sticky address mac address all interface interface vlan vlan id Parameters dynamic Enter the keyword dynamic to specify dynamically learned MAC addresses sticky Enter the keyword sticky to specify sticky MAC addresses address mac address Enter the keyword address followed by a MAC address in nn nn nn nn nn nn format all Ente...

Page 1028: ...Version 7 5 1 0 Introduced on the C Series Version 6 1 1 1 Introduced on the E Series mac accounting destination Configure a destination counter for Layer 2 traffic E Series Syntax mac accounting destination mac address vlan vlan id vlan bytes packets To delete a destination counter use the no mac accounting destination command Parameters mac address Enter the MAC address in the nn nn nn nn nn nn ...

Page 1029: ... 1000000 E Series range from INTERFACE VLAN mode 1 to 1000000 C Series and S Series range 10 to 1000000 Default 1800 seconds Defaults 1800 seconds Command Modes CONFIGURATION INTERFACE VLAN E Series only Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 On the E Series available in INTERFACE VLAN context reduced the minimum aging time ...

Page 1030: ...owed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword for...

Page 1031: ...Multicast mac address table static 01 00 5E 01 00 01 multicast vlan 2 output range Te 0 2 Te 0 3 Related Commands show mac address table displays the MAC address table mac address table station move threshold Change the frequency with which the MAC address station move trap is sent after a MAC address changes in a VLAN A trap is sent if a station move is detected above a threshold number of times ...

Page 1032: ...IGURATION Command History Version 7 8 1 0 Introduced on the E Series Usage Information FTOS takes four to five seconds to detect aged entries and station moves because the MAC address table scanning routine runs every 5000 ms by default To achieve faster detection reduce the scanning interval mac address table station move refresh arp Ensure that address resolution protocol ARP refreshes the egres...

Page 1033: ...er the keyword 100 to set aside 100 of the CAM for MAC address learning With this configuration no MAC ACLs are processed slot number Enter the line card slot number The range is 0 to 13 for the E1200 0 to 6 for the E600 and 0 to 5 for the E300 Defaults 75 75 of the MAC CAM for MAC address learning Command Modes CONFIGURATION Usage Information After setting the CAM partition size the line card res...

Page 1034: ...ased That is the sum of the addresses learned on all VLANs not having any learning limit configuration is counted against the MAC learning limit MAC Learning Limit violation logs and actions are not available on a per VLAN basis With the keyword no station move option MAC addresses learned through this feature on the selected interface persist on a per VLAN basis even if received on another interf...

Page 1035: ...ation shutdown Enter the keyword shutdown to shut down the port on a learning limit violation Defaults none Command Modes INTERFACE conf if interface slot port Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the S Series Version 7 8 1 0 Introduced on the C Series Version 7 5 1 0 Introduced on the E Series Usage Informat...

Page 1036: ...shutdown both shutdown offending shutdown original To disable a configuration use the no mac learning limit station move violation command followed by the configured keyword Parameters log Enter the keyword log to generate a syslog message on a station move violation shutdown both Enter the keyword shutdown to shut down both the original and offending interface and generate a syslog message shutdo...

Page 1037: ...nt addressable memory CAM size and the portions allocated for MAC addresses and for MAC ACLs E Series S4810 Syntax show cam mac linecard slot port set port pipe count vlan vlan id interface interface Parameters linecard slot REQUIRED Enter the keyword linecard followed by a slot number to select the linecard for which to gather information The E Series range is 0 to 6 port set port pipe REQUIRED E...

Page 1038: ...d on the S4810 pre Version 6 2 1 1 Introduced on the E Series show cam maccheck linecard Display the results of the BCMI2 check command C Series Syntax show cam maccheck linecard slot port set port pipe Parameters linecard slot REQUIRED Enter the keyword linecard followed by a slot number to select the linecard for which to gather information The C300 range is 0 to 7 and the C150 range is 0 to 4 p...

Page 1039: ...SRC_DISCARD 0 SCP 0 T GID_LO 0 PORT_TGID 0 TGID_PORT 0 T 0 TGID_HI 0 L2MC_PTR 0 MODULE_ID 0x10 REMOTE_TR UNK 0 L3 0 MAC_BLOCK_INDEX 0 STATIC_BIT 0 RPE 0 MIRROR 0 VALID 1 EVEN_PARITY 1 HIT DA 1 HITSA 1 output truncated Example Mac Address Table FTOS show mac address table VlanId Mac Address Type Interface State 4094 00 00 a0 00 00 00 Dynamic Gi 2 0 Active output truncated Example Cam Mac Linecard F...

Page 1040: ...ET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information static OPTIONAL Enter the keyword static to display only those MAC address specifically configured on the switch...

Page 1041: ... S Series Syntax show cam mac stack unit unit_number port set port pipe count vlan vlan id interface interface Parameters stack unit unit_number REQUIRED Enter the keyword linecard followed by a stack member number to select the linecard for which to gather information The S Series range is 0 to 1 port set port pipe REQUIRED Enter the keywords port set followed by a Port Pipe number to select the ...

Page 1042: ...d dynamic to display only those MAC addresses learned dynamically by the switch Optionally you can also add one of these combinations address mac address interface interface or vlan vlan id static OPTIONAL Enter the keyword static to display only those MAC address specifically configured on the switch Optionally you can also add one of these combinations address mac address interface interface or ...

Page 1043: ...ic static addresses dynamic addresses and MAC addresses in use Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Updated the output Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 ...

Page 1044: ...of dynamically learned MAC addresses Static Address Lists the number of user defined MAC addresses Total MAC Lists the total number of MAC addresses used by the switch Example Count FTOS show mac address table count MAC Entries for all vlans Dynamic Address Count 110 Static Address User defined Count 0 Sticky Address Count 0 Total Synced Mac from Peer N 100 Total MAC Addresses in Use 110 FTOS Rela...

Page 1045: ...n vlan id vlan vlan id vlan vlan id Parameters mac address OPTIONAL Enter the MAC address in the nn nn nn nn nn nn format to display information on that MAC address interface interface OPTIONAL Enter the keyword interface followed by the interface type slot and port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 10 Gigab...

Page 1046: ...VLAN Packets Bytes 00 44 00 00 00 02 Te 11 0 1000 10000 5120000 00 44 00 00 00 01 Te 11 0 1000 10000 5120000 00 22 00 00 00 00 Te 11 0 1000 10000 5120000 00 44 00 00 00 02 Te 11 0 2000 10000 5120000 00 44 00 00 00 01 Te 11 0 2000 10000 5120000 FTOS 1 Related Commands show mac accounting access list displays the MAC access list configurations and counters if configured show mac cam Display the CAM ...

Page 1047: ...te action detail interface interface vlan vlan id Parameters violate action OPTIONALY Enter the keywords violate action to display the MAC learning limit violation status detail OPTIONAL Enter the keyword detail to display the MAC learning limit in detail interface interface OPTIONAL Enter the keyword interface with the following keywords and slot port or number information For a 1 Gigabit Etherne...

Page 1048: ...nterface gig 5 84 Interface Vlan Learning Dynamic Static Unknown SA Slot port Id Limit MAC count MAC count Drops Gi 5 84 2 2 0 0 0 Gi 5 84 5 0 0 0 FTOS show mac learning limit interface gig 5 84 vlan 2 Interface Vlan Learning Dynamic Static Unknown SA Slot port Id Limit MAC count MAC count Drops Gi 5 84 2 2 0 0 0 Example C S Series FTOS show mac learning limit Interface Learning Dynamic Static Unk...

Page 1049: ... 1 0 Introduced on the C Series and S Series Version 6 3 1 1 Introduced on the E Series Related Commands show vlan displays the VLAN configuration default vlan id Specify a VLAN as the Default VLAN C Series E Series S Series Z Series S4810 Syntax default vlan id vlan id To remove the default VLAN status from a VLAN and VLAN 1 does not exist use the no default vlan id vlan id syntax Parameters vlan...

Page 1050: ...the running configuration but when the default VLAN is disabled default vlan disable is listed in the running configuration enable vlan counters Display VLAN counters for ingress and or egress hardware You must be in restricted mode to use this command E Series ExaScale Syntax enable vlan output counters ingress egress all To return to the default disabled use the no enable vlan output counters co...

Page 1051: ...eSpeed 1000 Mbit ARP type ARPA ARP Timeout 04 00 00 Last clearing of show interface counters 01 12 44 Queueing strategy fifo Input Statistics 0 packets 0 bytes Output Statistics 0 packets 0 bytes Time since last interface status change 01 12 44 FTOS FTOS show interfaces vlan 1 Vlan 1 is down line protocol is down Address is 00 01 e8 13 a5 aa Current address is 00 01 e8 13 a5 aa Interface index is ...

Page 1052: ...description assigns a descriptive text string to the interface interface vlan configures a VLAN show vlan displays the current VLAN configurations on the switch show config Display the current configuration of the selected VLAN C Series E Series S Series Z Series S4810 Syntax show config Command Modes INTERFACE VLAN Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduce...

Page 1053: ...r the VLAN Only information on the VLAN named is displayed Command Modes EXEC EXEC Privilege Command History Version 9 1 0 0 Updated to support OpenFlow Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Augmented to display PVLAN data for the C Series and S Series and revised the output to include the Description field to display a user entered VLAN d...

Page 1054: ...capitalized i for Internal untagged I capitalized I for Internal tagged v not capitalized v for VLT untagged V capitalized V for VLT tagged Ports Displays the type slot and port information Po port channel Gi gigabit ethernet Te ten gigabit ethernet Example FTOS show vlan Codes Default VLAN G GVRP VLANs P Primary C Community I Isolated Q U Untagged T Tagged O Openflow x Dot1x untagged X Dot1x tagg...

Page 1055: ...S show vlan id 41 Codes Default VLAN G GVRP VLANs Q U Untagged T Tagged x Dot1x untagged X Dot1x tagged G GVRP tagged M Vlan stack NUM Status Description Q Ports 41 Active T Gi 13 47 FTOS show vlan id 42 Codes Default VLAN G GVRP VLANs Q U Untagged T Tagged x Dot1x untagged X Dot1x tagged G GVRP tagged M Vlan stack NUM Status Description Q Ports 42 Active U Gi 13 47 FTOS Example Brief FTOS show vl...

Page 1056: ...umber information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10 Gigabit Ethernet interface enter the keyword TenGigab...

Page 1057: ...command Parameters interface Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512...

Page 1058: ...rom a VLAN use the no untagged interface command Parameters interface Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the ran...

Page 1059: ...t interface During an RPM failover FEFD is operationally disabled for approximately 8 10 seconds By default FEFD is disabled debug fefd Enable debugging of FEFD E Series Z Series S4810 Syntax debug fefd events packets interface To disable debugging of FEFD use the no debug fefd events packets interface command Parameters events Enter the keyword events to enable debugging of FEFD state changes pac...

Page 1060: ...an interface E Series Z Series S4810 Syntax fefd To disable FEFD on an interface use the no fefd command Defaults Disabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Legacy E Series command Usage Information When you enter no fefd for an interface and fefd global FEFD is enabled on the interface because the no fefd comm...

Page 1061: ...figuration file To keep the interface FEFD disabled when the global configuration changes use the fefd reset command Related Commands fefd reset enables FEFD globally on the system fefd mode changes FEFD mode on an interface fefd interval Set an interval between control packets E Series S4810 Syntax fefd interval seconds To return to the default value use the no fefd interval command Parameters se...

Page 1062: ...d in error disabled state you must enter the fefd reset command to reset the interface state Defaults normal Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Legacy E Series command Related Commands fefd enables far end failure detection fefd reset Reset all interfaces or a single interface that was in error disabled mode E Series Z Series S4810 Syntax fefd reset in...

Page 1063: ...rval Configure an interval between FEFD control packets E Series S4810 Syntax fefd global interval seconds To return to the default value use the no fefd global interval command Parameters seconds Enter a number as the time between FEFD control packets The range is 3 to 300 seconds The default is 15 seconds Defaults 15 seconds Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced...

Page 1064: ...ersion 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Legacy E Series command Usage Information If you enter only the fefd global syntax the mode is normal and the default interval is 15 seconds If you disable FEFD globally no fefd global the system does not remove the FEFD interface configuration Related Commands fefd enables far end failure detection fefd global interv...

Page 1065: ...set in its configuration Interval Displays the interval between FEFD packets State Displays the state of the interface and can be one of the following bi directional interface is up and connected and ing neighbor s echoes err disabled only found when the FEFD mode is aggressive and when the interface has not n its neighbor s echoes for 3 times the message interval To reset an interface in this sta...

Page 1066: ... 5 9 Aggressive 10 Admin Shutdown Gi 5 10 NA NA Locally disabled Gi 5 11 Aggressive 10 Err disabled FTOS Related Commands fefd enables far end failure detection fefd disable disables FEFD on an interface only fefd global enables FEFD globally on the system fefd reset resets all interfaces or a single interface that was in error disabled mode 1066 ...

Page 1067: ...RFACE mode The information distributed by LLDP is stored by its recipients in a standard management information base MIB You can access the information by a network management system through a management protocol such as simple network management protocol SNMP LLPD Commands The following are LLDP commands advertise dot1 tlv Advertise dot1 TLVs Type Length Value C Series E Series S Series Z Series ...

Page 1068: ...unning config lldp displays the LLDP running configuration advertise dot3 tlv Advertise dot3 TLVs Type Length Value C Series E Series S Series Z Series S4810 Syntax advertise dot3 tlv max frame size To remove advertised dot3 tlv use the no advertise dot3 tlv max frame size command Parameters max frame size Enter the keywords max frame size to advertise the dot3 maximum frame size Defaults none Com...

Page 1069: ...LVs to the LLDP peer system name Enter the keywords system name to advertise the system name TLVs to the LLDP peer Defaults No default values or behavior Command Modes CONFIGURATION conf lldp Command History Version 9 1 0 0 Modified to support management address parameter Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Ver...

Page 1070: ...9000 and S4810 clear lldp counters Clear LLDP transmitting and receiving counters for all physical interfaces or a specific physical interface C Series E Series S Series Z Series S4810 Syntax clear lldp counters interface Parameters interface Enter the following keywords and slot port or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port infor...

Page 1071: ...ort information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on t...

Page 1072: ...display major events such as timer events packet OPTIONAL Enter the keyword packet to display information regarding packets coming in or going out brief OPTIONAL Enter the keyword brief to display brief packet information detail OPTIONAL Enter the keyword detail to display detailed packet information tx OPTIONAL Enter the keyword tx to display transmit only packet information rx OPTIONAL Enter the...

Page 1073: ...neighbors displays the LLDP neighbors show running config lldp displays the LLDP running configuration hello Configure the rate at which the LLDP control packets are sent to its peer C Series E Series S Series Z Series S4810 Syntax hello seconds To revert to the default use the no hello seconds command Parameters seconds Enter the rate in seconds at which the control packets are sent to its peer T...

Page 1074: ...4 1 0 Introduced on the E Series Related Commands protocol lldp Configuration enables LLDP globally show lldp neighbors displays the LLDP neighbors multiplier Set the number of consecutive misses before LLDP declares the interface dead C Series E Series S Series Z Series S4810 Syntax multiplier integer To return to the default use the no multiplier integer command Parameters integer Enter the numb...

Page 1075: ... no protocol lldp To return to the global LLDP configuration mode use the no protocol lldp command from Interface mode Defaults LLDP is not enabled on the interface Command Modes INTERFACE conf if interface lldp Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Us...

Page 1076: ...ation detail OPTIONAL Enter the keyword detail to display all the TLV information remote management IP addresses timers and LLDP tx and rx counters Defaults none Command Modes EXEC Privilege Command History Version 9 1 0 0 Modified output of detail parameter to display remote management IP addresses Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on...

Page 1077: ... change time Mon Oct 02 16 00 52 2006 Number of Table Inserts 1621 Number of Table Deletes 200 Number of Table Drops 0 Number of Table Age Outs 400 FTOS show running config lldp Display the current global LLDP configuration C Series E Series S Series Z Series S4810 Syntax show running config lldp Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Ve...

Page 1078: ... communicate using IP and uses the LLDP MED framework LLDP MED Network Connectivity Device any device that provides access to an IEEE 802 LAN to an LLDP MED endpoint device and supports IEEE 802 1AB LLDP and TIA 1057 LLDP MED The Dell Force10 system is an LLDP MED network connectivity device With regard to connected endpoint devices LLDP MED provides network connectivity devices with the ability t...

Page 1079: ...e guest voice control packets use a separate network policy than the voice data C Series E Series S Series Z Series S4810 Syntax advertise med guest voice signaling vlan id layer2_priority DSCP_value priority tagged number To return to the default use the no advertise med guest voice signaling vlan id layer2_priority DSCP_value priority tagged number command Parameters vlan id Enter the VLAN ID Th...

Page 1080: ...by the civic based location in hexadecimal format The range is 6 to 255 bytes ecs elin value Enter the keywords ecs elin followed by the Emergency Call Service ecs Emergency Location Identification Number elin numeric location string The range is 10 to 25 characters Defaults unconfigured Command Modes CONFIGURATION conf lldp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 ...

Page 1081: ...fig lldp displays the LLDP running configuration advertise med softphone voice Configure the system to advertise softphone to enable IP telephony on a computer so that the computer can be used as a phone C Series E Series S Series Z Series S4810 Syntax advertise med softphone voice vlan id layer2_priority DSCP_value priority tagged number To return to the default use the no advertise med softphone...

Page 1082: ...To return to the default use the no advertise med streaming video vlan id layer2_priority DSCP_value priority tagged number command Parameters vlan id Enter the VLAN ID The range is 1 to 4094 layer2_priority Enter the Layer 2 priority C Series and E Series only The range is 0 to 7 DSCP_value Enter the DSCP value C Series and E Series only The range is 0 to 63 priority tagged number Enter the keywo...

Page 1083: ...owed the Layer 2 priority The range is 0 to 7 Defaults unconfigured Command Modes CONFIGURATION conf lldp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series and E Series Related Commands debug lldp interface debugs LLDP show lldp neighbors displays the LLDP neighbors ...

Page 1084: ... running configuration advertise med voice Configure the system to advertise a dedicated IP telephony handset or other appliances supporting interactive voice services C Series E Series S Series Z Series S4810 Syntax advertise med voice vlan id layer2_priority DSCP_value priority tagged number To return to the default use the no advertise med voice vlan id layer2_priority DSCP_value priority tagge...

Page 1085: ...ling vlan id layer2_priority DSCP_value priority tagged number command Parameters vlan id Enter the VLAN ID The range is 1 to 4094 layer2_priority Enter the Layer 2 priority C Series and E Series only The range is 0 to 7 DSCP_value Enter the DSCP value C Series and E Series only The range is 0 to 63 priority tagged number Enter the keywords priority tagged followed the Layer 2 priority The range i...

Page 1086: ...1086 ...

Page 1087: ... msdp peer peer address Parameters peer address Enter the peer address in a dotted decimal format A B C D Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 1 Introduced on the S4810 Version 6 2 1 1 Introduced clear ip msdp sa cache Clears the entire source active cache the source active entries of a particular multicast grou...

Page 1088: ...ed or local source active entries E Series Z Series S4810 Syntax clear ip msdp sa cache group address rejected sa local Parameters group address Enter the group IP address in dotted decimal format A B C D rejected sa Enter the keyword rejected sa to clear the cache source active entries that are rejected because the RPF check failed an SA filter or limit is configured the RP or MSDP peer is unreac...

Page 1089: ...cimal format A B C D pim Enter the keyword pim to debug advertisement from PIM Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 6 2 1 1 Introduced ip msdp cache rejected sa Enable a MSDP cache for the rejected source active entries E Series Z Series S4810 Syntax ip msdp cache rejected sa nu...

Page 1090: ...eer address Enter the peer address in a dotted decimal format A B C D list name Enter the keywords list name and specify a standard access list that contains the RP address that should be treated as the default peer If no access list is specified then all SAs from the peer are accepted Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Vers...

Page 1091: ... a string of up to 16 characters long for as the mesh group name peer address Enter the peer address in a dotted decimal format A B C D Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 6 2 1 1 Introduced Usage Information A MSDP mesh group is a mechanism for reducing SA flooding typically in...

Page 1092: ...3 For a Port Channel interface enter the keywords port channel followed by a number For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter ...

Page 1093: ...ollowed by a number For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For ...

Page 1094: ...ays the MSDP information ip msdp redistribute Filter local PIM SA entries in the SA cache SAs which are denied by the ACL will time out and not be refreshed Until they time out they continue to reside in the MSDP SA cache E Series Z Series S4810 Syntax ip msdp redistribute list acl name Parameters list acl name lEnter the name of an extended ACL that contains permitted SAs If you do not use this o...

Page 1095: ... D access list name Enter the name of an extended ACL that contains permitted SAs If you do not use this option all local entries are blocked Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the E Series ip msdp sa limit Configure the upper limit of source active SA ent...

Page 1096: ... such situation use the clear ip msdp sa cache command Related Commands ip msdp peer configures the MSDP peer clear ip msdp peer clears the MSDP peer show ip msdp displays the MSDP information ip msdp shutdown Administratively shut down a configured MSDP peer E Series Z Series S4810 Syntax ip msdp shutdown peer address Parameters peer address Enter the peer address in a dotted decimal format A B C...

Page 1097: ... display the Source Active cache summary Enter the keyword summary to display a MSDP peer summary Defaults Not configured Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 6 2 1 1 Introduced Example FTOS show ip msdp peer 100 1 1 1 Peer Addr 100 1 1 1 Local Addr 100 1 1 2 639 Connect Source none State Establis...

Page 1098: ...UpTime GroupAddr SourceAddr RPAddr LearnedFrom Reason 00 00 13 225 1 2 1 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 2 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 3 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 4 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 5 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 6 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 2...

Page 1099: ...00 00 13 225 1 2 17 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 18 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 19 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail FTOS 1099 ...

Page 1100: ...1100 ...

Page 1101: ...rface you want displayed Type slot port options are the following For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 t...

Page 1102: ... Series Example FTOS debug spanning tree mstp bpdu gigabitethernet 2 0 in Receive in out Transmit out disable Globally disable the multiple spanning tree protocol on the switch C Series E Series S Series Z Series S4810 Syntax disable To enable MSTP enter the no disable command Defaults disabled Command Modes MULTIPLE SPANNING TREE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 ...

Page 1103: ...Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 Introduced Related Commands max age changes the wait time before MSTP refreshes protocol configuration information hello time changes the time interval between bridge protocol data units BPDUs hello time Set the time interval between ...

Page 1104: ...ormation C Series E Series S Series Z Series S4810 Syntax max age seconds To return to the default values use the no max age command Parameters max age Enter a number of seconds the FTOS waits before refreshing configuration information The range is 6 to 40 The default is 20 seconds Defaults 20 seconds Command Modes MULTIPLE SPANNING TREE Command History Version 8 3 11 1 Introduced on the Z9000 Ve...

Page 1105: ...oot switch set the remaining hops parameter to the configured value of max hops When a switch receives the BPDU it decrements the received value of the remaining hops and uses the resulting value as remaining hops in the BPDUs If the remaining hops reaches zero the switch discards the BPDU and ages out any information that it holds for the port msti Configure multiple spanning tree instance bridge...

Page 1106: ... default all VLANs are mapped to MST instance zero 0 unless you use the vlan range command to map it to a non zero instance name The name you assign to the multiple spanning tree region C Series E Series S Series Z Series S4810 Syntax name region name To remove the region name use the no name command Parameters region name Enter the MST region name The range is 32 character limit Defaults no defau...

Page 1107: ...ION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information MSTP is not enabled when you enter MULTIPLE SPANNING TREE mode To enable MSTP globally on the switch enter the no disable command while in MULTIPLE ...

Page 1108: ...es Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information For two MSTP switches to be within the same MST region the switches must share the same revision number Related Commands msti maps the VLAN s to an MST instance name assigns the region name to the MST region show config View the current configuration for the mode Only non default values a...

Page 1109: ...tax show spanning tree mst configuration Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information You must enable the multiple spanning tree protocol prior to using this comma...

Page 1110: ...roduced on the C Series Version 6 4 1 0 Expanded to display the port error disable state EDS caused by loopback BPDU inconsistency Usage Information You must enable the multiple spanning tree protocol prior to using this command Example FTOS show spanning tree msti 10 MSTI 10 VLANs mapped 101 105 Bridge Identifier has priority 32768 Address 0001 e802 3506 Configured hello time 2 max age 20 forward...

Page 1111: ...d delay 15 max hops 20 Bridge ID Priority 32768 Address 0001 e801 6aa8 We are the root of MSTI 0 CIST Configured hello time 2 max age 20 forward delay 15 max hops 20 CIST regional root ID Priority 32768 Address 0001 e801 6aa8 CIST external path cost 0 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID Gi 0 0 128 257 128 20000 EDS 0 32768 0001 e801 6aa8 128 257 Interface Name Role...

Page 1112: ...gured Root Loop or BPDU guard Example Guard FTOS show spanning tree msti 5 guard Interface Name Instance Sts Guard type Gi 0 1 5 INCON Root Rootguard Gi 0 2 5 FWD Loopguard Gi 0 3 5 EDS Shut Bpduguard spanning tree Enable the multiple spanning tree protocol on the interface C Series E Series S Series Z Series S4810 Syntax spanning tree To disable the multiple spanning tree protocol on the interfac...

Page 1113: ... 2000 Port Channel interface with one 100 Mb s Ethernet 200000 Port Channel interface with one 1 Gigabit Ethernet 20000 Port Channel interface with one 10 Gigabit Ethernet 2000 Port Channel with two 1 Gigabit Ethernet 18000 Port Channel with two 10 Gigabit Ethernet 1800 Port Channel with two 100 Mbps Ethernet 180000 priority priority Enter keyword priority followed by a value in increments of 16 a...

Page 1114: ... a BPDU is received and the port is disabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced the hardware shutdown on violation option Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 Introduced on the E Series Usage Information On an MSTP switch a port configured as an edge port immedi...

Page 1115: ...ion 6 5 1 0 Introduced Usage Information By default FTOS implements an optimized flush mechanism for MSTP This helps in flushing the MAC addresses only when necessary and less often allowing for faster convergence during topology changes However if a standards based flush mechanism is needed this knob command can be turned on to enable flushing MAC addresses after receiving every topology change n...

Page 1116: ...1116 ...

Page 1117: ...col independent multicast PIM tree information base use the clear ip pim tib command C Series E Series S Series Z Series S4810 Syntax clear ip mroute group address source address Parameters group address source address Enter the multicast group address and source address if desired in dotted decimal format to clear information on a specific group Enter to clear all multicast routes Command Modes E...

Page 1118: ...Enter one of the routing protocols Enter the BGP as number followed by the IP address in dotted decimal format of the reverse path forwarding RPF neighbor The range is 1 to 65535 Enter the OSPF process identification number followed by the IP address in dotted decimal format of the RPF neighbor the range is 1 to 65535 Enter the IS IS alphanumeric tag string followed by the IP address in dotted dec...

Page 1119: ... to the routed multicast traffic If you turn on internet group management protocol IGMP snooping this feature also applies to switched multicast traffic Related Commands ip multicast limit enables IP multicast forwarding ip multicast limit Use this feature to limit the number of multicast entries on the system C Series E Series S Series Z Series S4810 Syntax ip multicast limit limit Parameters lim...

Page 1120: ...ulticast forwarding C Series E Series S Series Z Series S4810 Syntax ip multicast routing To disable multicast forwarding use the no ip multicast routing command Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 7 0 Introduced on the S4810 E Series legacy command Usage Information You must enter this command to enable multicast on the E Series After you enable multicast you...

Page 1121: ... according to the mac flood list command Only the multicast frames not matching the mac address range specified using the mac flood list command are flooded according to the restrict flood command Related Commands restrict flooding prevents Layer 2 multicast traffic from being forwarded on ports below a specified speed mtrace Trace a multicast route from the source to the receiver E Series Syntax ...

Page 1122: ...idth percentage percentage Parameters percentage Enter the percentage of backplane bandwidth to be dedicated to multicast traffic The range is 5 to 95 Defaults 80 of the scheduler weight is for unicast traffic and 20 is for multicast traffic by default Command Modes CONFIGURATION Command History Version 7 7 1 0 Introduced on the E Series Example FTOS conf queue backplane multicast bandwidth percen...

Page 1123: ... vlan id group address source address summary Parameters static OPTIONAL Enter the keyword static to view static multicast routes group address source address OPTIONAL Enter the multicast group address to view only routes associated with that group Enter the source address to view routes with that group address and source address active rate OPTIONAL Enter the keyword active to view only active mu...

Page 1124: ...e 0 route map none last change 00 00 23 Example Snooping FTOS show ip mroute snooping IPv4 Multicast Snooping Table 224 0 0 0 uptime 17 46 23 Incoming vlan Vlan 2 Outgoing interface list GigabitEthernet 4 13 225 1 2 1 uptime 00 04 16 Incoming vlan Vlan 2 Outgoing interface list GigabitEthernet 4 11 GigabitEthernet 4 13 165 87 1 7 225 1 2 1 uptime 00 03 17 Incoming vlan Vlan 2 Outgoing interface li...

Page 1125: ...erface GigabitEthernet 3 4 Outgoing interface list GigabitEthernet 3 12 GigabitEthernet 3 13 224 20 20 1 uptime 00 05 12 Incoming interface GigabitEthernet 3 12 Outgoing interface list GigabitEthernet 3 4 show ip rpf View reverse path forwarding C Series E Series S Series Z Series S4810 Syntax show ip rpf Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 E S...

Page 1126: ...sion 7 7 1 0 Introduced on the E Series Example FTOS show queue backplane multicast bandwidth percent Configured multicast bandwidth percentage is 80 Related Commands queue backplane multicast reallocates the amount of bandwidth dedicated to multicast traffic IPv6 Multicast Commands The following section contains the IPv6 multicast commands clear ipv6 mroute Clear learned multicast routes on the m...

Page 1127: ...o indicate the number of required debug messages interface type Enter the following keywords and slot port information For a 1 Gigabit Ethernet interface enter the keyword gigabitethernet followed by the slot port information For a 10G Ethernet interface enter the keyword tengigabitethernet followed by the slot port information For a 40G interface enter the keyword fortyGigE followed by the slot p...

Page 1128: ...and History Version 8 3 1 0 Introduced Usage Information The maximum number of multicast entries allowed on each line card is determined by the CAM profile Multicast routes are stored in the IN V6 McastFib CAM region which has a fixed number of entries Any limit configured using the CLI is superseded by this hardware limit The opposite is also true the CAM might not be exhausted at the time the CL...

Page 1129: ...s in the system On each line card the multicast module only installs the maximum possible number of entries depending on the configured CAM profile Use the IN L3 McastFib CAM partition to store multicast routes It is a separate hardware limit that exists per port pipe Any software configured limit might be superseded by this hardware space limitation The opposite is also true the CAM partition mig...

Page 1130: ...lan 200 Outgoing interface list GigabitEthernet 2 14 165 87 37 30 ff05 200 1 uptime 00 01 04 Incoming interface Port channel 200 Outgoing interface list Vlan 200 165 87 31 30 ff05 300 1 uptime 00 01 19 Incoming interface GigabitEthernet 2 14 Outgoing interface list Port channel 200 165 87 32 30 ff05 1100 1 uptime 00 01 08 Incoming interface Vlan 200 Outgoing interface list GigabitEthernet 2 14 165...

Page 1131: ...r second Group ff05 300 1 Source count 1 Source 165 87 31 30 Forwarding 3993 0 Group ff05 3300 1 Source count 1 Source 165 87 31 30 Forwarding 3997 0 FTOS show ipv6 mroute mld Display the Multicast MLD information E Series Syntax show ipv6 mroute mld group address all vlan vlan id Parameters mld OPTIONAL Enter the keyword mld to display multicast MLD information group address OPTIONAL Enter the mu...

Page 1132: ...nterface list GigabitEthernet 2 15 GigabitEthernet 2 16 FTOS show ipv6 mroute summary Display a summary of the multicast routing table E Series Syntax show ipv6 mroute summary Defaults none Command Modes EXEC EXEC Privilege Command History Version 7 4 1 0 Introduced Example FTOS show ipv6 mroute summary IP Multicast Routing Table 12 groups 12 routes 165 87 32 30 ff05 100 1 00 00 24 165 87 37 30 ff...

Page 1133: ...ayer address Next hop determination Neighbor unreachability detection NUD Determine that a neighbor is no longer reachable on the link Duplicate address detection DAD Allow a node to check whether a proposed address is already in use Redirect The router can inform a node about a better first hop NDP makes use of the following five ICMPv6 packet types in its implementation Router Solicitation Route...

Page 1134: ...ortyGigE followed by the slot port information For a VLAN enter the keyword vlan followed by the VLAN ID The range is 1 to 4094 Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 ipv6 nd managed config flag Set the managed address configuration flag in the IPv6 router advertisement E Series Syntax ipv6 nd managed config flag To clear the flag from the IPv6 ro...

Page 1135: ...es INTERFACE ipv6 nd mtu Configure an IPv6 neighbor discovery C Series E Series S Series Syntax ipv6 nd mtu number Parameters mtu number Set the MTU advertisement value in Routing Prefix Advertisement packets The range is 1280 to 9234 Defaults none Command Modes INTERFACE Command History Version 8 3 1 0 Introduced Usage Information The ip nd mtu command sets the value advertised to routers It does...

Page 1136: ...described in Thomson S and T Narten IPv6 Address Autoconfiguration RFC 2462 December 1998 ipv6 nd prefix Configure how IPv6 prefixes are advertised in the IPv6 router advertisements E Series Syntax ipv6 nd prefix ipv6 address prefix length default no advertise no autoconfig no rtr address off link Parameters ipv6 address prefix length Enter the IPv6 address in the x x x x x format followed by the ...

Page 1137: ... The description of router lifetime from RFC 2461 http tools ietf org html rfc2461 is Router Lifetime 16 bit unsigned integer The lifetime associated with the default router in units of seconds The maximum value corresponds to 18 2 hours A Lifetime of 0 indicates that the router is not a default router and SHOULD NOT appear on the default router list The Router Lifetime applies only to the router ...

Page 1138: ...missions on an interface E Series Syntax ipv6 nd suppress ra To enable the sending of IPv6 router advertisement transmissions on an interface use the no ipv6 nd suppress ra command Defaults Enabled Command Modes INTERFACE ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery E Series S4810 Syntax ipv6 neighbor ipv6 address interface interface hardware_address To remove a static IPv...

Page 1139: ... on the S4810 show ipv6 neighbors Display IPv6 discovery information Entering the command without options shows all IPv6 neighbor addresses stored on the control processor CP E Series S4810 Syntax show ipv6 neighbors ipv6 address cpu rp1 ipv6 address rp2 ipv6 address interface interface Parameters ipv6 address Enter the IPv6 address of the neighbor in the x x x x x format NOTE The notation specifi...

Page 1140: ...ion 8 3 7 0 Introduced on the S4810 Example FTOS show ipv6 neighbors IPv6 Address Expires min HardwareAddress State Interface VLAN CPU fe80 201 e8ff fe17 5bc6 1439 00 01 e8 17 5b c6 STALE Gi 1 9 CP fe80 201 eff fe17 5bc7 1439 00 01 e8 17 5b c7 STALE Gi 1 10 CP fe80 201 e8ff fe17 5bc8 1439 00 01 e8 17 5b c8 STALE Gi 1 11 CP fe80 201 e8ff fe17 5caf 0 3 00 01 e8 17 5c af REACH Po 1 CP fe80 201 e8ff f...

Page 1141: ...PF calculations etc are the same for OSPFv2 and OSPFv3 OSPFv3 runs on a per link basis instead of on a per IP subnet basis This chapter is divided into 2 sections There is no overlap between the two sets of commands You cannot use an OSPFv2 command in the IPv6 OSPFv3 mode OSPFv2 Commands OSPFv3 Commands NOTE FTOS version 7 8 1 0 introduces Multi Process OSPF on IPv4 OSPFv2 only It is not supported...

Page 1142: ...st ip ospf dead interval ip ospf hello interval ip ospf message digest key ip ospf mtu ignore ip ospf network ip ospf priority ip ospf retransmit interval ip ospf transmit delay log adjacency changes max metric router lsa maximum paths mib binding network area passive interface redistribute redistribute bgp redistribute isis router id router ospf show config show ip ospf show ip ospf asbr show ip ...

Page 1143: ...outers at the edge of a stub area C Series E Series S Series Z Series S4810 Syntax area area id default cost cost To return default values use the no area area id default cost command Parameters area id Specify the OSPF area in dotted decimal format A B C D or enter a number from zero 0 to 65535 cost Specifies the stub area s advertised external route metric The range is zero 0 to 65535 Defaults c...

Page 1144: ...to the NSSA You should only use this command in a NSSA area border router ABR default information originate OPTIONAL Allows external routing information to be imported into the NSSA by using Type 7 default no summary OPTIONAL Specify that no summary LSAs should be sent into the NSSA Defaults Not configured Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8...

Page 1145: ...ed support for the Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information Only the routes within an area are summarized and that summary is advertised to other areas by the ABR External routes are not summarized Related Commands area stub creates a stub area router ospf enters ROUTER ...

Page 1146: ...d virtual link router id command To delete a parameter of a virtual link use the no area area id virtual link router id authentication key encryption type key message digest key keyid md5 encryption type key dead interval seconds hello interval seconds retransmit interval seconds transmit delay seconds command syntax Parameters area id Specify the OSPF area in dotted decimal format A B C D or ente...

Page 1147: ...ansmit delay seconds OPTIONAL Enter the keywords transmit delay followed by the number of seconds for the interval The range is 1 to 8192 The default is 1 second Defaults dead interval seconds 40 seconds hello interval seconds 10 seconds retransmit interval seconds 5 seconds transmit delay seconds 1 second Command Modes ROUTER OSPF Command History Version 8 3 12 0 Deprecated command on the S4810 V...

Page 1148: ...on the S4810 Version 7 8 1 0 Added support for the Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series clear ip ospf Clear all OSPF routing tables C Series E Series S Series Z Series S4810 Syntax clear ip ospf process id process Parameters process id Enter the OSPF Process ID to clear a specific pro...

Page 1149: ...ries and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 For a 40 Gigabit Ethernet interface enter ...

Page 1150: ...n packet OPTIONAL Enter the keyword packet to debug only OSPF packet information spf OPTIONAL Enter the keyword spf to display the Shortest Path First information database timer rate limit OPTIONAL Enter the keywords database timer rate limit to display the LSA throttling timer information This applies to the S4810 platform only Command Modes EXEC Privilege Command History Version 8 3 11 1 Introdu...

Page 1151: ...hentication configured using the ip ospf message digest key command auk If the ip ospf authentication key command is configured this field displays the key used keyid If the ip ospf message digest key command is configured this field displays the MD5 key to Displays the interface to which the packet is intended dst Displays the destination IP address netmask Displays the destination IP address mas...

Page 1152: ... C Series E Series S Series Z Series S4810 Syntax default information originate always metric metric value metric type type value route map map name To return to the default values use the no default information originate command Parameters always OPTIONAL Enter the keyword always to specify that default route information must always be advertised metric metric value OPTIONAL Enter the keyword met...

Page 1153: ...alues use the no default metric number command Parameters number Enter a number as the metric The range is 1 to 16777214 Defaults Disabled Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for the Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Se...

Page 1154: ...eries S Series Z Series S4810 Syntax distance weight ip address mask access list name To delete the settings use the no distance weight ip address mask access list name command Parameters weight Specify an administrative distance The range is 1 to 255 The default is 110 ip address OPTIONAL Enter a router ID in the dotted decimal format If you enter a router ID you must include the mask for that ro...

Page 1155: ...y a number to specify a distance metric for routes between areas The range is 1 to 255 The default is 110 intra area dist1 OPTIONAL Enter the keywords intra area followed by a number to specify a distance metric for all routes within an area The range is 1 to 255 The default is 110 Defaults external dist3 110 inter area dist2 110 intra area dist1 110 Command Modes ROUTER OSPF Command History Versi...

Page 1156: ...Series and S Series the range is 1 to 128 For the E Series the range is 1 to 32 for EtherScale and 1 to 255 for TeraScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 For a 40 Giga...

Page 1157: ...t connected routes are distributed isis OPTIONAL Enter the keyword isis to specify that IS IS routes are distributed NOTE BGP and ISIS routes are not available on the C Series BGP ISIS and RIP routes are not available on the S Series rip OPTIONAL Enter the keyword rip to specify that RIP routes are distributed NOTE BGP and ISIS routes are not available on the C Series BGP ISIS and RIP routes are n...

Page 1158: ... Introduced on the E Series fast convergence This command sets the minimum LSA origination and arrival times to zero 0 allowing more rapid route computation so that convergence takes less time C Series E Series S Series Z Series S4810 Syntax fast convergence number To cancel fast convergence use the no fast convergence command Parameters number Enter the convergence level desired The higher this p...

Page 1159: ... the RFC When multiple direct links connect two routers the RFC 2328 flooding algorithm generates significant redundant information across all links By default FTOS implements an enhanced flooding procedure that dynamically and intelligently determines when to optimize flooding Whenever possible the OSPF task attempts to reduce flooding overhead by selectively flooding on a subset of the interface...

Page 1160: ...ddress Enter the OSPF router id in IP address format of the restart router that will not act as a helper during graceful restart Defaults Not configured Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Version 7 8 1 0 Restart role enabled on the S Series Both Helper and Restart roles now supported on S Series Added support ...

Page 1161: ...s S Series Z Series S4810 Syntax graceful restart role helper only restart only To disable graceful restart role use the no graceful restart role command Parameters role helper only OPTIONAL Enter the keywords helper only to specify the OSPF router is a helper only during graceful restart role restart only OPTIONAL Enter the keywords restart only to specify the OSPF router is a restart only during...

Page 1162: ...sion 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series ip ospf authentication key Enable authentication and set an authentication key on OSPF traffic on an interface C Series E Series S Series Z Series S4810 Syntax ip ospf authentication key encryption type key To delete an authentication key use the no ip ospf authenticati...

Page 1163: ...faults The default cost is based on the reference bandwidth Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information If this command is not configured cost is based on the auto cost com...

Page 1164: ...1164 ...

Page 1165: ...sion 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The time interval between the hello packets must be the same for routers in a network Related Commands ip ospf dead interval sets the time interval before a router is declared dead ip ospf message digest key Enable OSPF MD5 authentication and send an O...

Page 1166: ...sures that the neighbors learn the new key and communication is not disrupted by keeping the old key enabled After the reply is received and the new key is authenticated you must delete the old key Dell recommends keeping only one key per interface NOTE The MD5 secret is stored as plain text in the configuration file with service password encryption Write down or otherwise record the key You canno...

Page 1167: ...on 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series ip ospf priority Set the priority of the interface to determine the designated router for the OSPF network C Series E Series S Series Z Series S4810 Syntax ip ospf priority number...

Page 1168: ...n retransmission The range is 1 to 3600 The default is 5 seconds This interval must be greater than the expected round trip time for a packet to travel between two routers Defaults 5 seconds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pr...

Page 1169: ...ency changes Set FTOS to send a Syslog message about changes in the OSPF adjacency state C Series E Series S Series Z Series S4810 Syntax log adjacency changes To disable the Syslog messages use the no log adjacency changes command Defaults Disabled Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added suppo...

Page 1170: ...troduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series mib binding Enable this OSPF process ID to manage the SNMP traps and process SNMP queries C Series E Series S Series Z Series S4810 Syntax mib binding To mib binding on this OSPF process use the no mib binding command Defaults none Command Modes ROUTER OSPF Command History Version 8 3...

Page 1171: ... a decimal value For example if you use an area ID of 0 0 0 1 it is converted to 1 Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced to all platforms Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information...

Page 1172: ...y a number from 1 to 4094 For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 ...

Page 1173: ... everything and revert to the default behavior All previously marked passive interfaces are removed May update ABR status redistribute Redistribute information from another routing protocol throughout the OSPF process C Series E Series S Series Z Series S4810 Syntax redistribute connected rip static metric metric value metric type type value route map map name tag tag value To disable redistributi...

Page 1174: ...tion originate command Related Commands default information originate generates a default route into the OSPF routing domain redistribute bgp Redistribute BGP routing information throughout the OSPF instance C Series E Series S Series Z Series S4810 Syntax redistribute bgp as number metric metric value metric type type value tag tag value To disable redistribution use the no redistribute bgp as nu...

Page 1175: ...ughout the OSPF instance C Series E Series Z Series S4810 Syntax redistribute isis tag level 1 level 1 2 level 2 metric metric value metric type type value route map map name tag tag value To disable redistribution use the no redistribute isis tag level 1 level 1 2 level 2 metric metric value metric type type value route map map name tag tag value command Parameters tag OPTIONAL Enter the name of ...

Page 1176: ...eries pre Version 6 1 1 1 Introduced on the E Series Usage Information IS IS is not supported on the S Series platforms router id Use this command to configure a fixed router ID C Series E Series S Series Z Series S4810 Syntax router id ip address To remove the fixed router ID use the no router id ip address command Parameters ip address Enter the router ID in the IP address format Defaults none C...

Page 1177: ...S Series Z Series S4810 Syntax router ospf process id vrf vrf name To clear an OSPF instance use the no router ospf process id command Parameters process id Enter a number for the OSPF instance The range is 1 to 65535 vrf name Optional E Series Only Enter the VRF process identifier to tie the OSPF instance to the VRF All network commands under this OSPF instance are subsequently tied to the VRF in...

Page 1178: ... 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Example FTOS conf router_ospf show config router ospf 3 passive interface FastEthernet 0 1 FTOS conf router_ospf show ip ospf Display information on the OSPF process configured on the switch C Series E Series S Series Z Series S4810 Syntax show ip ospf process id vrf vrf name Parameters process id Enter the OSPF Process...

Page 1179: ...Displays the delay and hold time configured for this process ID Convergence Level Min LSA Displays the intervals set for LSA transmission and acceptance Number of Displays the number and type of areas configured for this process ID Example FTOS show ip ospf 10 Routing Process ospf 10 with ID 1 1 1 1 Virtual router default vrf Supports only single TOS TOS0 routes SPF schedule delay 5 secs Hold time...

Page 1180: ...routes In OSPF external routes are calculated by adding the LSA cost to the cost of reaching the ASBR router If an external route does not have the correct cost use this command to determine if the path to the originating router is correct The display output is not sorted in any order NOTE ASBRs that are not in directly connected areas are also displayed You can determine if an ASBR is in a direct...

Page 1181: ...w Field Description Link ID Identifies the router ID ADV Router Identifies the advertising router s ID Age Displays the link state age Seq Identifies the link state sequence number This number allows you to identify old or duplicate link state advertisements Checksum Displays the Fletcher checksum of an LSA s complete contents Link count Displays the number of interfaces for that router Example FT...

Page 1182: ...process id database asbr summary link state id adv router ip address Parameters process id Enter the OSPF Process ID to show a specific process If no Process ID is entered command applies only to the first OSPF process link state id OPTIONAL Specify LSA ID in dotted decimal format The LSA ID value depends on the LSA type and it can be one of the following the network s IP address for Type 3 LSAs o...

Page 1183: ... Advertising Router Identifies the advertising router s ID Checksum Displays the Fletcher checksum of the an LSA s complete contents Length Displays the length in bytes of the LSA Network Mask Displays the network mask implemented on the area TOS Displays the Type of Service TOS options Option 0 is the only option Metric Displays the LSA metric Example FTOS show ip ospf 100 database asbr summary O...

Page 1184: ...ter s OSPF router ID for Type 1 LSAs or Type 4 LSAs the default destination 0 0 0 0 for Type 5 LSAs adv router ip address OPTIONAL Enter the keywords adv router and the ip address to display only the LSA information about that router Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for M...

Page 1185: ...ork mask implemented on the area Metrics Type Displays the external type TOS Displays the Type of Service TOS options Option 0 is the only option Metric Displays the LSA metric Forward Address Identifies the address of the forwarding router Data traffic is forwarded to this router If the forwarding address is 0 0 0 0 data traffic is forwarded to the originating router External Route Tag Displays t...

Page 1186: ...ess ID is entered command applies only to the first OSPF process link state id OPTIONAL Specify LSA ID in dotted decimal format The LSA ID value depends on the LSA type and it can be one of the following the network s IP address for Type 3 LSAs or Type 5 LSAs the router s OSPF router ID for Type 1 LSAs or Type 4 LSAs the default destination 0 0 0 0 for Type 5 LSAs adv router ip address OPTIONAL En...

Page 1187: ...LSA s originating router Checksum Identifies the link state sequence number This number enables you to identify old or duplicate LSAs Length Displays the Fletcher checksum of an LSA s complete contents Network Mask Displays the length in bytes of the LSA Attached Router Identifies the IP address of routers attached to the network Example FTOS show ip ospf 1 data network OSPF Router with ID 20 20 2...

Page 1188: ... following the network s IP address for Type 3 LSAs or Type 5 LSAs the router s OSPF router ID for Type 1 LSAs or Type 4 LSAs the default destination 0 0 0 0 for Type 5 LSAs adv router ip address OPTIONAL Enter the keywords adv router and the ip address to display only the LSA information about that router Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 V...

Page 1189: ...ords adv router and the ip address to display only the LSA information about that router Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E S...

Page 1190: ...a OSPF Router with ID 3 3 3 3 Process ID 1 Type 10 Opaque Link Area Area 0 LS age 1133 Options No TOS capability No DC E LS type Type 10 Opaque Link Area Link State ID 1 0 0 1 Advertising Router 10 16 1 160 LS Seq Number 0x80000416 Checksum 0x376 Length 28 Opaque Type 1 Opaque ID 1 Unable to display opaque data LS age 833 Options No TOS capability No DC E LS type Type 10 Opaque Link Area Link Stat...

Page 1191: ...ion 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Related Commands show ip ospf database displays OSPF database information show ip ospf database opaque link Display the opaque link type 9 LSA information C Series E Series S Series Z Series S4810 Syntax show ip ospf p...

Page 1192: ...ries E Series S Series Z Series S4810 Syntax show ip ospf process id database router link state id adv router ip address Parameters process id Enter the OSPF Process ID to show a specific process If no Process ID is entered command applies only to the first OSPF process link state id OPTIONAL Specify LSA ID in dotted decimal format The LSA ID value depends on the LSA type and it can be one of the ...

Page 1193: ...whether the originating router can accept AS External LSAs LS Type Displays the LSA type Link State ID Displays the Link State ID Advertising Router Identifies the router ID of the LSA s originating router LS Seq Number Displays the link state sequence number This number detects duplicate or old LSAs Checksum Displays the Fletcher checksum of an LSA s complete contents Length Displays the length i...

Page 1194: ...ber of TOS metric 0 TOS 0 Metric 1 Link connected to a Transit Network Link ID Designated Router address 192 68 141 2 Link Data Router Interface address 192 68 141 2 Number of TOS metric 0 TOS 0 Metric 1 Link connected to a Transit Network Link ID Designated Router address 192 68 140 2 Link Data Router Interface address 192 68 140 2 Number of TOS metric 0 TOS 0 Metric 1 Link connected to a Stub Ne...

Page 1195: ...on 6 1 1 1 Introduced on the E Series Usage Information The following describes the show ip ospf process id database summary command shown in the Example below Item Description LS Age Displays the LSA age Options Displays the optional capabilities available on router The following options can be found in this item TOS capability or No TOS capability is displayed depending on whether the router can...

Page 1196: ...D 192 68 16 0 Advertising Router 192 168 17 1 LS Seq Number 0x80000054 Checksum 0xb5a2 Length 28 Network Mask 24 TOS 0 Metric 1 LS age 9 Options No TOS capability No DC E LS type Summary Network Link State ID 192 68 32 0 Advertising Router 1 1 1 10 LS Seq Number 0x80000016 Checksum 0x987c Length 28 Network Mask 24 TOS 0 Metric 1 LS age 7 Options No TOS capability No DC E LS type Summary Network Li...

Page 1197: ... 0 to 16383 For Port Channel groups enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN ...

Page 1198: ...ime untill the next Hello packet is sent out this interface Neighbor Count This line displays the number of neighbors and adjacent neighbors Listed below this line are the details about each adjacent neighbor Example FTOS show ip ospf int GigabitEthernet 13 17 is up line protocol is up Internet Address 192 168 1 2 30 Area 0 0 0 1 Process ID 1 Router ID 192 168 253 2 Network Type BROADCAST Cost 1 T...

Page 1199: ...ommand applies only to the first OSPF process Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The following describes ...

Page 1200: ...troduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series and E Series Usage Information This command is useful in isolating routing problems between the OSPF and the RTM For example if a route is missing from the RTM FIB but is visible from the display output of this command the problem is with ...

Page 1201: ...nnel groups enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan f...

Page 1202: ...r mark in the reception queue Hello Q The queue for transmission or reception for the hello packets LSR Q The queue for transmission or reception for the link state request packets Other Q The queue for transmission or reception for the link state acknowledgement database description and update packets The following describes the error definitions for the show ip ospf statistics process id global ...

Page 1203: ...q LSUpd LSAck RX 10 0 8 2 0 0 0 TX 10 0 10 0 0 0 0 OSPF Global Queue Length TxQ Len RxQ Len Tx Mark Rx Mark Hello Q 0 0 0 2 LSR Q 0 0 0 0 Other Q 0 0 0 0 Error packets Only for RX Intf Down 0 Non Dr 0 Self Org 0 Wrong Len 0 Invld Nbr 0 Nbr State 0 Auth Err 0 MD5 Err 0 Chksum 0 Version 0 AreaMis 0 Conf Issues 0 No Buffer 0 Seq No 0 Socket 0 Q OverFlow 0 Unkown Pkt 0 Error packets Only for TX Socket...

Page 1204: ...er 37 Transmit Timer 0 LSU Q Len 0 LSU Q Wmark 0 LSR Q Len 0 LSR Q Wmark 1 Related Commands clear ip ospf statistics clears the packet statistics in all interfaces and neighbors show ip ospf timers rate limit Show the LSA currently in the queue waiting for timers to expire Z Series S4810 Syntax show ip ospf process id timers rate limit Parameters process id Enter the OSPF Process ID to show a spec...

Page 1205: ... 0 Introduced on the C Series and E Series Usage Information Use this command to isolate problems with inter area and external routes In OSPF inter area and external routes are calculated by adding LSA cost to the cost of reaching the router If an inter area or external route is not of correct cost the display can determine if the path to the originating router is correct or not Example FTOS show ...

Page 1206: ...f the virtual link Transit area This line identifies the area through which the virtual link was created the interface used and the cost assigned to that link Transmit Delay This line displays the transmit delay assigned to the link and the State of the OSPF neighbor Timer intervals This line displays the timer values assigned to the virtual link The timers are Hello is hello interval Dead is dead...

Page 1207: ...e range is 0 to 4294967295 Defaults Not configured Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The area range command...

Page 1208: ...ntroduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information Setting the delay and holdtime parameters to a low number enables the switch to switch to an alternate path quickly but requires more...

Page 1209: ... throttling exponential backoff is used when sending same LSA so that the interval is multiplied until the maximum time is reached For example if the start interval 5000 and hold interval 1000 and max interval 100 000 the LSA is sent at 5000 msec then 1000 msec then 2000 msec them 4000 until 100 000 msec is reached timers throttle lsa arrival Configure the LSA acceptance intervals Z Series S4810 S...

Page 1210: ...nable OSPFv3 area authentication area encryption clear ipv6 ospf process debug ipv6 ospf packet default information originate graceful restart grace period graceful restart mode ipv6 ospf area ipv6 ospf authentication ipv6 ospf cost ipv6 ospf dead interval ipv6 ospf encryption ipv6 ospf graceful restart helper reject ipv6 ospf hello interval ipv6 ospf priority ipv6 router ospf maximum paths passiv...

Page 1211: ...ry Version 9 1 0 0 Introduced on the S4810 and Z9000 Version 8 4 2 0 Introduced on the E Series TeraScale Usage Information Before you enable IPsec authentication on an OSPFv3 area you must first enable OSPFv3 globally on the router You must configure the same authentication policy same SPI and key on each interface in an OSPFv3 link An SPI number must be unique to one IPsec security policy authen...

Page 1212: ...p encryption algorithm Encryption algorithm used with ESP Valid values are 3DES DES AES CBC and NULL For AES CBC only the AES 128 and AES 192 ciphers are supported key encryption algorithm OPTIONAL Specifies if the key is encrypted Valid values 0 key is not encrypted or 7 key is encrypted key Text string used in encryption The required lengths of a non encrypted or encrypted key are 3DES 48 or 96 ...

Page 1213: ...tion However when you enable authentication on an area with the area authentication command you do not enable encryption at the same time If you have enabled IPsec authentication in an OSPFv3 area with the area authentication command you cannot use the area encryption command in the area at the same time The configuration of IPsec encryption on an interface level takes precedence over an area leve...

Page 1214: ...ion For a Port Channel interface enter the keyword port channel followed by a number C Series Z Series and S4810 Range 1 128 E Series 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 Command Modes EXEC Privilege Command History Version 9 1 0 0 In...

Page 1215: ...e OSPF3 router ID Area ID Displays the Area ID Chksum Displays the OSPF3 checksum default information originate Configure the FTOS to generate a default external route into an OSPFv3 routing domain C Series E Series Z Series S4810 Syntax default information originate always metric metric value metric type type value route map map name To return to the default values use the no default information ...

Page 1216: ...he process The range is 40 to 1800 seconds Defaults OSPFv3 graceful restart is disabled and functions in a helper only role Command Modes ROUTER OSPFv3 Command History Version 9 1 0 0 Introduced on the S4810 and Z9000 Version 8 4 2 2 Introduced on the E Series TeraScale Usage Information By default OSPFv3 graceful restart is disabled and functions only in a helper role to help restarting neighbor ...

Page 1217: ...start supports planned only and or unplanned only restarts The default is support for both planned and unplanned restarts A planned restart occurs when you enter the redundancy force failover rpm command to force the primary RPM to switch to the backup RPM During a planned restart OSPF sends out a Type 11 Grace LSA before the system switches over to the backup RPM An unplanned restart occurs when ...

Page 1218: ...lgorithm 1 SHA 1 key encryption type OPTIONAL Specifies if the key is encrypted Valid values 0 key is not encrypted or 7 key is encrypted key Text string used in authentication For MD5 authentication the key must be 32 hex digits non encrypted or 64 hex digits encrypted For SHA 1 authentication the key must be 40 hex digits non encrypted or 80 hex digits encrypted Defaults Not configured Command M...

Page 1219: ... in authentication policies ipv6 ospf cost Explicitly specify the cost of sending a packet on an interface C Series E Series Z Series S4810 Syntax ipv6 ospf interface cost Parameters interface cost Enter a unsigned integer value expressed as the link state metric Range 1 to 65535 Defaults Default cost based on the bandwidth Command Modes INTERFACE Command History Version 9 1 0 0 Introduced on the ...

Page 1220: ...y default the dead interval is four times longer than the default hello interval Related Commands ipv6 ospf hello interval Specify the time interval between hello packets ipv6 ospf encryption Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface E Series TeraScale Z Series S4810 Syntax ipv6 ospf encryption null ipsec spi number esp encryption algorithm key encryption type ke...

Page 1221: ...0 0 Introduced on the S4810 and Z9000 Version 8 4 2 0 Introduced on the E Series TeraScale Usage Information Before you enable IPsec encryption on an OSPFv3 interface you must first enable IPv6 unicast routing globally configure an IPv6 address and enable OSPFv3 on the interface and assign the interface to an area An SPI value must be unique to one IPsec security policy authentication or encryptio...

Page 1222: ...OSPFv3 router ignores the Grace LSAs that it receives from a restarting OSPFv3 neighbor The graceful restart role command is not supported in OSPFv3 When you enable the helper reject role on an interface you reconfigure an OSPFv3 router to function in a restarting only role ipv6 ospf hello interval Specify the time interval between the hello packets sent on the interface C Series E Series Z Series...

Page 1223: ...000 Version 7 8 1 0 Added support for the C Series Version 7 4 1 0 Introduced on the E Series Usage Information Setting a priority of 0 makes the router ineligible for election as a Designated Router or Backup Designated Router Use this command for interfaces connected to multi access networks not point to point networks ipv6 router ospf Enable OSPF for IPv6 router configuration C Series E Series ...

Page 1224: ...ulti Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series passive interface Disable suppress sending routing updates on an interface C Series E Series Z Series S4810 Syntax passive interface interface To enable sending routing updates on an interface use the no passive interface interface Parameters interf...

Page 1225: ...s prefix will continue to be advertised to other interfaces and updates from other routers on that interface continue to be received and processed OSPFv3 for IPv6 routing information is neither sent nor received through the specified router interface The specified interface address appears as a stub network in the OSPFv3 for IPv6 domain redistribute Redistribute into OSPFv3 C Series E Series Z Ser...

Page 1226: ... 0 Defaults Not configured Command Modes ROUTER OSPF for OSPFv2 ROUTER OSPFv3 for OSPFv3 Command History Version 9 1 0 0 Introduced support for OSPFv3 on the S4810 and Z9000 Version 7 8 1 0 Added support for the C Series Version 7 4 1 0 Introduced on the E Series Usage Information To redistribute the default route x x x x x configure the default information originate command Related Commands defau...

Page 1227: ...rocess show crypto ipsec policy Display the configuration of IPsec authentication and encryption policies E Series TeraScale Z Series S4810 Syntax show crypto ipsec policy name name Parameters name name OPTIONAL Displays configuration details about a specified policy Defaults No default behavior or values Command Modes EXEC EXEC Privilege Command History Version 9 1 0 0 Introduced on the S4810 and...

Page 1228: ...ipher Key bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8 a Outbound ESP Cipher Key bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8 a Transform set esp 128 aes esp sha1 hmac show crypto ipsec policy Command Fields Field Description Policy name Displays the name of an IPsec policy Policy refcount Number of interfaces on the router that use the policy Inbound ESP SPI ...

Page 1229: ...rt For a VLAN interface enter vlan vlan id Valid VLAN IDs 1 to 4094 Defaults No default behavior or values Command Modes EXEC EXEC Privilege Command History Version 9 1 0 0 Introduced on the S4810 and Z9000 Version 8 4 2 0 Introduced on the E Series TeraScale Usage Information The show crypto ipsec sa ipv6 command output displays security associations set up for OSPFv3 links in IPsec authenticatio...

Page 1230: ...mmand Fields Field Description Interface IPv6 interface Link local address IPv6 address of interface IPSecv6 policy name Name of the IPsec security policy applied to the interface inbound outbound ah Authentication policy applied to inbound or outbound traffic inbound outbound esp Encryption policy applied to inbound or outbound traffic spi Security policy index number used to identify the policy ...

Page 1231: ...s and Type 11 Grace LSAs on E Series TeraScale routers Version 7 8 1 0 Added support for C Series Usage Information The show crypto ipsec sa ipv6 command output displays security associations set up for OSPFv3 links in IPsec authentication and encryption policies on the router Related Commands show crypto ipsec policy Display the configuration of IPsec authentication and encryption policies Exampl...

Page 1232: ...er Area Rtr LSA Count 0 Group Mem LSA Count 0 Type 7 LSA count 0 Intra Area Pfx LSA Count 2 Intra Area TE LSA Count 2 Area 1 database summary Type Count Status Brd Rtr Count 1 AS Bdr Rtr Count 1 LSA count 8 Rtr LSA Count 1 Net LSA Count 0 Inter Area Pfx LSA Count 5 Inter Area Rtr LSA Count 0 Group Mem LSA Count 0 Type 7 LSA count 0 Intra Area Pfx LSA Count 2 Intra Area TE LSA Count 2 E1200 T2C2 sh...

Page 1233: ...d the slot port information For a VLAN enter the keyword vlan and a number from 1 to 4094 Defaults No default behavior or values Command Modes EXEC Command History Version 9 1 0 0 Added support for OSPFv3 on the S4810 and Z9000 Version 7 8 1 0 Added support for the C Series Version 7 4 1 0 Introduced on the E Series Example show ipv6 ospf interface command FTOS show ipv6 ospf interface gigabitethe...

Page 1234: ...tyGigE followed by the slot port information For a Port Channel interface enter the keyword port channel followed by a number C Series Z Series and S4810 Range 1 to 128 E Series Range 1 to 255 for TeraScale 1 to 512 for ExaScale For a VLAN enter the keyword vlan followed by the VLAN ID Range 1 to 4094 Defaults No default behavior or values Command Modes EXEC EXEC Privilege Command History Version ...

Page 1235: ...ries Z Series S4810 Syntax clear ip pim rp mapping rp address Parameters rp address OPTIONAL Enter the RP address in dotted decimal format A B C D Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the S Series clear ip pim tib Clear PIM tree ...

Page 1236: ...up to view PIM messages for a specific group group OPTIONAL Enter the keyword group to view PIM messages for a specific group packet in out OPTIONAL Enter the keyword packet to view PIM packets Enter one of the optional parameters in to view incoming packets out to view outgoing packets register OPTIONAL Enter the keyword register to view PIM register address in dotted decimal format A B C D state...

Page 1237: ...the subsequent PIM BSR Existing BSR advertisements are cleaned up by time out Candidate RP advertisements can be cleaned using the clear ip pim rp mapping command ip pim bsr candidate Configure the PIM router to join the Bootstrap election process C Series E Series S Series Z Series S4810 Syntax ip pim bsr candidate interface hash mask length priority To return to the default value use the no ip p...

Page 1238: ...for the VLAN interface ip pim dr priority Change the designated router DR priority for the interface C Series E Series S Series Z Series S4810 Syntax ip pim dr priority priority value To remove the DR priority value assigned use the no ip pim dr priority command Parameters priority value Enter a number Preference is given to larger higher number The range is 0 to 4294967294 The default is 1 Defaul...

Page 1239: ...onds for which entries are kept alive after restart The range is 30 to 300 seconds The default is 60 seconds Defaults as above Command Modes CONFIGURATION Command History Version 8 2 1 0 Introduced on the E Series ExaScale Added the ipv6 option for the E Series Version 7 6 1 0 Introduced on the E Series Usage Information When an NSF capable router comes up it announces the graceful restart capabil...

Page 1240: ... 225 1 1 0 24 FTOS config ext nacl permit ip any 232 1 1 0 24 FTOS config ext nacl permit ip 100 1 1 0 16 any FTOS config if gi 1 1 ip pim join filter iptv channels in FTOS config if gi 1 1 ip pim join filter iptv channels out Related Commands ip access list extended configure an access list based on IP addresses or protocols ip pim ingress interface map When the Dell Force10 system is the RP stat...

Page 1241: ...0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series and S Series Version 7 6 1 0 Introduced on the E Series Usage Information Do not enter this command before creating the access list ip pim query interval Change the frequency of PIM Router Query messages C Series E Series S Series Z Series S4810 Syntax ip pim query interval seco...

Page 1242: ... S4810 Version 7 8 1 0 Introduced on the C Series and S Series Version 7 6 1 0 Introduced Usage Information The access name is an extended IP access list that denies PIM register packets to RP at the source DR based on the multicast and group addresses Do not enter this command before creating the access list ip pim rp address Configure a static PIM rendezvous point RP address for a group or acces...

Page 1243: ...p pim rp candidate Configure a PIM router to send out a Candidate RP Advertisement message to the bootstrap BS router or define group prefixes that are defined with the RP address to PIM BSR C Series E Series S Series Z Series S4810 Syntax ip pim rp candidate interface priority To return to the default value use the no ip pim rp candidate interface priority command Parameters interface Enter the f...

Page 1244: ...de and IGMP on the interface C Series E Series S Series Z Series S4810 Syntax ip pim sparse mode To disable PIM sparse mode and IGMP use the no ip pim sparse mode command Defaults Disabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Se...

Page 1245: ... 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series for the port channels and the S Series Version 7 7 1 1 Introduced Usage Information This command configures an expiration timer for all S G entries unless they are assigned to an Extended ACL ip pim spt threshold Configure the PIM router ...

Page 1246: ...the PIM designated router DR including unnecessary multicast packets To minimize the traffic sent over the network to the designated router you can disable designated router flooding When designated router flooding is disabled PIM SM snooping only forwards the multicast traffic which belongs to a multicast group for which the switch receives a join request on the port connected towards the designa...

Page 1247: ...nterfaces with IP PIM enabled C Series E Series S Series Z Series S4810 Syntax show ip pim interface Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the S Series Usage Information The following describes the show ip pim interface comm...

Page 1248: ... 192 3 1 1 Gi 7 16 v2 S 1 30 1 192 3 1 1 192 4 1 1 Gi 13 5 v2 S 0 30 1 192 4 1 1 172 21 110 1 Gi 13 6 v2 S 0 30 1 172 21 110 1 172 21 203 1 Gi 13 7 v2 S 0 30 1 172 21 203 1 show ip pim neighbor View PIM neighbors C Series E Series S Series Z Series S4810 Syntax show ip pim neighbor Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduce...

Page 1249: ...4 Gi 7 16 09 44 58 00 01 24 v2 1 S FTOS show ip pim rp View all multicast groups to RP mappings C Series E Series S Series Z Series S4810 Syntax show ip pim rp mapping group address Parameters mapping OPTIONAL Enter the keyword mapping to display the multicast groups to RP mapping and information on how RP is learnt group address OPTIONAL Enter the multicast group address mask in dotted decimal fo...

Page 1250: ...N interfaces with PIM SM snooping enabled E Series ExaScale S4810 Syntax show ip pim snooping interface vlan vlan id Parameters vlan vlan id OPTIONAL Enter a VLAN ID to display information about a specified VLAN configured for PIM SM snooping The valid VLAN IDs range is 1 to 4094 Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 1 Introduced o...

Page 1251: ...AL Enter a VLAN ID to display information about PIM neighbors that was discovered by PIM SM snooping on a specified VLAN The valid VLAN IDs range is 1 to 4094 Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 1 Introduced on the E Series ExaScale Usage Information The following describes the show ip pim snooping neighbor commands shown in the ...

Page 1252: ...ing about multicast group members and states E Series ExaScale S4810 Syntax show ip pim snooping tib vlan vlan id group address source address Parameters vlan vlan id OPTIONAL Enter a VLAN ID to display TIB information discovered by PIM SM snooping on a specified VLAN The valid VLAN IDs range is 1 to 4094 group address OPTIONAL Enter the group address in dotted decimal format A B C D to display TI...

Page 1253: ...ket from the last hop router is received and the entry is ready to switch to SPT K acknowledge pending state Incoming interface Displays the reverse path forwarding RPF interface towards the RP source RPF neighbor Displays the next hop from this interface towards the RP source Outgoing interface list Lists the interfaces that meet one of the following criteria a directly connect member of the Grou...

Page 1254: ...ax show ip pim summary Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 1 Support for the display of PIM SM snooping status was added on E Series ExaScale Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the S Series Example FTOS show ip pim summary PIM TIB version 495 Uptime 22 44 52 Entries in PIM TIB MFC 2 ...

Page 1255: ...s RP Mapping 0 bytes show ip pim tib View the PIM tree information base TIB C Series E Series S Series S4810 Syntax show ip pim tib group address source address Parameters group address OPTIONAL Enter the group address in dotted decimal format A B C D source address OPTIONAL Enter the source address in dotted decimal format A B C D Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0...

Page 1256: ...Displays the next hop from this interface towards the RP source Outgoing interface list Lists the interfaces that meet one of the following criteria a directly connect member of the Group statically configured member of the Group received a G Join message Example FTOS show ip pim tib PIM Multicast Routing Table Flags D Dense S Sparse C Connected L Local P Pruned R RP bit set F Register flag T SPT ...

Page 1257: ...g E Series ExaScale S4810 Syntax show running config pim Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 0 Introduced on the E Series ExaScale Example FTOS show running config pim ip pim snooping enable Related Commands ip pim snooping enables PIM SM snooping IPv6 PIM Sparse Mode Commands The following describes the IPv6 PIM sparse mode PIM SM co...

Page 1258: ...w IPv6 PIM timers Enter one of the optional parameters assert to view the assertion timer hello to view the IPv6 PIM neighbor keepalive timer joinprune to view the expiry timer join prune timer register to view the register suppression timer Defaults Disabled Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 7 4 1 0 Introduced ipv6 pim bsr candidate Conf...

Page 1259: ...ON Command History Version 8 3 12 0 Introduced on the S4810 Version 7 4 1 0 Introduced ipv6 pim dr priority Change the designated router DR priority for the IPv6 interface E Series S4810 Syntax ipv6 pim dr priority priority value To remove the DR priority value assigned use the no ipv6 pim dr priority command Parameters priority value Enter a number Preference is given to larger higher number The ...

Page 1260: ...OIN FIL_ACL FTOS conf ipv6 acl permit ipv6 165 87 34 0 112 ff0e 225 1 2 0 112 FTOS conf ipv6 acl permit ipv6 any ff0e 230 1 2 0 112 FTOS conf ipv6 acl permit ipv6 165 87 32 0 112 any FTOS conf ipv6 acl exit FTOS conf interface gigabitethernet 0 84 FTOS conf if gi 0 84 ipv6 pim join filter JOIN FIL_ACL in FTOS conf if gi 0 84 ipv6 pim join filter JOIN FIL_ACL out ipv6 pim neighbor filter Prevent th...

Page 1261: ... Introduced ipv6 pim register filter Configure the source DR so that it does not send register packets to the RP for the specified sources and groups E Series S4810 Syntax ipv6 pim register filter access list Parameters access list Enter the name of the extended ACL that contains the sources and groups to be filtered Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introd...

Page 1262: ...he mask in nn format to assign that group address to the RP NOTE The notation specifies successive hexadecimal fields of zero override Enter the keyword override to override the BSR updates with static RP The override takes effect immediately during enable disable NOTE This option is applicable to multicast group range Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Intr...

Page 1263: ... 4094 priority value OPTIONAL Enter a number as the priority of this RP Candidate which is included in the Candidate RP Advertisements The range is 0 highest to 255 lowest Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 7 4 1 0 Introduced ipv6 pim sparse mode Enable IPv6 PIM sparse mode on the interface E Series S4810 Syntax ipv6 pim spars...

Page 1264: ...y Version 8 3 12 0 Introduced on the S4810 Version 7 4 1 0 Introduced Usage Information PIM leaf routers join the shortest path tree immediately after the first packet arrives from a new source show ipv6 pim bsr router View information on the bootstrap router v2 E Series S3810 Syntax show ipv6 pim bsr router Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810...

Page 1265: ...outer Gi 10 11 v2 S 0 30 1 Address fe80 201 e8ff fe02 1417 DR this router FTOS show ipv6 pim neighbor Displays IPv6 PIM neighbor information E Series S4810 Syntax show ipv6 pim neighbor detail Parameters detail OPTIONAL Enter the keyword detail to displayed PIM neighbor detailed information Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 7 4 1 0 I...

Page 1266: ...essive hexadecimal fields of zero Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 7 4 1 0 Introduced Example FTOS show ipv6 pim rp Group RP ff0e 225 1 2 1 14 1 ff0e 225 1 2 2 14 1 ff0e 226 1 2 1 14 1 ff0e 226 1 2 2 14 1 FTOS Example Mapping FTOS show ipv6 pim rp mapping PIM Group to RP Mappings Group s ff00 8 RP 14 1 v2 Info source 14 1 via bootst...

Page 1267: ...PT M MSDP created entry A Candidate for MSDP Advertisement K Ack Pending State Timers Uptime Expires Interface state Interface next Hop State Mode 25 1 ff0e 225 1 2 1 uptime 00 09 53 expires 00 00 00 flags CJ RPF neighbor GigabitEthernet 10 3 fe80 201 e8ff fe00 6265 Outgoing interface list GigabitEthernet 10 11 25 1 ff0e 225 1 2 2 uptime 00 09 54 expires 00 00 00 flags CJ RPF neighbor GigabitEther...

Page 1268: ...1268 ...

Page 1269: ...onitoring port should have no ip address and no shutdown as the only configuration FTOS permits a limited set of commands for monitoring ports display them using the command A monitoring port also may not be a member of a VLAN A monitoring port can monitor any physical port in the chassis Only one MG and one MD may be in a single port pipe A monitoring port can monitor more than one port More than...

Page 1270: ...s a monitoring session flow based enable Enable flow based monitoring E Series Syntax flow based enable To disable flow based monitoring use the no flow based enable command Defaults Disabled that is flow based monitoring is not applied Command Modes MONITOR SESSION conf mon sess session ID Command History Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced on the E Seri...

Page 1271: ...810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre 7 7 1 0 Introduced on the E Series Usage Information The monitor command is saved in the running configuration at Monitor Session mode level and can be restored after a chassis reload Example FTOS conf monitor session 60 FTOS conf mon sess 60 Related Com...

Page 1272: ...essions C Series E Series S Series Z Series Syntax show monitor session session ID To display monitoring information for all sessions use the show monitor session command Parameters session ID OPTIONAL Enter a session identification number The range 0 to 65535 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the ...

Page 1273: ... 3 11 1 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Usage Information The monitoring command is saved in the running configuration at the Monitor Session mode level and can be restored after a chassis reload Example FTOS show running confi...

Page 1274: ...e slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information destination Enter the keyword destination to indicate the interface destination direction rx tx both Enter the keyword direction followed by one of the packet directional indicators rx to mo...

Page 1275: ... Introduced on the E Series Example FTOS conf mon sess 11 source gi 10 0 destination gi 10 47 direction rx FTOS conf mon sess 11 Usage Information NOTE You can only configure a SONET port can as a monitored port 1275 ...

Page 1276: ...1276 ...

Page 1277: ...miscuous ports Traffic received from an isolated port is forwarded only to promiscuous ports or trunk ports Community VLAN A community VLAN is a secondary VLAN of the primary VLAN Ports in a community VLAN can talk to each other Also all ports in a community VLAN can talk to all promiscuous ports in the primary VLAN and vice versa Devices on a community VLAN can communicate with each other using m...

Page 1278: ...dary VLAN NOTE Even after you disable ip local proxy arp use no ip local proxy arp in a secondary VLAN Layer 3 communication may happen between some secondary VLAN hosts until the address resolution protocol ARP timeout happens on those secondary VLAN hosts Defaults Layer 3 communication is disabled between secondary VLANs in a private VLAN Command Modes INTERFACE VLAN Command History Version 8 3 ...

Page 1279: ...o community or isolated even before associating it to a primary VLAN This secondary VLAN continues to work normally as a normal VLAN even though it is not associated to a primary VLAN A syslog message indicates this must not have a port in it when VLAN mode is being set Only ports and port channels configured as promiscuous host or PVLAN trunk ports as described above can be added to the PVLAN No ...

Page 1280: ...ion 7 8 1 0 Introduced on the C Series and S Series Usage Information The list of secondary VLANs can be Specified in comma delimited or hyphenated range format Specified with this command even before they have been created Amended by specifying the new secondary VLAN to be added to the list Related Commands private vlan mode sets the mode of the selected VLAN to community isolated or primary show...

Page 1281: ...Displays the type of VLAN in which the designated interface resides Interface Type Displays the PVLAN port type of the designated interface Status States whether the interface is operationally up or down Example All FTOS show interfaces private vlan Interface Vlan PVLAN Type Interface Type Status Gi 2 1 10 Primary Promiscuous Up Gi 2 2 100 Isolated Host Down Gi 2 3 10 Primary Trunk Up Gi 2 4 101 C...

Page 1282: ...ted PVLAN interface interface OPTIONAL Enter the keyword interface and an interface ID to display the PVLAN configuration of the designated interface Defaults none Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the C Series and S Series Usage Information Examples of all types of command output are shown below The first type of output is the result of not entering a...

Page 1283: ... Secondary Type Active Ports 10 primary Yes Gi 2 1 3 101 community Yes Gi 2 7 10 20 primary Yes Po 10 12 13 Gi 3 1 201 community No 202 community Yes Gi 3 11 12 Example Specific FTOS show vlan private vlan interface Gi 2 1 Primary Secondary Type Active Ports 10 primary Yes Gi 2 1 Usage Information If the VLAN ID is that of a primary VLAN the entire private VLAN output is displayed as shown below I...

Page 1284: ...s and S Series Usage Information The output of this command shown below displays the community and isolated VLAN IDs that are associated with each primary VLAN Example FTOS show vlan private vlan mapping Private Vlan Primary 100 Isolated 102 Community 101 Unknown 200 Related Commands private vlan mode sets the mode of the selected VLAN to community isolated or primary show interfaces private vlan ...

Page 1285: ... various PVLAN port types to port and port channel LAG interfaces is shown below Example FTOS conf FTOS conf interface GigabitEthernet 2 1 FTOS conf if gi 2 1 switchport mode private vlan promiscuous FTOS conf interface GigabitEthernet 2 2 FTOS conf if gi 2 2 switchport mode private vlan host FTOS conf interface GigabitEthernet 2 3 FTOS conf if gi 2 3 switchport mode private vlan trunk FTOS conf i...

Page 1286: ...1286 ...

Page 1287: ...description Enter a description of the PVST C Series E Series S Series Z Series S4810 Syntax description description To remove the description use the no description description command Parameters description Enter a description to identify the spanning tree 80 characters maximum Defaults none Command Modes SPANNING TREE PVST The prompt is config pvst Command History Version 8 3 11 1 Introduced on...

Page 1288: ...ystem ID to augment the Bridge ID with a VLAN ID so that PVST differentiate between BPDUs for each VLAN If for some reason on VLAN receives a BPDU meant for another VLAN PVST will then not detect a loop and both ports can remain in forwarding state C Series E Series S Series Z Series S4810 Syntax extend system id Defaults Disabled Command Modes PROTOCOL PVST Command History Version 8 3 11 1 Introd...

Page 1289: ...st enter SPANNING TREE mode on the switch protocol spanning tree pvst Enter the PVST mode to enable PVST on a device C Series E Series S Series Z Series S4810 Syntax protocol spanning tree pvst To disable PVST use the disable command Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced ...

Page 1290: ...rface keywords along with the slot port information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keyword port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E...

Page 1291: ...oop or BPDU guard Example Brief FTOS show spanning tree pvst vlan 3 brief VLAN 3 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 4096 Address 0001 e801 6aa8 Root Bridge hello time 2 max age 20 forward delay 15 Bridge ID Priority 16384 Address 0001 e805 e306 Configured hello time 2 max age 20 forward delay 15 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID Gi ...

Page 1292: ...0 The port is not in the Edge port mode Port 146 GigabitEthernet 1 16 is designated Forwarding Port path cost 20000 Port priority 128 Port Identifier 128 146 Designated root has priority 4096 address 0001 e805 e3 06 Designated bridge has priority 4096 address 0001 e805 e3 06 Designated port id is 128 146 designated path cost 0 Number of transitions to forwarding state 1 BPDU sent 1578 received 0 T...

Page 1293: ...e port with optional bridge port data unit BPDU guard port disablement if an error condition occurs port priority or cost for a VLAN range loop guard or root guard C Series E Series S Series Z Series S4810 Syntax spanning tree pvst edge port bpduguard shutdown on violation err disable vlan vlan range cost number priority value loopguard rootguard Parameters edge port Enter the keywords edge port t...

Page 1294: ...n a PVST port or port channel interface rootguard C S and E Series TeraScale only Enter the keyword rootguard to enable root guard on a PVST port or port channel interface Defaults Not configured Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 4 2 1 Introduced the loopguard and rootguard options on the E Series TeraScale C Series and S Series Version 8 3 ...

Page 1295: ... in a Blocking state and prevents traffic from flowing through it For example when Portfast BPDU guard and loop guard are both configured If a BPDU is received from a remote device BPDU guard places the port in an Err Disabled Blocking state and no traffic is forwarded on the port If no BPDU is received from a remote device loop guard places the port in a Loop Inconsistent Blocking state and no tr...

Page 1296: ...c flush standard Enable the MAC address flushing after receiving every topology change notification C Series E Series S Series Z Series S4810 Syntax tc flush standard To disable use the no tc flush standard command Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series...

Page 1297: ...oduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced Related Commands vlan forward delay changes the time interval before FTOS transitions to the Forwarding state vlan hello time change the time interval between BPDUs vlan max age changes the time interval before PVST refreshes show spanning tree pvst displays the PVST...

Page 1298: ...n max age changes the time interval before PVST refreshes show spanning tree pvst displays the PVST configuration vlan hello time Set the time interval between generation of PVST 7 BPDUs C Series E Series S Series Z Series S4810 Syntax vlan vlan range hello time seconds To return to the default value use the no vlan hello time command Parameters vlan vlan range Enter the keyword vlan followed by t...

Page 1299: ...vlan range Enter the keyword vlan followed by the VLAN number s The range is 1 to 4094 max age seconds Enter the keywords max age followed by the time interval in seconds that FTOS waits before refreshing configuration information The range is 6 to 40 seconds The default is 20 seconds Defaults 20 seconds Command Modes CONFIGURATION conf pvst Command History Version 8 3 11 1 Introduced on the Z9000...

Page 1300: ...1300 ...

Page 1301: ...the fields from MAC destination address to the CRC are used for forwarding and are included in these rate metering calculations You can optionally include overhead fields in rate metering calculations by enabling QoS Rate Adjustment C Series E Series S Series Z Series S4810 Syntax qos rate adjustment overhead bytes Parameters overhead bytes Include a specified number of bytes of packet overhead to...

Page 1302: ...Series S4810 Syntax dot1p priority priority value To delete the IEEE 802 1p configuration on the interface use the no dot1p priority command Parameters priority value Enter a value from 0 to 7 dot1p Queue Number 0 2 1 0 2 1 3 3 4 4 5 5 6 6 7 7 For the C Series and S Series enter a value 0 2 4 or 6 dot1p Queue Number 0 1 1 0 2 0 3 1 4 2 5 2 6 3 7 3 Defaults none Command Modes INTERFACE Command Hist...

Page 1303: ...ecify the rate limit in Kilobits per second Kbps On the E Series Force10 recommends using a value greater than or equal to 512 as lower values do not yield accurate results The range is 0 to 10000000 The default granularity is Megabits per second Mbps committed rate Enter the bandwidth in Mbps The range is 0 to 10000 burst KB OPTIONAL Enter the burst size in KB The range is 16 to 200000 The defaul...

Page 1304: ...s S Series Z Series S4810 Syntax rate police kbps committed rate burst KB peak kbps peak rate burst KB vlan vlan id Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second Kbps On C Series and S Series make the following value a multiple of 64 On the E Series Force10 recommends using a value greater than or equal to 512 as lower values does not yield accurate result...

Page 1305: ...d if this error message appears Error Specified VLANs overlap with existing config check to see if the same VLANs are used with the rate limit command on other interfaces To clear the problem remove the rate limit configuration s and re configure the rate police command After the rate police command is configured return to the other interfaces and re apply the rate limit configuration Related Comm...

Page 1306: ...e queue0 number queue1 number queue2 number queue3 number Parameters number Enter the bandwidth weight as a percentage The value must be a power of 2 The range is 1 to 1024 Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series and S Series Usage Information Guarantee a minimum bandwidth to different queues glob...

Page 1307: ...iority to queue mapping on the switch service class dynamic dot1p Honor all 802 1p markings on incoming switched traffic on an interface from INTERFACE mode or on all interfaces from CONFIGURATION mode A CONFIGURATION mode entry supersedes an INTERFACE mode entries C Series E Series S Series Z Series S4810 Syntax service class dynamic dot1p To return to the default setting use the no service class...

Page 1308: ... by default mapped to the same queue Queue 0 If you honor dot1p on ingress you can create service classes based the queueing strategy using the service class dynamic dot1p command from INTERFACE mode You may apply this queuing strategy to all interfaces by entering this command from CONFIGURATION mode All dot1p traffic is mapped to Queue 0 unless you enble the service class dynamic dot1p command o...

Page 1309: ...ts that have exceeded the configured committed rate Out of profile Red Number of packets that have exceeded the configured peak rate Traffic monitor 1 Traffic coming to class 1 Traffic monitor 2 Traffic coming to class 2 Traffic monitor 3 Traffic coming to class 3 Traffic monitor 4 Traffic coming to class 4 Traffic monitor 5 Traffic coming to class 5 Traffic monitor 6 Traffic coming to class 6 Tra...

Page 1310: ...r of packets that have exceeded the configured committed rate Out of profile Red Number of packets that have exceeded the configured peak rate Traffic monitor 1 Traffic coming to class 1 Traffic monitor 2 Traffic coming to class 2 Traffic monitor 3 Traffic coming to class 3 Traffic monitor 4 Traffic coming to class 4 Traffic monitor 5 Traffic coming to class 5 Traffic monitor 6 Traffic coming to c...

Page 1311: ...on 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information After you configure a unicast queue as strict priority that particular queue on the entire chassis is treated as a strict priority queue Traffic for a strict priority is scheduled before any other queues are serviced For example if you send 100 line rate...

Page 1312: ...e sum of the bandwidth percentages given to all eight classes exceeds 100 the bandwidth percentage automatically scales down to 100 Related Commands qos policy output creates a QoS output policy bandwidth weight Assign a priority weight to a queue C Series S Series Syntax bandwidth weight weight To remove the bandwidth weight use the no bandwidth weight command Parameters weight Enter the weight a...

Page 1313: ...eywords match any to determine that the packets must meet at least one of the match criteria in order to be considered a member of the class class map name Enter a name of the class for the class map in a character format 32 character maximum layer2 Enter the keyword layer2 to specify a Layer 2 Class Map The default is Layer 3 Defaults Layer 3 Command Modes CONFIGURATION Command History Version 8 ...

Page 1314: ...ass map views the current class map information clear qos statistics Clears Matched Packets Matched Bytes and Dropped Packets For TeraScale clears Matched Packets Matched Bytes Queued Packets Queued Bytes and Dropped Packets C Series E Series S Series Z Series S4810 Syntax clear qos statistics interface name Parameters interface name Enter one of the following keywords For a 1 Gigabit Ethernet int...

Page 1315: ...tion To remove the description use the no description description command Parameters description Enter a description to identify the policies 80 characters maximum Defaults none Command Modes CONFIGURATION policy map input and policy map output conf qos policy in and conf qos policy out wred Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 pre Versio...

Page 1316: ... Usage Information You must enter the class map command in order to access this command After the class map is identified you can configure the match criteria For class map match any a maximum of five ACL match criteria are allowed For class map match all only one ACL match criteria is allowed Related Commands class map identifies the class map match ip dscp Use a differentiated services code poin...

Page 1317: ...the match criteria The match ip dscp and match ip precedence commands are mutually exclusive Up to 64 IP DSCP values can be matched in one match statement For example to indicate IP DCSP values 0 1 2 3 4 5 6 7 enter either the match ip dscp 0 1 2 3 4 5 6 7 or match ip dscp 0 7 command NOTE Only one of the IP DSCP values must be a successful match criterion not all of the specified IP DSCP values n...

Page 1318: ... Series Usage Information You must enter the class map command in order to access this command After the class map is identified you can configure the match criteria The match ip precedence command and the match ip dscp command are mutually exclusive Up to eight precedence values can be matched in one match statement For example to indicate the IP precedence values 0 1 2 3 enter either the match i...

Page 1319: ...t1p Configure a match criterion for a class map based on a dot1p value C Series E Series S Series Z Series S4810 Syntax match mac dot1p dot1p list Parameters dot1p list Enter a dot1p value The range is 0 to 7 Defaults none Command Modes CLASS MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Available on the C Series and S Series V...

Page 1320: ...w an aggregate method of configuring per port QoS via policy maps An aggregate QoS policy is part of the policy map input output applied on an interface C Series E Series S Series Z Series S4810 Syntax policy aggregate qos policy name To remove a policy aggregate configuration use the no policy aggregate qos policy name command Parameters qos policy name Enter the name of the policy map in charact...

Page 1321: ...eempts the per class input QoS policy on input traffic conditioning rate police In other words if a rate police configuration exists in the aggregate QoS policy the rate police configurations in the per class QoS are ignored Marking configurations in the per class input QoS policy still apply to each queue 3 If only an aggregate output QoS policy exists egress traffic conditioning configurations r...

Page 1322: ...g traffic to different flows using class map QoS policy or incoming packets DSCP This command enables Policy Map Input Configuration mode conf policy map in Related Commands service queue assigns a class map and QoS policy to different queues policy aggregate allows an aggregate method of configuring per port QoS using policy maps service policy input applies an input policy map to the selected in...

Page 1323: ... layer2 command Parameters qos policy name Enter the name for the policy map in character format 32 characters maximum layer2 OPTIONAL Enter the keyword layer2 to specify a Layer 2 Class Map The default is Layer 3 Defaults Layer 3 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Policy name character limit ...

Page 1324: ...n 8 2 1 0 Policy name character limit increased from 16 to 32 Version 7 6 1 0 Introduced on the C Series and S Series pre Version 6 1 1 1 Introduced on the E Series Usage Information Use this command to specify the name of the output QoS policy After the output policy is specified rate limit bandwidth percentage and WRED can be defined This command enables Qos Policy Output Configuration mode conf...

Page 1325: ...t number port set number all wred profile name multicast bandwidth percentage command Parameters linecard number Enter the keyword linecard followed by the line card slot number For the E Series the range is 0 to 13 on a E1200 0 to 6 on a E600 E600i and 0 to 5 on a E300 port set number Enter the keywords port set followed by the line card s port pipe The range is 0 or 1 all Enter the keyword all t...

Page 1326: ... If strict priority is applied along with multicast bandwidth the effect of strict priority is on all ports where unicast and multicast bandwidth are applied When multicast bandwidth is assigned along with unicast bandwidth first multicast bandwidth is reserved for that port then the remaining unicast bandwidth configured is adjusted according to the bandwidth available after reserving for multica...

Page 1327: ...e statistics ingress displays the ingress queue statistics rate limit Specify the rate limit functionality on outgoing traffic as part of the selected policy E Series Syntax rate limit kbps committed rate burst KB peak kbps peak rate burst KB Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second Kbps On the E Series Force10 recommends using a value greater than or...

Page 1328: ... a value greater than or equal to 512 as lower values does not yield accurate results The range is 0 to 10000000 The default granularity is Megabits per second Mbps committed rate Enter the bandwidth in Mbps The range is 0 to 10000 burst KB OPTIONAL Enter the burst size in KB The range is 16 to 200000 The default is 50 peak peak rate OPTIONAL Enter the keyword peak followed by a number to specify ...

Page 1329: ...efault is 10 Defaults Burst size is 10 KB Granularity for rate is Mbps unless you use the kbps option Command Modes QOS POLICY OUT Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Added the kbps option on the C Series E Series and S Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Versio...

Page 1330: ...000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 E Series Only Expanded to add support for Layer 2 pre Version 6 1 1 1 Introduced on the E Series Usage Information You can attach a single policy map to one or more interfaces to specify the service policy for those interfaces A policy map attached to an...

Page 1331: ...map can be attached to one or more interfaces to specify the service policy for those interfaces A policy map attached to an interface can be modified Related Commands policy map output creates an output policy map service queue Assign a class map and QoS policy to different queues C Series E Series S Series Z Series S4810 Syntax service queue queue id class map class map name qos policy qos polic...

Page 1332: ...ries and four 4 queues per interface on the C Series and S Series This command assigns a class map or QoS policy to different queues Related Commands class map identifies the class map service policy input applies an input policy map to the selected interface service policy output applies an output policy map to the selected interface set Mark outgoing traffic with a differentiated service code po...

Page 1333: ...rface summary Parameters linecard number Enter the keyword linecard followed by the line card slot number For the E Series the range is 0 to 13 on a E1200 0 to 6 on a E600 E600i and 0 to 5 on a E300 port set number Enter the keywords port set followed by the line card s port pipe The range is 0 or 1 interface interface Enter the keyword interface followed by one of the keywords below and slot port...

Page 1334: ...cMac SrcMask DstMac DstMask Dot1p DSCP Queue Index Marking Marking 01817 0 0 00 00 00 00 cc cc 00 00 00 00 dd dd 00 00 00 00 ff ff 7 01818 0 0 00 00 00 00 00 c0 00 00 00 00 00 d0 00 00 00 00 00 f0 45 5 01819 0 4 0 00 00 00 a0 00 00 00 00 00 b0 00 00 00 00 00 ff 00 00 4 4 01820 0 0x2000 00 00 00 00 00 00 00 00 00 00 00 b0 ff ff ff ff ff ff 1 02047 0 0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00...

Page 1335: ... DSCP in the Queue column indicates that the trust diffserv is configured on the policy map A hyphen entry in the DSCP Marking column indicates that there is no DSCP marking In the Proto column Protocol IP ICMP UDP and TCP strings are displayed For other protocols the corresponding protocol number is displayed Example Interface FTOS sh cam layer3 qos interface gigabitethernet 2 1 Cam Port Dscp Pro...

Page 1336: ...ss map View the current class map information C Series E Series S Series Z Series S4810 Syntax show qos class map class name Parameters class name Optional Enter the name of a configured class map Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0...

Page 1337: ...mmary and optionally one of the following keywords and slot port or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information For a Ten Gigabit Etherne...

Page 1338: ...roduced on the C Series Version 7 4 1 0 E Series only Added Trust IPv6 diffserv Version 6 2 1 1 Introduced on the E Series Example IPv4 FTOS show qos policy map detail gigabitethernet 0 0 Interface GigabitEthernet 4 1 Policy map input policy Trust diffserv Queue Class map name Qos policy name 0 q0 1 CM1q1 2 CM2q2 3 CM3q3 4 CM4q4 5 CM5q5 6 CM6q6 7 CM7q7 FTOS Example IPv6 FTOS show qos policy map de...

Page 1339: ... Enter the keyword qos policy input followed by the QoS policy name Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 E Series Only Added Trust IPv6 diffserv pre Version 6 1 1 1 Introduced on the E Serie...

Page 1340: ...wed by the QoS policy name Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series pre Version 6 1 1 1 Introduced on the E Series Example FTOS show qos policy map output Policy map output PolicyMapOutput Aggregate Qos policy name AggPolicyOut Queue Qos po...

Page 1341: ... Qos policy input QosInput Rate police 100 50 peak 100 50 Dscp 32 FTOS show qos qos policy output View the output QoS policy details C Series E Series S Series Z Series S4810 Syntax show qos qos policy output qos policy name Parameters qos policy name Enter the QoS policy name Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 I...

Page 1342: ...wed by the slot port information For a Ten Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information interface Enter one of the following keywords and slot port or number information On the C Series and E Series For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a Gigabit Ethernet interface enter the ke...

Page 1343: ...s relate to each other 9000 byte size packets are sent from Interface A to Interface B The Matched Packets on Interface A are equal to the Queued Packets on Interface B Matched bytes on Interface A matched packets 9000 Queued bytes on Interface B queued packets 9020 Each packet has an additional header of 20 bytes Example ED EE FTOS show qos statistics Interface Gi 0 0 Queue Queued Bytes Matched P...

Page 1344: ...OS Usage Information The following describes the show qos statistics command Example below Field EF Description Queue Queue Number Queued Bytes Snapshot of the byte count in that queue Queued Pkts Cumulative packet count in that queue Matched Pkts The number of packets that matched the class map criteria NOTE When you configure trust matched packet counters are not incremented in this field Matche...

Page 1345: ...D2 51300 Out of Profile 0 1 Green WRED1 52082 Yellow WRED2 51004 Out of Profile 0 2 Green WRED1 50567 Yellow WRED2 49965 Out of Profile 0 3 Green WRED1 50477 Yellow WRED2 49815 Out of Profile 0 4 Green WRED1 50695 Yellow WRED2 49476 Out of Profile 0 5 Green WRED1 50245 Yellow WRED2 49535 Out of Profile 0 6 Green WRED1 50033 Yellow WRED2 49595 Out of Profile 0 7 Green WRED1 50474 Yellow WRED2 49522...

Page 1346: ...shold wred_drop 0 0 wred_ge_y 1024 2048 wred_ge_g 2048 4096 wred_teng_y 4096 8192 wred_teng_g 8192 16384 WRED1 2000 7000 test cam usage Check the Input Policy Map configuration for the CAM usage C Series E Series S Series Z Series S4810 Syntax test cam usage service policy input policy map linecard number port set portpipe number all Parameters policy map Enter the policy map name linecard number ...

Page 1347: ...les are added Available CAM Indicates the free CAM space in the partition for the classification rules NOTE The CAM entries reserved for the default rules are not included in the Available CAM column free entries from the default rules space can not be used as a policy map for the classification rules Estimated CAM per Port Indicates the number of free CAM entries required for the classification r...

Page 1348: ...d min followed by the minimum threshold number for the WRED profile The range is 1024 to 77824 KB max number Enter the keyword max followed by the maximum threshold number for the WRED profile The range is 1024 to 77824 KB Defaults none Command Modes CONFIGURATION config wred Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 pre Version 6 1 1 1 Introd...

Page 1349: ...ccording to their DSCP value as a secondary option in case no match occurs against the configured class maps ipv6 diffserv On E Series only enter the keyword ipv6 diffserv to specify trust configuration of IPv6 DSCP Defaults none Command Modes CONFIGURATION conf policy map in Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Added fall...

Page 1350: ...X AF3 Flash 3 1 16 31 010XXX AF2 Immediate 2 1 16 31 001XXX AF1 Priority 1 0 0 15 000XXX BE Best Effort Best Effort 0 0 0 15 wred Designate the WRED profile to yellow or green traffic E Series Z Series S4810 Syntax wred yellow green profile name To remove the WRED drop precedence use the no wred yellow green profile name command Parameters yellow green Enter the keyword yellow for yellow traffic A...

Page 1351: ...enable wred ecn and the number of packets in the queue is below the minimum threshold packets are transmitted per the usual WRED treatment When you enable wred ecn and the number of packets in the queue is between the minimum threshold and the maximum threshold one of the following three scenarios can occur If the transmission endpoints are ECN capable and traffic is congested and the WRED algorit...

Page 1352: ...iles Pre defined Profiles wred_drop wred ge_y wred_ge_g wred_teng_y wred_teng_g Defaults The five pre defined WRED profiles When you configure a new profile the minimum and maximum threshold defaults to predefined wred_ge_g values Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 pre Version 6 1 1 1 Introduced on the E Seri...

Page 1353: ...ation of RIP is based on IETF RFCs 2453 and RFC 1058 For more information about configuring RIP refer to the FTOS Configuration Guide auto summary Restore the default behavior of automatic summarization of subnet routes into network routes This command applies only to RIP version 2 C Series E Series S Series Z Series S4810 Syntax auto summary To send sub prefix routing information use the no auto ...

Page 1354: ...e events interface packet interface trigger To turn off debugging output use the no debug ip rip command Parameters interface OPTIONAL Enter the interface type and ID as one of the following For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S...

Page 1355: ... to debug only RIP trigger extensions Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series default information originate Gener...

Page 1356: ... present in the switch routing table for the default information originate command to take effect default metric Change the default metric for routes Use this command with the redistribute command to ensure that all redistributed routes use the same metric value C Series E Series S Series Z Series S4810 Syntax default metric number To return the default metric to the original values use the no def...

Page 1357: ...characters maximum Defaults none Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 7 7 1 0 Introduced on the E Series Related Commands router rip enters ROUTER mode on the switch distance Assign a weight for prioritization to all ...

Page 1358: ...2 1 1 Introduced on the E Series Related Commands default metric assigns one distance metric to all routes learned using the redistribute command distribute list in Configure a filter for incoming routing updates C Series E Series S Series Z Series S4810 Syntax distribute list prefix list name in interface To delete the filter use the no distribute list prefix list name in command Parameters prefi...

Page 1359: ...ries Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands ip prefix list enters PREFIX LIST mode and configures a prefix list distribute list out Configure a filter for outgoing routing updates C Series E Series S Series Z Series S4810 Syntax distribute list prefix list name out interface bgp connected isis ospf static To delete the filter use ...

Page 1360: ...This option is only available on E Series ospf OPTIONAL Enter the keyword ospf to filter all OSPF routes static OPTIONAL Enter the keyword static to filter manually configured routes Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Ver...

Page 1361: ...x ip rip receive version 1 2 To return to the default use the no ip rip receive version command Parameters 1 OPTIONAL Enter the number 1 for RIP version 1 2 OPTIONAL Enter the number 2 for RIP version 2 Defaults RIPv1 and RIPv2 Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version ...

Page 1362: ... 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information To enable the interface to send both version of RIP packets use the ip rip send version 1 2 command Related Commands ip rip receive version sets the RIP version for the interface to receive traffic version sets the RIP version to be used for the switch software ...

Page 1363: ...e paths C Series E Series S Series Z Series S4810 Syntax maximum paths number To return to the default values use the no maximum paths commands Parameters number Enter the number of paths The range is 1 to 16 The default is 4 paths Defaults 4 Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S...

Page 1364: ...re Version 6 2 1 1 Introduced on the E Series Usage Information When a neighbor router is identified unicast data exchanges occur Multiple neighbor routers are possible Use the passive interface command in conjunction with the neighbor command to ensure that only specific interfaces are receiving and sending data Related Commands passive interface sets the interface to only listen to RIP broadcast...

Page 1365: ...fset interface command Parameters prefix list name Enter the name of an established Prefix list to determine which incoming routes will be modified offset Enter a number from zero 0 to 16 to be applied to the incoming route metric matching the access list specified If you set an offset value to zero 0 no action is taken interface OPTIONAL Enter the following keywords and slot port or number inform...

Page 1366: ...he offset metric is applied to an interface that value takes precedence over an offset value that is not extended to an interface Related Commands ip prefix list enters PREFIX LIST mode and configure a prefix list output delay Set the interpacket delay of successive packets to the same neighbor C Series E Series S Series Z Series S4810 Syntax output delay delay To return to the switch software def...

Page 1367: ...y a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE...

Page 1368: ...static command Parameters connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed static Enter the keyword static to specify that information from static routes is redistributed Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 ...

Page 1369: ... Level 2 routes level 2 OPTIONAL Enter the keywords level 2 to redistribute only IS IS Level 2 routes metric metric value OPTIONAL Enter the keyword metric followed by a number as the metric value The range is 0 to 16 route map map name OPTIONAL Enter the keywords route map followed by the name of a configured route map Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 7...

Page 1370: ...L Enter the keyword metric followed by a number as the metric value The range is 0 to 16 route map map name OPTIONAL Enter the keywords route map followed by the name of a configured route map Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 In...

Page 1371: ...e show config Display the changes you made to the RIP configuration Default values are not shown C Series E Series S Series Z Series S4810 Syntax show config Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on ...

Page 1372: ...on 6 2 1 1 Introduced on the E Series Usage Information The following describes the show ip rip database command shown in the Example below Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database 100 10 10 0 24 directly connected Lists the route s directly connected 150 100 0 0 redistributed Lists the routes learned through redistributi...

Page 1373: ...RIP configuration C Series E Series S Series Z Series S4810 Syntax show running config rip Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series Example show running config rip router r...

Page 1374: ... marked as unreachable but still sending RIP packets The holddown value should be at least three times the update timer value The range is zero 0 to 4294967295 The default is 180 seconds flush Enter the number of seconds to specify the time interval during which the route is advertised as unreachable When this interval expires the route is flushed from the routing table The flush value should be g...

Page 1375: ...n 2 Defaults The FTOS sends RIPv1 and receives RIPv1 and RIPv2 Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands ip rip receive version sets the RIP version to be received on the...

Page 1376: ...1376 ...

Page 1377: ...3273 64bits Alarm Table RFC 2819 High Capacity Alarm Table 64bits RFC 3434 64bits Event Table RFC 2819 Log Table RFC 2819 FTOS RMON does not support the following statistics etherStatsCollisions etherHistoryCollisions etherHistoryUtilization NOTE Only SNMP GET GETNEXT access is supported Configure RMON using the RMON commands Collected data is lost during a chassis reboot rmon alarm Set an alarm o...

Page 1378: ...alue is the same as the alarmRisingEventIndex or alarmTable of the RMON MIB If there is no corresponding rising threshold event the value is zero falling threshold value event number Enter the keywords falling threshold followed by the value 32 bit the falling threshold alarm is either triggered or reset Then enter the event number to trigger when the falling threshold exceeds its limit This value...

Page 1379: ... the owner name to record the owner of the RMON group of statistics buckets number OPTIONAL Enter the keyword buckets followed the number of buckets for the RMON collection history group of statistics The bucket range is 1 to 1000 The default is 50 interval seconds OPTIONAL Enter the keyword interval followed the number of seconds in each polling cycle The range is 5 to 3600 seconds The default is...

Page 1380: ... on the C Series Version 6 1 1 0 Introduced on the E Series rmon event Add an event in the RMON event table C Series E Series S Series Z Series S4810 Syntax rmon event number log trap community description string owner name To disable RMON on an interface use the no rmon event number log trap community description string command Parameters number Assign an event number in integer format from 1 to ...

Page 1381: ...n the RMON alarm table variable The MIB object to monitor The variable must be in the SNMP OID format for example 1 3 6 1 2 1 1 3 The object type must be a 64 bit integer interval Time in seconds the alarm monitors the MIB variables this is the alarmSampleType in the RMON alarm table The range is 5 to 3600 seconds delta Enter the keyword delta to test the change between MIB variables This is the a...

Page 1382: ...TION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series show rmon Display the RMON running status including the memory usage C Series E Series S Series Z Series S4810 Syntax show rmon Defaults none Command Modes EXEC Command ...

Page 1383: ...mand History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series Example Index FTOS show rmon alarm 1 RMON alarm entry 1 sample Interval 5 object 1 3 6 1 2 1 1 3 sample type absolute value value 255161 alarm type rising or falling alarm risin...

Page 1384: ...ndex brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON event table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C S...

Page 1385: ...yntax show rmon hc alarm index brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON High Capacity alarm table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Seri...

Page 1386: ...D 1 1 3 6 1 2 1 1 3 2 1 3 6 1 2 1 1 3 3 1 3 6 1 2 1 1 3 4 1 3 6 1 2 1 1 3 5 1 3 6 1 2 1 1 3 FTOS show rmon history Display the contents of the RMON Ethernet history table C Series E Series S Series Z Series S4810 Syntax show rmon history index brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON Ethernet ...

Page 1387: ...ernet 3 1 FTOS show rmon log Display the contents of the RMON log table C Series E Series S Series Z Series S4810 Syntax show rmon log index brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON log table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced...

Page 1388: ...ONAL Enter the keyword brief to display the RMON Ethernet statistics table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series Example Index FTOS show rmon statistics ...

Page 1389: ...255 bytes packets overflow 0 HC 128 255 bytes packets 0 HC 256 511 bytes packets overflow 0 HC 256 511 bytes packets 0 HC 512 1023 bytes packets overflow 0 HC 512 1023 bytes packets 0 HC 1024 1518 bytes packets overflow 0 HC 1024 1518 bytes packets 0 FTOS Example Brief FTOS show rmon statistics br index ifIndex interface 6001 100974631 GigabitEthernet 2 0 6002 100974631 GigabitEthernet 2 0 6003 10...

Page 1390: ...1390 ...

Page 1391: ... for RSTP C Series E Series S Series Z Series S4810 Syntax bridge priority priority value To return to the default value use the no bridge priority command Parameters priority value Enter a number as the bridge priority value in increments of 4096 The range is 0 to 61440 The default is 32768 Defaults 32768 Command Modes CONFIGURATION RSTP conf rstp Command History Version 8 3 11 1 Introduced on th...

Page 1392: ...e slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet follow...

Page 1393: ...iption Enter a description to identify the rapid spanning tree 80 characters maximum Defaults none Command Modes SPANNING TREE The prompt is config rstp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 pre 7 7 1 0 Introduced Related Commands protocol spanning tree rstp enters SPANNING TREE mode on the switch disable Disable RSTP globally on the syste...

Page 1394: ... Syntax forward delay seconds To return to the default setting use the no forward delay command Parameters seconds Enter the number of seconds that FTOS waits before transitioning RSTP to the forwarding state The range is 4 to 30 The default is 15 seconds Defaults 15 seconds Command Modes CONFIGURATION RSTP conf rstp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduc...

Page 1395: ...Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Usage Information The hello time is encoded in BPDUs in increments of 1 256ths of a second The standard minimum hello time in seconds is 1 second which is encoded as 256 Millisecond hello times are encoded using values less than 256 the millisecond hello time equals x 10...

Page 1396: ...nsitions to the Forwarding state hello time changes the time interval between BPDUs protocol spanning tree rstp Enter RSTP mode to configure RSTP C Series E Series S Series Z Series S4810 Syntax protocol spanning tree rstp To exit RSTP mode use the exit command Defaults Not configured Command Modes CONFIGURATION RSTP conf rstp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 ...

Page 1397: ...ries Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Example FTOS conf rstp show config protocol spanning tree rstp no disable bridge priority 16384 show spanning tree rstp Display the RSTP configuration C Series E Series S Series Z Series S4810 Syntax show spanning tree rstp brief guard Parameters brief OPTIONAL Enter the keyword brief to view a synopsis of t...

Page 1398: ...EE compatible Spanning Tree Protocol Root ID Priority 8192 Address 0001 e805 e306 Root Bridge hello time 4 max age 20 forward delay 15 Bridge ID Priority 16384 Address 0001 e801 6aa8 Configured hello time 2 max age 20 forward delay 15 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID Gi 4 0 128 418 128 20000 FWD 20000 16384 0001 e801 6aa8 128 418 Gi 4 1 128 419 128 20000 FWD 200...

Page 1399: ...0 is LBK_INC Discarding Port path cost 20000 Port priority 128 Port Identifier 128 257 Designated root has priority 32768 address 0001 e801 6aa8 Designated bridge has priority 32768 address 0001 e801 6aa8 Designated port id is 128 257 designated path cost 0 Number of transitions to forwarding state 1 BPDU sent 27 received 9 The port is not in the Edge port mode Example Guard FTOS show spanning tre...

Page 1400: ...Enter keyword priority followed by a value in increments of 16 as the priority The range is 0 to 240 The default is 128 loopguard C S and E Series TeraScale only Enter the keyword loopguard to enable loop guard on an RSTP port or port channel interface rootguard C S and E Series TeraScale only Enter the keyword rootguard to enable root guard on an RSTP port or port channel interface Defaults Not c...

Page 1401: ...locking state and prevents traffic from flowing through it For example when Portfast BPDU guard and loop guard are both configured If a BPDU is received from a remote device BPDU guard places the port in an Err Disabled Blocking state and no traffic is forwarded on the port If no BPDU is received from a remote device loop guard places the port in a Loop Inconsistent Blocking state and no traffic i...

Page 1402: ...timized flush mechanism for RSTP This helps in flushing MAC addresses only when necessary and less often allowing for faster convergence during topology changes However if a standards based flush mechanism is needed you can turn on this knob command to enable flushing MAC addresses after receiving every topology change notification 1402 ...

Page 1403: ...ccounting Commands AAA Accounting enables tracking of services that users are accessing and the amount of network resources being consumed by those services When you enable AAA Accounting the network server reports user activity to the TACACS security server in the form of accounting records Each accounting record is comprised of accounting AV pairs and is stored on the access control server As wi...

Page 1404: ...nly Enter the keywords stop only to instruct the TACACS security server to send a stop record accounting notice at the end of the requested user process tacacs Enter the keyword tacacs to use TACACS data for accounting FTOS currently only supports TACACS accounting Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S...

Page 1405: ...C Series Version 6 3 1 0 Introduced on the E Series Usage Information FTOS issues accounting records for all users on the system including users whose username string due to protocol translation is NULL For example a user who comes on line with the aaa authentication login method list none command is applied Use the aaa accounting suppress command to prevent the accounting records from being gener...

Page 1406: ...3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Introduced on the E Series Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions Example FTOS show accounting Active accounted actions on tty2...

Page 1407: ...the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Introduced on the E Series Related Commands aaa authorization commands sets the parameters that restrict or permit a user s access to EXEC and CONFIGURATION level commands aaa authorization exec sets the parameters that restrict or permit a user s access to EXEC level commands aaa author...

Page 1408: ... parameters that restrict or permit a user s access to EXEC level commands C Series E Series S Series Z Series S4810 Syntax aaa authorization config commands Disable authorization checking for CONFIGURATION level commands using the no aaa authorization config commands command Defaults Enabled when you configure aaa authorization commands command Command Modes CONFIGURATION Command History Version ...

Page 1409: ...ter the keyword none to apply no authorization Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Added support for RADIUS privilege level CONFIGURATION mode Change the access or privilege level of one or more ...

Page 1410: ...0 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Use the enable password command to define a password for the level to which you are assigning privilege or access privilege level LINE mode Change the access level for users on the terminal lines C Series E ...

Page 1411: ...Enter the keyword default followed by the authentication methods to use as the default sequence of methods to be used for the Enable log in The default is default enable method list name Enter a text string up to 16 characters long to name the list of enabled authentication methods activated at log in method Enter one of the following methods enable use the password defined by the enable password ...

Page 1412: ... login authentication enables AAA login authentication on the terminal lines password creates a password radius server host specifies a RADIUS server host tacacs server host specifies a TACACS server host aaa authentication login Configure AAA Authentication method lists for user access to EXEC mode Enable log in C Series E Series S Series Z Series S4810 Syntax aaa authentication login method list...

Page 1413: ...applies the next method configured If users fail the first method listed no other methods are applied The only exception is the local method If the user s name is not listed in the local database the next method is applied If the correct user name password combination are not entered the user is not allowed access to the switch NOTE If authentication fails using the primary method FTOS employs the...

Page 1414: ...thod list to the designated terminal lines ip access list standard names or selects a standard access list to filter based on the IP address ip access list extended names or selects an extended access list based on the IP addresses or protocols enable password Change the password for the enable command C Series E Series S Series Z Series S4810 Syntax enable password level level encryption type pas...

Page 1415: ... the password To create a password with a regular expression in it you must use CNTL v prior to entering regular expression For example to create the password abcd e you type abcd CNTL v e When the password is created you do not use the CNTL v key combination and enter abcd e NOTE The question mark and the tilde are not supported characters Related Commands show running config views the current co...

Page 1416: ...ecret level level encryption type password To delete a password use the no enable secret encryption type password level level command Parameters level level OPTIONAL Enter the keyword level followed by a number as the level of access The range is 1 to 15 encryption type OPTIONAL Enter the number 5 or 0 as the encryption type Enter a 5 followed by a text string as the hidden password The text strin...

Page 1417: ...privilege level CONFIGURATION mode controls access to the command modes within the switch login authentication Apply an authentication method list to designated the terminal lines C Series E Series S Series Z Series S4810 Syntax login authentication method list name default To use the local user password database for login authentication use the no login authentication command Parameters method li...

Page 1418: ...xt 7 means that the password is encrypted and hidden password Enter a text string up to 32 characters long The first character of the password must be a letter You cannot use spaces in the password Defaults No password is configured Command Modes LINE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version ...

Page 1419: ...s max retry followed by the number of maximum password retries The range is 0 to 16 character restriction OPTIONAL Enter the keywords character restriction to indicate a character restriction for the password upper number OPTIONAL Enter the keyword upper followed the upper number The range is 0 to 31 lower number OPTIONAL Enter the keyword lower followed the lower number The range is 0 to 31 numer...

Page 1420: ...he passwords are encrypted you cannot return them to plain text unless you re configure them To remove an encrypted password use the no password password command To keep unauthorized people from viewing passwords in the switch configuration file use the service password encryption command This command encrypts the clear text passwords created for user name passwords authentication key passwords th...

Page 1421: ...ege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The following describes the show user command shown in the Example below Field Description untitled Indicates with an asterisk which terminal line y...

Page 1422: ...nd History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The software measures the period of inactivity defined in this command as the period between consecutive keystrokes For example if your password is password ...

Page 1423: ...le with the password option only 5 to indicate that a password encrypted using an MD5 hashing algorithm will follow This encryption type is available with the secret option only and is the default encryption type for this option password Enter a string up to 32 characters long privilege level Enter the keyword privilege followed by a number from zero 0 to 15 secret Enter the keyword secret followe...

Page 1424: ... 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series ip radius source interface Specify an interface s IP address as the source IP address for RADIUS connections C Series E Series S Series Z Series S4810 Syntax ip radius source interface interface To delete a source interface use the no ip radius source interface command Parameters interface Enter the following keywords and...

Page 1425: ...ersion 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series radius server deadtime Configure a time interval during which non responsive RADIUS servers to authentication requests are skipped C Series E Series S Series Z ...

Page 1426: ...e range is zero 0 to 100 The default is 3 attempts timeout seconds OPTIONAL Enter the keyword timeout followed by the seconds the time interval the switch waits for a reply from the RADIUS server This parameter overwrites the radius server timeout command The range is 0 to 1000 The default is 5 seconds key encryption type key OPTIONAL Enter the keyword key followed by an optional encryption type a...

Page 1427: ... sets the database to be checked when a user logs in radius server key sets an authentication key for RADIUS communications radius server retransmit sets the number of times the RADIUS server attempts to send information radius server timeout sets the time interval before the RADIUS server times out radius server key Configure a key for all RADIUS communications between the switch and the RADIUS h...

Page 1428: ...e switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable C Series E Series S Series Z Series S4810 Syntax radius server retransmit retries To configure zero retransmit attempts use the no radius server retransmit command To return to the default setting use the radius server retransmit 3 command Parameters retries Enter a number of att...

Page 1429: ...GURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series Related Commands radius server host configures a RADIUS host TACACS Commands FTOS supports TACACS as an alternate method for login authentication debug tacacs Vi...

Page 1430: ...er the keyword loopback followed by a number from zero 0 to 16838 For the Null interface enter the keywords null 0 For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port ...

Page 1431: ... number of seconds the switch waits for a reply from the TACACS server The range is 0 to 1000 The default is 10 seconds key key OPTIONAL Enter the keyword key followed by a string up to 42 characters long as the authentication key This authentication key must match the key specified in the tacacs server key for the TACACS daemon Defaults Not configured Command Modes CONFIGURATION Command History V...

Page 1432: ...rameters encryption type OPTIONAL Enter either zero 0 or 7 as the encryption type for the key entered The options are 0 is the default and means the key is not encrypted and stored as clear text 7 means that the key is encrypted and hidden key Enter a text string up to 42 characters long as the clear text password Leading spaces are ignored Defaults Not configured Command Modes CONFIGURATION Comma...

Page 1433: ...appropriate VLAN due to a configuration error Configuration errors create an entry in Syslog If 802 1X authorization is enabled and all information from the RADIUS server is valid the port is placed in the specified VLAN after authentication If port security is enabled on an 802 1X port with VLAN assignment the port is placed in the RADIUS server assigned VLAN If 802 1X is disabled on the port it ...

Page 1434: ...on failure VLAN for users and devices that fail 802 1X authentication C Series E Series S Series Z Series S4810 Syntax dot1x auth fail vlan vlan id max attempts number To delete the authentication failure VLAN use the no dot1x auth fail vlan vlan id max attempts number command Parameters vlan id Enter the VLAN Identifier The range is 1 to 4094 max attempts number OPTIONAL Enter the keywords max at...

Page 1435: ...server radius Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series dot1x guest vlan Configure a guest VLAN for limited access users or for devices that are not 802 1X capable C Series E Series S Series Z Series S481...

Page 1436: ...Commands dot1x auth fail vlan configures a VLAN for authentication failures dot1x reauthentication enables periodic re authentication show dot1x interface displays the 802 1X information on an interface dot1x mac auth bypass Enable MAC authentication bypass If 802 1X times out because the host did not respond to the Identity Request frame FTOS attempts to authenticate the host based on its MAC add...

Page 1437: ...ibly authorize a port auto Enter the keyword auto to authorize a port based on the 802 1X operation result force unauthorized Enter the keywords force unauthorized to forcibly de authorize a port Defaults none Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1...

Page 1438: ...ntication use the no dot1x reauthentication command Parameters interval seconds Optional Enter the keyword interval followed by the interval time in seconds after which re authentication will be initiated The range is 1 to 31536000 1 year The default is3600 1 hour Defaults 3600 seconds 1 hour Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduce...

Page 1439: ... the no dot1x server timeout command Parameters seconds Enter a time out value in seconds The range is 1 to 300 where 300 is implementation dependant The default is 30 Defaults 30 seconds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E...

Page 1440: ...ansmitted The range is 1 to 31536000 1 year The default is 30 Defaults 30 seconds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series show dot1x interface Display the 802 1X information on an interface C Series E Series S Series Z S...

Page 1441: ...dot1x int Gi 2 32 802 1x information on Gi 2 32 Dot1x Status Enable Port Control AUTO Port Auth Status UNAUTHORIZED Re Authentication Disable Untagged VLAN id None Guest VLAN Enable Guest VLAN id 10 Auth Fail VLAN Enable Auth Fail VLAN id 11 Auth Fail Max Attempts 3 Tx Period 30 seconds Quiet Period 60 seconds ReAuth Max 2 Supplicant Timeout 30 seconds Server Timeout 30 seconds Re Auth Interval 36...

Page 1442: ...This option is not available in FIPS mode Defaults Key size 1024 if you enable FIPS mode the key size is 2048 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Added support for FIPS mode on the S4810 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 I...

Page 1443: ...story Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Debug information includes details for key exchange authentication and established session for each connection ip scp topdir Identify a location for files used in...

Page 1444: ...imum retries to authenticate a user The range is 1 to 10 The default is 3 Defaults 3 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information This command specifies the maximum numb...

Page 1445: ...ies S4810 Syntax ip ssh hostbased authentication enable To disable hostbased authentication for SSHv2 server use the no ip ssh hostbased authentication enable command Parameters enable Enter the keyword enable to enable hostbased authentication for SSHv2 server Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S...

Page 1446: ...ey The range is 512 to 869 The default is 768 Defaults Key size 768 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The server generated key is used for SSHv1 key exchange ...

Page 1447: ...Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information This command specifies the file to be used for the host based authentication The creates file overwrites the flash ADMIN_DIR ssh knownhosts file and deletes the user specified file Even though this is a ...

Page 1448: ...on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS conf FTOS conf ip ssh rhostsfile flash shosts FTOS conf Usage Information This command specifies the rhost file to be used for host based authentication This creates file overwrites the flash ADMIN_DIR...

Page 1449: ... Introduced on the E Series Usage Information Enabling RSA authentication allows the user to login without being prompted for a password In addition the OpenSSH compatible SSHv2 RSA public key must be added to the list of authorized keys ip ssh rsa authentication my authorized keys device filename command Related Commands ip ssh rsa authentication EXEC adds keys for RSA authentication ip ssh rsa a...

Page 1450: ...rsa authentication Config enables RSA authentication ip ssh server Configure an SSH server C Series E Series S Series Z Series S4810 Syntax NOTE Some of the parameters in this command require licensing to access For more information contact your Dell Force10 representative ip ssh server enable port port number version 1 2 To disable SSH server functions use the no ip ssh server enable command Para...

Page 1451: ...ntact your Dell Force10 representative show crypto key mypubkey rsa rsa1 Parameters Key Enter the keyword key to display the host public key mypubkey Enter the keyword mypubkey to display the host public key rsa Enter the keyword rsa to display the host SSHv2 RSA public key rsa1 Enter the keyword rsa1 to display the host SSHv1 RSA public key NOTE If you enable FIPS mode this parameter is not avail...

Page 1452: ...nds crypto key generate generates the SSH keys show ip ssh Display information about established SSH sessions C Series E Series S Series Z Series S4810 Syntax NOTE Some of the parameters in this command require licensing to access For more information contact your Dell Force10 representative show ip ssh Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Vers...

Page 1453: ...ies Usage Information This command displays the contents of the flash ADMIN_DIRssh knownhosts file Example FTOS show ip ssh client pub keys poclab4 123 12 1 123 ssh rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAox QQp8xYhzOxn07yh4VGPAoUfgKoieTHO9G4sNV ui DWEc3cgYAcU5Lai1MU2ODrzhCwyDNp05tKBU3tReG1 o8AxLi6 S4hyEMqHzkzBFNVqHzpQc Rs4p2urzV0F4pRKnaXdHf3Lk4D460HZRhhVrxqeNxPDpEnWIMPJi0 ds ashwani poclab4 FTOS Related ...

Page 1454: ...e contents of the flash ADMIN_DIR ssh authorized keys username file Example FTOS show ip ssh rsa authentication my authorized keys ssh rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAyB17l4gFp4r2DRHIvMc1VZd0Sg5GQxRV1y1 X1JOMeO6Nd0WuYyzrQMM 4qJAoBwtneOXfLBcHF3V2hcMIqaZN CRCnw zCMlnCf0 qVTd1oofsea5r09kS0xTp0CNfHXZ3NuGCq9Ov33m9 U9tMwhS8vy8A VxdH4x4km3c3t5Jvc freedom poclab4 FTOS Related Commands ip ssh rsa authentic...

Page 1455: ... Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 8 1 0 Introduced on the C Series and S Series Related Commands show ip dhcp snooping displays the contents of the DHCP binding table ip dhcp relay Enable Option 82 C Series S Series Z Series S4810 Syntax ip dhcp relay information option trust downstream Parameters trust downstream Configure the system to trust Option 82 when it is...

Page 1456: ...DHCP binding table C Series S Series Z Series S4810 Syntax no ip dhcp snooping binding mac address vlan id vlan id ip ip address interface type slot port lease number Parameters mac address Enter the keyword mac followed by the MAC address of the host to which the server is leasing the IP address vlan id vlan id Enter the keywords vlan id followed by the VLAN to which the host belongs The range is...

Page 1457: ...8 1 0 Introduced on the C Series and S Series Related Commands show ip dhcp snooping displays the contents of the DHCP binding table ip dhcp snooping database Delay writing the binding table for a specified time C Series S Series Z Series S4810 Syntax ip dhcp snooping database write delay minutes Parameters minutes The range is 5 to 21600 Defaults none Command Modes CONFIGURATION Command History V...

Page 1458: ...faults Untrusted Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the C Series and S Series ip dhcp source address validation Enable IP Source Guard C Series S Series Z Series S4810 Syntax no ip dhcp source address validation Defaults Disabled Command Modes INTERFACE Command History Version 8 3 11...

Page 1459: ...ies in the binding table for the specified VLAN s NOTE Learning only happens if there is a trusted port in the VLAN Related Commands ip dhcp snooping trust configures an interface as trusted show ip dhcp snooping Display the contents of the DHCP binding table C Series S Series Z Series S4810 Syntax show ip dhcp snooping binding Defaults none Command Modes EXEC EXEC Privilege Command History Versio...

Page 1460: ...1460 ...

Page 1461: ... disable protocol packet tunneling through the 802 1q tunnel Rate limiting is required to protect against bridge protocol data units BPDU attacks A port channel including through link aggregation control protocol LACP can be configured as a VLAN Stack access or trunk port Address resolution protocol ARP packets work as expected across the tunnel Far end failure detection FEFD works the same as wit...

Page 1462: ...tgoing interfaces vlan vlan id Enter the keyword vlan followed by the VLAN ID The range is 1 to 4094 count value Enter the keyword count followed by the number of debug outputs The range is 1 to 100 Defaults Debug disabled Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introdu...

Page 1463: ...ord mvrp to enable protocol tunneling for the Multiple VLAN Registration protocol MVRP oam E Series ExaScale only Enter the keyword oam to enable protocol tunneling for link layer Ethernet operations administration and maintenance functions Ethernet in the First Mile EFM OAM 802 3ah stp Enter the keyword stp to enable protocol tunneling on a spanning tree including STP MSTP RSTP and PVST Defaults ...

Page 1464: ...ies and S Series Version 7 4 1 0 Introduced Usage Information When you enable VLAN Stacking no protocol packets are tunneled Related Command show protocol tunnel displays tunneling information for all VLANs protocol tunnel enable Enable protocol tunneling globally on the system C Series E Series S Series Z Series S4810 Syntax protocol tunnel enable To disable protocol tunneling use the no protocol...

Page 1465: ...on the C Series E Series Terascale and E Series ExaScale Maximum rate limit on E Series reduced from 4000 to 3000 Version 7 4 1 0 Introduced Example FTOS FTOS conf FTOS conf protocol tunnel rate limit 1000 FTOS conf Related Commands show protocol tunnel displays tunneling information for all VLANs show running config displays the current configuration show protocol tunnel Display protocol tunnel i...

Page 1466: ... Rate Limit 75 frames second VLAN Protocols Interface 1000 STP PVST Gi 5 7 Gi 5 6 1001 LLDP GVRP Gi 5 7 Gi 5 6 1002 MMRP MVRP Gi 5 7 Gi 5 6 1003 LACP DOT1X Gi 5 7 Gi 5 6 1004 OAM PAUSE Gi 5 7 Gi 5 6 1005 E LMI Gi 5 7 Gi 5 6 Example Specific VLAN FTOS show protocol tunnel vlan 2 System Rate Limit 1000 Frames second Interface Vlan Protocol s Gi1 2 2 STP PVST FTOS Related Commands show running config...

Page 1467: ...s always zero sFlow sampling is done on a per port basis Community list and local preference fields are not filled up in the extended gateway element in the sFlow datagram The 802 1P source priority field is not filled up in the extended switch element in the sFlow datagram Only Destination and Destination Peer AS numbers are packed in the dst as path field in the extended gateway element If the p...

Page 1468: ...535 The default is 6343 max datagram size number OPTIONAL Enter the keyword max datagram size followed by the size number in bytes The range is 400 to 1500 The default is 1400 Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 4 2 3 Added support for IPv6 sFlow collectors and agents on the E series TeraScale C Series and S Series ...

Page 1469: ...mpted for an existing collector sflow enable Global Enable sFlow globally C Series E Series S Series Z Series S4810 Syntax sflow enable To disable sFlow use the no sflow enable command Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced S Series Stacking Version 8 1 1 0 Introduced ...

Page 1470: ... 6 2 1 1 Introduced on the E Series Usage Information When you enable sFlow on an interface flow sampling is done on any traffic going out of the interface NOTE After a physical port is a member of a LAG it inherits the sFlow configuration from the LAG port Related Commands sflow enable Global turns sFlow on globally sflow extended gateway enable Enable packing information on an extended gateway E...

Page 1471: ...ver ECMP Example FTOS show sflow sFlow services are enabled Global default sampling rate 64 Global default counter polling interval 1000 Global extended information enabled gateway router switch 1 collectors configured Collector IP addr 20 20 20 2 Agent IP addr 10 11 201 7 UDP port 6343 1732336 UDP packets exported 0 UDP packets dropped 12510225 sFlow samples collected 0 sFlow samples dropped due ...

Page 1472: ...tended switch enable Enable packing information on a switch only C Series E Series S Series Z Series S4810 Syntax sflow extended switch enable To disable packing information use the no sflow extended switch enable command Parameters enable Enter the keyword enable to enable global extended information Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the ...

Page 1473: ...ange is 15 to 86400 seconds The default is 20 seconds Defaults 20 seconds Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on S Series Stacking Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0...

Page 1474: ... S Series Stacking Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Usage Information This command sets the counter polling interval for an interface Related Commands sflow polling interval Global globally sets the polling interval sflow sample rate Global Change the ...

Page 1475: ... with the previous and next power of 2 value Select one of these two packet numbers and re enter the command Related Commands sflow sample rate Interface changes the Interface sampling rate sflow sample rate Interface Change the Interface default sampling rate C Series E Series S Series Z Series S4810 Syntax sflow sample rate value To return to the default sampling rate use the no sflow sample rat...

Page 1476: ...sFlow configuration C Series E Series S Series Z Series S4810 Syntax show sflow interface Parameters interface OPTIONAL Enter the following keywords and slot port or number information For an 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information F...

Page 1477: ...collected 0 sFlow samples dropped due to sub sampling Linecard 1 Port set 0 H W sampling rate 8192 Gi 1 16 configured rate 8192 actual rate 8192 sub sampling rate 1 Gi 1 17 configured rate 16384 actual rate 16384 sub sampling rate 2 Linecard 3 Port set 1 H W sampling rate 16384 Gi 3 40 configured rate 16384 actual rate 16384 sub sampling rate 1 FTOS show sflow linecard Display the sFlow informatio...

Page 1478: ...duced on the E Series Usage Information The dropEvent counter sFlow samples dropped due to sub sampling shown in the Example below always displays a value of zero Example FTOS show sflow linecard 1 Linecard 1 Samples rcvd from h w 165 Samples dropped for sub sampling 0 Total UDP packets exported 0 UDP packets exported via RPM 77 UDP packets dropped FTOS 1478 ...

Page 1479: ... Remember Typically 5 second timeout and 3 second retry values on an SNMP server are sufficient for both LAN and WAN applications If you experience a timeout with these values the recommended best practice on Dell Force10 switches to accommodate their high port density is to increase the timeout and retry values on your SNMP server to the following SNMP Timeout greater than 3 seconds SNMP Retry co...

Page 1480: ...968 Get next PDUs 0 Set request PDUs 61727 SNMP packets output 0 Too big errors Maximum packet size 1500 9 No such name errors 0 Bad values errors 0 General errors 32649 Response PDUs 29078 Trap PDUs FTOS Related Commands snmp server community enables the SNMP and set community string show snmp engineID Display the identification of the local SNMP engine and all remote engines that are configured ...

Page 1481: ...istory Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information The following Example displays a group named ngroup The ngroup has a security model of version 3 v3 with authentication auth the read and notify name is nview with no write view name s...

Page 1482: ...active Authentication Protocol None Privacy Protocol None FTOS snmp ifmib ifalias long Display the entire description string through the Interface MIB which would be truncated otherwise to 63 characters C Series E Series S Series Z Series Syntax snmp ifmib ifalias long Defaults Interface description truncated beyond 63 characters Command Modes CONFIGURATION Command History Version 8 3 11 1 Introdu...

Page 1483: ...curity name name ipv6 ipv6 access list name access list name security name name access list name ipv6 ipv6 access list name access list name security name name To remove access to a community use the no snmp server community community string ro rw security name name access list name ipv6 access list name access list name ipv6 access list name command Parameters community name Enter a text string u...

Page 1484: ...name The command options ipv6 security name and access list name are recursive In other words each option can in turn accept any of the three options as a sub option and each of those sub options can accept any of the three sub options as a sub option and so forth The second Example shows the creation of a standard IPv4 ACL called snmp ro acl and then assigning it to the SNMP community guest NOTE ...

Page 1485: ...egacy command snmp server enable traps Enable SNMP traps C Series E Series S Series Z Series S4810 Syntax snmp server enable traps notification type notification option To disable traps use the no snmp server enable traps notification type notification option command Parameters notification type Enter the type of notification from the list below bgp Notification of changes in the BGP process confi...

Page 1486: ...support for copy config and ecmp traps Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 4 1 0 Added support for VRRP traps Version 7 6 1 0 Added support for STP and xSTP traps Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information FTOS supports up to 16 SNMP trap receivers For the cam utilization not...

Page 1487: ... remote device The range is 0 to 65535 The default is 162 Defaults As above Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information Changing the value of the SNMP Engine ID has important side effects A u...

Page 1488: ...nity security name with ro permissions 1v2cwriteg maps to a community security name rw permissions 1 2c 3 OPTIONAL Enter the security model version number 1 2c or 3 1 is the least secure version 3 is the most secure of the security modes 2c allows transmission of informs and counter 64 which allows for integers twice the width of what is normally allowed The default is 1 auth OPTIONAL Enter the ke...

Page 1489: ...s legacy command Usage Information The following Example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview NOTE The number of configurable groups is limited to 16 groups Example FTOS conf FTOS conf snmp server group harig 3 priv read rview FTOS Related Commands show snmp group displays the group name sec...

Page 1490: ...The default is version 1 auth OPTIONAL Enter the keyword auth to specify authentication of a packet without encryption noauth OPTIONAL Enter the keyword noauth to specify no authentication of a packet priv OPTIONAL Enter the keyword priv to specify both authentication and then scrambling of the packet community string Enter a text string up to 20 characters long as the name of the SNMP community N...

Page 1491: ... to enable multiple hosts you must issue a separate snmp server host command for each host You can specify multiple notification types in the command for each host When multiple snmp server host commands are given for the same host and type of notification trap or inform each succeeding command overwrites the previous command Only the last snmp server host command will be in effect For example if ...

Page 1492: ...mand Parameters text Enter an alpha numeric text string up to 55 characters long Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command snmp server packetsize Set the largest SNMP packet size perm...

Page 1493: ... For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Loopback interface enter the keyword loopback followed by a number from 0 to 16383 For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40...

Page 1494: ...access list name access list name ipv6 access list name command Parameters name Enter the name of the user not to exceed 20 characters on the host that connects to the agent group_name Enter a text string up to 20 characters long as the name of the group The following groups are created for mapping to read write community security names defaults v1v2creadu maps to a community with ro permissions 1...

Page 1495: ...he agent Minimum 8 characters long access access list name Optional Enter the standard IPv4 access list name a string up to 16 characters long ipv6 access list name Optional Enter the keyword ipv6 followed by the IPv6 access list name a string up to 16 characters long access list name ipv6 access list name Optional Enter both an IPv4 and IPv6 access list name Defaults As above Command Modes CONFIG...

Page 1496: ...passwd Usage Information The following command configures a remote user named n3user with a v3 security model and a security level of authNOPriv Example FTOS conf FTOS conf snmp server user n3user ngroup remote 172 31 1 3 udp port 5009 3 auth md5 authpasswd Related Commands show snmp user displays the information configured on each SNMP user name snmp server view Configure an SNMPv3 view C Series ...

Page 1497: ...he SNMP running configuration snmp trap link status Enable the interface to send SNMP link traps which indicate whether the interface is up or down C Series E Series S Series Z Series Syntax snmp trap link status To disable sending link trap messages use the no snmp trap link status command Defaults Enabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 ...

Page 1498: ...d Commands show logging displays logging settings and system messages in the internal buffer default logging buffered Return to the default setting for messages logged to the internal buffer C Series E Series S Series Z Series Syntax default logging buffered Defaults size 40960 level 7 or debugging Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0...

Page 1499: ...ted Commands logging console sets the logging console parameters default logging monitor Return to the default settings for messages logged to the terminal C Series E Series S Series Z Series Syntax default logging monitor Defaults level 7 or debugging Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introd...

Page 1500: ...re an IP address or host name of a Syslog server where logging messages are sent Multiple logging servers of both IPv4 and or IPv6 can be configured C Series E Series S Series Z Series Syntax logging ipv4 address ipv6 address hostname To disable logging use the no logging command Parameters ipv4 address ipv6 address Enter an IPv4 address A B C D or IPv6 address X X X X X address hostname Enter the...

Page 1501: ...ings notifications informational or debugging The default is 7 or debugging size OPTIONAL Indicate the size in bytes of the logging buffer The number of messages buffered depends on the size of each message The range is 40960 to 524288 The default is 40960 bytes Defaults level 7 size 40960 bytes Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 In...

Page 1502: ... on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Related Commands clear logging clears the logging buffer default logging console returns the logging console parameters to the default setting show logging displays the logging setting and system messages in the internal buffer logging ...

Page 1503: ...The default is local7 Defaults local7 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Related Commands logging enables logging to a Syslog server logging on enables logging logging history Specify which messages a...

Page 1504: ...ommand the system messages logged to the history table are also sent to the SNMP network management station Related Commands show logging displays information logged to the history buffer logging history size Specify the number of messages stored in the FTOS logging history table C Series E Series S Series Z Series Syntax logging history size size To return to the default values use the no logging...

Page 1505: ...gs notifications informational or debugging The default is 7 or debugging Defaults 7 or debugging Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Related Commands default logging monitor returns the logging monito...

Page 1506: ...ameters interface Enter the following keywords and slot port or number information For an 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Loopback interfaces enter the keyword loopback followed by a number from zero 0 to 16383 For the mana...

Page 1507: ...onize unsolicited messages and FTOS output C Series E Series S Series Z Series Syntax logging synchronous level level all limit number of buffers To disable message synchronization use the no logging synchronous level level all limit number of buffers command Parameters all Enter the keyword all to ensure that all levels are printed asynchronously level level Enter the keyword level followed by a ...

Page 1508: ...logged to the Syslog server based the message severity C Series E Series S Series Z Series Syntax logging trap level To return to the default values use the default logging trap command To disable logging use the no logging trap command Parameters level Indicate a value from 0 to 7 or enter one of the following parameters emergencies alerts critical errors warnings notifications informational or d...

Page 1509: ...to view a table showing the number of messages per type and per slot Slots 7 and 8 represent RPMs Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Example Partial FTOS show logging Syslog logging enabled Cons...

Page 1510: ...CHANGE Session closed by neighbor 1 1 10 2 Hold time expired Oct 8 09 25 38 RPM1 RP1 BGP 5 ADJCHANGE Neighbor 192 200 14 7 Up Oct 8 09 26 25 RPM1 RP1 BGP 5 ADJCHANGE Connection with neighbor 1 1 11 2 closed Neighbor recycled Oct 8 09 26 25 RPM1 RP1 BGP 5 ADJCHANGE Connection with neighbor 1 1 14 2 closed Neighbor recycled More Example History FTOS show logging history Syslog History Table 1 maximu...

Page 1511: ... display messages on the monitor terminal C Series E Series S Series Z Series Syntax terminal monitor To return to default settings use the terminal no monitor command defaults Disabled Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Seri...

Page 1512: ...1512 ...

Page 1513: ...tate to up d AUTHENTICATION_FAIL SNMP AUTH SNMP 3 SNMP_AUTH_FAIL SNMP Authentication failed Request with invalid community string EGP_NEIGHBOR_LOSS SNMP NONE OSTATE_DOWN SNMP LINKDOWN IFM 1 OSTATE_DN changed interface state to down s IFM 5 CSTATE_DN Changed interface Physical state to down s OSTATE_UP SNMP LINKUP IFM 1 OSTATE_UP changed interface state to up s IFM 5 CSTATE_UP Changed interface Phy...

Page 1514: ...rd d is type s type s required CHM_CARD_PROBLEM ENVMON NONE CHM_ALARM_CUTOFF ENVMON NONE CHM_SFM_UP ENVMON NONE CHM_SFM_DOWN ENVMON NONE CHM_RPM_UP ENVMON NONE RAM 6 RPM_STATE RPM1 is in Active State RAM 6 RPM_STATE RPM0 is in Standby State CHM_RPM_DOWN ENVMON NONE CHMGR 2 RPM_DOWN RPM 0 down hard reset CHMGR 2 RPM_DOWN RPM 0 down card removed CHM_RPM_PRIMARY ENVMON NONE RAM 5 COLD_FAILOVER RPM Fa...

Page 1515: ...CHMGR 5 MAJOR_PS_CLR major alarm cleared sufficient power CHM_MIN_ALARM_PS ENVMON SUPPLY CHMGR 1 MINOR_PS Minor alarm power supply non redundant CHM_MIN_ALARM_PS_CLR ENVMON SUPPLY CHMGR 5 MINOR_PS_CLR Minor alarm cleared power supply redundant CHM_MIN_ALRM_TEMP ENVMON TEMP CHMGR 2 MINOR_TEMP Minor alarm chassis temperature CHM_MIN_ALRM_TEMP_CLR ENVMON TEMP CHMRG 5 MINOR_TEMP_CLR Minor alarm cleare...

Page 1516: ...NBAD_CLR ENVMON FAN For E1200 CHMGR 2 FAN_OK Minor alarm cleared all fans in fan tray d are good For E600 and E300 CHMGR 5 FANOK Minor alarm cleared all fans in fan tray are good TME_TASK_SUSPEND ENVMON NONE TME 2 TASK SUSPENDED SUSPENDED svce d inst d task s TME_TASK_TERM ENVMON NONE TME 2 ABNORMAL_TASK_TERMINATION CRASH task s s CHM_CPU_THRESHOLD ENVMON NONE CHMGR 5 CPU_THRESHOLD Cpu s usage abo...

Page 1517: ...AUTH vrid 1 on Gi 11 12 rcvd pkt with authentication failure VRRP_GO_MASTER PROTO NONE VRRP 6 VRRP_MASTER vrid d on s entering MASTER VRRP_PROTOCOL_ERROR PROTO NONE VRRP_PROTOERR VRRP protocol error on S BGP4_ESTABLISHED PROTO NONE TRAP 5 PEER_ESTABLISHED Neighbor a state s BGP4_BACKW_XSITION PROTO NONE TRAP 5 BACKWARD_STATE_TRANS Neighbor a state s 1517 ...

Page 1518: ...1518 ...

Page 1519: ...time unexpected behavior occurs redundancy disable auto reboot Prevent the S Series stack management unit stack member unit and standby unit from rebooting if they fail S Series Syntax redundancy disable auto reboot members 0 11 To return to the default use the no redundancy disable auto reboot stack unit command Defaults Disabled the failed switch is automatically rebooted Command Modes CONFIGURA...

Page 1520: ...to reset the standby unit directly Version 7 7 1 0 Introduced on the S Series Usage Information Resetting the management unit is not allowed and an error message displays if you try to do so Resetting is a soft reboot including flushing the forwarding tables Starting with FTOS version 7 8 1 0 you can run this command directly on the stack standby unit standby master to reset the standby You cannot...

Page 1521: ...eries Syntax show redundancy Command Modes EXEC EXEC Privilege Command History Version 7 7 1 0 Introduced on the S Series Example FTOS show redundancy FTOS show redundancy SSeries Redundancy Configuration Auto reboot Enabled Stack unit Status Mgmt ID 0 Stack unit ID 0 Stack unit Redundancy Role Primary Stack unit State Active Stack unit SW Version 7 7 1 0 Link to Peer Up PEER Stack unit Status Sta...

Page 1522: ...o block sync done Related Commands redundancy disable auto reboot prevents the system from auto rebooting if it fails show system stack ports Display information about the stacking ports on all switches in the S Series stack S Series Syntax show system stack ports status topology Parameters status OPTIONAL Enter the keyword status to display the command output without the Connection field topology...

Page 1523: ...s Status Status 0 49 1 49 12 up up 0 50 12 up down 0 51 2 49 24 up up 1 49 0 49 12 up up 1 50 2 51 12 up up 2 49 0 51 24 up up 2 51 1 50 12 up up 2 52 12 up down FTOS Example Status FTOS show system stack ports status Topology Ring Interface Link Speed Admin Link Gb s Status Status 0 49 12 up up 0 50 12 up down 0 51 24 up up 1 49 12 up up 1 50 12 up up 2 49 24 up up 2 51 12 up up 2 52 12 up down F...

Page 1524: ...ich you want to set the management priority 1 14 This preference parameter allows you to specify the management priority of one backup switch over another with 0 the lowest priority and 14 the highest The switch with the highest priority value is chosen to become the management unit if the active management unit fails or on the next reload Defaults 0 Command Modes CONFIGURATION Command History Ver...

Page 1525: ...Series S Series Syntax stack unit 0 11 renumber 0 11 Parameters 0 11 The first instance of this value is the stack member unit identifier from 0 to 11 of the switch that you want add to the stack The range is 0 to 11 The second instance of this value is the desired new unit identifier number Defaults none Command Modes EXEC Privilege Command History Version 7 7 1 0 Introduced on the S Series Usage...

Page 1526: ... unit ID stack group id Enter the stack group ID The range is 0 to 1615 Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Reset command mode from EXEC to CONFIGURATION Version 8 3 10 2 Introduced on the S4810 Usage Information The following message displays to confirm the command WARNING Setting ports Fo 0 60 as stack group will make their interface configs obsolete after ...

Page 1527: ...er to which to copy the designated image A Enter the keyword A to upgrade all stacked units in System A S4810 only B Enter the keyword B to upgrade all stacked units in System B S4810 only Defaults none Command Modes EXEC Command History Version 7 7 1 0 Introduced on the S Series Usage Information To reboot using the new image use the upgrade boot system stack unit command Related Commands reload ...

Page 1528: ...1528 ...

Page 1529: ...sed on the speed setting for the line card Do not apply per VLAN quality of service QoS on an interface that has storm control enabled either on an interface or globally When you enable broadcast storm control on an interface or globally on ingress and DSCP marking for a DSCP value 1 is configured for the data traffic the traffic goes to queue 1 instead of queue 0 Similarly if you enable unicast s...

Page 1530: ...ivilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 Introduced on the E Series Example E Series FTOS show storm control broadcast gigabitethernet 11 11 Broadcast storm control c...

Page 1531: ...ot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on Exa...

Page 1532: ...rnet interface enter the keyword fortyGigE followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information Fast Ethernet is not supported Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on t...

Page 1533: ...er the percentage of broadcast traffic allowed in or out of the network Optionally you can designate a decimal value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile pack...

Page 1534: ...roadcast traffic allowed in or out of the network Optionally you can designate a decimal value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile packets_per_sec ond in C S...

Page 1535: ...ation Broadcast traffic all 0xFs should be counted against the broadcast storm control meter not against the multicast storm control meter It is possible however that some multicast control traffic may get dropped when storm control thresholds are exceeded storm control multicast Interface Configure the percentage of multicast traffic allowed on an C Series or S Series interface ingress only netwo...

Page 1536: ... value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile packets_per_sec ond in C Series and S Series Only Enter the packets per second of broadcast traffic allowed into t...

Page 1537: ...ecimal value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile packets_per_sec ond in C Series and S Series Only Enter the packets per second of broadcast traffic allowed ...

Page 1538: ...1538 ...

Page 1539: ...t value use the no bridge priority command Parameters priority value Enter a number as the bridge priority value The range is 0 to 65535 The default is 32768 primary Enter the keyword primary to designate the bridge as the root bridge secondary Enter the keyword secondary to designate the bridge as a secondary root bridge Defaults priority value 32768 Command Modes SPANNING TREE The prompt is conf...

Page 1540: ...duced on the C Series and S Series debug spanning tree Enable debugging of the spanning tree protocol and view information on the protocol C Series E Series S Series Z Series S4810 Syntax debug spanning tree stp id all bpdu config events exceptions general root protocol To disable debugging use the no debug spanning tree command Parameters stp id Enter zero 0 The switch supports one spanning tree ...

Page 1541: ...ion on BPDUs for the last interface specified Related Commands protocol spanning tree enters SPANNING TREE mode on the switch description Enter a description of the spanning tree C Series E Series S Series Z Series S4810 Syntax description description To remove the description from the spanning tree use the no description description command Parameters description Enter a description to identify t...

Page 1542: ...lated Commands protocol spanning tree enters SPANNING TREE mode on the switch forward delay The amount of time the interface waits in the Listening state and the Learning state before transitioning to the Forwarding state C Series E Series S Series Z Series S4810 Syntax forward delay seconds To return to the default setting use the no forward delay command Parameters seconds Enter the number of se...

Page 1543: ...ault value use the no hello time command Parameters seconds Enter a number as the time interval between transmission of BPDUs The range is 1 to 10 The default is 2 seconds Defaults 2 seconds Command Modes SPANNING TREE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Serie...

Page 1544: ...ersion 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands forward delay changes the wait time before STP transitions to the Forwarding state hello time changes the time interval between BPDUs protocol spanning tree Enter SPANNING TREE mode to enable and configure the s...

Page 1545: ...S config stp Related Commands disable disables spanning tree group 0 To enable spanning tree group 0 use the no disable command show config Display the current configuration for the mode Only non default values are displayed C Series E Series S Series Z Series S4810 Syntax show config Command Modes SPANNING TREE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on...

Page 1546: ...et followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 ti 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10 Gigabit Ethernet interface enter the keyword TenGigab...

Page 1547: ... Timers Lists the values for the following bridge timers hold time topology change hello time max age and forward delay Times List the number of seconds since the last hello time topology change notification aging Port 1 Displays the Interface type slot port information and the status of the interface Disabled or Enabled Port path Displays the path cost priority and identifier for the interface De...

Page 1548: ...riority 8 Port Identifier 8 28 Designated root has priority 32768 address 0001 e800 0a56 Designated bridge has priority 32768 address 0001 e800 0a56 Designated port id is 8 28 designated path cost 0 Timers message age 0 forward_delay 0 hold 0 Number of transitions to forwarding state 1 BPDU sent 31 received 0 The port is not in the portfast mode FTOS Example Brief FTOS show span 0 brief Executing ...

Page 1549: ...face use the no spanning tree stp id cost cost loopguard rootguard portfast bpduguard shutdown on violation priority priority command Parameters stp id Enter the STP instance ID The range is 0 cost cost Enter the keyword cost followed by a number as the cost The range is 1 to 65535 The defaults are 100 Mb s Ethernet interface 19 1 Gigabit Ethernet interface 4 10 Gigabit Ethernet interface 2 Port C...

Page 1550: ... fact The port is in ERR_DISABLE mode yet appears in the show interface commands as enabled If you do not enable shutdown on violation BPDUs still are sent to the RPM CPU STP loop guard and root guard are supported on a port or port channel enabled in any Spanning Tree mode Spanning Tree Protocol STP Rapid Spanning Tree Protocol RSTP Multiple Spanning Tree Protocol MSTP and Per VLAN Spanning Tree ...

Page 1551: ...To display the type of STP guard Portfast BPDU root or loop guard enabled on a port enter the show spanning tree 0 command 1551 ...

Page 1552: ...1552 ...

Page 1553: ...ries S Series Z Series S4810 Syntax calendar set time month day year Parameters time Enter the time in hours minutes seconds For the hour variable use the 24 hour format for example 17 15 00 is 5 15 pm month Enter the name of one of the 12 months in English You can enter the name of a day to change the order of the display to time day month year day Enter the number of the day The range is 1 to 31...

Page 1554: ...alendar sets the hardware clock based on the software clock show clock displays the clock settings clock read calendar Set the software clock on the switch from the information set in hardware clock calendar C Series E Series S Series Z Series S4810 Syntax clock read calendar Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7...

Page 1555: ...The range is 1993 to 2035 Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information You can change the order of the month and day parameters to enter the time and date as time day month year You ca...

Page 1556: ... year The range is 1993 to 2035 start time Enter the time in hours minutes For the hour variable use the 24 hour format example 17 15 is 5 15 pm end day Enter the number of the day The range is 1 to 31 You can enter the name of a month to change the order of the display to time day month year end month Enter the name of one of the 12 months in English You can enter the name of a day to change the ...

Page 1557: ...gins and then enter values for start day through end time week number Enter a number from 1 to 4 as the number of the week in the month to start daylight saving time first Enter this keyword to start daylight saving time in the first week of the month last Enter this keyword to start daylight saving time in the last week of the month start day Enter the name of the day that you want daylight savin...

Page 1558: ... Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Updated the start day and end day options to allow for using the three letter abbreviation of the weekday name pre Version 6 1 1 0 Introduced on the E Series Related Commands calendar set sets the hardware clock clock summer time date sets a date and time zone on which to convert the switch to daylight saving time on a one time bas...

Page 1559: ...ferentiator between UTC and your local timezone For example San Jose CA is the Pacific Timezone with a UTC offset of 8 clock update calendar Set the switch hardware clock based on the software clock C Series E Series S Series Z Series Syntax clock update calendar Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced...

Page 1560: ...e keyword authentication to display information on NTP authentication transactions events Enter the keyword events to display information on NTP events loopfilter Enter the keyword loopfilter to display information on NTP local clock frequency packets Enter the keyword packets to display information on NTP packets select Enter the keyword select to display information on the NTP clock selection sy...

Page 1561: ...o must configure an authentication key for NTP traffic using the ntp authentication key command Related Commands ntp authentication key configures the authentication key for NTP traffic ntp trusted key configures a key to authenticate ntp authentication key Specify a key for authenticating the NTP server C Series E Series S Series Z Series Syntax ntp authentication key number md5 0 7 key Parameter...

Page 1562: ...he authentication key that is different from previous FTOS versions beginning in version 8 2 1 0 FTOS uses DES encryption to store the key in the startup config when you enter the ntp authentication key command Therefore if your system boots with a startup configuration from an FTOS versions prior to 8 2 1 0 in which you have configured ntp authentication key the system cannot correctly decrypt th...

Page 1563: ...y Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series ntp multicast client Configure the switch to receive NTP information from the network via multicast E Series Z Series S4810 Syntax ntp multicast client multicast address To disable mul...

Page 1564: ...rsion number Parameters ipv4 address ipv6 address Enter an IPv4 address A B C D or IPv6 address X X X X X hostname Enter the hostname of the server key keyid OPTIONAL Enter the keyword key and a number as the NTP peer key The range is 1 to 4294967295 prefer OPTIONAL Enter the keyword prefer to indicate that this peer has priority over other servers version number OPTIONAL Enter the keyword version...

Page 1565: ...r information For an 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Loopback interfaces enter the keyword loopback followed by a number from zero 0 to 16383 For a Port Channel interface enter the keyword lag followed by a number For the...

Page 1566: ...e range is 1 to 4294967295 Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The number parameter in the ntp trusted key command must be the same number as the number parameter in the ntp au...

Page 1567: ...d Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series show calendar Display the current date and time based on the switch hardware clock C Series E Series S Series Z Series S4810 Syntax show calendar Command Modes EXEC EXEC Privilege Command ...

Page 1568: ...oduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show clock 11 05 56 949 UTC Thu Oct 25 2001 FTOS Example Detail FTOS show clock detail 12 18 10 691 UTC Wed Jan 7 2009 Time source is RTC hardware Summer time starts 02 00 00 UTC Sun Mar 8 2009 ...

Page 1569: ...d to this peer means the peer was selected for possible synchronization means the peer is a candidate for selection means the peer is statically configured remote Displays the remote IP address of the NTP peer ref clock Displays the IP address of the remote peer s reference clock st Displays the peer s stratum that is the number of hops away from the external time source A 16 in this column means ...

Page 1570: ...es Z Series S4810 Syntax show ntp status Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The following describes the show ntp status command shown in the Example belo...

Page 1571: ...FTOS sh ntp status Clock is synchronized stratum 2 reference is 100 10 10 10 frequency is 32 000 ppm stability is 15 156 ppm precision is 4294967290 reference time is BC242FD5 C7C5C000 10 15 49 780 UTC Mon Jan 10 2000 clock offset is clock offset msec root delay is 0 01656 sec root dispersion is 0 39694 sec peer dispersion is peer dispersion msec peer mode is client FTOS Related Commands show ntp ...

Page 1572: ...1572 ...

Page 1573: ...is mode printenv Display the current system boot variable and other system settings S4810 Syntax printenv Command Modes uBoot Command History Version 8 3 7 0 Introduced on the S4810 Example printenv baudrate 9600 uboot_filesize 0x80000 bootfile FTOS SC 1 2 0 0E3 bin bootcmd echo Booting primary bootline primary_boot boot echo Failed echo Booting secondary bootline secondary_boot boot echo Failed e...

Page 1574: ...derr serial Environment size 1002 8188 bytes Usage Information ethaddr 00 01 E8 82 09 B2 is the MAC address primary_boot f10boot tftp 10 11 9 2 si S4810 40g secondary_boot f10boot flash0 and default_boot f10boot tftp 192 168 128 1 FTOS SC 1 2 0 0E3 bin are the boot variables gatewayip 10 11 192 254 is the default gateway address ipaddr 10 11 198 114 is the management IP address reset Reload the S4...

Page 1575: ...teway primary_image Enter the keywords primary_image to configure the boot parameters used in the first attempt to boot FTOS secondary_image Enter the keywords secondary_image to configure boot parameters used if the primary operating system boot selection is not available default_image Enter the keywords default_image to configure boot parameters used if the secondary operating system boot parame...

Page 1576: ...standard IPv4 format and the MAC address in standard MAC format enablepwdignore Enter the keywords enableprdignore true to reload the system software without the enable password configured stconfigignore Enter the keywords stconfigignore true to ignore the startup configuration file when reloading the system Command Modes uBoot Command History Version 8 3 7 0 Introduced on the S4810 1576 ...

Page 1577: ...astethernet slot port slot port range 1 Gigabit Ethernet gigabitethernet slot port slot port range 10 Gigabit Ethernet tengigabitethernet slot port slot port range Port channel port channel 1 512 port channel range Where port range and port channel range specify a range of ports separated by a dash and or individual ports port channels in any order for example gigabitethernet 1 1 2 5 9 11 12 port ...

Page 1578: ...up group id command Parameters group id Enables debugging on the specified uplink state group The valid group id values are 1 to 16 Defaults none Command Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 2 3 Introduced on the S Series S50 Related Commands clear ufd disable re enables downstream interfaces that are in a UFD Disabled Error state description En...

Page 1579: ...igabitethernet slot port slot port range 10 Gigabit Ethernet tengigabitethernet slot port slot port range Port channel port channel 1 512 port channel range Where port range and port channel range specify a range of ports separated by a dash and or individual ports port channels in any order for example gigabitethernet 1 1 2 5 9 11 12 port channel 1 3 5 A comma is required to separate each port an...

Page 1580: ...cover To disable auto recovery on downstream links use the no downstream auto recover command Defaults The auto recovery of UFD disabled downstream ports is enabled Command Modes UPLINK STATE GROUP Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 2 3 Introduced on the S Series S50 Related Commands downstream assigns a port or port channel to the uplink state group as a downstre...

Page 1581: ...ink state group go down all downstream interfaces in the same uplink state group are put into a link down state Related Commands downstream assigns a port or port channel to the uplink state group as a downstream interface uplink state group creates an uplink state group and enables the tracking of upstream links enable Enable uplink state group tracking for a specific UFD group S Series S50 only ...

Page 1582: ...es S50 Example FTOS show running config uplink state group no enable uplink state track 1 downstream GigabitEthernet 0 2 4 6 11 19 upstream TengigabitEthernet 0 48 52 upstream PortChannel 1 uplink state track 2 downstream GigabitEthernet 0 1 3 5 7 10 upstream TengigabitEthernet 0 56 60 Related Commands show uplink state group displays the status information on a specified uplink state group or all...

Page 1583: ...nk state group 16 Uplink State Group 16 Status Disabled Up FTOS show uplink state group detail Up Interface up Dwn Interface down Dis Interface disabled Uplink State Group 1 Status Enabled Up Upstream Interfaces Downstream Interfaces Uplink State Group 3 Status Enabled Up Upstream Interfaces Gi 0 46 Up Gi 0 47 Up Downstream Interfaces Te 13 0 Up Te 13 1 Up Te 13 3 Up Te 13 5 Up Te 13 6 Up Uplink S...

Page 1584: ...State Group Configuration mode to assign upstream and downstream interfaces to the group An uplink state group is considered to be operationally up if at least one upstream interface in the group is in the Link Up state An uplink state group is considered to be operationally down if no upstream interfaces in the group are in the Link Up state No uplink state tracking is performed when a group is d...

Page 1585: ... 9 11 12 port channel 1 3 5 A comma is required to separate each port and port range entry Defaults none Command Modes UPLINK STATE GROUP Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 2 3 Introduced on the S Series S50 Usage Information You can assign physical port or port channel interfaces to an uplink state group You can assign an interface to only one uplink state group ...

Page 1586: ... uplink state group creates an uplink state group and enables the tracking of upstream links 1586 ...

Page 1587: ...is supported when all the members are only stackable VLAN trunk ports IP addresses on a stackable VLAN enabled VLAN is not supported if the VLAN contains stackable VLAN access ports This facility is provided for the simple network management protocol SNMP management over a stackable VLAN enabled VLAN containing only stackable VLAN trunk interfaces Layer 3 routing protocols on such a VLAN are not s...

Page 1588: ...d yellow Choose a color Green High priority packets that are the least preferred to be dropped Yellow Lower priority packets that are treated as best effort Red Lowest priority packets that are always dropped regardless of congestion status Defaults Disabled Packets with an unmapped DEI value are colored green Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version...

Page 1589: ...d on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the C Series and S Series Usage Information You must first enable DEI for this configuration to take effect Related Commands dei enable enables DEI member Assign a stackable VLAN access or trunk port to a VLAN The VLAN must contain the vlan stack compatible command in its configuration C Series E Series S Series Z...

Page 1590: ...on the C Series and S Series E Series original Command Usage Information You must enable the stackable VLAN using the vlan stack compatible command on the VLAN prior to adding a member to the VLAN Related Commands vlan stack compatible enables stackable VLAN on a VLAN show interface dei honor Display the dei honor configuration C Series S Series Syntax show interface dei honor interface slot port ...

Page 1591: ... interface slot port Enter the interface type followed by the line card slot and port number linecard number port set number Enter linecard followed by the line card slot number then enter port set followed by the port pipe number Command Modes EXEC Privilege Command History Version 8 3 1 0 Introduced on the C Series and S Series Example FTOS show interface dei mark Default CFI DEI Marking 0 Inter...

Page 1592: ...d member ports ports ports listed here will be removed Do you want to continue y n If you enter y all non default configurations on any member ports of the current stack group is removed when the unit is rebooted vlan stack access Specify a Layer 2 port or port channel as an access port to the stackable VLAN network C Series E Series S Series Z Series S4810 Syntax vlan stack access To remove acces...

Page 1593: ...ommand History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series and S Series E Series original Command Usage Information You must remove the members prior to disabling the stackable VLAN feature To view the stackable VLANs use the show vlan command in EXEC Privilege mode S...

Page 1594: ...t1p value The range is 0 to 7 Defaults none Command Modes INTERFACE Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the C Series and S Series vlan stack protocol type Define the stackable VLAN tag protocol identifier TPID for the outer VLAN tag also called the VMAN tag If you do not configure this command FTOS assigns the value 0x9100 C Series E Series S Serie...

Page 1595: ...de On E Series TeraScale the two characters you enter in the CLI for number become the MSB as shown below Number Resulting TPID 1 0x0100 10 0x1000 More than two characaters Configuration rejected On E Series ExaScale C Series and S Series four characters you enter in the CLI for number are interpreted as shown below Number Resulting TPID 1 0x0001 10 0x0010 81 0x0081 8100 0x8100 Related Commands po...

Page 1596: ...ved using the no member interface command from all stackable VLAN enabled VLANs Starting with FTOS version 7 7 1 0 for E Series the VLAN Stack trunk port can transparently tunnel in a service provider environment customer originated xSTP control protocol PDUs Refer to Service Provider Bridging Starting with FTOS version 7 8 1 0 for C Series and S Series FTOS version 7 7 1 for E Series a VLAN Stack...

Page 1597: ...Default VLAN G GVRP VLANs Q U Untagged T Tagged x Dot1x untagged X Dot1x tagged G GVRP tagged M Vlan stack NUM Status Description Q Ports 1 Inactive 20 Active T Gi 0 42 100 Active M Gi 0 42 FTOS conf if vl 20 Example 2 FTOS config vlan stack protocol type 88A8 FTOS config interface gigabitethernet 3 10 FTOS conf if gi 3 10 no shutdown FTOS conf if gi 3 10 switchport FTOS conf if gi 3 10 vlan stack...

Page 1598: ...FTOS config interface vlan 40 FTOS conf if vlan tagged TenGi 8 0 FTOS conf if vlan exit FTOS config 1598 ...

Page 1599: ... Unit Id will not cause VLT peer ship to go down Also if the VLT peer ship is already established and the VLT Unit Id or System MAC are configured on both peers then changing the CLI configurations on the VLT Unit Id or System MAC will be rejected if any of the following become TRUE After making the CLI configuration change the VLT Unit Id becomes identical on both peers After making the CLI confi...

Page 1600: ...c Clear the VLT statistics for the MAC address arp Clear the VLT statistics for ARP igmp snoop Clear the VLT statistics for IGMP snooping stp Clear the VLT statistics for STP Command Modes EXEC Example VLT ARP Statistics ARP Tunnel Pkts sent 0 ARP Tunnel Pkts Rcvd 0 ARP sync Pkts Sent 0 ARP sync Pkts Rcvd 0 ARP Reg Request sent 19 ARP Reg Request rcvd 10 Command History Version 9 0 0 0 Introduced ...

Page 1601: ...elay the system from bringing up the VLT port for a brief period to allow IGMP Snooping and Layer 3 routing protocols to converge Use this feature after a VLT device is reloaded if the Peer VLT device was up at the time the VLTi link failed to the time when it was restored Related Commands show vlt statistics displays statistics on VLT operations lacp ungroup member independent Prevent possible lo...

Page 1602: ...el to ensure untagged packets that are sent by a VLT peer device reach the DHCP server located on the ToR To ungroup the VLT and port channel configurations use the no lacp ungroup member independent command on a VLT port channel depending on whether the port channel is VLT or non VLT Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 12 0 Added port channel parameter on the S4810...

Page 1603: ...ue To configure the primary role on a VLT peer enter a lower value than the priority value of the remote peer The range is 1 to 65535 Default 32768 Command Modes VLT DOMAIN Command History Version 8 3 8 0 Introduced on the S4810 Usage Information After you configure the VLT domain on each peer switch on both sides of the interconnect trunk by default the FTOS software elects a primary and secondar...

Page 1604: ...C address 00 01 e8 8b 14 3c Remote System MAC address 00 01 e8 8b 15 20 Remote Sytem Version 5 1 Delay Restore timer 90 seconds show vlt backup link Displays information on the backup link operation Z Series S4810 Syntax show vlt backup link Default Not configured Command Modes EXEC Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Example FTOS_VLTpeer...

Page 1605: ...n 9 0 0 0 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Usage Information If you do not add a parameter such as arp or mac the output displays all of the counters Example FTOS show vlt counter Total VLT counters L2 Total MAC Address Count IGMP MRouter Vlans count IGMP Mcast Groups count ARP entries count Example igmp snoop FTOS show vlt counter igmp snoop Total IGMP VLT counters...

Page 1606: ...S FTOS conf if vl 100 show vlt detail Local LAG Id Peer LAG Id Local Status Peer Status Active VLANs 10 10 UP UP 100 200 300 400 show vlt role Displays the VLT peer status role of the local VLT switch VLT system MAC address and system priority and the MAC address and priority of the local VLT device Z Series S4810 Syntax show vlt role Default Not configured Command Modes EXEC Command History Versi...

Page 1607: ...y the VLT statistics for the MAC address arp Display the VLT statistics for ARP igmp snoop Display the VLT statistics for IGMP snooping stp Display the VLT statistics for STP Default Not configured Command Modes EXEC Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 12 0 Added support in the output for ARP MAC and IGMP snooping Version 8 3 8 0 Introduced on the S4810 Example NOTE...

Page 1608: ...PDUs sent 10 IGMP Tunnel PDUs rcvd 19 Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Related Commands clear vlt statistics clears the statistics on VLT operations show vlt statistics igmp snoop Displays the informational packets and IGMP control PDUs that are exchanged between VLT peer nodes S4810 Syntax show vlt statistics igmp snoop Default Not co...

Page 1609: ...OS automatically creates a VLT system MAC address used for internal system operations Use the system mac command to reconfigure the default MAC address for the domain by entering a new MAC address in the format nn nn nn nn nn nn You must also reconfigure the same MAC address on the VLT peer switch unit id Explicitly configure the default unit ID of a VLT peer switch Z Series S4810 Syntax unit id 0...

Page 1610: ... VLT domain and enter VLT domain configuration mode Z Series S4810 Syntax vlt domain domain id Parameters domain id Enter the Domain ID number You must configure the same domain ID on the peer switch The range of domain IDs is 1 to 1000 Command Modes CONFIGURATION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Usage Information The VLT domain ID mus...

Page 1611: ...nter the respective vlt port channel number of the peer device Defaults Not configured Command Modes INTERFACE PORT CHANNEL Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 1611 ...

Page 1612: ...1612 ...

Page 1613: ...the default settings use the no advertise interval command Parameters seconds Enter a number of seconds The range is 1 to 255 The default is 1 second Defaults 1 second Command Modes INTERFACE VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 ...

Page 1614: ...r string up to eight characters long as a password If you do not enter an encryption type the password is stored as clear text Defaults Not configured Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series ...

Page 1615: ... information For Port Channel interface types enter the keywords port channel followed by the number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale For a 40 Gigabit Ethernet interface enter the keyword FortyGigabitEthernet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed...

Page 1616: ...t string describing the VRRP group C Series E Series S Series Z Series S4810 Syntax description text To delete a VRRP group description use the no description command Parameters text Enter a text string up to 80 characters long Defaults Not enabled Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S...

Page 1617: ...switch becomes the MASTER virtual router By delaying the initialization of the VRRP MASTER the new switch can stabilize its routing tables C Series E Series S Series Z Series S4810 Syntax hold time seconds To return to the default value use the no hold time command Parameters seconds Enter a number of seconds The range is 0 to 65535 The default is zero 0 seconds Defaults zero 0 seconds Command Mod...

Page 1618: ...on 6 2 1 1 Introduced on the E Series priority Specify a VRRP priority value for the VRRP group This value is used by the VRRP protocol during the MASTER election process C Series E Series S Series Z Series S4810 Syntax priority priority To return to the default value use the no priority command Parameters priority Enter a number as the priority Enter 255 only if the router s virtual address is th...

Page 1619: ...roup configuration information including defaults Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Example FTOS conf if vrid 4 show con vrrp group 4 virtual address 119 192 182 124 show vrrp View the ...

Page 1620: ...Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information The following describes the show vrrp brief command shown in the Example below Item Description Interface Lists the in...

Page 1621: ...5 FTOS Usage Infromation The following describes the show vrrp command shown in the Example below Item Description GigabitEthernet 12 3 Displays the Interface the VRRP group ID and the network address If the interface is not sending VRRP packets 0 0 0 0 appears as the network address State master Displays the interface s state Na If not available master MASTER virtual router backup BACKUP virtual ...

Page 1622: ... Master Priority 105 Master 10 1 1 253 local Hold Down 0 sec Preempt TRUE AdvInt 1 sec Adv rcvd 0 Adv sent 1862 Gratuitous ARP sent 0 Virtual MAC address 00 00 5e 00 01 01 Virtual IP address 10 1 1 252 Authentication none Tracking states for 1 interfaces Up GigabitEthernet 12 17 priority cost 10 GigabitEthernet 12 4 VRID 2 Net 10 1 2 253 State Master Priority 110 Master 10 1 2 253 local Hold Down ...

Page 1623: ...e enter the keyword vlan followed by the VLAN ID The VLAN ID range is from 1 to 4094 priority cost OPTIONAL Enter a number as the amount to be subtracted from the priority value The range is 1 to 254 The default is 10 Defaults priority cost 10 Command Modes VRRP Command History Version 7 6 1 0 Introduced on the S Series S50 only Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introd...

Page 1624: ...ed on the E Series Usage Information The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured When you delete the virtual address the VRRP group stops sending VRRP packets A system message appears after you enter or delete the virtual address command To guarantee that a VRRP group becomes MASTER configure the VRRP group s virtual address with the same IP ad...

Page 1625: ...onds Parameters seconds Enter the number of seconds for the delay The range is 0 to 900 0 indicates no delay Defaults 0 Command Modes INTERFACE Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Usage Information This command applies to all the VRRP configured interfaces on a system When used in conjunction with the vrrp delay minimum CLI the later time...

Page 1626: ... Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured When you delete the virtual address the VRRP group stops sending VRRP packets Related Command virtual address assigns up to 12 virtual IP addresses per VRRP group IPv6 VRRP Commands The followi...

Page 1627: ... Introduced on the E Series TeraScale debug vrrp ipv6 Allows you to enable debugging of VRRP C Series E Series S Series S4810 Syntax debug vrrp ipv6 interface vrid all packets state timer Parameters interface Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel ...

Page 1628: ...es and all VRRP groups show vrrp ipv6 View the IPv6 VRRP groups that are active If no VRRP groups are active the FTOS returns No Active VRRP group C Series E Series S Series S4810 Syntax show vrrp ipv6 vrid interface brief Parameters vrid OPTIONAL Enter the virtual router identifier for the VRRP group to view only that group The range is 1 to 255 interface Enter the following keywords and slot por...

Page 1629: ...P virtual router the interface s priority and the IP address of the MASTER Hold Down This line displays additional VRRP configuration information Hold Down displays the hold down timer interval in seconds Preempt displays TRUE if preempt is configured and FALSE if preempt is not configured AdvInt displays the Advertise Interval in seconds Adv rcvd This line displays counters for the following Adv ...

Page 1630: ...ntisec Adv rcvd 0 Bad pkts rcvd 0 Adv sent 64 Virtual MAC address 00 00 5e 00 02 ff Virtual IP address 1 255 fe80 255 vrrp ipv6 group Assign an interface to a VRRP group C Series E Series S Series S4810 Syntax vrrp ipv6 group vrid Parameters vrid Enter the virtual router ID number of the VRRP group VRID range C Series and S Series 1 to 255 VRID range E Series 1 to 255 when VRF microcode is not loa...

Page 1631: ...he ip vrf vrf id number For example if VRF microcode is loaded and VRRP group 10 is configured in VRF 2 the VRID used for the VRRP group is 16 x 10 2 or 162 This VRID value is used in the lowest byte of the virtual MAC address of the VRRP group and is also used for VRF routing NOTE You must configure the same VRID on neighboring routers Dell Force10 or non Dell Force10 in the same VRRP group in or...

Page 1632: ...scription use the no description command Parameters text Enter a text string up to 80 characters long Defaults Not enabled Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series disable Disable a VRRP group...

Page 1633: ...zation of the VRRP MASTER the new switch can stabilize its routing tables C Series E Series S Series Z Series S4810 Syntax hold time seconds To return to the default value use the no hold time command Parameters seconds Enter a number of seconds The range is 0 to 65535 The default is zero 0 seconds Defaults zero 0 seconds Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 ...

Page 1634: ... the E Series priority Specify a VRRP priority value for the VRRP group This value is used by the VRRP protocol during the MASTER election process C Series E Series S Series Z Series S4810 Syntax priority priority To return to the default value use the no priority command Parameters priority Enter a number as the priority Enter 255 only if the router s virtual address is the same as the interface ...

Page 1635: ...age appears show config View the non default VRRP configuration C Series E Series S Series Z Series S4810 Syntax show config verbose Parameters verbose OPTIONAL Enter the keyword verbose to view all VRRP group configuration information including defaults Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on...

Page 1636: ...nter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword FortyGigabitEthernet followed by the slot port information For a VLAN interface enter the keyword vlan followed by the VLAN ID The VLAN ID range is from 1 to 4094 priority co...

Page 1637: ... s primary IP address Defaults Not configured Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Introduced support for telnetting to the VRRP group IP address assigned using this command pre Version 6 2 1 1 Introduced on the E Serie...

Reviews:

No comments

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands