Home
/
Extreme Networks
/
ExtremeWare 7.0.0
/
Command Reference Manual

Extreme Networks ExtremeWare 7.0.0, Command Reference Manual, Page: 569 / 1598

Share

Page: 569 / 1598

Extreme Networks ExtremeWare 7.0.0 Command Reference Manual Download Page 569

ExtremeWare Software 7.0.0 Command Reference Guide

569

11

Security Commands

This chapter describes:

•

Commands for creating and configuring routing access policies

•

Commands for creating and configuring IP access lists

•

Commands for creating and configuring route maps

•

Commands for managing the switch using SSH2

•

Commands related to switch user authentication through a RADIUS client

•

Commands related to switch user authentication through

•

Commands for protecting the switch from Denial of Service attacks

•

Commands for Network Login configuration

Access policies are a generalized category of features that impact forwarding and route forwarding
decisions. Access policies are used primarily for security and quality of service (QoS) purposes.

IP access lists (also referred to as Access Lists or ACLs) consist of IP access rules and are used to perform
packet filtering and forwarding decisions on incoming traffic. Each packet arriving on an ingress port is
compared to the access list in sequential order and is either forwarded to a specified QoS profile or
dropped. Using access lists has no impact on switch performance.

Access lists are typically applied to traffic that crosses layer 3 router boundaries, but it is possible to use
access lists within a layer 2 VLAN. Extreme products are capable of performing this function with no
additional configuration.

Routing access policies are used to control the advertisement or recognition of routing protocols, such as
RIP, OSPF, IS-IS, or BGP. Routing access policies can be used to ‘hide’ entire networks or to trust only
specific sources for routes or ranges of routes. The capabilities of routing access policies are specific to
the type of routing protocol involved, but are sometimes more efficient and easier to implement than
access lists.

To use routing access policies, follow these steps:

1

Create an access profile.

2

Configure the access profile mode to be of type permit, deny, or none (which allows per-entry
configuration of the permit/deny attribute).

3

Add entries to the access profile.

4

Apply the access profile.

«
...
567
568
569
570
571
...
»

Summary of Contents for ExtremeWare 7.0.0

Page 1: ...s Inc 3585 Monroe Street Santa Clara California 95051 888 257 3000 http www extremenetworks com ExtremeWare Software Command Reference Guide Software Version 7 0 0 Published December 2002 Part number 100115 00 rev 04 ...

Page 2: ...ice mark of Extreme Networks which may be registered or pending registration in certain jurisdictions Specifications are subject to change without notice NetWare and Novell are registered trademarks of Novell Inc Merit is a registered trademark of Merit Network Inc Solaris is a trademark of Sun Microsystems Inc F5 BIG ip and 3DNS are registered trademarks of F5 Networks Inc see IT is a trademark o...

Page 3: ...4 config dns client add 55 config dns client add domain suffix 56 config dns client add name server 57 config dns client default domain 58 config dns client delete 59 config dns client delete domain suffix 60 config dns client delete name server 61 config idletimeouts 62 config time 63 config timezone 64 create account 68 delete account 70 disable clipaging 72 disable idletimeouts 73 enable clipag...

Page 4: ...nfig snmp add trapreceiver 99 config snmp community 101 config snmp delete 103 config snmp delete community 104 config snmp delete trapreceiver 106 config snmp sysContact 107 config snmp sysLocation 108 config snmp sysName 109 config sntp client server 110 config sntp client update interval 111 config web login timeout 112 disable snmp access 113 disable snmp dot1dTpFdbTable 114 disable snmp traps...

Page 5: ...uit 135 show management 136 show odometer 138 show session 140 show sntp client 142 show vlan dhcp address allocation vlan 144 show vlan dhcp config vlan 145 telnet 146 unconfig management 148 Chapter 4 Commands for Configuring Slots and Ports on a Switch clear slot 151 config ip mtu vlan 152 config jumbo frame size 154 config mirroring add 156 config mirroring delete 158 config msm failover link ...

Page 6: ...e ports 183 disable sharing 184 disable slot 185 disable smartredundancy 186 enable edp ports 187 enable flooding ports 189 enable jumbo frame ports 190 enable lbdetect port 191 enable learning ports 192 enable mirroring to port 193 enable ports 195 enable sharing grouping 196 enable slot 199 enable smartredundancy 200 restart ports 201 run msm failover 202 show edp 203 show mirroring 205 show por...

Page 7: ... delete 233 config ports monitor vlan 234 config protocol add 235 config protocol delete 236 config vlan add ports 237 config vlan add ports loopback vid 239 config vlan delete port 240 config vlan ipaddress 241 config vlan name 242 config vlan protocol 243 config vlan tag 244 create protocol 245 create vlan 246 delete protocol 248 delete vlan 249 disable gvrp 250 disable mac vlan port 251 enable ...

Page 8: ...79 config diffserv examination code point qosprofile ports 280 config diffserv replacement priority 282 config dot1p type 284 config ipqos add 285 config ipqos delete 287 config ports qosprofile 289 config qosmode 290 config qosprofile 291 config qostype priority 293 config red drop probability 295 config vlan priority 296 config vlan qosprofile 297 create qosprofile 298 delete qosprofile 299 disa...

Page 9: ...profile 319 show qostype priority 320 unconfig diffserv examination ports 321 unconfig diffserv replacement ports 322 unconfig qostype priority 323 Chapter 8 NAT Commands clear nat 326 config nat add vlan map 327 config nat delete 330 config nat finrst timeout 332 config nat icmp timeout 333 config nat syn timeout 334 config nat tcp timeout 335 config nat timeout 336 config nat udp timeout 337 con...

Page 10: ... service check 357 config flow redirect timer tcp port check 358 config slb esrp vlan 359 config slb failover alive frequency 360 config slb failover dead frequency 361 config slb failover failback now 362 config slb failover ping check 363 config slb failover unit 364 config slb global connection block 365 config slb global connection timeout 366 config slb global ftp 367 config slb global http 3...

Page 11: ...ig slb node max connections 398 config slb node ping check 400 config slb node tcp port check 401 config slb pool add 403 config slb pool delete 405 config slb pool lb method 407 config slb pool member 408 config slb proxy client persistence 410 config slb vip 411 config slb vip client persistence timeout 412 config slb vip max connections 413 config slb vip service check frequency 414 config slb ...

Page 12: ...sable slb L4 port 441 disable slb node 442 disable slb node ping check 444 disable slb node tcp port check 445 disable slb proxy client persistence 447 disable slb vip 448 disable slb vip client persistence 450 disable slb vip service check 451 disable slb vip sticky persistence 452 disable slb vip svcdown reset 453 enable flow redirect 454 enable slb 455 enable slb 3dns 456 enable slb failover 45...

Page 13: ...479 show slb 3dns members 481 show slb connections 482 show slb esrp 483 show slb failover 484 show slb global 486 show slb gogo mode 488 show slb L4 port 489 show slb node 490 show slb persistence 492 show slb pool 493 show slb stats 495 show slb vip 496 unconfig slb all 498 unconfig slb gogo mode health check 499 unconfig slb gogo mode service check 500 unconfig slb vip service check 501 Chapter...

Page 14: ...wstats filter ports 527 disable flowstats ping check 529 disable flowstats ports 530 disable log display 531 disable rmon 532 disable sys health check 533 disable syslog 534 enable cli config logging 535 enable flowstats 536 enable flowstats filter ports 537 enable flowstats ping check 538 enable flowstats ports 539 enable log display 540 enable rmon 541 enable sys backplane diag 543 enable sys he...

Page 15: ...t url 581 config radius server 582 config radius shared secret 583 config radius timeout 584 config radius accounting server 585 config radius accounting shared secret 586 config radius accounting timeout 587 config route map add 588 config route map add goto 590 config route map add match 591 config route map add set 593 config route map delete 595 config route map delete goto 596 config route ma...

Page 16: ...ource ports 620 create access profile 622 create route map 624 delete access list 625 delete access profile 626 delete route map 627 disable access list 628 disable cpu dos protect 629 disable dhcp ports vlan 630 disable netlogin logout privilege 631 disable netlogin 632 disable netlogin ports 633 disable netlogin session refresh 634 disable radius 635 disable radius accounting 636 disable ssh2 63...

Page 17: ... monitor 661 show access profile 662 show cpu dos protect 663 show netlogin 664 show netlogin ports 665 show radius 666 show radius accounting 668 show route map 669 show tacacs 670 show tacacs accounting 672 ssh2 673 unconfig cpu dos protect 675 unconfig radius 676 unconfig radius accounting 677 unconfig tacacs 678 unconfig tacacs accounting 679 Chapter 12 EAPS Commands config eaps add control vl...

Page 18: ...dd vlan 703 config stpd delete vlan 705 config stpd forwarddelay 706 config stpd hellotime 707 config stpd maxage 708 config stpd ports cost 709 config stpd ports mode 711 config stpd ports priority 712 config stpd priority 714 config stpd tag 715 config vlan add ports stpd 716 create stpd 718 delete stpd 719 disable ignore bpdu vlan 720 disable ignore stp vlan 721 disable stpd 722 disable stpd po...

Page 19: ...n add track iproute 744 config vlan add track ospf 745 config vlan add track ping 746 config vlan add track rip 747 config vlan add track vlan 748 config vlan delete domain member vlan 749 config vlan delete track bgp 750 config vlan delete track diagnostic 751 config vlan delete track environment 752 config vlan delete track iproute 753 config vlan delete track ospf 754 config vlan delete track p...

Page 20: ...2 enable vrrp 783 show vrrp 784 show vrrp vlan stats 786 Chapter 16 IP Unicast Commands clear iparp 790 clear ipfdb 791 config bootprelay add 792 config bootprelay delete 793 config iparp add 794 config iparp add proxy 795 config iparp delete 796 config iparp delete proxy 797 config iparp max entries 798 config iparp max pending entries 799 config iparp timeout 800 config ip down vlan action 801 c...

Page 21: ...p 821 config vlan subvlan 823 create udp profile 824 delete udp profile 825 disable bootp vlan 826 disable bootprelay 827 disable icmp address mask 828 disable icmp parameter problem 829 disable icmp port unreachables 830 disable icmp redirects 831 disable icmp time exceeded 832 disable icmp timestamp 833 disable icmp unreachables 834 disable icmp useredirects 835 disable iparp checking 836 disabl...

Page 22: ...redirects 856 enable icmp time exceeded 857 enable icmp timestamp 858 enable icmp unreachables 859 enable icmp useredirects 860 enable iparp checking 861 enable iparp refresh 862 enable ipforwarding 863 enable ipforwarding lpm routing 864 enable ip option loose source route 865 enable ip option record route 866 enable ip option record timestamp 867 enable ip option strict source route 868 enable i...

Page 23: ...sis add vlan 898 config isis area add domain summary 899 config isis area delete domain summary 900 config isis area domain filter 901 config isis authentication 902 config isis delete area address 903 config isis delete vlan 904 config isis external filter 905 config isis lsp holddown interval 906 config isis lsp lifetime 907 config isis lsp refresh interval 908 config isis metric size 909 config...

Page 24: ...delete range 931 config ospf area normal 932 config ospf area nssa stub default cost 933 config ospf area stub stub default cost 934 config ospf asbr filter 935 config ospf ase limit 936 config ospf ase summary add 937 config ospf ase summary delete 938 config ospf delete virtual link 939 config ospf delete vlan 940 config ospf direct filter 941 config ospf lsa batching timer 942 config ospf metri...

Page 25: ... disable isis export 968 disable isis ignore attached bit 970 disable isis originate default 971 disable isis overload 972 disable ospf 973 disable ospf capability opaque lsa 974 disable ospf export 975 disable ospf originate router id 976 disable rip 977 disable rip aggregation 978 disable rip export 979 disable rip exportstatic 980 disable rip originate default 981 disable rip poisonreverse 982 ...

Page 26: ...ion 1004 enable rip export cost 1005 enable rip exportstatic 1007 enable rip originate default cost 1008 enable rip poisonreverse 1009 enable rip splithorizon 1010 enable rip triggerupdate 1011 show isis 1012 show isis adjacency 1013 show isis interface 1014 show isis lsdb 1015 show ospf 1016 show ospf area 1017 show ospf area detail 1018 show ospf ase summary 1019 show ospf interfaces detail 1020...

Page 27: ...e network 1045 config bgp local preference 1046 config bgp med 1047 config bgp neighbor as path filter 1048 config bgp neighbor dampening 1050 config bgp neighbor maximum prefix 1052 config bgp neighbor next hop self 1054 config bgp neighbor nlri filter 1056 config bgp neighbor no dampening 1058 config bgp neighbor password 1059 config bgp neighbor peer group 1061 config bgp neighbor route map fil...

Page 28: ...face 1085 config bgp peer group timer 1086 config bgp peer group weight 1087 config bgp routerid 1088 config bgp soft reconfiguration 1089 config ipfdb route add 1090 create bgp neighbor peer group 1091 create bgp neighbor remote AS 1092 create bgp peer group 1093 delete bgp neighbor 1094 delete bgp peer group 1095 disable bgp 1096 disable bgp aggregation 1097 disable bgp always compare med 1098 d...

Page 29: ...nds clear igmp group 1125 clear igmp snooping 1126 clear ipmc cache 1127 clear ipmc fdb 1128 config dvmrp add vlan 1129 config dvmrp delete vlan 1130 config dvmrp timer 1131 config dvmrp vlan cost 1132 config dvmrp vlan export filter 1133 config dvmrp vlan import filter 1134 config dvmrp vlan trusted gateway 1135 config dvmrp vlan timer 1136 config igmp 1137 config igmp snooping flood list 1138 co...

Page 30: ...n 1156 disable dvmrp txmode vlan 1157 disable igmp 1158 disable igmp snooping 1159 disable igmp snooping with proxy 1160 disable ipmcforwarding 1161 disable pim 1162 enable dvmrp 1163 enable dvmrp rxmode vlan 1164 enable dvmrp txmode vlan 1165 enable igmp 1166 enable igmp snooping 1167 enable igmp snooping with proxy 1169 enable ipmcforwarding 1170 enable pim 1171 run ipmcfdb check 1172 show dvmrp...

Page 31: ...te 1194 config ipxsap add vlan 1195 config ipxsap delete vlan 1196 config ipxsap vlan delay 1197 config ipxsap vlan export filter 1198 config ipxsap vlan import filter 1199 config ipxsap vlan max packet size 1200 config ipxsap vlan trusted gateway 1201 config ipxsap vlan update interval 1202 config ipxsap vlan gns delay 1203 config ipxservice add 1204 config ipxservice delete 1205 config vlan xnet...

Page 32: ...nting index 1 value 1230 config route map set iphost routing 1232 config route map set lpm routing 1233 disable accounting 1234 disable ipforwarding lpm routing 1235 disable lpm 1236 enable accounting 1237 enable ipforwarding lpm routing 1238 enable lpm 1239 show accounting 1240 show lpm 1241 Appendix 22 ATM Commands config atm add pvc 1244 config atm delete pvc 1246 config atm scrambling 1248 sho...

Page 33: ...nfig ppp ports 1277 config ppp authentication ports 1279 config ppp delayed down time ports 1280 config ppp echo ports 1281 config ppp pos checksum ports 1282 config ppp pos scrambling ports 1283 config ppp quality ports 1284 config ppp user ports 1285 config qosprofile 1286 config red 1288 config red min threshold ports 1290 config sonet clocking ports 1291 config sonet framing ports 1292 config ...

Page 34: ...ts 1318 unconfig sonet ports 1319 Chapter 24 T1 E1 and T3 WAN Commands config multilink add 1322 config multilink delete 1323 config ports clock source 1324 config ports e1 framing 1325 config ports e1 receivergain 1326 config ports e1 timeslots 1327 config ports snmp alert 1328 config ports t1 cablelength 1329 config ports t1 fdl 1330 config ports t1 framing 1331 config ports t1 lbdetect 1332 con...

Page 35: ...rts loopback remote 1351 enable ports t1 loopback network payload 1352 enable vman termination 1353 restart multilink 1354 show accounts pppuser 1355 show multilink 1356 show multilink alarms 1357 show multilink e1 errors 1358 show multilink stats 1359 show multilink t1 errors 1360 show ports alarms 1361 show ports configuration 1362 show ports errors 1363 show ports e1 errors 1364 show ports info...

Page 36: ...delete path 1393 config mpls rsvp te delete profile 1394 config mpls rsvp te lsp add path 1395 config mpls rsvp te delete path 1397 config mpls rsvp te add ero 1398 config mpls rsvp te delete ero 1400 config mpls rsvp te profile 1401 config mpls rsvp te vlan 1403 config mpls vlan ip mtu 1405 config mpls vlan ldp propagate 1407 config vlan add track lsp 1408 config vlan delete track lsp 1410 disabl...

Page 37: ...ation 1440 show configuration 1441 synchronize 1442 unconfig switch 1443 upload configuration 1444 upload configuration cancel 1446 use configuration 1447 use image 1448 Appendix B Troubleshooting Commands clear debug trace 1450 config debug trace access list 1451 config debug trace accounting 1452 config debug trace aps 1454 config debug trace bgp events 1455 config debug trace bgp keepalive 1457...

Page 38: ...em 1488 config debug trace fdb 1490 config debug trace flow redirect 1491 config debug trace flowstats 1493 config debug trace health check 1494 config debug trace igmp snooping 1497 config debug trace iparp 1499 config debug trace ip forwarding 1501 config debug trace ipxgns message 1503 config debug trace ipxrip message 1505 config debug trace ipxrip route 1507 config debug trace ipxsap entry 15...

Page 39: ...nfig debug trace slb 3dns 1544 config debug trace slb connection 1545 config debug trace slb failover 1546 config debug trace stp in pdu 1547 config debug trace stp out pdu 1549 config debug trace udp forwarding 1551 config debug trace vrrp 1552 config debug trace vrrp hello 1553 config diagnostics 1555 config reboot loop protection 1556 config system dump server 1557 config system dump timeout 15...

Page 40: ...ents ExtremeWare Software 7 0 0 Command Reference Guide show diagnostics slot fdb 1575 show system dump 1576 show tech support 1578 top 1580 unconfig system dump 1585 upload system dump 1586 Index of Commands ...

Page 41: ...setting up network equipment It assumes knowledge of Extreme Networks switch configuration For conceptual information and guidance on configuring Extreme Networks switches see the ExtremeWare Software User Guide for your version of the ExtremeWare software Terminology When features functionality or operation is specific to a modular or stand alone switch family the family name is used Explanations...

Page 42: ... personal injury system damage or loss of data Warning Risk of severe personal injury Table 2 Text Conventions Convention Description Screen displays This typeface indicates command syntax or represents information as it appears on the screen The words enter and type When you see the word enter in this guide you must type something and then press the Return or Enter key Do not press the Return or ...

Page 43: ...nformation about the various features and technologies supported by Extreme Networks switches see the installation and user guides for your product This guide does not replace the installation and user guides this guide supplements the installation and user guides Audience This guide is intended for use by network administrators who are responsible for installing and setting up network equipment I...

Page 44: ... provided Command Syntax The actual syntax of the command The syntax conventions the use of braces or curly brackets for example are defined in the section Understanding the Command Syntax on page 45 Description A brief one sentence summary of what the command does Syntax Description The definition of any keywords and options used in the command Default The defaults if any for this command The def...

Page 45: ...hat there are more names than can be displayed The syntax helper also provides assistance if you have entered an incorrect command Table 3 Command Syntax Symbols Symbol Description angle brackets Enclose a variable or value You must specify the variable or value For example in the syntax config vlan vlan name ipaddress ip_address you must supply a VLAN name for vlan name and an address for ip_addr...

Page 46: ...eate command When you enter a command to configure a named component you do not need to use the keyword of the component For example to create a VLAN you must enter a unique VLAN name create vlan engineering Once you have created the VLAN with a unique name you can then eliminate the keyword vlan from all other commands that require the name to be entered For example instead of entering the modula...

Page 47: ...ng Keys Key s Description Backspace Deletes character to left of cursor and shifts remainder of line to left Delete or Ctrl D Deletes character under cursor and shifts remainder of line to left Ctrl K Deletes characters from under cursor to end of line Insert Toggles on and off When toggled on inserts text and shifts previous text to right Left Arrow Moves cursor to left Right Arrow Moves cursor t...

Page 48: ...Software 7 0 0 Command Reference Guide Command Reference Overview Command History ExtremeWare remembers the last 49 commands you entered You can display a list of these commands by using the following command history ...

Page 49: ...el account can view and change all switch parameters It can also add and delete users and change the password associated with any account name The administrator can disconnect a management session that has been established by way of a Telnet connection If this happens the user logged on by way of the Telnet connection is notified that the session has been terminated The DNS client in ExtremeWare a...

Page 50: ...ession command The show session output displays information about current Telnet sessions including The session number The login date and time The user name The type of Telnet session Depending on the software version running on your switch additional session information may be displayed The session number is the first number displayed in the show session output Example The following command termi...

Page 51: ...the encrypted option in the CLI For version 6 1 and higher The password cannot be specified on the command line Instead the switch will interactively prompt you to enter the password and will then prompt you to reenter the password to verify that you have entered it correctly For version 6 0 and higher Passwords must have a minimum of 1 character and can have a maximum of 32 characters For version...

Page 52: ...echoed as you enter the new password After you enter the password the switch will then prompt you to reenter it Reenter password Assuming you enter it successfully a second time the password is now changed In ExtremeWare version 4 1 19 the following command defines a new password Extreme1 for the account admin config account admin Extreme1 History This command was first available in ExtremeWare 2 ...

Page 53: ...r To clear the banner press Return at the beginning of the first line For version 6 0 and higher You can enter up to 24 rows of 79 column text that is displayed before the login prompt of each session For version 2 0 and 4 x You can enter up to 24 rows of 80 column text that is displayed before the login prompt of each session Example The following command adds a banner Welcome to the switch befor...

Page 54: ...rs do not see the normal banner If no banner is configured the Extreme logo is displayed The network login banner displays in HTML No links or images are supported Press Enter to enter text on a new line Press Enter twice to finish entering the network login banner You can enter up to 1024 characters in the banner Example The following command adds the banner Welcome to your switch in 8 point purp...

Page 55: ... can be configured in ExtremeWare versions prior to 6 2 1 In ExtremeWare 6 2 1 and later eight DNS name servers can be configured Example The following command specifies that the switch use the DNS server 10 1 2 1 config dns client add 10 1 2 1 History This command was first available in ExtremeWare 4 0 This command was modified in ExtremeWare 6 2 1 to support up to eight DNS name servers Platform...

Page 56: ...ently added entry on the domain suffix list will be the last name used during name resolution This command will not overwrite any exiting entries If a null string is used as the last suffix in the list and all other lookups fail the name resolver will attempt to look up the name with no suffix Example The following command configures a domain name and adds it to the domain suffix list config dns c...

Page 57: ...fault N A Usage Guidelines Up to three DNS name servers can be configured in ExtremeWare versions prior to 6 2 1 In ExtremeWare 6 2 1 and later eight DNS name servers can be configured Example The following command specifies that the switch use the DNS server 10 1 2 1 config dns client add name server 10 1 2 1 History This command was first available in ExtremeWare 6 2 2 Platform Availability This...

Page 58: ...me The default domain name will be used to create a fully qualified host name when a domain name is not specified For example if the default default domain name is set to food com then when a command like ping dog is entered the ping will actually be executed as ping dog food com Example The following command configures the default domain name for the server config dns client default domain xyz_in...

Page 59: ...e server from the available server list for the DNS client Syntax Description Default N A Usage Guidelines None Example The following command removes a DNS server from the list config dns client delete 10 1 2 1 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms ipaddress Specifies an IP address ...

Page 60: ...rom the domain suffix list If the deleted item was not the last entry in the list all items that had been added later are moved up in the list If no entries in the list match the domain name specified an error message will be displayed Example The following command deletes a domain name from the domain suffix list config dns client delete domain suffix xyz_inc com History This command was first av...

Page 61: ...s a DNS name server from the available server list for the DNS client Syntax Description Default N A Usage Guidelines None Example The following command removes a DNS server from the list config dns client delete name server 10 1 2 1 History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on all platforms ipaddress Specifies an IP address ...

Page 62: ...ure must be enabled for this command to have an effect the idletimeouts feature is disabled by default In ExtremeWare v 6 2 0 the time out interval was specified in seconds not minutes Example The following command sets the time out for idle HTTP login and console sessions to 10 minutes config idletimeouts 10 History This command was first available in ExtremeWare 6 2 This command was modified in ...

Page 63: ...through 11 and the PM hours range from 12 through 23 For version 6 0 and higher You cannot set the year past 2036 For version 2 0 and 4 x You cannot set the year past 2023 Example The following command configures a system date of February 15 2002 and a system time of 8 42 AM and 55 seconds config time 02 15 2002 08 42 55 History This command was first available in ExtremeWare 2 0 Platform Availabi...

Page 64: ...length The default is an empty string dst_offset Specifies an offset from standard time in minutes Value is in the range of 1 to 60 Default is 60 minutes floating_day Specifies the day week and month of the year to begin or end DST each year Format is week day month where week is specified as first second third fourth last or 1 5 day is specified as sunday monday tuesday wednesday thursday friday ...

Page 65: ...st sunday april The ends specification defaults to every last sunday october The ends date may occur earlier in the year than the begins date This will be the case for countries in the Southern Hemisphere If you specify only the starting or ending time not both the one you leave unspecified will be reset to its default The time_of_day specification defaults to 2 00 The timezone IDs are optional Th...

Page 66: ...n Rome Italy Bern Switzerland Stockholm Sweden Oslo Norway 2 00 120 EET Eastern European Russia Zone 1 Athens Greece Helsinki Finland Istanbul Turkey Jerusalem Israel Harare Zimbabwe 3 00 180 BT Baghdad Russia Zone 2 Kuwait Nairobi Kenya Riyadh Saudi Arabia Moscow Russia Tehran Iran 4 00 240 ZP4 Russia Zone 3 Abu Dhabi UAE Muscat Tblisi Volgograd Kabul 5 00 300 ZP5 Russia Zone 4 5 30 330 IST India...

Page 67: ...me EDT config timezone 300 autodst The following command configures the GMT offset and automatic DST adjustment for the Middle European timezone with the optional timezone ID of MET config timezone name MET 60 autodst name MDT begins every last sunday march at 1 ends every last sunday october at 1 The following command configures the GMT offset and automatic DST adjustment for New Zealand The endi...

Page 68: ...case sensitive For version 6 0 and higher User account names must have a minimum of 1 character and can have a maximum of 32 characters Passwords must have a minimum of 0 characters and can have a maximum of 16 characters admin Specifies an access level for account type admin user Specifies an access level for account type user username Specifies a new user account name See Usage Guidelines for mo...

Page 69: ...itch to generate an ASCII configuration using the upload configuration command and parsing a switch generated configuration using the download configuration command Example The following command creates a new account named John2 with administrator privileges create account admin john2 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to suppor...

Page 70: ...r privileges to delete a user account There must be one administrator account on the system the command will fail if an attempt is made to delete the last administrator account on the system Do not delete the default administrator account If you do it is automatically restored with no password the next time you download a configuration To ensure security change the password on the default account ...

Page 71: ...delete account ExtremeWare Software 7 0 0 Command Reference Guide 71 Platform Availability This command is available on all platforms ...

Page 72: ...f a page This command disables the pause mechanism and allows the display to print continuously to the screen NOTE Press q and then press Return to force a pause when CLI paging is disabled To view the status of CLI paging on the switch use the show management command The show management command displays information about the switch including the enable disable state for CLI paging Example The fol...

Page 73: ... remain open until the switch is rebooted or you logoff Telnet sessions remain open until you close the Telnet client To view the status of idle time outs on the switch use the show management command The show management command displays information about the switch including the enable disable state for idle time outs Example The following command disables the timer that disconnects all sessions ...

Page 74: ... when the display reaches the end of a page To view the status of CLI paging on the switch use the show management command The show management command displays information about the switch including the enable disable state for CLI paging If CLI paging is enabled and you use the show tech support command to diagnose system technical problems the CLI paging feature is disabled Example The following...

Page 75: ...the required length of time This ensures that there are no hanging connections To view the status of idle time outs on the switch use the show management command The show management command displays information about the switch including the enable disable state for idle time outs In ExtremeWare version 6 2 or later you can configure the length of the time out interval Example The following comman...

Page 76: ...cable to your software or switch can be used To view the type of license you are currently running on the switch use the show switch command The license key number is not displayed but the type of license is displayed in the show switch output The type of license is displayed after the system name system location system contact and system MAC address Example The following command enables a full L3...

Page 77: ...rguments or variables Default N A Usage Guidelines ExtremeWare remembers the last 49 commands you entered on the switch Use the history command to display a list of these commands Example The following command displays the previous 49 commands entered on the switch history History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 78: ...ot rather than to the switch In general the modules that can be rebooted have separate images from the ExtremeWare image for the switch The modules that can be rebooted are E1 T1 T3 ARM ATM MPLS and PoS The E1 T1 and T3 reboot slot command does not support the time or cancel keywords so this command can only be executed immediately Example The following command reboots the switch at 8 00 AM on Apr...

Page 79: ...reboot ExtremeWare Software 7 0 0 Command Reference Guide 79 Platform Availability This command is available on all platforms ...

Page 80: ...information in a tabular format User Name The name of the user This list displays all of the users who have access to the switch Access The SNMP community strings This may be listed as R W for read write or RO for read only Login OK The number of logins that are okay Failed The number of failed logins Depending on the software version running on your switch additional or different account informat...

Page 81: ...show accounts pppuser ExtremeWare Software 7 0 0 Command Reference Guide 81 Platform Availability This command is available on all platforms ...

Page 82: ...idelines Use this command to view the banner that is displayed before the login prompt Example The following command displays the switch banner show banner Output from this command looks similar to the following Extreme Networks Summit48i Layer 3 Switch Unauthorized Access is strictly prohibited Violators will be persecuted History This command was first available in ExtremeWare 2 0 Platform Avail...

Page 83: ...ines None Example The following command displays the DNS configuration show dns client Output from this command looks similar to the following Number of domain suffixes 2 Domain Suffix 1 njudah local Domain Suffix 2 dbackman com Number of name servers 2 Name Server 1 172 17 1 104 Name Server 2 172 17 1 123 History This command was first available in ExtremeWare 4 0 Platform Availability This comma...

Page 84: ... sysLocation sysContact MAC address System mode RED configuration DLCS state System health check Recovery mode Watchdog state Current date time system uptime and time zone configuration Operating environment temperature fans and power supply status Software image information primary secondary image date time version NVRAM configuration information primary secondary configuration date time size ver...

Page 85: ... GMT DST of 60 minutes is currently not in effect name is not set DST begins every first Sunday April at 2 00 DST ends every last Sunday October at 2 00 Boot Time Wed Oct 23 10 13 07 2002 Next Reboot None scheduled Timed Upload None scheduled Timed Download None scheduled Temperature Normal All fans are operational Power supply Upper PSU A not present Lower PSU B OK Image Selected Primary Image Bo...

Page 86: ...86 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Accessing the Switch Platform Availability This command is available on all platforms ...

Page 87: ...23 45 67 8 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support the hostname parameter This command was modified in ExtremeWare 6 1 to support the from ttl and port parameters Platform Availability This command is available on all platforms host name ip Specifies the hostname or IP address of the destination endstation from source IP a...

Page 88: ...88 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Accessing the Switch ...

Page 89: ...e MIB variable as described in RFC 2021 Authorized managers An authorized manager can be either a single network management station or a range of addresses for example a complete subnet specified by a prefix and a mask The switch can have a maximum of eight authorized managers Community strings The community strings allow a simple method of authentication between the switch and the remote Network ...

Page 90: ...le Network Time Protocol ExtremeWare supports the client portion of the Simple Network Time Protocol SNTP Version 3 based on RFC1769 SNTP can be used by the switch to update and synchronize its internal clock from a Network Time Protocol NTP server When enabled the switch sends out a periodic query to the indicated NTP server or the switch listens to broadcast NTP updates In addition the switch su...

Page 91: ...tch The default read only community string is public Sixteen read only and sixteen read write community strings can be configured on the switch including the defaults The community string for all authorized trap receivers must be configured on the switch for the trap receiver to receive switch generated traps SNMP community strings can contain up to 127 characters To view the SNMP read only access...

Page 92: ...92 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available on the i series platforms ...

Page 93: ...h The default read write community string is private Sixteen read only and sixteen read write community strings can be configured on the switch including the defaults The community string for all authorized trap receivers must be configured on the switch for the trap receiver to receive switch generated traps SNMP community strings can contain up to 127 characters To view the SNMP read write acces...

Page 94: ...94 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available on the i series platforms ...

Page 95: ... added station are granted access A maximum of 32 entries which include individual IP addresses or IP address groups can be specified An authorized manager can be either a single network management station or a range of addresses for example a complete subnet specified by a prefix and a mask The switch can have a maximum of eight authorized managers To restore defaults to all SNMP related entries ...

Page 96: ...96 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available only on platforms based on the Summit chipset ...

Page 97: ...ed to use identical community strings The config snmp add community command allows you to add multiple community strings in addition to the default community string Sixteen read only and sixteen read write community strings can be configured on the switch including the defaults An SNMP community string can contain up to 127 characters To change the value of the default read write and read only com...

Page 98: ...eWare Software 7 0 0 Command Reference Guide Commands for Managing the Switch History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all i series platforms ...

Page 99: ...command The show management command displays information about the switch including the destination and community of the SNMP trap receivers configured on the switch To restore defaults to all SNMP related entries including the SNMP parameters modified using the config snmp add trapreceiver command use the unconfig management command For version 6 0 and higher A maximum of sixteen trap receivers c...

Page 100: ...and adds the IP address 10 101 0 105 as a trap receiver with community string blue and IP address 10 101 0 25 as the source config snmp add trapreceiver 10 101 0 105 community blue from 10 101 0 25 History This command was first available in ExtremeWare 1 0 This command was modified in ExtremeWare 6 2 1 to support the port community and source from options This command was modified in ExtremeWare ...

Page 101: ...ng is private It is recommended that you change the values of the default read write and read only community strings You use the config snmp community command to change the value of the default community strings An SNMP community string can contain up to 127 characters The encrypted option is inteded for use by the switch when generatinge an ASCII configuration file using the upload configuration ...

Page 102: ...xtremeWare Software 7 0 0 Command Reference Guide Commands for Managing the Switch History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms ...

Page 103: ... ExtremeWare 6 x If you delete all addresses any machine can have SNMP access to the switch Example The following command deletes IP address 123 45 67 8 from an SNMP station config snmp delete 123 45 67 8 History This command was first available in ExtremeWare 2 0 Support for this command was discontinued in ExtremeWare 6 0 Platform Availability This command is available only on platforms based on...

Page 104: ...igured on the switch for the trap receiver to receive switch generated traps SNMP community strings can contain up to 127 characters It is recommended that you change the defaults of the read write and read only community strings Use the config snmp add command to configure an authorized SNMP management station The encrypted option should only be used by the switch to generate an ASCII configurati...

Page 105: ...llowing command adds a read write community string named extreme config snmp add community readwrite extreme History This command was first available in ExtremeWare 2 0 Support for the add parameter was discontinued in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 106: ...ommunity string should be removed Example The following command deletes the trap receiver 10 101 0 100 from the trap receiver list config snmp delete trapreceiver 10 101 0 100 The following command deletes entries in the trap receiver list for 10 101 0 100 with community string public config snmp delete trapreceiver 10 101 0 100 community public Any entries for this IP address with a different com...

Page 107: ...ame of the system contact listed on the switch use the show switch command The show switch command displays switch statistics including the name of the system contact To restore defaults to all SNMP related entries including the SNMP parameters modified using the config snmp syscontact alphanumeric string command use the unconfig management command Example The following command defines FredJ as th...

Page 108: ... switch use the show switch command The show switch command displays switch statistics including the location of the switch To restore defaults to all SNMP related entries including the SNMP parameters modified using the config snmp syslocation alphanumeric string command use the unconfig management command Example The following command configures a switch location name on the system config snmp s...

Page 109: ...n the switch prompt To view the name of the system listed on the switch use the show switch command The show switch command displays switch statistics including the name of the system To restore defaults to all SNMP related entries including the SNMP parameters modified using the config snmp sysname alphanumeric string command use the unconfig management command Example The following command names...

Page 110: ...cond or if it is not synchronized the switch queries the second server If the switch cannot obtain the time it restarts the query process Otherwise the switch waits for the sntp client update interval before querying again Example The following command configures a primary NTP server config sntp client primary server 10 1 2 2 History This command was first available in ExtremeWare 4 0 Platform Ava...

Page 111: ...s the interval between polls for time information from SNTP servers Syntax Description Default 64 seconds Usage Guidelines None Example The following command configures the interval timer config sntp client update interval 30 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms seconds Specifies an interval in seconds ...

Page 112: ...iption Default 30 seconds Usage Guidelines The Show for this parameter is displayed by using the following command show management Example The following command configures the interval timer config sntp client update interval 30 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms seconds Specifies an interval in seconds where...

Page 113: ...Default Enabled Usage Guidelines Disabling SNMP access does not affect the SNMP configuration for example community strings However if you disable SNMP access you will be unable to access the switch using SNMP Example The following command disables SNMP access on the switch disable snmp access History This command was first available in ExtremeWare 2 0 Platform Availability This command is availab...

Page 114: ...e configuration of the dot1dTpFdb table on the switch use the show management command The show management command displays information about the switch including the enable disable state the dot1dTpFdb table To restore defaults to all SNMP related entries including the SNMP parameters modified using the disable snmp dot1dtpfdbtable command use the unconfig management command Example The following ...

Page 115: ...abled Usage Guidelines This command does not clear the SNMP trap receivers that have been configured The command prevents SNMP traps from being sent from the switch even if trap receivers are configured Example The following command prevents SNMP traps from being sent from the switch to the trap receivers disable snmp traps History This command was first available in ExtremeWare 2 0 Platform Avail...

Page 116: ...ment command Example The following command will prevent link up or link down traps from being sent for any port on the switch except the management port if it has one disable snmp traps port up down all History This command was first available in ExtremeWare 6 2 2 This command was modified to include the management port in ExtremeWare 7 0 0 Platform Availability This command is available on all pl...

Page 117: ...rts portlist limit learning command That command configures a limit on the number of MAC addresses that can be learned on a port s After that limit has been reached on a particular port a trap will be sent by the switch if a new MAC address appears on that port In addition a message will be generated in the syslog and the port will be blackholed Example The following command prevents SNMP mac secu...

Page 118: ...clock from a Network Time Protocol NTP server After the SNTP client has been enabled the switch sends out a periodic query to the indicated NTP server or the switch listens to broadcast NTP updates In addition the switch supports the configured setting for Greenwich Mean Time GMT offset and the use of Daylight Savings Time DST Example The following command disables the SNTP client disable sntp cli...

Page 119: ...bled Usage Guidelines The watchdog timer reboots the switch if the CPU becomes trapped in a processing loop If the watchdog timer is executed the switch captures information on the cause of the reboot and posts it to the system log Example The following command disables the watchdog timer disable system watchdog History This command was first available in ExtremeWare 6 1 9 Platform Availability Th...

Page 120: ...on This command has no arguments or variables Default Enabled Usage Guidelines You must be logged in as an administrator to enable or disable Telnet Example With administrator privilege the following command disables Telnet services on the switch disable telnet History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 121: ...mand to disable web access to the switch If you are using ExtremeWare Vista for web access you must create and configure an access profile before you can use this option You create an access profile using the create access profile command You configure an access profile using the config access profile command Example The following command disables web access to the switch disable web History This ...

Page 122: ...yntax Description Default N A Usage Guidelines None Example The following command enables DHCP for port 9 in VLAN corp enable dhcp ports 9 vlan corp History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms portlist Specifies the ports for which DHCP should be enabled vlan_name Specifies the VLAN on whose ports DHCP should...

Page 123: ...esiding in the switch at least one VLAN must have an IP address assigned to it Any network manager running SNMP can manage the switch provided the MIB is installed correctly on the management station Each network manager provides its own user interface to the management facilities Example The following command enables SNMP support for the switch enable snmp access History This command was first av...

Page 124: ...e configuration of the dot1dTpFdb table on the switch use the show management command The show management command displays information about the switch including the enable disable state the dot1dTpFdb table To restore defaults to all SNMP related entries including the SNMP parameters modified using the enable snmp dot1dtpfdbtable command use the unconfig management command Example The following c...

Page 125: ...or variables Default Enabled Usage Guidelines An authorized trap receiver can be one or more network management stations on your network The switch sends SNMP traps to all trap receivers Example The following command enables SNMP trap support on the switch enable snmp trap History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 126: ...and Example The following command will enable link up or link down traps on all ports of the switch except the management port if it has one enable snmp traps port up down all History This command was first available in ExtremeWare 6 2 2 This command was modified to include the management port in ExtremeWare 7 0 0 Platform Availability This command is available on all platforms all Specifies that ...

Page 127: ...s portlist limit learning command That command configures a limit on the number of MAC addresses that can be learned on a port s After that limit has been reached on a particular port a trap will be sent by the switch if a new MAC address appears on that port In addition a message will be generated in the syslog and the port will be blackholed Example The following command allows SNMP mac security...

Page 128: ...lock from a Network Time Protocol NTP server After the SNTP client has been enabled the switch sends out a periodic query to the indicated NTP server or the switch listens to broadcast NTP updates In addition the switch supports the configured setting for Greenwich Mean Time GMT offset and the use of Daylight Savings Time DST Example The following command enables the SNTP client enable sntp client...

Page 129: ...watchdog timer reboots the switch if the CPU becomes trapped in a processing loop If the watchdog timer is executed the switch captures information on the cause of the reboot and posts it to the system log You must reboot to have this command take effect Example The following command enables the watchdog timer enable system watchdog History This command was first available in ExtremeWare 6 1 9 Pla...

Page 130: ...network manager you must have at least one VLAN on the switch and it must be assigned an IP address and subnet mask IP addresses are always assigned to a VLAN The switch can be assigned multiple IP addresses For version 6 0 and higher Use an access profile to restrict Telnet access An access profile permits or denies a named list of IP addresses and subnet masks You must create and configure an ac...

Page 131: ...Command Reference Guide 131 History This command was first available in ExtremeWare 2 0 Support for the access profile none and port parameters was introduced in ExtremeWare 6 0 Platform Availability This command is available on all platforms ...

Page 132: ...ate and configure an access profile before you can use this option You create an access profile using the create access profile command You configure an access profile using the config access profile command Apply an access profile only when ExtremeWare Vista is enabled Use the none option to cancel a previously configured access profile Use the port option to specify a TCP port number Example The...

Page 133: ...iption This command has no arguments or variables Default N A Usage Guidelines Use this command to log out of a CLI or Telnet session Example The following command logs out the session of a current user for CLI or Telnet exit History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on Summit switches ...

Page 134: ...net Syntax Description This command has no arguments or variables Default N A Usage Guidelines Use this command to log out of a CLI or Telnet session Example The following command logs out the session of a current user for CLI or Telnet logout History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 135: ...ription This command has no arguments or variables Default N A Usage Guidelines Use this command to log out of a CLI or Telnet session Example The following command logs out the session of a current user for CLI or Telnet quit History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 136: ...ty strings Authorized SNMP station list SNMP trap receiver list Login statistics For ExtremeWare 4 0 and higher the following show management output is also displayed Enable disable state for SSH2 and access profile information RMON polling configuration For ExtremeWare 6 2 2 and higher the enable disable state of the port up down traps is also displayed For ExtremeWare 7 0 0 and higher the enable...

Page 137: ...ags S Standard Mode E Enhanced Mode SNMP MAC Security traps disabled Link Up Link Down traps enabled on ports All including MgmtPort SNMP stats inPkts 301 outPkts 302 errors 0 authErrors 0 Gets 93 GetNexts 208 Sets 0 SNMP traps sent 10 authTraps enabled Login stats validLogins 3 badPasswords 0 unknownUSers 2 last bad user admin1 Telnet total 3 valid 1 invalid 2 HTTP total 0 valid 0 invalid 0 Manag...

Page 138: ... in the new switch chassis The following components are monitored by the odometer For the Black Diamond MSM and I O modules For the Alpine SMM I O slots and power supplies For stackable switches the CPU Example The following command displays how long each component of a switch has been functioning since it s manufacture date show odometer Following is the output from this command MSM64 7 show odom...

Page 139: ...show odometer ExtremeWare Software 7 0 0 Command Reference Guide 139 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all platforms ...

Page 140: ... following command displays the active sessions on the switch show session Following is the output from this command Login Time User Type Auth CLI Auth Location 0 Tue Feb 19 18 08 42 2002 admin console local disabled serial 5 Thu Feb 21 19 09 48 2002 admin http local disabled 10 0 4 76 1028 Thu Feb 21 18 56 40 2002 admin telnet local disabled 10 0 4 19 Table 7 Show Command Field Definitions Field ...

Page 141: ...his command was first available in ExtremeWare 2 0 Support for the CLI Auth command field definition was introduced in ExtremeWare 6 0 Support for the Auth command field definition was introduced in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 142: ...is command SNTP client is enabled SNTP time is valid Primary server 172 17 1 104 Secondary server 172 17 1 104 Query interval 64 Last valid SNTP update From server 172 17 1 104 on Wed Oct 30 22 46 03 2002 SNTPC Statistics Packets transmitted to primary server 1 to secondary server 0 Packets received with valid time from Primary server 1 from Secondary server 0 from Broadcast server 0 Packets recei...

Page 143: ...show sntp client ExtremeWare Software 7 0 0 Command Reference Guide 143 Platform Availability This command is available on all platforms ...

Page 144: ... Description Default Summary information for all VLANs on the device Usage Guidelines Display the IP address MAC address and time assigned to each end device Example The following command displays DHCP address allocation information about VLAN vlan1 show vlan dhcp address allocation vlan vlan1 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is avail...

Page 145: ...ation for all VLANs on the device Usage Guidelines Displays the DHCP configuration including the DHCP range DHCP lease timer network login lease timer and DHCP enabled ports Example The following command displays DHCP configuration information about VLAN vlan1 show vlan dhcp config vlan vlan1 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is availa...

Page 146: ...nadvertently the switch terminates the session within two hours Before you can start a Telnet session you need to configure the switch IP parameters To open a Telnet connection you must specify the host IP address or the host name of the device you wish to manage Check the user manual supplied with the Telnet facility if you are unsure of how to do this To view the status of Telnet on the switch u...

Page 147: ...d Reference Guide 147 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 x to support the hostname and port number parameters Platform Availability This command is available on all platforms ...

Page 148: ... to all SNMP related entries Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command restores default values to all SNMP related entries on the switch unconfig management History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 149: ...x setting for each port You can select to manually configure the duplex setting and the speed of 10 100 Mbps ports and you can manually configure the duplex setting on Gigabit Ethernet ports All ports on the switch can be configured for half duplex or full duplex operation The ports are configured to autonegotiate the duplex setting but you can manually configure the duplex setting for your specif...

Page 150: ...and parameters allow you to view various issues such as real time collision statistics link speed flow control and packet size Commands that require you to enter one or more port numbers use the parameter portlist in the syntax On a modular switch a portlist can be a list of slots and ports On a stand alone switch a portlist can be one or more port numbers For a detailed explanation of port specif...

Page 151: ...is put into a mismatch state where the inserted module does not match the configured slot and is not brought online To use the new module type in a slot the slot configuration must be cleared or configured for the new module type Use the config slot command to configure the slot For version 6 0 and higher This command is available on modular switches For version 4 0 This command is available on Bl...

Page 152: ...cards NICs have a configured maximum MTU size that does not include the additional 4 bytes of CRC included in a jumbo frame configuration Ensure that the NIC maximum MTU is at or below the maximum MTU size configured on the switch Frames that are larger than the MTU size configured on the switch are dropped at the ingress port If you use IP fragmentation with jumbo frames and you want to set the M...

Page 153: ...config ip mtu vlan ExtremeWare Software 7 0 0 Command Reference Guide 153 Platform Availability This command is available on i series platforms ...

Page 154: ...oes not include the additional 4 bytes of CRC Ensure that the NIC maximum MTU size is at or below the maximum MTU size configured on the switch Frames that are larger than the MTU size configured on the switch are dropped at the ingress port For MPLS modules You should enable jumbo frame support on the ports that are members of an MPLS VLAN The jumbo frame size should be set to accommodate the add...

Page 155: ...g jumbo frame size ExtremeWare Software 7 0 0 Command Reference Guide 155 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 156: ... network analyzer or RMON probe for packet analysis The switch uses a traffic filter that copies a group of traffic to the monitor port The traffic filter can be defined based on one of the following criteria Physical port All data that traverses the port regardless of VLAN configuration is copied to the monitor port VLAN All data to and from a particular VLAN regardless of the physical port confi...

Page 157: ... switch on port 1 and the VLAN default to the mirror port config mirroring add ports 1 vlan default The following example sends all traffic coming into or out of a modular switch on slot 3 port 2 and the VLAN default to the mirror port config mirroring add ports 3 2 vlan default History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modu...

Page 158: ...ing a MAC address to specify mirroring Example The following example deletes the mirroring filter on a stand alone switch defined for port 1 on VLAN default config mirroring delete ports 1 vlan default The following example deletes the mirroring filter on a modular switch defined for slot 3 port 2 on VLAN default config mirroring add ports 3 2 vlan default History This command was first available ...

Page 159: ...notice a link down indication The keep links up and take links down options are available on the i series switches only Example The following command prevents external ports from being reset when an MSM failover occurs config msm failover link action keep links up History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on the BlackDiamond switc...

Page 160: ...e purged Dynamically learned entries still get aged and can be cleared If entries are cleared or aged out after the learning limit has been reached new entries will then be able to be learned until the limit is reached again Permanent static and permanent dynamic entries can still be added and deleted using the create fdbentry and delete fdbentry commands These override any dynamically learned ent...

Page 161: ... still flow to the port Packets destined for the permanent MAC and other non blackholed MACs Broadcast traffic EDP traffic Traffic from the permanent MAC will still flow from the virtual port Once the port is locked down all the entries become permanent and will be saved across reboot When you remove the lockdown using the unlock learning option the learning limit is reset to unlimited and all ass...

Page 162: ...are 7 0 0 Command Reference Guide Commands for Configuring Slots and Ports on a Switch History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on the i series platforms ...

Page 163: ...s on a stand alone switch can be configured for half duplex or full duplex operation By default the ports autonegotiate the duplex setting In certain interoperability situations it is necessary to turn autonegotiation off on a Gigabit Ethernet port Even though a Gigabit Ethernet port runs only at full duplex and gigabit speeds the command that turns off autonegotiation must still include the duple...

Page 164: ...rt 4 a Gigabit Ethernet port on a stand alone switch config ports 4 auto off duplex full The following example turns autonegotiation off for slot 2 port 1 on a modular switch config ports 2 1 auto off duplex full History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches This command was modified in ExtremeWare 6 1 to suppor...

Page 165: ...led or disabled as part of autonegotiation If autonegotiation is set to off flow control is disabled When autonegotiation is turned on flow control is enabled For version 6 1 The all parameter specifies all ports on the switch Example The following command configures the switch to autonegotiate for ports 4 and 6 on a stand alone switch config ports 4 6 auto on The following command configures the ...

Page 166: ... Ports on a Switch History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 1 to support the all parameter This command was modified in ExtremeWare 4 0 to support modular switches Platform Availability This command is available on all platforms ...

Page 167: ...to a particular department a common display string The string is displayed in certain commands such as the show ports info command NOTE Do not use a port number as a display string For example do not assign the display string 2 to port 2 Example The following command configures the user defined string corporate for port 1 on a stand alone switch config ports 1 display string corporate The followin...

Page 168: ...168 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Configuring Slots and Ports on a Switch Platform Availability This command is available on all platforms ...

Page 169: ...ts when packets are transmitted using a value of 12 Thus by increasing the Interpacket Gap packet transmission is slowed and packet loss can be minimized or prevented The Interpacket Gap value need not be modified when interconnecting Extreme Networks switches over 10 Gigabit Ethernet links The allowable range for the byte time is 12 1023 Example The following command configures Interpacket Gap to...

Page 170: ...The following command configures the link detection level for port 3 to 4 config ports 3 link detection level 4 History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on the i series platforms portlist Specifies one or more primary ports or slots and ports On a modular switch can be a list of slots and ports On a stand alone switch can be one ...

Page 171: ...t be considered when configuring a software controlled redundant port You must manually configure the primary and redundant ports identically in terms of VLANs QoS settings access lists and so on Auto negotiation must be enabled on both the primary and redundant port You cannot configure hardware redundant ports such as ports 49 and 50 on a Summit48i as software controlled redundant ports Software...

Page 172: ...rand of fiber is pulled the software redundant port cannot correctly recover from the failure Example The following command configures a software controlled redundant port on a stand alone switch config ports 3 redundant 4 The following command configures a software controlled redundant port on a modular switch config ports 1 3 redundant 2 3 The following command configures a software controlled r...

Page 173: ...ce and destination MAC and IP address and the TCP port number IPX packets Uses the source and destination MAC address and IPX identifiers All other packets Uses the source and destination MAC address To verify your configuration use the show sharing address based command The show sharing address based output displays the addressed based configurations on the switch Example The following example co...

Page 174: ... Ethernet 8 port copper module g12sx Specifies a Gigabit Ethernet 12 port fiber module g12tx Specifies a Gigabit Ethernet 12 port copper module WDMi Specifies a Gigabit Ethernet WAN module arm Specifies an Accounting and Routing Module ARM a3c Specifies an Asynchronous Transfer Mode ATM module mpls Specifies a MultiProtocol Label Switching MPLS module p3c Specifies an OC 3 PoS module p12c Specifie...

Page 175: ...he slot configuration must be cleared or configured for the new module type Upon powering up the chassis or when an I O module is hot swapped ExtremeWare automatically determines the system power budget and protects the BlackDiamond switch from any potential overpower configurations If power is available ExtremeWare powers on and initializes the module When ExtremeWare detects that a module will c...

Page 176: ...you no longer need to locate neighbor Extreme Networks switches For version 6 1 The all parameter specifies all ports on the switch For Version 6 0 and higher SummitLink is not supported For version 2 0 and 4 0 EDP cannot be disabled on a port that has SummitLink enabled nor on ports that are connected to a Summit Virtual Chassis Example The following command disables EDP on port 4 and port 6 on a...

Page 177: ...7 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches This command was modified in ExtremeWare 6 1 to support the all parameter Platform Availability This command is available on all platforms ...

Page 178: ...cified ports Learning and flooding are mutually exclusive To enable learning you must disable flooding On a modular switch portlist can be a list of slots and ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command dis...

Page 179: ...alone Switch Numerical Ranges in Chapter 1 Use the disable jumbo frame ports command when you no longer need jumbo frame support Example The following command disables jumbo frame support on port 4 on a stand alone switch disable jumbo frame ports 4 The following command disables jumbo frame support on slot 1 port 2 on a BlackDiamond switch disable jumbo frame 1 2 History This command was first av...

Page 180: ... loopbacks may exist between different ports The feature will disable any port that both has the feature enabled and receives an LACP message that was sent from the local system Example The following example disables loopback detection on ports 9 through 12 disable lbdetect port 9 12 History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is available on al...

Page 181: ...ned to a permanent MAC address matching that port number are forwarded Use this command in a secure environment where access is granted via permanent forwarding databases FDBs per port Learning must be disabled to allow port flooding See the enable flooding command for information on enabling port flooding Example The following command disables MAC address learning on port 4 on a stand alone switc...

Page 182: ... Description This command has no arguments or variables Default Enabled Usage Guidelines Use the disable mirroring command to stop configured copied traffic associated with one or more ports Example The following command disables port mirroring disable mirroring History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 183: ...roubleshooting purposes Even though a port is disabled the link remains enabled for diagnostic purposes Example The following command disables ports 3 5 and 12 through 15 on a stand alone switch disable ports 3 5 12 15 The following command disables slot 1 ports 3 5 and 12 through 15 on a modular switch disable ports 1 3 1 5 1 12 1 15 History This command was first available in ExtremeWare 2 0 Thi...

Page 184: ...ar Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command disables sharing on master logical port 9 which contains ports 9 12 on a stand alone switch disable sharing 9 The following command disables sharing on master logical port 9 in slot 3 which contains ports 9 through 12 on a modular switch disable sharing 3 9 History This command was first av...

Page 185: ...ly or use the disable slot all to disable all the slots If there is no I O card present in a slot when the user disables the slot the slot still goes to the Disable state If a card is inserted in a slot that has been disabled the card does not come up and stays in the disabled state until the slot is enabled by using the enable slot command below If you do not save the configuration before you do ...

Page 186: ...nd alone Switch Numerical Ranges in Chapter 1 Use with Extreme Networks switches that support privacy and backup uplinks When smartredundancy is disabled the switch changes the active link only when the current active link becomes inoperable Example The following command disables the smart redundancy feature on ports 1 4 disable smartredundancy 1 4 History This command was first available in Extre...

Page 187: ...unning on a normal switch port EDP is used to by the switches to exchange topology information with each other Information communicated using EDP includes the following Switch MAC address switch ID Switch software version information Switch IP address Switch VLAN IP information Switch port number For version 2 0 and 4 0 Information communicated using EDP also includes the following Virtual chassis...

Page 188: ...de Commands for Configuring Slots and Ports on a Switch History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches Platform Availability This command is available on all platforms ...

Page 189: ...e flooding you must first disable learning When ports are configured for flooding the FDB will be flushed for the entire system which means all the entries in the dynamic FDB must be relearned On a modular switch portlist can be a list of slots and ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ra...

Page 190: ...tch portlist can be a list of slots and ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command enables jumbo frame support on port 5 on a stand alone switch enable jumbo frame ports 5 The following command enables jum...

Page 191: ...ble any port that both has the feature enabled and receives an LACP message that was sent from the local system If no timeout is specified the port is disabled permanently if there is a loop detected Otherwise the port is periodically re enabled and tested for loops every N seconds Example The following example enables loopback detection on ports 9 through 12 enable lbdetect port 9 12 History This...

Page 192: ...d alone Switch Numerical Ranges in Chapter 1 Example The following command enables MAC address learning on ports 7 and 8 on a stand alone switch enable learning ports 7 8 The following command enables MAC address learning on slot 1 ports 7 and 8 on a modular switch enable learning ports 1 7 8 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 t...

Page 193: ... specific port is copied to the monitor port Up to eight mirroring filters and one monitor port can be configured on the switch After a port has been specified as a monitor port it cannot be used for any other function Frames that contain errors are not mirrored For version 6 0 and higher tagged and untagged are added to the command syntax For version 4 0 and higher to is added to the command synt...

Page 194: ...already be present in the forwarding database FDB Example The following example selects port 3 as a tagged mirror port on a stand alone switch enable mirroring to port 3 tagged The following example selects slot 1 port 3 as the mirror port on a modular switch enable mirroring to port 1 3 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to sup...

Page 195: ...see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command enables ports 3 5 and 12 through 15 on the stand alone switch enable ports 3 5 12 15 The following command enables slot 1 ports 3 5 and 12 through 15 on the modular switch enable ports 1 3 1 5 1 12 1 15 History This command was first available in ExtremeWare 2 0 This command was mo...

Page 196: ...ls traffic is redistributed to the remaining ports in the load sharing group If the failed port becomes active again traffic is redistributed to include that port Load sharing must be enabled on both ends of the link or a network loop will result While LACP is based on industry standard this feature is supported between Extreme Networks switches only However it may be compatible with third party t...

Page 197: ...lection is not intended for use in predictive traffic engineering You can only choose the algorithm used in static load sharing There is no option to choose an algorithm when you use dynamic load sharing Port based Uses the ingress port to determine which physical port in the load sharing group is used to forward traffic out of the switch Address based Uses addressing information to determine whic...

Page 198: ...as first available in ExtremeWare 2 0 The command was modified in ExtremeWare 4 0 to support modular switches The command was modified in ExtremeWare 6 0 to support the algorithm parameter The command was modified in ExtremeWare 7 0 0 to support the dynamic parameter Platform Availability This command is available on all platforms ...

Page 199: ...ble all the slots After the user enables the slot the show slot command shows the state as Operational or will display the appropriate state if the card could not be brought up successfully Note that there is no card state named Enable and the card goes to the appropriate states as determined by the card state machine when the enable slot command is invoked Only slots that have their state as disa...

Page 200: ...ed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command enables the Smart Redundancy feature on port 4 on a switch enable smartredundancy 4 The following command enables the Smart Redundancy feature on slot 1 port 4 on a BlackDiamond switch enable smartredundancy 1 4 History This command was first av...

Page 201: ...d alone Switch Numerical Ranges in Chapter 1 Example The following command resets autonegotiation on port 4 on a stand alone switch restart ports 4 The following command resets autonegotiation on slot 1 port 4 on a modular switch restart ports 1 4 History This command was first available in ExtremeWare 4 0 This command was modified in ExtremeWare 6 1 to support PoS modules This command was modifie...

Page 202: ...auses a user specified MSM failover Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command causes a user specified MSM failover run msm failover History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on the BlackDiamond switch only ...

Page 203: ...xample The following command displays the connectivity and configuration of neighboring Extreme Networks switches show edp Following is the output from this command Port 1 EDP is enabled Remote system Summit5i Version 6 2 2 Remote ID 00 00 00 01 30 e9 ef 00 Remote Port 1 1 Age 37 Remote Vlans Mgmt 4094 10 45 208 223 test1 0 Default 1 MacVlanDiscover 0 Port 3 EDP is enabled Remote system Summit7i V...

Page 204: ...s and Ports on a Switch Remote Vlans Mgmt 4094 10 45 208 226 Default 1 MacVlanDiscover 0 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches Platform Availability This command is available on all platforms ...

Page 205: ... can use this command to display mirroring statistics and determine if mirroring is enabled or disabled on the switch To view the status of port mirroring on the switch use the show mirroring command The show mirroring command displays information about the enable disable state for port mirroring Example The following command displays switch mirroring statistics show mirroring Following is the out...

Page 206: ...ime collision statistics on port 7 on a stand alone switch show ports 7 collisions The following command displays real time collision statistics on slot 1 ports 1 16 on a modular switch show ports 1 1 1 16 collisions Following is the output from this command Port Collision Monitor Wed Oct 30 19 33 10 2002 Port Link Collision Histogram Status 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 1 A 0 0 0 0 0 0 0...

Page 207: ...0 15 R 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 16 R 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Link Status A Active R Ready D Disabled NP Not Present LB Loopback 0 Clear Counters U page up D page down ESC exit History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches Platform Availability This command is available on all platforms ...

Page 208: ...you do not specify a port number or range of ports configuration statistics are displayed for all ports This status information may be useful for your technical support representative if you have a network problem This command displays port configuration which includes Port state Link state Link speed Duplex mode Flow control Load sharing information Link media information For version 6 0 and high...

Page 209: ...NABLED R ON 1000 AUTO 2 8 ENABLED R ON 1000 AUTO 3 1 ENABLED R ON 1000 AUTO SX 3 1 ENABLED R ON 1000 AUTO SX 3 2 ENABLED R ON 1000 AUTO SX 3 3 ENABLED R ON 1000 AUTO SX 3 4 ENABLED R ON 1000 AUTO SX 3 5 ENABLED R ON 1000 AUTO SX 3 6 ENABLED R ON 1000 AUTO SX 3 7 ENABLED R ON 1000 AUTO SX 3 8 ENABLED R ON 1000 AUTO SX 3 9 ENABLED R ON 1000 AUTO SX 3 10 ENABLED R ON 1000 AUTO SX 3 11 ENABLED R ON 10...

Page 210: ...anges in Chapter 1 This status information may be useful for your technical support representative if you have a network problem For version 6 0 and higher The detail parameter is used to provided more specific port information The data is called out with written explanations versus displayed in a table format Example The following command displays port system related information show ports info F...

Page 211: ...g Enabled g Egress TOS Enabled G SLB GoGo Mode h Hardware Redundant Phy j Jumbo Frame Enabled l Load Sharing Enabled m MAC Learning Enabled n Ingress TOS Enabled o Dot1p Vlan Priority Replacement Enabled p Load Sharing Algorithm port based P Software Primary Port q Background QOS Monitoring Enabled r Load Sharing Algorithm round robin R Software Redundant Port Diag P Passed F Failed Port iL Intern...

Page 212: ...ort representative if you have a network problem The following packet statistics are displayed port number link status packet size Example The following command displays packet statistics for ports 1 through 3 on a stand alone switch show ports 1 3 packet The following command displays packet statistics for slot 1 ports 1 through 8 slot 2 ports 1 through 8 and slot 3 port 1 on a modular switch sho...

Page 213: ... 2 4 R 0 0 0 0 0 0 0 2 5 R 0 0 0 0 0 0 0 2 6 R 0 0 0 0 0 0 0 2 7 R 0 0 0 0 0 0 0 2 8 R 0 0 0 0 0 0 0 3 1 R 0 0 0 0 0 0 0 Link Status A Active R Ready D Disabled NP Not Present LB Loopback 0 Clear Counters U page up D page down ESC exit History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches Platform Availability This comm...

Page 214: ...ng groups show ports sharing Following is the output from this command Load Sharing Monitor Config Current Ld Share Ld Share Link Link Master Master Algorithm Group Status Ups 4 1 p 4 1 R 0 p 4 2 R 0 p 4 3 R 0 Flags Link Status A Active R Ready D Disabled NP Not Present Ld Sh Algo p port based a address based r round robin d dynamic History This command was first available in ExtremeWare 6 2 2 Thi...

Page 215: ...ical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 If you do not specify a port number or range of ports port utilization information is displayed for all ports This status information may be useful for your technical support representative if you have a network problem Example The following command displays utilization statistics for port 1 on a stand alone switch show ports 1 utiliz...

Page 216: ...U page up D page down ESC exit The second display shows utilization in terms of bytes Link Utilization Averages Wed Jan 23 21 30 03 2002 Port Link Receive Peak Rx Transmit Peak Transmit Status bytes sec bytes sec bytes sec bytes sec 1 A 1102 69555 536 2671 2 R 0 0 0 0 3 R 0 0 0 0 4 R 0 0 0 0 5 R 0 0 0 0 6 R 0 0 0 0 7 R 0 0 0 0 8 R 0 0 0 0 Link Status A Active R Ready D Disabled NP Not Present The ...

Page 217: ...ftware 7 0 0 Command Reference Guide 217 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches Platform Availability This command is available on all platforms ...

Page 218: ...sed on the packet protocol as follows IP packets Uses the source and destination MAC and IP address and the TCP port number IPX packets Uses the source and destination MAC address and IPX identifiers All other packets Uses the source and destination MAC address To verify your configuration use the show sharing address based command The show sharing address based output displays the addressed based...

Page 219: ...software packages One software package runs on the MSM or SMMi module while another package runs on each ARM ATM MPLS PoS or WAN module You must download the software packages independently using the ExtremeWare download image command Each software package has an associated version number that you can display using the show version command It is recommended not required that the ExtremeWare softwa...

Page 220: ...h fabric card state Network Processor status General Purpose Processor status hardware serial number and type and image version and boot settings For the ARM ATM MPLS PoS and WAN modules the information displayed by this command includes data about the software images loaded on the module and information about the operational status and backplane connections of the module Example The following exa...

Page 221: ...d secondary Primary software version 7 0 0 Build 44 oc12 by Beta_Master on Sat 10 12 2002 06 16p Secondary software version 7 0 0 Build 44 oc12 by Beta_Master on Sat 10 12 2002 06 16p POS ports available Link Up Link Down 01 02 Slot 5 information State Operational Serial number 701026 10 0142F70250 HW Module Type F48Ti Configured Type Not configured UTP ports available Link Active Link Down 01 02 ...

Page 222: ... information State Empty HW Module Type Empty Configured Type Not configured History This command was first available in ExtremeWare 4 0 This command was modified in ExtremeWare 6 1 to support PoS modules This command was modified in ExtremeWare 7 0 0 to support WAN modules Platform Availability This command is available on modular switches only ...

Page 223: ...ailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command clears the user defined display from port 4 on a stand alone switch unconfig ports 4 display string The following command clears the user defined display string from slot 2 port 4 on a modular switch unconfig ports 2 4 display string History ...

Page 224: ...ay string for the port The list of port numbers or the port display string specifies the redundant port s Example The following command unconfigures a software controlled redundant port on a stand alone switch unconfig ports 4 redundant The following command unconfigures a software controlled redundant port on a modular switch unconfig ports 2 3 redundant History This command was first available i...

Page 225: ...assigned module type Syntax Description Default N A Usage Guidelines None Example The following command clears slot 4 of a previously assigned module type unconfig slots 4 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on modular switches only slot number Specifies a slot on a modular switch ...

Page 226: ...226 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Configuring Slots and Ports on a Switch ...

Page 227: ...efault 802 1Q tag Tagging is most commonly used to create VLANs that span switches Ethernet LLC SAP or LLC SNAP Ethernet protocol type Protocol based VLANs are most often used in situations where network segments contain hosts running multiple protocols A combination of these criteria The Generic VLAN Registration Protocol GVRP allows switches to learn some VLAN information automatically instead o...

Page 228: ...e other than 8100 This feature is useful for VMAN tunneling Extreme Networks recommends the use of IEEE registered ethertype 0x88a8 for deploying vMANs Extreme switches assume an Ethertype value of 8100 You must reboot the switch for this command to take effect Example The following command followed by a switch reboot changes the Ethertype value to 9100 config dot1q ethertype 88a8 History This com...

Page 229: ...receive GVRP information only by default it can send and listen and then enables GVRP config gvrp listen port 3 enable gvrp If the switch receives GVRP information on this port it will do one of the following If a tagged VLAN already exists with a VLANid that matches the VLANid in the GVRP data and port 3 is not already a member of that VLAN add it as a tagged port If no VLAN exists with a VLANid ...

Page 230: ...230 ExtremeWare Software 7 0 0 Command Reference Guide VLAN Commands Platform Availability This command is available on all platforms ...

Page 231: ...ommand sets up the end station with MAC address 00 00 00 00 00 01 to participate in VLAN engineering via the MAC enabled ports 16 or 17 config mac vlan add mac address 00 00 00 00 00 01 mac group any vlan engineering MAC address 00 00 00 00 00 01 cannot get access via ports 11 or 12 because it is not configured for mac group 10 The following command sets up the endstation 00 00 00 00 00 02 to part...

Page 232: ...232 ExtremeWare Software 7 0 0 Command Reference Guide VLAN Commands History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 233: ...rticipating in any MAC based VLANs config mac vlan delete mac address 00 00 00 00 00 02 The following commands remove the all MAC addresses from participating in any VLANs config mac vlan delete all config mac vlan delete mac address any History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms all Indicates that all MAC a...

Page 234: ...by issuing the command four times For example if you want to monitor VLANs dog1 dog2 dog3 and dog4 on slot 1 use the following commands config ports 1 monitor vlan dog1 config ports 1 monitor vlan dog2 config ports 1 monitor vlan dog3 config ports 1 monitor vlan dog4 After you have configured the ports for monitoring you can use the show ports vlan statistics command to display information for the...

Page 235: ...ctive and configured for use Example The following command configures a protocol named Fred by adding protocol type LLC SAP with a value of FFEF config protocol fred add llc feff History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms protocol_name Specifies a protocol filter name protocol_type Specifies a protocol type Supported...

Page 236: ...d was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms protocol_name Specifies a protocol filter name protocol_type Specifies a protocol type Supported protocol types include etype IEEE Ethertype llc LLC Service Advertising Protocol snap Ethertype inside an IEEE SNAP packet encapsulation hex_value Specifies a four digit hexadecimal number between ...

Page 237: ... first remove them from the default VLAN You do not need to do this to add them to another VLAN as tagged ports You must configure a loopback port with a unique loopback VLAN tag ID before adding rate shaped ports This command is not supported on SONET modules Example The following command assigns tagged ports 1 2 3 and 6 to a VLAN named accounting config vlan accounting add ports 1 2 3 6 tagged H...

Page 238: ...238 ExtremeWare Software 7 0 0 Command Reference Guide VLAN Commands Platform Availability This command is available on all platforms ...

Page 239: ...ple sets up bi directional rate shaping using a loopback port and a rate shaped port First create the VLAN that will have rate shaped ports as members create vlan ratelimit Create the loopback port to rate shape ingress traffic config vlan ratelimit add ports 1 loopback vid 100 Configure the user port that will be rate shaped config vlan ratelimit add ports 2 soft rate limit Configure rate shaping...

Page 240: ...ion Default N A Usage Guidelines None Example The following command removes ports 1 2 3 and 6 from a VLAN named accounting config accounting delete port 1 2 3 6 History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name portlist A list of ports or slots and ports May be in the form 1 2 3 5 2 5 2 6 2 8...

Page 241: ...s a control VLAN for an EAPS domain do NOT configure the VLAN with an IP address Example The following commands are equivalent both assign an IP address of 10 12 123 1 to a VLAN named accounting config vlan accounting ipaddress 10 12 123 1 24 config vlan accounting ipaddress 10 12 123 1 255 255 255 0 History This command was first available in ExtremeWare 1 0 Platform Availability This command is ...

Page 242: ...fault N A Usage Guidelines You cannot change the name of the default VLAN Default Example The following command renames VLAN vlan1 to engineering config vlan vlan1 name engineering History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms old_name Specifies the current old VLAN name new_name Specifies a new name for the VLAN ...

Page 243: ... config protocol command to define your own protocol filter Example The following command configures a VLAN named accounting as an IP protocol based VLAN config accounting protocol ip History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name protocol_name Specifies a protocol filter name This can be ...

Page 244: ...t VLAN The 802 1Q tag will also be used as the internal VLANid by the switch You can specify a value that is currently used as an internal VLANid on another VLAN it will become the VLANid for the VLAN you specify and a new VLANid will be automatically assigned to the other untagged VLAN Example The following command assigns a VLANid of 120 to a VLAN named accounting config accounting tag 120 Histo...

Page 245: ...e if a particular packet belongs to a particular VLAN After you create the protocol you must configure it using the config protocol command To assign it to a VLAN use the config vlan vlan name protocol command Example The following command creates a protocol named fred create protocol fred History This command was first available in ExtremeWare 1 0 Platform Availability This command is available o...

Page 246: ...elines A newly created VLAN has no member ports is untagged and uses protocol filter any until you configure it otherwise Use the various config vlan commands to configure the VLAN to your needs Internal VLANids are assigned automatically using the next available VLANid starting from the high end 4095 of the range By default the switch supports 1024 VLANs The switch can support a maximum of 3000 V...

Page 247: ...0 Command Reference Guide 247 Example The following command creates a VLAN named accounting create vlan accounting History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms ...

Page 248: ...Default N A Usage Guidelines If you delete a protocol that is in use by a VLAN the protocol associated with than VLAN will become None Example The following command deletes a protocol named fred delete protocol fred History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms protocol_name Specifies a protocol name ...

Page 249: ...ort members and you want those ports to be returned to the default VLAN you must add them back explicitly using the config vlan add port command NOTE The default VLAN cannot be deleted Example The following command deletes the VLAN accounting delete accounting History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms vlan name Spec...

Page 250: ...isables GVRP functionality on the switch It does not change the GVRP configuration of individual ports but GVRP will no longer function on these ports GVRP is not supported in ExtremeWare version 6 1 or later Example The following command disables GVRP functionality disable gvrp History This command was first available in ExtremeWare 2 0 This command exists but is not supported in ExtremeWare vers...

Page 251: ...over VLAN But does not automatically return it to the default VLAN If you need this port to be a member of the default VLAN you must explicitly add it back Example The following command disables ports 16 and 17 from using the MAC based VLAN algorithm disable mac vlan port 16 17 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i seri...

Page 252: ... configured in each switch GVRP must be enabled on individual ports before GVRP information will be sent or received By default GVRP is enabled for both sending and receiving on all ports so executing this command will normally turn on GVRP functionality GVRP is not supported in ExtremeWare version 6 1 or later Example The following command enables GVRP functionality enable gvrp History This comma...

Page 253: ...The following set of commands removes ports 16 and 17 from the default VLAN and then enables them for use with the MAC based VLAN associated with any MAC group config default delete port 16 17 enable mac vlan mac group any port 16 17 The following commands enable ports 11 and 12 for use with a MAC based VLAN associated with MAC group 10 config default delete port 11 12 enable mac vlan mac group 10...

Page 254: ...GVRP running 866422 JoinTime 20 LeaveTime 200 LeaveAllTime 1000 cs GVRP transmit 0 receive 0 tx errors 0 rx errors 0 int errors 0 Enabled for Tx Rx on ports 123456789 10111213141516171819 20212223242526272829 303132 VLAN Ports t static tagged u static untag G GVRP tagged g GVRP untag Default Tag 1 uuuuuuuuuu uuu uuuuuuuuuuuuuuu Mgmt Tag 4094 nat Tag 4093 History This command was first available in...

Page 255: ... only the lower section Example The following is an example of the show mac vlan command Port Vlan Group State 11 MacVlanDiscover 10 Discover 12 MacVlanDiscover 10 Discover 16 MacVlanDiscover any Discover 17 MacVlanDiscover any Discover Total Entries in Database 2 Mac Vlan Group 00 00 00 00 00 AA anntest1 any any anntest1 10 2 matching entries History This command was first available in ExtremeWar...

Page 256: ...es and values of its component protocols Example The following is an example of the show protocol command Protocol Name Type Value IP etype 0x0800 etype 0x0806 ipx etype 0x8137 netbios llc 0xf0f0 llc 0xf0f1 decnet etype 0x6003 etype 0x6004 appletalk snap 0x809b snap 0x80f3 ipx_8022 llc 0xe0e0 ipx_snap snap 0x8137 History This command was first available in ExtremeWare 1 0 Platform Availability Thi...

Page 257: ...iated in this display Use the command show vlan detail to display detailed information for all VLANs This displays the same information as for an individual VLAN but shows every VLAN one by one After each VLAN display you can elect to continue or quit Protocol None indicates that this VLAN was configured with a user defined protocol that has subsequently been deleted Use the command show vlan stat...

Page 258: ... R SubVLAN IP Range Configured r RIP Enabled S SuperVlan s SubVlan T Member of STP Domain v VRRP Enabled X IPX RIP Enabled 2 IPX Type 20 Forwarding Enabled Total number of Vlan s 7 The following is an example of the show vlan Default command VLAN Interface 0 200 with name Default created by user Tagging 802 1Q Tag 1 STPD Domain s0 is not running spanning tree protocol Protocol Match all unfiltered...

Page 259: ...ntax Description Default N A Usage Guidelines None Example The following command removes monitoring for ports on VLAN accounting unconfig ports 8 1 8 6 monitor vlan accounting History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms portlist Specifies one or more ports May be in the form 1 2 3 5 2 5 2 6 2 8 vlan name Specifies a V...

Page 260: ...ion Default N A Usage Guidelines None Example The following command removes the IP address from the VLAN accounting unconfig vlan accounting ipaddress History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ipaddress Specifies that the ipaddress association with this VLAN should be cleared ...

Page 261: ...aging entries in the database are defined as static nonaging entries This means that they do not age but they are still deleted if the switch is reset Permanent entries Permanent entries are retained in the database if the switch is reset or a power off on cycle occurs The system administrator must create permanent entries A permanent entry can either be a unicast or multicast MAC address All entr...

Page 262: ...clear fdb locked mac 00 E0 2B 00 00 00 The following command clears any FDB entries associated with ports 3 5 clear fdb ports 3 5 The following command clears any FDB entries associated with VLAN corporate clear fdb vlan corporate History This command was available in ExtremeWare 2 0 The command was modified in ExtremeWare 6 2 1 to support the broadcast mac keyword and to support clearing locked s...

Page 263: ...ing entries in the database are defined as static nonaging entries This means that they do not age out but non permanent static entries can be deleted if the switch is reset Example The following command sets the FDB aging time to 3 000 seconds config fdb agingtime 3000 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms seconds Sp...

Page 264: ...nt set as well as the b for ingress blackhole and or B for egress blackhole flags set Example The following example adds a blackhole entry to the FDB for MAC address is 00 E0 2B 12 34 56 in VLAN marketing on port 4 create fdbentry 00 E0 2B 12 34 56 vlan marketing both History This command was available in ExtremeWare 2 0 Support for specifying source or destination MAC address was added in Extreme...

Page 265: ...create fdbentry vlan blackhole ExtremeWare Software 7 0 0 Command Reference Guide 265 Platform Availability This command is available on all platforms ...

Page 266: ...AC address in a packet Thus initially the entry may not appear in the show fdb output Once the entry has been learned it is created as a permanent dynamic entry designated by dpm in the flags field of the show fdb output A dynamic entry is flushed and relearned updated when any of the following take place A VLAN is deleted A VLAN identifier VLANid is changed A port mode is changed tagged untagged ...

Page 267: ...e following example associates the QoS profile qp2 with a dynamic entry for MAC address 00 A0 23 12 34 56 on VLAN net34 that will be learned by the FDB create fdbentry 00 A0 23 12 34 56 vlan net34 dynamic qosprofile qp2 QoS profile qp2 will be applied when the entry is learned The following example associates the QoS profile qp5 with the wildcard permanent FDB entry any mac on VLAN v110 create fdb...

Page 268: ...tries After they have been created permanent static entries stay the same as when they were created If the same MAC address is encountered on another virtual port that is not included in the permanent MAC entry it is handled as a blackhole entry The static entry is not updated when any of the following take place A VLAN is deleted A VLAN identifier VLANid is changed A port mode is changed tagged u...

Page 269: ...uding their QoS profile associations Example The following example adds a permanent static entry to the FDB for MAC address is 00 E0 2B 12 34 56 in VLAN marketing on port 4 create fdbentry 00 E0 2B 12 34 56 vlan marketing port 4 History This command was available in ExtremeWare 2 0 Support for associating separate QoS profiles with ingress and egress ports was added in ExtremeWare 6 2 Platform Ava...

Page 270: ... entry from the FDB delete fdbentry all History This command was available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 2 0 to support the all option This command was modified in ExtremeWare 6 2 1 to support the broadcast mac option Platform Availability This command is available on all platforms mac_address Specifies a device MAC address using colon separated bytes broadcast mac ...

Page 271: ...ng commands will do consistency checking on this entry run fdb check 00 00 00 00 00 01 run fdb check 00 00 00 00 00 01 detail run fdb check 00 00 00 00 00 01 extended detail run fdb check 00 00 00 00 00 01 vlan v1 run fdb check index cf3c 0 extended detail bucket Specifies the bucket portion of the FDB hash index entry Specifies the entry portion of the FDB hash index mac address Specifies a MAC a...

Page 272: ...and was first available in ExtremeWare 6 1 9 This command was modified in ExtremeWare 6 2 1 to support the broadcast mac keyword Platform Availability This command is available on all i series platforms The extended option is available on the Black Diamond 6800 chassis based system only ...

Page 273: ...lon separated byte form of the address ff ff ff ff ff ff vlan name Displays the entries for a specific VLAN portlist Displays the entries for one or more ports May be in the form 1 2 3 5 2 5 2 6 2 8 permanent Displays all permanent entries including the ingress and egress QoS profiles EQP The Ingress QoS profile assigned to the entry appears only if the keyword permanent is specified IQP The Egres...

Page 274: ...C 0D 00 zzz 0652 0000 0000 s m CPU 51f50 100 00 01 30 CA F6 00 lab 4000 0000 0001 d i 1 67b20 100 00 30 D3 01 5A E0 lab 4000 0000 0001 d i 1 80a10 204 FF FF FF FF FF FF lab 4000 0000 0000 s m CPU 2 1 80fe0 208 FF FF FF FF FF FF MacVlanDis 4095 0000 0000 s m CPU 80ff0 202 FF FF FF FF FF FF Mgmt 4094 0000 0000 s m CPU 8d8d0 20a FF FF FF FF FF FF zzz 0652 0000 0000 s m CPU 2 8f000 200 FF FF FF FF FF ...

Page 275: ...P2 00 10 E3 1D 00 05 anntest1 4094 pm QP3 QP2 4e610 206 00 01 03 2F 38 EE anntest1 4094 0000 0000 spm QP3 QP2 00 60 B0 F9 58 9D Default 0001 pm Flags d Dynamic s Static p Permanent m MAC i IP x IPX l lockdown MAC M Mirror B Egress Blackhole b Ingress Blackhole History This command was available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 2 1 to support the broadcast mac option Pl...

Page 276: ...276 ExtremeWare Software 7 0 0 Command Reference Guide FDB Commands ...

Page 277: ...t Each hardware queue is programmed by ExtremeWare with bandwidth management and prioritization parameters defined as a QoS profile The bandwidth management and prioritization parameters that modify the forwarding behavior of the switch affect how the switch transmits traffic for a given hardware queue on a physical port Up to eight physical queues per port are available Policy based QoS can be co...

Page 278: ...ink Context System DLCS is a feature of ExtremeWare and Extreme switches that snoops Windows Internet Naming Service WINS NetBIOS packets and creates a mapping between a user name the IP address or MAC address of the workstation and a port on the switch Based on the information in the packet DLCS can detect when an workstation boots up or a user logs in or out and dynamically maps the user or work...

Page 279: ...e IP address of an end station changes and the end station is not immediately rebooted the old host to IP mapping is not deleted You must delete the mapping through the ExtremeWare Enterprise Manager Policy System Example The following command clears all learned DLCS data from the switch clear dlcs History This command was available in ExtremeWare 6 0 Platform Availability This command is availabl...

Page 280: ...e low drop probability and high drop probability keywords are useful in conjunction with the weighted RED WRED implementation provided by SONET ports This implementation code_point Specifies a DiffServ code point a 6 bit value in the IP TOS byte in the IP header qosprofile Specifies the QoS profile to which the Diffserv code point is mapped portlist Specifies a list of ports or slots and ports May...

Page 281: ...ifies that packets arriving on ports 5 8 that use code point 25 be assigned to qp2 config diffserv examination code point 25 qosprofile qp2 ports 5 8 The following command sets up the mapping for the EF PHB PoS module only config diffserv examination code point 46 qosprofile qp8 ports 2 1 2 2 History This command was first available in ExtremeWare 6 0 This command was modified in an ExtremeWare IP...

Page 282: ...ity value to code point mappings are described as follows Example The following command specifies that a code point value of 25 should be used to replace the TOS bits in packets with an 802 1p priority of 2 for ports 5 9 config diffserv replacement priority 2 code point 25 ports 5 9 value Specifies the 802 1p priority value code_point Specifies a 6 bit value to be used as the replacement code poin...

Page 283: ...erv replacement priority ExtremeWare Software 7 0 0 Command Reference Guide 283 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 284: ... profile is as follows Example The following commands swap the QoS profiles associated with 802 1p priority values 1 and 2 on an i series device config dot1p type 2 qosprofile qp2 config dot1p type 1 qosprofile qp3 History This command was available in ExtremeWare 6 0 Platform Availability This command is available on all platforms dot1p_priority Specifies the 802 1p priority value The value is an...

Page 285: ...g dest_ipaddress mask_length The destination IP address or group of IP addresses to which the QoS profile is applied Mask length is a value that indicates the length of the subnet mask to be applied ltcp upd_port_number The layer 4 destination port number This is the IP port number associated with the protocol specified in the command string If TCP is used as the protocol the layer 4 port number i...

Page 286: ...ble subnet mask when an IP multicast destination is specified but must be a wildcard or specific destination 32 bits of mask if an IP unicast destination is specified If you are defining a grouping within IPQoS and you are using the other protocol option the switch filters on the 32 bits after the IP header If you are defining a grouping within IPQoS and you are using the all protocol option the s...

Page 287: ...ile is applied Mask length is a value that indicates the length of the subnet mask to be applied tcp upd_port_number The layer 4 destination port number This is the IP port number associated with the protocol specified in the command string If TCP is used as the protocol the layer 4 port number is a TCP port number If UDP is used the layer 4 port number is a UDP port number If not specified all po...

Page 288: ... all traffic to TCP destination port 80 destined for the 10 1 2 x network from 10 1 1 1 using TCP source port 20 config ipqos delete tcp 10 1 2 3 24 l4 dstport 80 10 1 1 1 32 l4 srcport 20 qosprofile qp4 History The short form of this command was available in ExtremeWare 2 0 The long form was available in ExtremeWare 4 0 Support for this command was superseded in ExtremeWare 6 0 by the create acce...

Page 289: ...ault N A Usage Guidelines Extreme switches support eight QoS profiles QP1 QP8 Example The following command configures port five to use QoS profile QP3 config ports 5 qosprofile QP3 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and ports May be in the form 1 2 3 5 2 5...

Page 290: ...rder for the changes to take effect You can verify the QoS mode settings by using the show switch command Example The following command changes the QoS mode setting from the default setting of ingress config qosmode egress History This command was available in ExtremeWare 2 0 Support for this command was superseded in ExtremeWare 6 0 by the create access list command Platform Availability This com...

Page 291: ...ue will not consume all of the unallocated buffer space You should not modify the buffer parameter unless specific situations and application behavior indicate You must reboot the switch for changes to this parameter to take effect qosprofile Specifies a QoS profile name min_percent Specifies a minimum bandwidth percentage for this queue The default setting is 0 max_percent Specifies the maximum b...

Page 292: ...ofile qp5 minbw 10 maxbw 80 priority highHi ports 5 7 The following command configures the buffer size for QoS profile qp5 on an i series switch config qosprofile qp5 minbw 10 maxbw 80 priority highhi minbuf 3 maxbuff 1024K History This command was available in ExtremeWare 2 0 The minbuff maxbuff and ports arguments were available in ExtremeWare 6 0 Platform Availability The basic command is avail...

Page 293: ...ac QoS to take a higher precedence over FDB dest mac QoS with a default priority of 8 config qostype priority source mac 9 History This command was first available in ExtremeWare 6 2 source mac Specifies the priority of traffic groupings based on FDB source MAC addresses Default is 7 dest mac Specifies the priority of traffic groupings based on FDB destination MAC addresses Default is 8 access lis...

Page 294: ...294 ExtremeWare Software 7 0 0 Command Reference Guide QoS Commands Platform Availability This command is available on the i series platforms ...

Page 295: ...t packets based on the configured RED drop probability The destination node detects the dropped packet and using standard TCP windowing mechanisms slows the transmission from the source node RED drop probability is configured on a system wide basis The percentage range is 0 100 Example The following command configures the RED drop probability as 80 config red drop probability 80 History This comma...

Page 296: ...for example when ping packets are sent out by a user on the switch console To configure which queue to use for traffic traveling across a VLAN use the following command config vlan vlan name qosprofile qosprofile Example The following command configures VLAN accounting to use priority 6 in its generated traffic config vlan accounting priority 6 History This command was available in ExtremeWare 6 0...

Page 297: ...le Syntax Description Default N A Usage Guidelines Extreme switches support eight QoS profiles QP1 QP8 Example The following command configures VLAN accounting to use QoS profile QP3 config vlan accounting qosprofile QP3 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name qosprofile Specifies a QoS p...

Page 298: ...aximum bandwidth 100 Priority low These parameters can then be modified using the config qosprofile command A QoS profile does not alter the behavior of the switch until it is assigned to a traffic grouping to form a QoS Policy Example The following command creates a QoS profile named qp4 create qosprofile qp4 History This command was available in ExtremeWare 2 0 Support for this command was disco...

Page 299: ...files cannot be deleted When a QoS profile is removed all entries previously associated with the QoS profile are changed to use the settings of the default QoS profile named qp2 Example The following command deletes a QoS profile named qp1 delete qosprofile qp1 History This command was available in ExtremeWare 2 0 Support for this command was discontinued in ExtremeWare 6 0 Platform Availability T...

Page 300: ...ge Guidelines None Example The following command disables Diffserv examination on selected ports disable diffserv examination ports 3 5 6 History This command was available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and ports to which the parameters apply May be in the form 1 2 3 5 2 5 2 6 2 8 all Specifi...

Page 301: ...ription Default N A Usage Guidelines None Example The following command disables Diffserv replacement on selected ports disable diffserv replacement ports 3 5 6 History This command was available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and ports to which the parameters apply May be in the form 1 2 3 5 ...

Page 302: ... ports on which it was enabled Using the port parameter disabled WINS packet snooping only on the specified port Example The following command disables all WINS packet snooping on the switch disable dlcs History This command was available in ExtremeWare 6 0 The command was modified in ExtremeWare 6 1 to support the fast ethernet ports parameter Platform Availability This command is available on th...

Page 303: ...iption Default N A Usage Guidelines None Example The following command disables Diffserv replacement on all ports disable dot1p replacement ports all History This command was available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and ports to which the parameters apply May be in the form 1 2 3 5 2 5 2 6 2 8...

Page 304: ...delines None Example This command is not available in ExtremeWare v6 0 or later The following command disables ISQ on a VLAN names accounting disable isq vlan accounting History This command was available in ExtremeWare 4 0 Support for this command was discontinued in ExtremeWare 6 0 Platform Availability This command is available only on platforms based on the Summit chipset vlan name Specifies a...

Page 305: ...ables the QoS monitoring capability Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables QoS monitoring disable qosmonitor History This command was available in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 306: ...he specified ports Syntax Description Default Disabled Usage Guidelines None Example The following command disables RED on ports 5 7 disable red ports 5 7 History This command was first available in ExtremeWare 6 0 10 Platform Availability This command is available on the i series platforms portlist Specifies the port number s May be in the form 1 2 3 5 2 5 2 6 2 8 ...

Page 307: ...Description Default Disabled Usage Guidelines None Example The following command enables Diffserv examination on selected ports enable diffserv examination ports 3 5 6 History This command was available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and ports to which the parameters apply May be in the form 1...

Page 308: ...onfigured on each port The 802 1P priority bits 3 bits are used to select one of the eight code points Example The following command enables Diffserv replacement on selected ports enable diffserv replacement ports 3 5 6 History This command was available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and port...

Page 309: ...ble DLCS on all gigabit Ethernet ports rather than having to enter each port individually Example The following command enables DLCS snooping on port 4 enable dlcs ports 4 Either of the following commands enable DLCS snooping on all ports enable dlcs enable dlcs ports all History This command was available in ExtremeWare 6 0 The command was modified in ExtremeWare 6 1 to support the fast ethernet ...

Page 310: ...acket If 802 1p replacement is enabled the 802 1p priority information that is transmitted is determined by the hardware queue that is used when transmitting the packet The mapping is described in Table 12 This mapping cannot be changed Example The following command enables dot1p replacement on all ports enable dot1p replacement ports all History This command was available in ExtremeWare 6 0 portl...

Page 311: ...enable dot1p replacement ports ExtremeWare Software 7 0 0 Command Reference Guide 311 Platform Availability This command is available on the i series platforms ...

Page 312: ...the normal MAC based learning and refreshing for layer 2 switching is altered for traffic that matches an IPQoS traffic grouping Instead learning and refreshing is done based on IP information in the packets As a result it is necessary to increase the FDB aging timer above a normal ARP table refresh time to 50 minutes 3 000 seconds This occurs automatically when ISQ is enabled ISQ should not be us...

Page 313: ...nd a separate option for retrieving information in the background and writing it to the log The real time display scrolls through the given portlist to provide statistics The particular port being monitored at that time is indicated by an asterisk appearing after the port number in the display Monitoring QoS in the background places transmit counter and any overflow information into the switch log...

Page 314: ... drop probability Instead of dropping sessions during times when the queue depth is exceeded RED causes the switch to lower session throughput The destination node detects the dropped packet and using standard TCP windowing mechanisms slows the transmission from the source node RED drop probability is configured on a system wide basis and has a valid range from 0 to 100 Example The following comma...

Page 315: ...g WINS packets Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays DLCS status and data from the switch show dlcs It produces output such as the following DLCS Enabled Ports 4 History This command was available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 316: ... or variables Default N A Usage Guidelines None Example The following command displays the current 802 1p to QoS mappings on the switch show dot1p Following is the output from this command 802 1p Priority Value QOS Profile 0 QP1 1 QP2 2 QP3 3 QP4 4 QP5 5 QP6 6 QP7 7 QP8 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 317: ...ored for 20 seconds before the switch moves on to the next port in the list A port is sampled for five seconds before the packets per second pps value is displayed on the screen Example The following command shows the real time QoS statistics related to the specified ports show ports 1 2 49 qosmonitor Following is sample output from this command Qos Monitor Egress Queue Summary Mon Oct 21 20 35 21...

Page 318: ...ware 7 0 0 Command Reference Guide QoS Commands History This command was available in ExtremeWare 2 0 This command was updated to support PoS in Extreme 6 2 Platform Availability This command is available on all platforms ...

Page 319: ... Default Displays QoS information for all profiles Usage Guidelines Information displayed includes QoS profile name Minimum bandwidth Maximum bandwidth Priority A list of all traffic groups to which the QoS profile is applied History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms qosprofile Specifies a QoS profile name ...

Page 320: ...ty settings Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the QoS traffic grouping priority settings for this switch show qostype priority History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 321: ...ault N A Usage Guidelines None Example The following command removes Diffserv code point examination from ports 5 8 unconfig diffserv examination ports 5 8 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and ports May be in the form 1 2 3 5 2 5 2 6 2 8 all Specifies tha...

Page 322: ...N A Usage Guidelines None Example The following command removes Diffserv replacement from ports 5 8 unconfig diffserv replacement ports 5 8 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms portlist Specifies a list of ports or slots and ports May be in the form 1 2 3 5 2 5 2 6 2 8 all Specifies that Diffserv repla...

Page 323: ... This command has no arguments or variables Default N A Usage Guidelines Resets the traffic grouping priorities to the following access list 11 dest mac 8 source mac 7 diffserv 3 dot1p 2 vlan 1 Example The following command resets the QoS traffic grouping priorities unconfig qostype priority History This command was first available in ExtremeWare 6 2 Platform Availability This command is available...

Page 324: ...324 ExtremeWare Software 7 0 0 Command Reference Guide QoS Commands ...

Page 325: ...ds to the public probably Internet IP addresses you want the inside addresses translated to The mappings between inside and outside IP addresses are done using rules that specify the IP subnets involved and the algorithms used to translate the addresses NOTE The NAT modes in ExtremeWare 6 2 support translating traffic initiating only from inside addresses NAT rules are associated with a single out...

Page 326: ...Syntax Description Default N A Usage Guidelines None Example The following command clears NAT connections clear nat connections History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms connections Specifies the current NAT connections table stats Specifies the statistics counter ...

Page 327: ...n IP address indicates that the rule applies only to packets with the specified layer 4 port s as their destination port Specifies a port number in the range 1 to 65535 any indicates that the rule should be applied to traffic to from any layer 4 port dest_ipaddress mask Specifies a subnet IP address in the format x x x x mask where mask is the number of bits in the subnet mask used to determine th...

Page 328: ...and allowed to pass The addition of a layer 4 protocol name and the portmap keyword tells the switch to use portmap mode As each new connection is initiated from the inside the NAT device picks the next available source layer 4 port on the first available outside IP address When all ports on a given IP address are in use the NAT device uses ports off of the next outside IP address Optionally you m...

Page 329: ...be mapped to IP addresses in the range of 216 52 8 1 to 216 52 8 31 on outside VLAN out_vlan_1 config nat add out_vlan_1 map source 192 168 1 0 24 to 216 52 8 1 216 52 8 31 The following command defines a translation rule that specifies that TCP UDP packets coming from 192 168 1 12 and destined for 192 168 5 20 be mapped to 216 52 8 32 on outside VLAN out_vlan_1 config nat add out_vlan_1 map sourc...

Page 330: ...le applies only to traffic from the specified layer 4 port s When used with a destination IP address indicates that the rule applies only to packets with the specified layer 4 port s as their destination port Specifies a port number in the range 1 to 65535 any indicates that the rule should be applied to traffic to from any layer 4 port dest_ipaddress mask Specifies a subnet IP address in the form...

Page 331: ...e following command deletes a portmap translation rule config nat delete out_vlan_2 map source 192 168 2 128 25 to 216 52 8 64 28 tcp portmap 1024 8192 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 332: ...timeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for a reset or torn down TCP session to 120 seconds config nat finrst timeout 120 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i seri...

Page 333: ...imeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for an ICMP packet to 5 seconds config nat icmp timeout 5 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms seconds Spec...

Page 334: ... to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for a session with an unacknowledged SYN packet to 120 seconds config nat syn timeout 120 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i ser...

Page 335: ...g the timeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for a TCP session to 90 seconds config nat tcp timeout 90 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms secon...

Page 336: ...t to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for packets other than TCP UDP or ICMP to 240 seconds config nat timeout 240 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platform...

Page 337: ...meout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for a UDP session to 90 seconds config nat udp timeout 90 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms seconds Speci...

Page 338: ...le to initiate connections to the internal private IP addresses If you want to prevent this you can create IP and ICMP access lists on the outside VLAN ports to deny traffic destined for the inside IP addresses There is a NAT performance penalty when you do this When a VLAN is configured to be none all NAT functions are disabled and the VLAN operates normally Example The following command configur...

Page 339: ...tion on the switch Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables NAT functionality on the switch disable nat History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 340: ...tion on the switch Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables NAT functionality on the switch enable nat History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 341: ...r the outside VLANs configured on the switch Rules are displayed in the order they are processed starting with the first one To display the NAT rules for a specific VLAN add the VLAN name Use the keyword timeout to display the NAT timeout settings configured on the switch Example The following command shows the NAT translation rules configured for VLAN out_vlan_1 show nat rules vlan out_vlan_1 His...

Page 342: ...342 ExtremeWare Software 7 0 0 Command Reference Guide NAT Commands ...

Page 343: ...ions only if the virtual server and node are both enabled and passing health checks The switch considers a virtual server or node active unless a health check fails If a health check fails the switch considers the virtual server or node inactive A virtual server or node is also considered inactive if it is disabled and has zero active connections Flow redirect overrides routing decisions to transp...

Page 344: ...ons from being established disable SLB to each virtual server using the following command disable slb vip vipname all To prevent new connections from being established to a specific virtual server and simultaneously close all current connections use the following command disable slb vip vipname all close connections now Example The following command clears the connections to the virtual server con...

Page 345: ...Usage Guidelines Use this command only during testing Clearing persistence disables applications such as shopping carts that require persistence Example The following command clears all information in the persistence table clear slb vip all persistence History This command was available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms vipname Specifies a...

Page 346: ... Description Default N A Usage Guidelines This command also automatically enables ping based health checking Example The following command adds the next hop of 10 2 1 20 to the flow redirect policy named http_flow config flow redirect http_flow add next hop 10 2 1 20 History This command was available in ExtremeWare 6 1 4 Platform Availability This command is available on all i series platforms fl...

Page 347: ...way Syntax Description Default N A Usage Guidelines None Example The following command deletes the next hop of 10 2 1 20 from the flow redirect policy named http_flow config flow redirect http_flow delete next hop 10 2 1 20 History This command was available in ExtremeWare 6 1 4 Platform Availability This command is available on all i series platforms flow redirect Specifies a flow redirect policy...

Page 348: ...FTP check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer service check Example The following command configures and enables FTP check for the flow redirect policy named ftp_flow and logs in with the user name test and password extreme config flow redirect ftp_flow service...

Page 349: ...lude the path in the specified URL The maximum length of a URL is 255 characters For ExtremeWare 6 2 0 and prior the frequency of the HTTP check is 60 seconds the timeout of the HTTP check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer service check Example The following ...

Page 350: ... 0 and prior the frequency of the layer 4 port check is 10 seconds the timeout of the layer 4 port check is 30 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer tcp port check Example The following command configures and enables layer 4 port check for the flow redirect policy named...

Page 351: ...TP check is 60 seconds the timeout of the NNTP check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer service check Example The following command configures and enables NNTP check for the flow redirect policy named nttp_flow and checks the newsgroup testgroup config flow re...

Page 352: ...p In ExtremeWare 6 2 0 and prior the frequency of the ping check is 10 seconds the timeout of the ping check is 30 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer ping check Example The following command configures and enables ping check for the flow redirect policy named http_fl...

Page 353: ...out of the POP3 check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer service check Example The following command configures and enables POP3 check for the flow redirect policy named pop3_flow and logs in with the user name test and the password extreme config flow redirec...

Page 354: ...requency of the SMTP check is 60 seconds the timeout of the SMTP check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer service check Example The following command configures and enables SMTP check for the flow redirect policy named smtp_flow config flow redirect smtp_flow ...

Page 355: ...out of the Telnet check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command config flow redirect timer service check Example The following command configures and enables Telnet check for the flow redirect policy named telnet_flow and logs in with the user name test and the password extreme config flow r...

Page 356: ... timeout is 30 seconds Usage Guidelines The frequency must be less than the timeout Example The following command configures a flow redirect ping check frequency of 5 seconds and a timeout of 15 seconds config flow redirect timer ping check frequency 5 timeout 15 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all i series platforms ...

Page 357: ...Usage Guidelines The frequency must be less than the timeout This frequency and timeout apply to all layer 7 service checks Example The following command configures a flow redirect service check frequency of 100 seconds and a timeout of 300 seconds config flow redirect timer service check frequency 100 timeout 300 History This command was first available in ExtremeWare 6 2 1 Platform Availability ...

Page 358: ...eout is 30 seconds Usage Guidelines The frequency must be less than the timeout Example The following command configures a flow redirect tcp port check frequency of 15 seconds and a timeout of 45 seconds config flow redirect timer tcp port check frequency 15 timeout 45 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all i series plat...

Page 359: ...e unit number to associate a group of virual servers with an ESRP VLAN so that ESRP controls the failover state of the virtual servers To set the unit number of a virtual server use the following command config slb vip For simplicity Extreme Networks recommends that you put client server and virtual server VLANs in the same ESRP group Example The following command configures ESRP VLAN servers to c...

Page 360: ...t you set the timout greater than an even multiple of the frequency To enable active active operation use the following command enable slb failover Example The following command sets the alive frequency to 5 seconds and the timeout to 10 seconds config slb alive frequency 5 timeout 10 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all...

Page 361: ... Default The default dead frequency is 2 seconds Usage Guidelines To enable active active operation use the following command enable slb failover Example The following command sets the dead frequency to 5 seconds config slb dead frequency 5 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms dead frequency The freque...

Page 362: ...ilback is enabled use this command to force the recovered SLB unit to become the active unit Executing this command does not affect the SLB configuration To enable manual failback use the following command enable slb failover manual failback To disable manual failback use the following command disable slb failover manual failback Example The following command forces SLB to immediately failback to ...

Page 363: ...not configure ping check to the remote SLB switch If you configure ping check to the remote SLB switch and the remote switch fails the local switch also fails Example The following command sets the IP address of the remote gateway to 10 10 10 21 with a ping frequency of 5 seconds and a timeout of 10 seconds config slb failover ping check 10 10 10 21 frequency 5 timeout 10 History This command was ...

Page 364: ...ated layer 2 VLAN to connect the two active active switches Example The following command configures the local SLB switch with an IP address of 10 10 10 22 to direct unit 2 virtual servers to failover to the SLB switch with an IP address of 10 10 10 21 config slb failover unit 2 remote ipaddress 10 10 10 21 local ipaddress 10 10 10 22 History This command was first available in ExtremeWare 6 1 Pla...

Page 365: ...nd when you are sure that you will have a minimum guaranteed number of connections Additional connection blocks are allocated when necessary Do not use this command unless you are absolutely sure that you will use the memory allocated Example The following command allocates memory for 500 connections config slb global connection block 500 History This command was first available in ExtremeWare 6 1...

Page 366: ... and translation modes Syntax Description Default The default is one second Usage Guidelines None Example The following command configures the connection timeout for 50 seconds config slb global connection timeout 50 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms seconds Specifies the number of seconds The range...

Page 367: ... enable service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command config slb global service check To configure the parameters for a specific virtual server use the following command config slb vip vip name service check ftp Example The following command configures service check to login using ...

Page 368: ...e root directory include the path in the specified URL The maximum length of a URL is 255 characters To enable service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command config slb global service check To configure the parameters for a specific virtual server use the following command config sl...

Page 369: ...config slb global http ExtremeWare Software 7 0 0 Command Reference Guide 369 Platform Availability This command is available on all i series platforms ...

Page 370: ...ing use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command config slb global service check To configure the parameters for a specific virtual server use the following command config slb vip vip name service check ftp Example The following command configures the service check to log into the newsgroup comp d...

Page 371: ...ce settings If you configure any vip persistence ensure that all virtual servers in all pools have the same services Example The following command sets the global persistence level to any vip config slb global persistence level any vip History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms same vip same port Specifies t...

Page 372: ...ersistence timer use the following command config slb vip vip name client persistence timeout Example The following command sets the global persistence method to expire at the end of the session config slb global persistence method per session History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms per packet Resets the ...

Page 373: ...e the global values using the following command config slb node ip address ping check The frequency must be less than the timeout If the pinged node does not respond within the specified timeout period three ping intervals by default the node is considered down Shorter ping intervals require more CPU processing Example The following command sets the global ping check frequency to 5 seconds and the...

Page 374: ...le service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command config slb global service check To configure the parameters for a specific virtual server use the following command config slb vip vip name service check ftp Example The following command configures the service check to login using t...

Page 375: ...re not specified for a specific virtual server the global values are used To set specific frequency and timeout values for a virtual server use the following command config slb vip vip name service check Shorter intervals require more CPU processing Example The following command sets the service check frequency to 90 seconds and the timeout to 270 seconds config slb global service check frequency ...

Page 376: ...k accesses the service To enable service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command config slb global service check To configure the parameters for a specific virtual server use the following command config slb vip vip name service check ftp Example The following command configures the ...

Page 377: ...enable SYN guard use the following command enable slb global synguard SYN guard is automatically enabled if you configure a max unacknowledged SYNs value greater than 0 A max unacknowledged SYNs value of 0 automatically disables SYN guard Example The following command configures the SYN guard feature to age out half open connections from the same source IP address when the number of connections ex...

Page 378: ... timeout are not specified for a specific node the global values are used You can configure a node to override the global values using the following command config slb node ip address L4 port tcp port check To enable TCP port checking use the following command enable slb node tcp port check Example The following command sets the global TCP port check frequency to 15 seconds and timeout to 45 secon...

Page 379: ...ce To enable service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command config slb global service check To configure the parameters for a specific virtual server use the following command config slb vip vip name service check ftp Example The following command configures the service check to log...

Page 380: ...lines Use this command to configure the IP address before configuring individual health checks Example The following command configures the GoGo mode health check for the group with port 29 as the master port and an IP address of 192 168 200 2 config slb gogo mode 29 health check 192 168 200 2 History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is avail...

Page 381: ...e IP address on the GoGo mode servers using the following command config slb gogo mode health check To enable ping check for a GoGo mode group use the following command enable slb gogo mode port number ping check To disable ping check for a GoGo mode group use the following command disable slb gogo mode port number ping check Example The following command configures a GoGo mode ping check frequenc...

Page 382: ...382 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands Platform Availability This command is available on all i series platforms ...

Page 383: ...ollowing command enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disable slb gogo mode port number service check Example The following command configures GoGo mode service check for the group with port 29 as the master port to login using the user name service and the password check config slb gogo mode 29 service check ftp us...

Page 384: ...e specified URL The maximum length of a URL is 255 characters Before you use this command configure the IP address on the GoGo mode servers using the following command config slb gogo mode health check To enable service check for a GoGo mode group use the following command enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disabl...

Page 385: ...o mode service check http ExtremeWare Software 7 0 0 Command Reference Guide 385 History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms ...

Page 386: ...and enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disable slb gogo mode port number service check Example The following command configures GoGo mode service check for the group with port 29 as the master port to login using the user name service and the password check config slb gogo mode 29 service check pop3 user service p...

Page 387: ...d config slb gogo mode health check To enable service check for a GoGo mode group use the following command enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disable slb gogo mode port number service check Example The following command configures the GoGo mode service check for the group with port 29 as the master port to access...

Page 388: ...mmand enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disable slb gogo mode port number service check Example The following command configures GoGo mode service check for the group with port 29 as the master port to login using the user name service and the password check config slb gogo mode 29 service check telnet user servi...

Page 389: ...the group with port 29 as the master port with a frequency of 15 seconds and a timeout of 45 seconds config slb gogo mode 29 service check timer ftp frequency 15 timeout 45 History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms port number Specifies the GoGo mode master port all Specifies all service checks ftp Specif...

Page 390: ...CP port check for the group with port 29 as the master port config slb gogo mode 29 tcp port check add ftp History This command was first available in ExtremeWare 6 1 5 port number Specifies the GoGo mode master port ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ldap Specifies the LDAP T...

Page 391: ...config slb gogo mode tcp port check add ExtremeWare Software 7 0 0 Command Reference Guide 391 Platform Availability This command is available on all i series platforms ...

Page 392: ... GoGo mode TCP port check for the group with port 29 as the master port config slb gogo mode 29 tcp port check delete ftp History This command was first available in ExtremeWare 6 1 5 port number Specifies the GoGo mode master port ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ldap Speci...

Page 393: ...config slb gogo mode tcp port check delete ExtremeWare Software 7 0 0 Command Reference Guide 393 Platform Availability This command is available on all i series platforms ...

Page 394: ...for the group with port 29 as the master port with a frequency of 15 seconds and a timeout of 45 seconds port number Specifies the GoGo mode master port ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ldap Specifies the LDAP TCP port check nntp Specifies the NNTP TCP port check pop3 Specif...

Page 395: ...e Software 7 0 0 Command Reference Guide 395 config slb gogo mode 29 tcp port check timer ftp frequency 15 timeout 45 History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms ...

Page 396: ... virtual servers To set the timeout values for a wildcard virtual server use a TCP or UDP port number of 0 Example The following command configures the ftp nodes with a TCP idle period of 30 seconds config slb l4 port ftp treaper timeout 30 ftp Specifies the FTP service http Specifies the HTTP service https Specifies the HTTPS service imap4 Specifies the IMAP4 service ldap Specifies the LDAP servi...

Page 397: ...fig slb L4 port ExtremeWare Software 7 0 0 Command Reference Guide 397 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 398: ...f 10 connections config slb node 10 1 1 2 80 max connections 10 History This command was first available in ExtremeWare 6 1 ip address Specifies the IP address of the node ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ldap Specifies the LDAP TCP port check nntp Specifies the NNTP TCP por...

Page 399: ...config slb node max connections ExtremeWare Software 7 0 0 Command Reference Guide 399 Platform Availability This command is available on all i series platforms ...

Page 400: ...he following command config slb global ping check Example The following command sets the ping check for the node with an IP address of 10 2 1 2 to a frequency of 30 seconds and a timeout of 90 seconds config slb node 10 2 1 2 ping check frequency 30 timeout 90 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ip ad...

Page 401: ...onds and a timeout of 90 seconds config slb node 10 2 1 2 ftp tcp port check frequency 30 timeout 90 ip address Specifies the IP address of the node ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ldap Specifies the LDAP TCP port check nntp Specifies the NNTP TCP port check pop3 Specifies ...

Page 402: ...402 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 403: ...ong the nodes A ratio of 0 results in no traffic to the node When you configure the ratio use the smallest common denominator For example to configure a ratio of 25 and 75 use ratios of 1 and 3 instead of 25 and 75 pool name Specifies a pool ip address Specifies the IP address of the node ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 n...

Page 404: ...e following command config slb pool pool name lb method priority To change the ratio or priority of a node that is already in a pool use the following command config slb pool pool name member Example The following command adds the FTP node with an IP address of 10 2 1 2 to the pool ftp and configures the node with a priority of 2 config slb pool ftp add 10 2 1 2 ftp priority 2 History This command...

Page 405: ...ool Example The following command deletes the FTP node with an IP address of 10 2 1 2 from the pool ftp config slb pool ftp delete 10 2 1 2 ftp History This command was first available in ExtremeWare 6 1 pool name Specifies a pool ip address Specifies the IP address of the node ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Sp...

Page 406: ...406 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands Platform Availability This command is available on all i series platforms ...

Page 407: ...r priority of a node use the following command config slb pool pool name member Example The following command changes the load balancing method for the pool ftp to ratio config slb pool ftp lb method ratio History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms pool name Specifies a pool round robin Specifies the round r...

Page 408: ...y of the FTP node with an IP address of 10 2 1 2 in the pool ftp to 2 config slb pool ftp member 10 2 1 2 ftp priority 2 pool name Specifies a pool ip address Specifies the IP address of the node ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP node nntp Specifies an NNTP node pop3 Specifies a POP3 node smtp Sp...

Page 409: ...g slb pool member ExtremeWare Software 7 0 0 Command Reference Guide 409 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 410: ... Usage Guidelines Use this command to force all clients from the specified proxy array to connect to the same physical server Example The following command specifies that the subnet 10 10 10 20 24 should be treated as a single persistent entity config slb proxy client persistence add 10 10 10 20 24 History This command was first available in ExtremeWare 6 1 Platform Availability This command is av...

Page 411: ...e the virtual server before you use this command To create a virtual server use the following command creat slb vip Example The following command configures the virtual server test with a unit number of 3 config slb vip test unit 3 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms vip name Specifies a virtual serve...

Page 412: ... you specify a short client persistence timeout because longer timeout values consume more memory Example The following command configures the virtual server ftp with a client persistence timeout of 3000 seconds config slb vip ftp client persistence timeout 3000 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms vip...

Page 413: ...is enforced When the maximum number of connections is reached the server stops responding to new requests existing connections are maintained Example The following command sets the maximum connections to the virtual server ftp to 10 config slb vip ftp max connections 10 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platf...

Page 414: ...and timeout To set the global service check frequency and timeout use the following command config slb global service check Example The following command sets the service check frequency to 15 and timeout to 45 for the virtual server ftp config slb vip ftp service check frequency 15 timeout 45 History This command was first available in ExtremeWare 6 1 Platform Availability This command is availab...

Page 415: ...se the FTP service check logs into the service To configure the frequency and timeout of service checks use the following command config slb global service check To configure the global parameters use the following command config slb global ftp Example The following command configures service check to login using the user name service and the password check on the virtual server ftpvip config slb ...

Page 416: ...n the URL To check a URL beyond the root directory include the path in the specified URL The maximum length of a URL is 255 characters To configure the frequency and timeout of service checks use the following command config slb global service check To configure the global parameters use the following command config slb global http Example The following command configures service check to access h...

Page 417: ...config slb vip service check http ExtremeWare Software 7 0 0 Command Reference Guide 417 Platform Availability This command is available on all i series platforms ...

Page 418: ... check logs into the service To configure the frequency and timeout of service checks use the following command config slb global service check To configure the global parameters use the following command config slb global nntp Example The following command configures the service check to log into the newsgroup comp dcom lans ethernet on the virtual server nntpvip config slb vip nntpvip service ch...

Page 419: ... the POP3 service check logs into the service To configure the frequency and timeout of service checks use the following command config slb global service check To configure the global parameters use the following command config slb global pop3 Example The following command configures the service check to login using the user name service and the password check to the virtual server pop3vip config...

Page 420: ...eck accesses the service To configure the frequency and timeout of service checks use the following command config slb global service check To configure the global parameters use the following command config slb global smtp Example The following command configures the service check to access the DNS domain servicecheck domain com on the virtual server smtpvip config slb vip smtpvip service check s...

Page 421: ... the telnet service check logs into the service To configure the frequency and timeout of service checks use the following command config slb global service check To configure the global parameters use the following command config slb global telnet Example The following command configures the service check to login using the user name service and the password check on the virtual server telnetvip ...

Page 422: ...rver originates or could possibly originate connections to other servers Example The following command configures the VLAN client_vlan as a client VLAN config vlan client_vlan slb type client History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms server Configures the VLAN as a server VLAN client Configures the VLAN as ...

Page 423: ... redirect policy Example The following command creates a flow redirect policy named http that forwards TCP traffic to 10 1 1 10 port 80 from any source IP address create flow redirect http tcp destination 10 1 1 10 29 ip port 80 source any History This command was available in ExtremeWare 6 1 4 This command was modified in 6 2 to add the tup parameter Platform Availability This command is availabl...

Page 424: ...oad balancing method of an existing pool use the following command config slb pool pool name lb method To add a node to the pool and set the ratio or priority use the following command config slb pool pool name add Example The following command creates the pool ftp_pool and assigns the priority load balancing method config slb pool ftp_pool lb method priority History This command was first availab...

Page 425: ...d creates the virtual server ftp_vip with an IP address of 10 10 10 2 in the pool ftp_pool and assigns the port translation forwarding mode config slb vip ftp_vip pool ftp_pool mode port translation 10 10 10 2 ftp History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms vip name Specifies a virtual server pool name Specif...

Page 426: ...t N A Usage Guidelines To rename or modify a flow redirect policy you must delete and recreate the flow redirect policy Example The following command deletes a flow redirect policy named http delete flow redirect http History This command was available in ExtremeWare 6 1 4 Platform Availability This command is available on all i series platforms flow redirect Specifies a flow redirect policy ...

Page 427: ...You must first delete all virtual servers before deleting the pool To delete a virtual server use the following command delete slb vip Example The following command the pool named http_pool delete slb pool http_pool History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms pool name Specifies a pool all Specifies all pools...

Page 428: ...Guidelines You must use this command to delete all virtual servers from a pool before deleting the pool Example The following command the virtual server named http_vip delete slb pool http_vip History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms vip name Specifies a virtual server all Specifies all virtual servers ...

Page 429: ...delines When you create a new flow redirect policy flow redirect is automatically enabled To enable flow redirect use the following command enable flow redirect Example The following command disables flow redirect for all flow policies disable flow redirect all History This command was available in ExtremeWare 6 1 4 Platform Availability This command is available on all i series platforms all Spec...

Page 430: ...causes the following to occur Closes all connections Withdraws virtual server routes or routes that do not respond with proxy ARP responses of virtual server addresses Disconnects the switch from redundant SLB switches To enable SLB use the following command enable slb Example The following command disables SLB disable slb History This command was first available in ExtremeWare 6 1 Platform Availa...

Page 431: ...This command has no arguments or variables Default 3DNS is disabled by default Usage Guidelines To enable 3DNS use the following command enable slb 3dns iquery client Example The following command disables 3DNS disable slb 3dns iquery client History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 432: ...This command has no arguments or variables Default SLB failover is disabled by default Usage Guidelines To enable SLB failover use the following command enable slb failover Example The following command disables SLB failover disable slb failover History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 433: ...n This command has no arguments or variables Default Manual failback is disabled by default Usage Guidelines To enable manual failback use the following command enable slb failover manual failback Example The following command disables manual failback disable slb failover manual failback History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on ...

Page 434: ...ption This command has no arguments or variables Default Ping check is disabled by default Usage Guidelines To enable ping check use the following command enable slb failover ping check Example The following command disables ping check disable slb failover ping check History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platform...

Page 435: ...escription This command has no arguments or variables Default SYN guard is disabled by default Usage Guidelines To enable SYN guard use the following command enable slb global synguard Example The following command disables SYN guard disable slb global synguard History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 436: ...e disconnect the servers as they all have identical MAC and IP addresses which can cause VLAN conflicts To enable GoGo mode use the following command enable slb gogo mode Example The following command disables GoGo mode for the group with port 29 as the master port disable slb gogo mode 29 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available o...

Page 437: ... is disabled by default Usage Guidelines To enable ping check for a GoGo mode group use the following command enable slb gogo mode port number ping check Example The following command disables GoGo mode ping check for the group with port 29 as the master port disable slb gogo mode 29 ping check History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is avai...

Page 438: ...ce check Example The following command disables GoGo mode FTP service check for the group with port 29 as the master port disable slb gogo mode 29 service check ftp History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms port number Specifies the GoGo mode master port all Specifies all service checks ftp Specifies the ...

Page 439: ...hecks for the group with port 29 as the master port disable slb gogo mode 29 tcp port check all History This command was first available in ExtremeWare 6 1 5 port number Specifies the GoGo mode master port all Specifies all TCP port checks ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ld...

Page 440: ...440 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands Platform Availability This command is available on all i series platforms ...

Page 441: ...TP ports disable slb L4 port ftp History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all nodes ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP node nntp Specifies an NNTP node pop3 Specifies a POP3 node smtp Specifi...

Page 442: ...ssociated with that pool are effectively disabled To enable a node use the following command enable slb node Example The following command disables all nodes and immediately closes all open connections all Specifies all nodes ip address Specifies an IP address ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP no...

Page 443: ...eWare Software 7 0 0 Command Reference Guide 443 disable slb node all close connections now History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 444: ...delines Ping check is automatically enabled when a node is added to a pool To enable ping check on a node use the following command enable slb node ping check Example The following command disables all ping checks disable slb node all ping check History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all no...

Page 445: ...tcp port check Example The following command disables all TCP port checks disable slb node all tcp port check History This command was first available in ExtremeWare 6 1 all Specifies all nodes ip address Specifies an IP address ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP node nntp Specifies an NNTP node p...

Page 446: ...446 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands Platform Availability This command is available on all i series platforms ...

Page 447: ...mmand has no arguments or variables Default Proxy client persistence is disabled by default Usage Guidelines To enable proxy client persistence use the following command enable slb proxy client persistence Example The following command disables proxy client persistence disable slb proxy client persistence History This command was first available in ExtremeWare 6 1 Platform Availability This comman...

Page 448: ...rtual server ftp_vip and closes all open connections disable slb vip ftp_vip close connections now all Specifies all virtual servers vip name Specifies a virtual server ip address Specifies an IP address ftp Specifies an FTP virtual server http Specifies an HTTP virtual server https Specifies an HTTPS virtual server imap4 Specifies an IMAP4 virtual server ldap Specifies an LDAP virtual server nntp...

Page 449: ...isable slb vip ExtremeWare Software 7 0 0 Command Reference Guide 449 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 450: ...y default Usage Guidelines To enable client persistence use the following command enable slb vip client persistence Example The following command disables client persistence for the virtual server ftp_vip disable slb vip ftp_vip client persistence History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all ...

Page 451: ...is disabled by default Usage Guidelines To enable service check use the following command enable slb vip service check Example The following command disables service check for the virtual server ftp_vip disable slb vip ftp_vip service check History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all virtual...

Page 452: ...y default Usage Guidelines To enable sticky persistence use the following command enable slb vip sticky persistence Example The following command disables sticky persistence for the virtual server ftp_vip disable slb vip ftp_vip sticky persistence History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all ...

Page 453: ...e is disabled by default Usage Guidelines To enable svcdown reset use the following command enable slb vip svcdown reset Example The following command disables svcdown reset for the virtual server ftp_vip disable slb vip ftp_vip svcdown reset History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all virtu...

Page 454: ...nes When you create a new flow redirect policy flow redirect is automatically enabled To disable flow redirect use the following command disable flow redirect Example The following command enables flow redirect for all flow policies enable flow redirect all History This command was available in ExtremeWare 6 1 4 Platform Availability This command is available on all i series platforms all Specifie...

Page 455: ...nd connection setup Establishing communication with redundant SLB switches Positively responding to MIB 3DNS and SeeIT requests Before you enable SLB enable IP forwarding on the associated VLANs NOTE SLB cannot be enabled when MPLS or Destination sensitive accounting is enabled or SLPM is active Example The following command enables SLB enable slb History This command was first available in Extrem...

Page 456: ...t Usage Guidelines The following 3DNS global balance modes are supported completion rate global_availability leastcon null packet_rate random ration rr return_to_dns To disable 3DNS use the following command disable slb 3dns iquery client Example The following command enables 3DNS enable slb 3dns iquery client History This command was first available in ExtremeWare 6 1 Platform Availability This c...

Page 457: ...over is enabled the primary SLB switch automatically resumes primary status when it becomes active Before you enable SLB failover configure your switches using the following command config slb failover unit To disable SLB failover use the following command disable slb failover Example The following command enables SLB failover enable slb failover History This command was first available in Extreme...

Page 458: ...Guidelines When manual failback is enabled the primary SLB switch does not automatically resume primary status until you use the following command config slb failover failback now To disable manual failback use the following command disable slb failover manual failback Example The following command enables manual failback enable slb failover manual failback History This command was first available...

Page 459: ...n This command has no arguments or variables Default Ping check is disabled by default Usage Guidelines To disable ping check use the following command disable slb failover ping check Example The following command enables ping check enable slb failover ping check History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 460: ...n This command has no arguments or variables Default SYN guard is disabled by default Usage Guidelines To disable SYN guard use the following command disable slb global synguard Example The following command enables SYN guard enable slb global synguard History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 461: ...able GoGo mode use the following command disable slb gogo mode Example The following command enables GoGo mode for the group containing ports 15 17 19 23 and 25 30 with port 29 as the master port enable slb gogo mode 29 grouping 15 17 19 23 25 30 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms port number Specifi...

Page 462: ...viously configured IP address You must enable GoGo mode for the group before you enable ping check To enable GoGo mode use the following command enable slb gogo mode To disable ping check for a GoGo mode group use the following command disable slb gogo mode port number ping check Example The following command enables GoGo mode ping check for the group with port 29 as the master port to IP address ...

Page 463: ... number service check Example The following command enables GoGo mode FTP service check for the group with port 29 as the master port enable slb gogo mode 29 service check ftp History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms port number Specifies the GoGo mode master port all Specifies all service checks ftp Spe...

Page 464: ... group with port 29 as the master port enable slb gogo mode 29 tcp port check all History This command was first available in ExtremeWare 6 1 5 port number Specifies the GoGo mode master port all Specifies all TCP port checks ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ldap Specifies t...

Page 465: ...enable slb gogo mode tcp port check ExtremeWare Software 7 0 0 Command Reference Guide 465 Platform Availability This command is available on all i series platforms ...

Page 466: ...d enables SLB for FTP ports enable slb L4 port ftp History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP node nntp Specifies an NNTP node pop3 Specifies a POP3 node smtp Specifies an ...

Page 467: ... the following command disable slb node Example The following command enables all nodes enable slb node all all Specifies all nodes ip address Specifies an IP address ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP node nntp Specifies an NNTP node pop3 Specifies a POP3 node smtp Specifies an SMTP node socks Sp...

Page 468: ...468 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 469: ...e Guidelines Ping check is automatically enabled when a node is added to a pool To disable ping check on a node use the following command disable slb node ping check Example The following command enables all ping checks enable slb node all ping check History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies a...

Page 470: ...eck Example The following command enables all TCP port checks enable slb node all tcp port check History This command was first available in ExtremeWare 6 1 all Specifies all nodes ip address Specifies an IP address ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP node nntp Specifies an NNTP node pop3 Specifies...

Page 471: ...enable slb node tcp port check ExtremeWare Software 7 0 0 Command Reference Guide 471 Platform Availability This command is available on all i series platforms ...

Page 472: ...rguments or variables Default Proxy client persistence is disabled by default Usage Guidelines To disable proxy client persistence use the following command disable slb proxy client persistence Example The following command enables proxy client persistence enable slb proxy client persistence History This command was first available in ExtremeWare 6 1 Platform Availability This command is available...

Page 473: ...ommand was first available in ExtremeWare 6 1 all Specifies all virtual servers vip name Specifies a virtual server ip address Specifies an IP address ftp Specifies an FTP virtual server http Specifies an HTTP virtual server https Specifies an HTTPS virtual server imap4 Specifies an IMAP4 virtual server ldap Specifies an LDAP virtual server nntp Specifies an NNTP virtual server pop3 Specifies a PO...

Page 474: ...474 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands Platform Availability This command is available on all i series platforms ...

Page 475: ...led Usage Guidelines To disable client persistence use the following command disable slb vip client persistence Example The following command enables client persistence for the virtual server ftp_vip enable slb vip ftp_vip client persistence History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all virtua...

Page 476: ...tion If a service check is configured for a TCP port number instead of for a service ExtremeWare assigns the service based on the port number if the port number is well known and uses the global default parameters To disable service check use the following command disable slb vip service check Example The following command enables service check for the virtual server ftp_vip enable slb vip ftp_vip...

Page 477: ...ky persistence is disabled by default Usage Guidelines To disable sticky persistence use the following command disable slb vip sticky persistence Example The following command enables sticky persistence for the virtual server ftp_vip enable slb vip ftp_vip sticky persistence History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series ...

Page 478: ...to send TCP RST packets to both the clients and the virtual server if the virtual server fails a health check To disable svcdown reset use the following command disable slb vip svcdown reset Example The following command enables svcdown reset for the virtual server ftp_vip enable slb vip ftp_vip svcdown reset History This command was first available in ExtremeWare 6 1 Platform Availability This co...

Page 479: ... service check Flow IPSA Mode Displays the IP source address mode Enumeration Mode The default mode used for network masks from 32 to 20 Subnet Mode Used for network masks from 19 to 1 The mode is selected automatically when you specify a network mask Proto Displays the flow type any Forwards any traffic over any IP port tcp Forwards TCP traffic over a single IP port tup Forwards both TCP and UDP ...

Page 480: ...eout 180 Flow IPSA Mode Enumeration Mode http1 Proto tcp Dest 0 0 0 0 0 L4 Port 80 Enabled yes Source 0 0 0 0 0 Servers Up 0 1 Service Checking ping IP Address State Flow Info 24 3 89 145 Down 0000 History This command was available in ExtremeWare 6 1 4 Platform Availability This command is available on all i series platforms Service Checking Displays the configured service check type ftp http L4 ...

Page 481: ...formation between the switch and the 3DNS querier Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the current 3DNS information show slb 3dns members History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 482: ...mple The following command displays the current connection information for all connections show slb connections History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ip address Specifies an IP address vip name Specifies a virtual server ftp Specifies an FTP port http Specifies an HTTP port https Specifies an HTTPS port...

Page 483: ...has no arguments or variables Default N A Usage Guidelines None Example The following command displays the current ESRP configuration show slb esrp Following is the output from this command VLAN Name SLB Unit Status SLB Unit s servers Standby 1 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 484: ...ent SLB failover configuration and status show slb failover Following is the output from this command SLB Failover Configuration Failover Enabled Local unit ID 1 Local IP address 10 1 1 1 Remote IP address 10 1 1 2 TCP port number 1028 Remote Alive frequency 1 Remote Dead frequency 2 Keepalive Timeout 3 Ping check Disabled Ping check IP address 0 0 0 0 Ping frequency 1 Ping timeout 3 Manual failba...

Page 485: ...ow slb failover ExtremeWare Software 7 0 0 Command Reference Guide 485 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 486: ...global configuration information show slb global Following is the output from this command SLB Enabled SynGuard Disabled 3DNS IQuery Support Status Disabled SLB persist level same vip same port SLB persistence method per session SLB pre allocated connection block size 10000 SLB connection timeout 1 SLB persistence on client proxies Disabled Proxy Client Persistence entries No of Proxy Client Persi...

Page 487: ...ss 10 1 1 2 TCP port number 1028 Remote Alive frequency 1 Remote Dead frequency 2 Keepalive Timeout 3 Ping check Disabled Ping check IP address 0 0 0 0 Ping frequency 1 Ping timeout 3 Manual failback Disabled SLB Failover Status Running Units active in local SLB 2 Units active in or requested by remote SLB None Send connection Down Receive connection Down Ping check Not Running History This comman...

Page 488: ...er port status for all GoGo mode groups with health checks configured is displayed Example The following command displays the current GoGo mode health check configuration for the group with port 29 as the master port show slb gogo mode 29 configuration History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms port number...

Page 489: ...lays the current layer 4 port configuration show slb L4 port Following is the output from this command Port 80 Enabled TCP idle timeout treaper 600 UDP idle timeout 600 History This command was first available in ExtremeWare 6 1 ftp Specifies an FTP port http Specifies an HTTP port https Specifies an HTTPS port imap4 Specifies an IMAP4 port ldap Specifies an LDAP port nntp Specifies an NNTP port p...

Page 490: ...e The following command displays the current node configuration and statistics for all nodes show slb node ip address Specifies an IP address ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node imap4 Specifies an IMAP4 node ldap Specifies an LDAP node nntp Specifies an NNTP node pop3 Specifies a POP3 node smtp Specifies an SMTP node socks Specifies a SOCKS node teln...

Page 491: ...out PoolsConns 1 111 1 1 E H 10 30 80 E 30 90 2 no limit 1 111 1 2 E H 10 30 80 E 30 90 2 no limit 1 111 1 3 E H 10 30 80 E 30 90 2 no limit Flags E Enable U Up R IP Route Up H Health check enabled P Health check passed VLAN not configured with slb type History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 492: ...tatus of existing clients Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the current persistence status show slb persistence History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 493: ...ool and ratio_pool show slb pool Following is the output from this command Name IP TCP UDP Ratio IP Flags Port Flags Priority rr_pool VIPs sharing 1 Load Bal Method Round Robin 1 111 1 1 E H 80 E 1 111 1 2 E H 80 E 1 111 1 3 E H 80 E ratio_pool VIPs sharing 1 Load Bal Method Ratio 1 111 1 3 E H 80 E 3 1 111 1 2 E H 80 E 2 1 111 1 1 E H 80 E 1 Flags E Enable U Up R IP Route Up H Health check enable...

Page 494: ...494 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands Platform Availability This command is available on all i series platforms ...

Page 495: ...played If you specify vip but do not specify a specifuc virtual server status for all virtual servers is displayed If you do not specify a pool or virtual server status for all pools and virtual servers is displayed Example The following command displays the current pool connection status for all pools show slb stats pool History This command was first available in ExtremeWare 6 1 Platform Availab...

Page 496: ...tion and statistics for all virtual servers currently ratio_vip and rr_vip show slb vip vip name Specifies a virtual server ip address Specifies an IP address ftp Specifies an FTP virtual server http Specifies an HTTP virtual server https Specifies an HTTPS virtual server imap4 Specifies an IMAP4 virtual server ldap Specifies an LDAP virtual server nntp Specifies an NNTP virtual server pop3 Specif...

Page 497: ...1 1 10 80 1 TP PA EUA rr_pool0 3 Modes TP Transparent TL Translational PT Port Translational Automatically Exported via PA Proxy Arp HR Host Route SR Subnet Route Flags E Enable U Up A Active Unit H Health Check Enabled P Persistence S Sticky R SvcDown Reset VLAN has not been configured with slb type History This command was first available in ExtremeWare 6 1 Platform Availability This command is ...

Page 498: ...delines This command does not delete nodes pools or virtual servers To delete all nodes and pools use the following command delete slb pool all To delete all virtual servers use the following command delete slb vip all Example The following command resets SLB global defaults and clears the SLB configuration unconfig slb all History This command was first available in ExtremeWare 6 1 Platform Avail...

Page 499: ...ice check configurations for this GoGo mode group Syntax Description Default N A Usage Guidelines None Example The following command deletes all health check configurations for the GoGo mode group with port 29 as the master port unconfig slb gogo mode 29 health check History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platfo...

Page 500: ...guration for the GoGo mode group with port 29 as the master port unconfig slb gogo mode 29 service check ftp History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms port number Specifies the GoGo mode master port all Specifies all service checks ftp Specifies the FTP service check http Specifies the HTTP service check ...

Page 501: ...ration Syntax Description Default N A Usage Guidelines None Example The following command disables and deletes the FTP service check configurations for the virtual server ftp_vip unconfig slb vip ftp_vip service check History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all virtual servers vip name Speci...

Page 502: ...502 ExtremeWare Software 7 0 0 Command Reference Guide SLB Commands ...

Page 503: ...evel Critical A desired switch function is inoperable The switch may need to be reset Warning A noncritical error that may lead to a function failure Informational Actions and events that are consistent with expected behavior Debug Information that is useful when performing detailed trouble shooting procedures By default log entries that are assigned a critical or warning level are considered stat...

Page 504: ...ined only for TCP and UDP flows Flow records are grouped together into UDP datagrams for export to a flow collector device A NetFlow Version 1 export datagram can contain up to 25 flow records The IP addresses or hostnames and UDP port numbers of the available flow collectors can be configured on a per switch basis The ExtremeWare NetFlow implementation also enables a single port to distribute sta...

Page 505: ...ch command to view switch statistics Use the show port command to view port statistics Viewing and maintaining statistics on a regular basis allows you to see how well your network is performing If you keep simple daily records you will see trends emerging and notice problems arising before they cause major network faults By clearing the counters you can see fresh statistics for the time period yo...

Page 506: ...fter a switch reboot The clear log command does not remove these static entries To remove log entries of all levels including warning or critical use the clear log static command Example The following command clears all log messages including critical and warning log messages from the database clear log static History This command was first available in ExtremeWare 2 0 Platform Availability This c...

Page 507: ...e exported to the same collector The algorithm also ensures that flow records for both the ingress and egress directions of a TCP or UDP connection are exported to the same collector when both flows traverse the same link and both filters are configured to export to the same group Issuing this command also enables the collection of NetFlow statistics See Chapter 22 for information on a similar com...

Page 508: ...ing command removes the flow collector device with IP address 10 205 30 15 using UDP port 2025 from export group 5 on this switch config flowstats export 5 delete 10 205 30 15 2025 History This command first available in ExtremeWare 6 2 for i series platforms Platform Availability This command is available on the i series platforms group Specifies the export group to which the specified flow colle...

Page 509: ... should be exported The parameters are dest ip ipaddress_value mask ipaddress_filtermask source ip ipaddress_value mask ipaddress_filtermask dest port port_value port_filtermask source port port_value port_filtermask protocol tcp udp ip protocol_value protocol_filtermask match all flows match no flows All five specifications must be included in the order specified The range for port port_mask is c...

Page 510: ...r the flow Filters for any or all of the sequence components can be configured with a single command Example The following command example configures filter 2 to collect aggregate statistics for all traffic flowing through ports 1 8 from the 192 170 0 0 16 subnet to the 192 171 132 0 24 subnet config flowstats filter 2 aggregation export 1 ports 1 8 ingress dest ip 192 171 132 0 24 source ip 192 1...

Page 511: ... the VLAN that has the default route to the flow collector device Usage Guidelines The IP address must have a route to the flow collector device Example The following command specifies that IP address 198 168 100 1 is the source config flowstats source ipaddress 198 168 100 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series...

Page 512: ...utes parameter is an integer in the range 1 1440 Example The following command configures a timeout value of 15 minutes for ports 1 8 config flowstats timeout 15 ports 1 8 This means that flow records for these ports will be exported after they have aged 15 minutes History This command was first available in ExtremeWare 6 1 5b20 for the PoS module only This command was first available in ExtremeWa...

Page 513: ...tain a running real time display of log messages on the console Options for displaying the real time log display include severity Filters the log to display messages with the selected severity or higher more critical Severities include emergency alert critical error warning info notice and debug Example The following command configures the system log to maintain a running real time display of log ...

Page 514: ...send a trap and or shut down the system The system health checker will continue to periodically forward test packets to failed components If auto recovery is configured the system will attempt to automatically reset the faulty module and bring it back online The alarm level and auto recovery options are mutually exclusive configuring an alarm level disables auto recovery and configuring auto recov...

Page 515: ...detected Three consecutive checksum errors were detected by the health checker but no new PM defects were found by the PM defect detection process After defects were detected and mapped out the same checksum errors are again detected by the system health checker The auto recovery repetition value is ignored in these cases In any of these cases please contact Extreme Technical Support If you specif...

Page 516: ...l traps History This command was first available in ExtremeWare 6 1 9 The system health check functionality was modified in ExtremeWare 6 2 1 to support packet memory defect detection and mapping on selected I O modules This command was modified in ExtremeWare 6 2 2 to support system health check and checksum error checking and to add the online and offline parameters Platform Availability This co...

Page 517: ...wn the system The system health checker will continue to periodically forward test packets to failed components If auto recovery is configured the system will attempt to automatically reset the faulty module and bring it back online In ExtremeWare versions prior to 6 2 you cannot use both mirroring and the system health checker at the same time If you configure mirroring with the system health che...

Page 518: ...t Extreme Technical Support Auto recovery mode only affects an MSM64i if the system has no slave MSM64i If the faulty module is the only MSM64i in the system auto recovery automatically resets the MSM64i and brings it back online Otherwise auto recovery has no effect on an MSM64i If you specify the online option the module is kept online but the following error messages are recorded in the log WAR...

Page 519: ... the MSM64i to full functionality This command should only be used for additional testing purposes and reproduction efforts of the original fault Example The following command configures the system health checker to try ten times to bring a faulty MSM64i back online config sys health check auto recovery 10 History This command was first available in ExtremeWare 6 1 9 The system health check functi...

Page 520: ...verwrites existing log information in a wrap around buffer which may cause you to lose valuable information once the buffer becomes full The syslog host does not overwrite log information The enable syslog command must be issued in order for messages to be sent to the syslog server s Syslog is disabled by default A total of four syslog servers can be configured at one time For version 4 0 and high...

Page 521: ...config syslog ExtremeWare Software 7 0 0 Command Reference Guide 521 Platform Availability This command is available on all platforms ...

Page 522: ... Example The following command deletes the syslog host with an IP address of 10 0 0 1 config syslog delete 10 0 0 1 local1 alert History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on all platforms hostname Species the hostname of the syslog host ip_address Specifies an IP address of the syslog host facility Specifies a syslog facility level ...

Page 523: ... reboot after a task exception when the system recovery level is specified as all or critical For version 6 2 or later you must specify whether the system should shut down or reboot upon a task exception if the recovery level is all or critical none Configures the level to no recovery No action is taken when a task exception occurs there is no system shutdown or reboot critical Configures ExtremeW...

Page 524: ...ot after a critical task exception occurs config sys recovery level critical reboot The following command configures the Master MSM64i to failover to the Slave MSM64i if a software exception occurs config sys recovery level critical msm failover History This command was first available in ExtremeWare 6 1 Modified in ExtremeWare 6 2 to support the shutdown and reboot options Modified in ExtremeWare...

Page 525: ...heir sources that are made using the CLI via Telnet or the local console After you disable configuration logging no further changes are logged to the system log To view the status of configuration logging on the switch use the show management command The show management command displays information about the switch including the enable disable state for configuration logging Example The following ...

Page 526: ...itch Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines When this feature is disabled no flow records are exported Example The following command disables the NetFlow statistics feature on this switch disable flowstats History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 527: ... keywords are required for SONET ports Example The following command disables filter 3 for ports 1 8 on an i series switch disable flowstats filter 3 ports 1 8 The following command example disables ingress filter 2 on port 1 of the PoS module installed in slot 8 of the BlackDiamond switch disable flowstats filter 2 ports 8 1 ingress History This command was first available in ExtremeWare 6 1 5b20...

Page 528: ...528 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Status Monitoring and Statistics Platform Availability This command is available on the i series platforms ...

Page 529: ...es On the PoS module if you do not include a group number ping check is disabled for all export groups The group number is not optional for other Extreme i series devices Example The following command disables the ping check function for all export groups disable flowstats ping check History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the ...

Page 530: ...ontrol protocol BCP Also there are no configuration restrictions that prohibit enabling of the flow statistics function on ports that are not configured to use IPCP statistics are not collected on those ports Example The following command disables NetFlow statistics for ports 1 8 on this switch disable flowstats ports 1 8 History This command was first available in ExtremeWare 6 1 5b20 for the PoS...

Page 531: ...on This command has no arguments or variables Default Disabled Usage Guidelines If the log display is disabled log information is no longer written to the serial console Example The following command disables the log display disable log display History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 532: ...ed and thresholds can be on the absolute value of a variable or its delta value In addition alarm thresholds may be autocalibrated or set manually Events The Events group creates entries in an event log and or sends SNMP traps to the management workstation An event is triggered by an RMON alarm The action taken can be configured to ignore it to log the event to send an SNMP trap to the receivers l...

Page 533: ...has no arguments or variables Default Enabled Usage Guidelines If the system health checker is disabled it does not test I O modules MSM64i modules and the backplane for system faults Example The following command disables the BlackDiamond system health checker disable sys health check History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on Bl...

Page 534: ...g host Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines Disables logging to a remote syslog host not to the switch syslog Example The following command disables logging to a remote syslog host disable syslog History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 535: ...ount name that performed the changes and the source IP address of the client if Telnet was used Configuration logging applies only to commands that result in a configuration change Every command is displayed in the log window This allows you to view every command executed on the switch To view the status of configuration logging on the switch use the show management command The show management com...

Page 536: ... statistics feature on the switch Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables NetFlow statistics feature on this switch enable flowstats History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 537: ...e used to identify the particular filter that is being disabled One of either the ingress or egress keywords are required for SONET ports Example The following command enables filter 3 for ports 1 8 on the switch enable flowstats filter 3 ports 1 8 History This command was first available in ExtremeWare 6 1 5b20 for the PoS module only This command was first available in ExtremeWare 6 2 for all i ...

Page 538: ...ed from the distribution list for any export groups of which it is a member The device will be returned to the distribution list automatically when subsequent ping checks are successful On the PoS module if you do not include a group number ping check is enabled for all export groups Example The following command enables the ping check function for export group 3 enable flowstats ping check 3 Hist...

Page 539: ...otocol BCP Also there are no configuration restrictions that prohibit enabling of the flow statistics function on ports that are not configured to use IPCP statistics are not collected on those ports Example The following command enables the ping check function for all export groups enable flowstats ping check History This command was first available in ExtremeWare 6 1 5b20 for the PoS module This...

Page 540: ...in in effect even after your console session is ended unless you explicitly disable the log display When using a Telnet connection if your Telnet session is disconnected because of the inactivity timer or for other reasons the log display is automatically halted You must restart the log display by using the enable log display command You configure the commands displayed in the log using the config...

Page 541: ...e Both rising and falling thresholds are supported and thresholds can be on the absolute value of a variable or its delta value In addition alarm thresholds may be autocalibrated or set manually Events The Events group creates entries in an event log and or sends SNMP traps to the management workstation An event is triggered by an RMON alarm The action taken can be configured to ignore it to log t...

Page 542: ...ow management command The show management command displays information about the switch including the enable disable state for RMON polling Example The following command enables the collection of RMON statistics on the switch enable rmon History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms ...

Page 543: ...utomatically reconfigures the backplane link map to redistribute traffic over the remaining backplane links If all backplane links to a module fail the module is considered down To view the status of the links between the modules and each MSM64i use the show internal port stats slot slot_num command Where the slot_num is the number of the slot that you want to view the status of the links between ...

Page 544: ...he syslog and may also send a trap and or shut down the system The system health checker will continue to periodically forward test packets to failed components If auto recovery is configured the system will attempt to automatically reset the faulty module and bring it back online In ExtremeWare versions prior to 6 2 you cannot use both mirroring and the system health checker at the same time If y...

Page 545: ...enable sys health check ExtremeWare Software 7 0 0 Command Reference Guide 545 Platform Availability This command is available on BlackDiamond switches only ...

Page 546: ...mote logging you must do the following Configure the syslog host to accept and log messages Enable remote logging by using the enable syslog command Configure remote logging by using the config syslog command When you use the enable syslog command the exporting process of the syslog begins Example The following command enables logging to a remote syslog host enable syslog History This command was ...

Page 547: ...low collector devices NetFlow Server Config NetFlow Timeout configurations Whether NetFlow Filters are enable or disabled NetFlow filter specifications NetFlow ping check configuration When the detail keyword is included the NetFlow Servers Config section is replaced by detailed configuration information that includes counts of the number of times each flow collector device has been removed from t...

Page 548: ...nabled Port Filter proto timeout group OverflowPkts flags 1 1 IP 5 3 N A EIA DestIP 10 203 0 1 255 255 255 255 DestPort any SrcIP any SrcPort any 40 8 5 1 N A EIA Dest Src Info match all flows 43 3 TCP 5 32 N A EIA DestIP 10 0 1 1 255 255 255 254 DestPort any SrcIP 10 201 32 1 255 255 255 255 SrcPort any Flags E Enable D Disable I Ingress S Egress A Aggregation History This command was first avail...

Page 549: ...ts feature is enabled or disabled The configuration of flow collector devices for the export group NetFlow Server Config NetFlow ping check configuration Example The following command displays detailed configuration information for export group 1 show flowstats export 1 detail Group 1 ping check enable Source ip_address 10 201 26 217 ip_address 10 201 31 237 udp_port 9995 status up 0 times outpkts...

Page 550: ...her NetFlow Filters are enable or disabled for the port NetFlow filter specifications for the port Example The following command displays statistics for ports 1 40 and 48 Summit48i show flowstats 1 40 48 Flowstats enabled Port Filter proto timeout group OverflowPkts flags 1 3 IP 5 3 N A EIA DestIP 10 203 0 1 255 255 255 255 DestPort any SrcIP any SrcPort any 40 8 5 1 N A EIA Dest Src Info match al...

Page 551: ...how flowstats ExtremeWare Software 7 0 0 Command Reference Guide 551 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 552: ... day of the event along with the time hours minutes and seconds in the form HH MM SS If the event was caused by a user the user name is also provided Fault level Table 13 describes the levels of importance that the system can assign to a fault By default log entries that are assigned a critical or warning level remain in the log after a switch reboot Issuing a clear log command does not remove the...

Page 553: ...ion Platform Availability This command is available on all platforms Table 14 Fault Log Subsystems Subsystem Description Syst General system related information Examples include memory power supply security violations fan failure overheat condition and configuration mode STP STP information Examples include an STP state change Brdg Bridge related functionality Examples include low table space and ...

Page 554: ...ommand displays the log configuration including the syslog host IP address the priority level of messages being logged locally and whether the console log is enabled or disabled and the priority level of messages being sent to the syslog host and whether the syslog is enabled or disabled Example The following command displays the log configuration show log config History This command was first ava...

Page 555: ...ry both free and allocated memory used by the system and the users Cumulative memory both free and allocated memory used by the users Software packet memory statistics including the type of packet the number of allocated and free packets the number of packet failures and data and other blocks Memory utilization statistics including the total blocks of memory available and the memory being used on ...

Page 556: ...are Software 7 0 0 Command Reference Guide Commands for Status Monitoring and Statistics History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 557: ...ive A The link is present at this port Disabled D The link is disabled at this port Not Present NP The link is not present at this port Receive Bad CRC Frames RX CRC The total number of frames received by the port that were of the correct length but contained a bad FCS value Receive Oversize Frames RX Over The total number of good frames received by the port greater than the supported maximum leng...

Page 558: ...le as link status indicators Example The following command displays receive error statistics for ports 1 through 3 on a stand alone switch show ports 1 3 rxerrors The following command displays receive error statistics for slot 1 ports 1 through 3 on a modular switch show ports 1 1 1 3 rxerrors History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 1...

Page 559: ...ed at this port Not Present NP The link is not present at this port Transmitted Packet Count Tx Pkt Count The number of packets that have been successfully transmitted by the port Transmitted Byte Count Tx Byte Count The total number of data bytes successfully transmitted by the port Received Packet Count Rx Pkt Count The total number of good packets that have been received by the port Received By...

Page 560: ...llowing command displays port statistics for ports 1 through 3 on a stand alone switch show ports 1 3 stats The following command displays port statistics for slot 1 ports 1 through 3 on a modular switch show ports 1 1 1 3 stats History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches This command was modified in Extreme 4...

Page 561: ...dy to accept a link Active A The link is present at this port Disabled D The link is disabled at this port Not Present NP The link is not present at this port Transmit Collisions TX Coll The total number of collisions seen by the port regardless of whether a device connected to the port participated in any of the collisions Transmit Late Collisions TX Late Coll The total number of collisions that ...

Page 562: ...following Port Tx Error Monitor Thu Dec 27 19 19 07 2001 Port Link Tx Tx Tx Tx Tx Tx Status Coll Late Coll Deferred Error Lost Parity 1 A 0 0 0 0 0 0 2 R 0 0 0 0 0 0 3 R 0 0 0 0 0 0 4 R 0 0 0 0 0 0 5 R 0 0 0 0 0 0 6 R 0 0 0 0 0 0 7 R 0 0 0 0 0 0 8 R 0 0 0 0 0 0 Link Status A Active R Ready D Disabled NP Not Present 0 Clear Counters U page up D page down ESC exit History This command was first avai...

Page 563: ...ber A collection of numbers and letters that make up the serial number of the CPU running in the switch A rev number may also be listed Image The ExtremeWare software version currently running on the switch If you have two software images downloaded on the switch only the currently running ExtremeWare version information is displayed The information displayed includes the version number build numb...

Page 564: ...1 08 0023F25758 SLOT 1 701026 03 0003Y00043 SLOT 2 701024 04 9949Y00055 SLOT 3 701005 09 9946F25172 SLOT 4 SLOT 5 SLOT 6 701028 01 0004Y00038 SLOT 7 SLOT 8 Image Extremeware Version 6 2 0 Build 60 by Release_Master 09 21 0120 53 17 BootROM 7 2 Using the detail option in the show version command produces output similar to the following on a BlackDiamond switch Chassis MSM64 801000 07 9946F00987 MSM...

Page 565: ...show version ExtremeWare Software 7 0 0 Command Reference Guide 565 Platform Availability This command is available on all platforms ...

Page 566: ...iption Default N A Usage Guidelines By unconfiguring the filter specification this effectively disables this filter on all ports for which it was configured Example The following command resets the values for filter 4 unconfig flowstats filter 4 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms filter Specifies the...

Page 567: ...s nor does it affect the configured export destinations Example The following command resets the flow statistics configuration parameters for port 1 of slot 8 to their default values unconfig flowstats ports 8 1 History This command was first available in ExtremeWare 6 1 5b20 for the PoS module This command was made available in ExtremeWare 6 2 for all i series platforms Platform Availability This...

Page 568: ...568 ExtremeWare Software 7 0 0 Command Reference Guide Commands for Status Monitoring and Statistics ...

Page 569: ...ving on an ingress port is compared to the access list in sequential order and is either forwarded to a specified QoS profile or dropped Using access lists has no impact on switch performance Access lists are typically applied to traffic that crosses layer 3 router boundaries but it is possible to use access lists within a layer 2 VLAN Extreme products are capable of performing this function with ...

Page 570: ...ble of sending RADIUS accounting information You can configure RADIUS accounting servers to be the same as the authentication servers but this is not required Terminal Access Controller Access Control System Plus TACACS is a mechanism for providing authentication authorization and accounting on a centralized server similar in function to the RADIUS client The ExtremeWare version of TACACS is used ...

Page 571: ...s included to support Network Login functionality Denial of Service You can configure ExtremeWare to protect your network in the event of a denial of service attack During a typical denial of service attack the CPU on the switch gets flooded with packets from multiple attackers potentially causing the switch to fail To protect against this type of attack you can configure the software so that when...

Page 572: ...rofile mode is none Otherwise the overall access profile type takes precedence ip address mask Specifies an IP address and mask as an entry in the profile list exact Specifies that an exact match with address and mask will be performed Subnets within the address range will not match entry against entry path expression Specifies a regular expression string to match against the autonomous system pat...

Page 573: ...mple The following command adds an IP subnet address to access profile nosales as the next available entry config access profile nosales add ipaddress 10 1 33 0 24 The following command configures the access profile AS1 to permit AS paths beginning with AS number 1 followed by any AS number from 2 8 and ending with either AS number 11 13 or 15 config access profile AS1 add 15 permit as path 1 2 8 ...

Page 574: ...able in ExtremeWare 6 1 Support for IPX NetID and IPX SAP matching was first available in ExtremeWare 6 2 A limited version of this command was first available in ExtremeWare 4 0 Platform Availability This command is available on i series platforms A limited form of the command is available on non i series platforms ...

Page 575: ...s the entry with sequence number 15 from the access profile AS1 config access profile AS1 delete 15 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series platforms access_profile Specifies an access profile name seq number Specifies the order of the entry within the access profile If no sequence number is specified the new entry is ...

Page 576: ..._33 to deny access config access profile no_subnet_33 mode deny The following command specifies that the access profile no_subnet_33 uses per entry access control config access profile no_subnet_33 mode none History This command was first available in ExtremeWare 4 0 The per entry access control was added in ExtremeWare 6 1 Platform Availability This command is available on all platforms access_pr...

Page 577: ...er precedence to 0 the ACLs created by DoS protection will be overwritten by the default VLAN QoS profile alert threshold Configures the number of packets per second that the switch needs to recieve on a port for an ACL to be enabled Range is 150 to 100 000 packets per second Default is 4000 notice threshold Configures the number of packets per second that the switch needs to receive on a port for...

Page 578: ... configures logging to occur when the number of packets per second that the switch receives is 2000 the timeout is 15 seconds and messages are on config cpu dos protect alert threshold 3000 notice threshold 2000 timeout 15 messages on filter precedence 10 History This command was first available in ExtremeWare 6 2 2 The filter type allowed keyword was added in ExtremeWare 7 0 0 Platform Availabili...

Page 579: ... denial of service protection to only a few of the ports on a switch Use the all parameter then use the command config cpu dos protect trusted ports delete port number to set ports that should not be trusted that denial of service protection should be applied to Example The following command configures a port as trusted so that denial of service protection is not applied port 3 config cpu dos prot...

Page 580: ...delines When you login using a web browser you are redirected to the specified base URL which is the DNS name for the switch You must configure a DNS name of the type www xx xx xxx or xx xx xxx Example The following example configures the base URL as access net config netlogin base url access net History This command was first available in ExtremeWare 7 0 Platform Availability This command is avai...

Page 581: ...age after successful login using this command If a RADIUS server is used for authentication then base page redirection configured on the RADIUS server takes priority over this configuration You must configure a complete URL starting from either http or https Example The following example configures the redirect URL as http www extremenetworks com config netlogin redirect url http www extremenetwor...

Page 582: ...e The following command configures the primary RADIUS server on host radius1 using the default UDP port 1645 for use by the RADIUS client on switch 10 10 20 30 config radius primary server radius1 client ip 10 10 20 30 History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms primary Configures the primary RADIUS authentication ser...

Page 583: ...e RADIUS server must first be configured for use with the switch as a RADIUS client Example The following command configures the shared secret as purplegreen on the primary RADIUS server config radius primary shared secret purplegreen History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms primary Configures the authentication st...

Page 584: ...ade After three failed attempts to authenticate the alternate server will be used After five failed attempts local user authentication will be used Example This example configures the timeout interval for RADIUS authentication to 10 seconds After 30 seconds three attempts the alternate RADIUS server will be used After 50 seconds five attempts local user authentication is used config radius timeout...

Page 585: ...g command configures RADIUS accounting on host radius1 using the default UDP port 1646 for use by the RADIUS client on switch 10 10 20 30 config radius accounting primary server radius1 client ip 10 10 20 30 History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms primary Configure the primary RADIUS accounting server secondary Co...

Page 586: ...nd the RADIUS accounting server Example The following command configures the shared secret as purpleaccount on the primary RADIUS accounting server config radius primary shared secret purpleaccount History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms primary Configures the authentication string for the primary RADIUS accountin...

Page 587: ...ation requests When the timeout has expired another authentication attempt will be made After three failed attempts to authenticate the alternate server will be used Example This example configures the timeout interval for RADIUS Accounting authentication to 10 seconds After 30 seconds three attempts the alternate RADIUS server will be used config radius accounting timeout 10 History This command ...

Page 588: ...erty is added to a route map packets are forwarded to the IP prefixes next hop by the ARM MPLS module using LPM routing If the iphost routing property is added to a route map packets are forwarded to the IP prefixes next hop using the Inferno hardware host based IP FDB The lpm routing keyword is only significant for routes learned on VLANs that are not LPM routing enabled The iphost routing keywor...

Page 589: ...dds an entry to the route map named bgp out that will be evaluated after the previous entry and that permits all matching routes config route map bgp out add 20 permit History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 590: ... been evaluated Example The following command adds a goto statement to entry 25 in route map map1 that causes evaluation control to transfer to route map map2 config route map map1 25 add goto map2 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms route map The name of the route map to which this statement should b...

Page 591: ...access_profile Specifies a BGP community access profile against which the community attribute should be matched as_number number Specifies a BGP community number specified in as_number number format against which the community attribute should be matched community Specifies a BGP community number specified as an unsigned 32 bit integer in decimal format against which the community attribute should...

Page 592: ... required for success If an entry has no match statements the entry is always considered a successful match Example The following command adds a statement to entry 10 in route map bgp out that matches the NLRI against the access profile named iplist config bgp out 10 add match nlri list iplist The following command adds a statement to entry 15 in route map bgp out that matches the AS path attribut...

Page 593: ...number specified as an unsigned 32 bit integer in decimal format no export Sets the community in path attribute to the no export attribute no advertise Sets the community in path attribute to the no advertise attribute no export subconfed Sets the community in path attribute to the no export subconfed attribute remove Removes the community attribute if present add delete as_access_profile Adds or ...

Page 594: ...nformation for a route that matches a statement in entry 15 of route table bgp out include a MED value of 200 config bgp out 15 add set med 200 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms remove Removes the MED attribute if present add delete med_number Adds or deletes the specified value to or from the MED t...

Page 595: ...ollowing command removes the entry with sequence number 20 from the route map named bgp out config route map bgp out delete 20 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms route map The name of the route map to which this entry should be added seq number Specifies a sequence number that uniquely identifies the...

Page 596: ...tes the goto statement from entry 25 in route map map1 that specifies transfer to route map map2 config route map map1 25 delete goto map2 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms route map The name of the route map from which this statement should be deleted seq number The sequence number of the entry in ...

Page 597: ...e map The name of the route map from which this statement should be deleted seq number The sequence number of the entry in the route map from which this statement should be deleted nrli_access_profile Specifies an NRLI list access profile as_access_profile Specifies an AS path access profile as number Specifies an AS number com_access_profile Specifies a BGP community access profile as_number numb...

Page 598: ...8 ExtremeWare Software 7 0 0 Command Reference Guide Security Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 599: ...er in decimal format no export Specifies the no export attribute no advertise Specifies the no advertise attribute no export subconfed Specifies the no export subconfed attribute remove Specifies removing the community attribute add delete as_access_profile Specifies add or delete of the specified access profile add delete as_number number Specifies add or delete of the specified BGP community num...

Page 600: ...tory This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms origin igp egp incomplete Specifies the origin tag tag_number Specifies the tag in the route to the specified number accounting index index_number Specifies the index number of an accounting index to be set value value_number Specifies a value for the accounting index ...

Page 601: ...thentication key must be generated before the switch can accecpt incoming SSH2 sessions This can be done automatically by the switch or you can enter a previously generated key If you elect to have the key generated you are prompted to enter a set of random characters to be used in generating the key The key generation process takes approximately ten minutes and cannot be canceled after it has sta...

Page 602: ...ws Enter some random characters End with a newline Type in a series of random characters and then press the Enter or Return key The key generation process will then proceed To configure an SSH2 session using a previously generated key use the following command config ssh2 key pregenerated The command responds with the following message Please enter the server key Enter the previously generated key...

Page 603: ...ires that DNS be enabled Example The following command configures server tacacs1 as the primary TACACS server for client switch 10 10 20 35 config tacacs primary server tacacs1 client ip 10 10 20 35 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms primary Configures the primary TACACS server secondary Configures t...

Page 604: ...nd the TACACS server Example The following command configures the shared secret as purplegreen on the primary TACACS server config tacacs accounting primary shared secret purplegreen History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms primary Configures the authentication string for the primary TACACS server secondar...

Page 605: ...t interval for TACACS authentication requests When the timeout has expired another authentication attempt will be made to the next alternative authentication method Example The following command configures the timeout interval for TACACS authentication to 10 seconds config tacacs timeout 10 History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is availabl...

Page 606: ...er tacacs1 as the primary TACACS accounting server for client switch 10 10 20 35 config tacacs accounting primary server tacacs1 client ip 10 10 20 35 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms primary Configures the primary TACACS accounting server secondary Configures the secondary TACACS accounting server...

Page 607: ...CS server Example The following command configures the shared secret as tacacsaccount on the primary TACACS accounting server config tacacs accounting primary shared secret tacacsaccount History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms primary Configures the authentication string for the primary TACACS accounting ...

Page 608: ...nterval for TACACS accounting authentication requests When the timeout has expired another authentication attempt will be made to the next alternative TACACS accounting server Example The following command configures the timeout interval for TACACS accounting authentication to 10 seconds config tacacs accounting timeout 10 History This command was first available in ExtremeWare 7 0 0 Platform Avai...

Page 609: ... profile The VLAN must already exist The access profile must be of type VLAN supported only in ExtremeWare releases 4 0 and earlier Example Given an access profile created and configured as follows create access profile okprofile vlan config access profile okprofile mode permit config access profile okprofile add vlan exec The following command permits traffic from VLAN exec to be routed to VLAN v...

Page 610: ...ses between 192 168 0 20 and 192 168 0 100 for use by the VLAN temporary config temporary dhcp address range 192 168 0 20 192 168 0 100 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the VLAN on whose ports netlogin should be disabled ipaddress1 Specifies the first IP address in the DHCP address r...

Page 611: ...escription Default N A Usage Guidelines The timer value is specified in seconds Example The following command configures the DHCP lease timer value for VLAN corp config vlan corp dhcp lease timer lease timer History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the VLAN on whose ports netlogin should be ...

Page 612: ...Example The following command configures the DHCP server to return the IP address 10 10 20 8 as the router option config vlan name dhcp options default gateway 10 10 20 8 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies a VLAN name default gateway Specifies the router option dns server Specifies the...

Page 613: ...rk Login enabled ports Syntax Description Default 10 seconds Usage Guidelines The timer value is specified in seconds Example The following command configures the timer value for VLAN corp config vlan corp netlogin lease timer lease timer History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan_name Specifies the VLA...

Page 614: ... first available in ExtremeWare 6 0 name Specifies the access list name The access list name can be between 1 and 31 characters dest_ipaddress mask Specifies an IP destination address and subnet mask A mask length of 32 indicates a host entry any specifies that any address will match src_ipaddress source_mask Specifies a source IP address and subnet mask any specifies that any address will match i...

Page 615: ...create access list icmp destination source ExtremeWare Software 7 0 0 Command Reference Guide 615 Platform Availability This command is available on the i series platforms ...

Page 616: ...y create access list denyall ip dest 0 0 0 0 0 source 0 0 0 0 0 deny ports any History This command was first available in ExtremeWare 6 0 name Specifies the access list name The access list name can be between 1 and 31 characters dest_ipaddress mask Specifies an IP destination address and subnet mask A mask length of 32 indicates a host entry any specifies that any address will match src_ipaddres...

Page 617: ...create access list ip destination source ports ExtremeWare Software 7 0 0 Command Reference Guide 617 Platform Availability This command is available on the i series platforms ...

Page 618: ...ax Specifies the end of a TCP layer 4 port range src_ipaddress src_mask Specifies a source IP address and subnet mask any specifies that any address will match src_port Specifies a TCP layer 4 port any specifies that all TCP ports will match src_port_min Specifies the beginning of a TCP layer 4 port range src_port_max Specifies the end of a TCP layer 4 port range permit Specifies that packets that...

Page 619: ...ccess list rule named allow10_23 with precedence 30 that permits TCP port 23 traffic destined for other 10 x x x networks and assigns QoS profile Qp4 create access list allow10_23 tcp dest 10 0 0 0 8 ip port 23 source any ip port any permit qosprofile qp4 ports any precedence 30 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i ser...

Page 620: ...port any specifies that all UDP ports will match dst_port_min Specifies the beginning of a UDP layer 4 port range dst_port_max Specifies the end of a UDP layer 4 port range src_ipaddress src_mask Specifies a source IP address and subnet mask any specifies that any address will match src_port Specifies a UDP layer 4 port any specifies that all UDP ports will match src_port_min Specifies the beginni...

Page 621: ...with precedence 70 that permits udp port 35 traffic destined for other 10 X X X networks and assigns QoS profile Qp2 create access list allow10_35 udp dest 10 0 0 0 8 ip port 35 source any ip port any permit qosprofile qp2 ports any precedence 70 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 622: ...ies will be a list of VLANs Example The following command creates an access profile named nosales that will contain IP address mask pairs create access profile nosales type ipaddress The following command creates an access profile that will contain AS path expressions create access profile AS1 type as path access_profile Specifies an access profile name ipaddress Specifies that the profile entries...

Page 623: ...xtremeWare 6 1 Support for the IPX node NetID and SAP advertisement types was added in ExtremeWare 6 2 A limited version of this command was first available in ExtremeWare 4 0 Platform Availability This command is available on i series platforms A limited form of the command is available on platforms based on the Summit chipset ...

Page 624: ...e used in conjunction with the match and set operations A match operation specifies a criteria that must be matched A set operation specifies a change that is made to the route when the match operation is successful After a route map statement has been created you must add entries to the route map and then add statements to the route map entries Example The following command creates a route map na...

Page 625: ...one Example The following command deletes access list allow102 delete access list allow102 History This command was first available in ExtremeWare 6 0 The command was modified in ExtremeWare 6 2 1 to provide the all option Platform Availability This command is available on all i series platforms name Specifies the name of the access list to be deleted all Specifies that all access lists should be ...

Page 626: ...etes an access profile Syntax Description Default N A Usage Guidelines None Example The following command deletes an access profile named nosales delete access profile nosales History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms access_profile Specifies an access profile name ...

Page 627: ...map statement from the route map Syntax Description Default N A Usage Guidelines None Example The following command deletes a route map named bgp out delete route map bgp out History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms route_map Specifies a route map name ...

Page 628: ...The following command disables statistics collection for access list allow102 disable access list allow102 counter History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms name Specifies the name of the access list counter Specifies that access list statistics collection should be disable log Specifies that message loggin...

Page 629: ...service protection Syntax Description There are no arguments or variables for this command Default Default is disabled Usage Guidelines None Example The following command disables denial of service protection disable cpu dos protect History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on all platforms ...

Page 630: ...specified port in a VLAN Syntax Description Default N A Usage Guidelines None Example The following command disables DHCP for port 9 in VLAN corp disable dhcp ports 9 vlan corp History This command was first available in ExtremeWare 6 2 portlist Specifies the ports for which DHCP should be disabled vlan_name Specifies the VLAN on whose ports DHCP should be disabled ...

Page 631: ... command has no arguments or variables Default Enabled Usage Guidelines This command turns the privilege for netlogin users to logout by popping up or not popping up the logout window on or off Example The following command disables network login logout privilege disable netlogin logout privilege History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is av...

Page 632: ...isables network login Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines Example The following command disables network login disable netlogin History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms ...

Page 633: ... login must be disabled on a port before you can delete a VLAN that contains that port Example The following command disables network login on port 9 in VLAN corp disable netlogin ports 9 vlan corp History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms portlist Specifies the ports for which netlogin should be disabled v...

Page 634: ...user has been logged in successfully a logout window opens which can be used to close the connection by clicking on the LogOut link Any abnormal closing of this window is detected on the switch and the user is logged out after a time interval as configured for session refresh The session refresh is enabled and set to five minutes by default Example The following command disables Network Login sess...

Page 635: ... Description This command has no arguments or variables Default RADIUS authentication is disabled by default Usage Guidelines None Example The following command disables RADIUS authentication for the switch disable radius History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms ...

Page 636: ...ables RADIUS accounting Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables RADIUS accounting for the switch disable radius accounting History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms ...

Page 637: ...on default port setting are not saved when SSH2 is disabled To view the status of SSH2 Telnet sessions on the switch use the show management command The show management command displays information about the switch including the enable disable state for SSH2 Telnet sessions Example The following command disables the SSH2 feature disable ssh2 History This command was first available in ExtremeWare ...

Page 638: ...d authorization Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables TACACS authentication and authorization for the switch disable tacacs History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 639: ...ion Disables TACACS accounting Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables TACACS accounting disable tacacs accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 640: ...iption This command has no arguments or variables Default N A Usage Guidelines This disable CLI command authorization but leaves user authentication enabled Example The following command disables TACACS CLI command authorization disable tacacs authorization History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 641: ...llow102 enable access list allow102 counter The following command enables logging of packets for access list allow102 enable access list allow102 log History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms name Specifies the name of the access list counter Specifies that access list statistics should be collected log Spe...

Page 642: ...vice protection Syntax Description There are no arguments or variables for this command Default Default is disabled Usage Guidelines None Example The following command enables denial of service protection enable cpu dos protect History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on all platforms ...

Page 643: ... Usage Guidelines When simulated denial of service protection is enabled no ACLs are created This mode is useful to gather information about normal traffic levels on a switch This will assist in configuring denial of service protection so that legitimate traffic is not blocked Example The following command enables simulated denial of service protection enable cpu dos protect simulated History This...

Page 644: ...bles network login Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables network login enable netlogin History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms ...

Page 645: ...command has no arguments or variables Default Enabled Usage Guidelines This command turns the privilege for netlogin users to logout by popping up or not popping up the logout window on or off Example The following command enables network login logout privilege enable netlogin logout privilege History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is avail...

Page 646: ...DIUS server must be configured to enable the Extreme network login capability For ISP mode login no special conditions are required A RADIUS server may be used for authentication but is not required Network login is used on a per port per VLAN basis A port that is tagged can belong to more than one VLAN In this case network login can be enabled on one port for each VLAN Windows authentication is n...

Page 647: ... be used to close the connection by clicking on the LogOut link Any abnormal closing of this window is detected on the switch and the user is logged out after a time interval as configured for session refresh The session refresh is enabled and set to five minutes by default Example The following command enables Network Login session refresh and sets the refresh time to ten minutes enable netlogin ...

Page 648: ...enabled all web and CLI logins are sent to the RADIUS servers for authentication When used with a RADIUS server that supports ExtremeWare CLI authorization each CLI command is sent to the RADIUS server for authorization before it is executed Example The following command enables RADIUS authentication for the switch enable radius History This command was first available in ExtremeWare 4 1 Platform ...

Page 649: ...unting Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines The RADIUS client must also be enabled Example The following command enables RADIUS accounting for the switch enable radius accounting History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms ...

Page 650: ...SSH2 access to the switch To do this you must create an access profile that contains a list of allowed IP addresses To create an access profile use the create access profile command To configure an access profile use the config access profile command Use the none option to cancel a previously configured access profile Use the port option to specify a TCP port number other than the default To view ...

Page 651: ...enable ssh2 ExtremeWare Software 7 0 0 Command Reference Guide 651 Platform Availability This command is available on all i series platforms ...

Page 652: ...es Default Disabled Usage Guidelines After they have been enabled all web and CLI logins are sent to one of the two TACACS servers for login name authentication and accounting Example The following command enables TACACS user authentication enable tacacs History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 653: ...escription This command has no arguments or variables Default Disabled Usage Guidelines If accounting is used the TACACS client must also be enabled Example The following command enables TACACS accounting for the switch enable tacacs accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 654: ...rguments or variables Default Disabled Usage Guidelines When enabled each command is transmitted to the remote TACACS server for authorization before the command is executed Example The following command enables TACACS command authorization for the switch enable tacacs authorization History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i...

Page 655: ... is the default blowfish Specifies that the blowfish cipher should be used for encryption portnum Specifies the TCP port number to be used for communicating with the SSH2 client Default is port 22 debug_level Specifes a debug level Default is 0 user Specifies a login name for the remote host host Specifies the name of the remote host ipaddress Specifies the IP address of the remote host remote fil...

Page 656: ... configuration and reboot the switch the configuration will be corrupted Example The following command copies a configuration file from the file configpart1 save on host system1 to the switch as an incremental configuration scp2 admin system1 configpart1 save configuration incremental History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on a...

Page 657: ...host as user and creates the file remote_file Example The following command copies the switch configuration and saves it as file config1 save on host system1 scp2 configuration admin system1 config1 save History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all i series platforms 3des Specifies that the 3des cipher should be used for encry...

Page 658: ...he access lists show access list It produces output similar to the following Rule Dest mask L4DP Src mask L4SP Flags Hits test1 0 0 0 0 0 0 0 0 0 0 0 0 I P X 1531 Flags I IP T TCP U UDP E Established M ICMP P Permit Rule D Deny Rule N Port Specific Rule X Any Port The following command shows real time access list statistics for ingress ports 5 7 show access list port 5 7 The following command show...

Page 659: ...ut similar to the following test1 Protocol ip Action permit qp1 Destination 0 0 0 0 0 any Source any any Precedence 0 Rule Number 0 Hit Count 4566 Flags ac Ports any History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 660: ...ss control list mapping Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the hardware access control list mapping show access list fdb History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 661: ...iscontinue the display Example The following command initiates the access list information display show access list monitor The command displays output similar to the following Access List Proto Destination Source Hit Count test1 ip 0 0 0 0 0 0 0 0 0 0 1922 The Hit Count continues to be updated until you exit from the display or enter 0 to reset the count to zero History This command was first ava...

Page 662: ...h Syntax Description Default Shows all access profile information for the switch Usage Guidelines None Example The following command displays access profile related information for access profile nosales show access profile nosales History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms access_profile Specifies an access profile ...

Page 663: ...protection show cpu dos protect Following is the output from this command Denial of service protection to CPU is ENABLED Notice level 4000 new packets second level for logging Alert level 4000 new packets second level for ACL creation Filter types destination ACL timeout 15 seconds ACL rule precedence 10 Messages are ON Trusted Ports none ACL is active ports 48 to 192 168 3 1 proto all precedence ...

Page 664: ...bled The base URL The default redirect page The logout privilegs setting The netlogin session refresh setting and time Example The following command shows the network login parameters show netlogin Following is the output from this command Netlogin Enabled Base URL network access net Default Redirect Page http www extremenetworks com Logout privilege YES Netlogin Session Refresh Disabled 3 minutes...

Page 665: ...nown The DHCP state Enabled or Not Enabled The user name if known The MAC address of the attached client if known Example The following command shows network login information for port 9 on VLAN corp show netlogin info ports 9 vlan corp Following is the output from this command Port 9 VLAN corp Port State Authenticated Temp IP Unknown DHCP Not Enabled User auto MAC 00 10 A4 A9 11 3B History This c...

Page 666: ... is the output from this command Radius enabled Radius Accounting enabled Radius Server Connect Timeout sec 3 Primary radius server Server name 172 17 1 123 IP address 172 17 1 123 Server IP Port 1645 Client address 172 17 1 221 Shared secret Access Requests 0 Access Accepts 0 Access Rejects 0 Access Challenges 0 Access Retransmits 0 Client timeouts 0 Bad authenticators 0 Unknown types 0 Round Tri...

Page 667: ...ver name 172 17 1 104 Client address 172 17 1 221 Shared secret lf nki Secondary radius accounting server Server name 172 17 1 123 Client address 172 17 1 221 Shared secret lf nki History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms ...

Page 668: ...stics show radius accounting Following is the output from this command Radius Accounting enabled Radius Acct Server Connect Timeout sec 3 Primary radius accounting server Server name 172 17 1 104 IP address 172 17 1 104 Server IP Port 1646 Client address 172 17 1 221 Shared secret lf nki Acct Requests 0 Acct Responses 0 Acct Retransmits 0 Timeouts 0 Secondary radius accounting server Server name 1...

Page 669: ...ult N A Usage Guidelines If you do not specify a route map name information for all the route maps will be displayed Example The following command displays the route map named bgp out show route map bgp out History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms route map Specifies a route map name ...

Page 670: ...S Authorization enabled TACACS Accounting enabled TACACS Server Connect Timeout sec 3 Primary TACACS Server Server name 172 17 1 104 IP address 172 17 1 104 Server IP Port 49 Client address 172 17 1 220 Shared secret lf nki Secondary TACACS Server Server name 172 17 1 123 IP address 172 17 1 123 Server IP Port 49 Client address 172 17 1 220 Shared secret lf nki TACACS Acct Server Connect Timeout s...

Page 671: ...show tacacs ExtremeWare Software 7 0 0 Command Reference Guide 671 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms ...

Page 672: ... and statistics show tacacs accounting Following is the output from this command TACACS Accounting enabled TACACS Acct Server Connect Timeout sec 3 Primary TACACS Accounting Server Server name 172 17 1 104 IP address 172 17 1 104 Server IP Port 49 Client address 172 17 1 220 Shared secret lf nki Secondary TACACS Accounting Server Server name 172 17 1 123 IP address 172 17 1 123 Server IP Port 49 C...

Page 673: ...iginal switch The remote command option cannot be used with Extreme Networks switches If you include a remote command you will receive an error message 3des Specifies that the 3des cipher should be used for encryption This is the default blowfish Specifies that the blowfish cipher should be used for encryption portnum Specifies the TCP port number to be used for communicating with the SSH2 client ...

Page 674: ...h engineering1 ssh2 admin engineering1 The following command establishes an SSH2 session with the switch summit48i over TCP port 2050 with compression enabled ssh2 port 2050 compression on admin summit48i History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all i series platforms ...

Page 675: ... The default values for the denial of service protection parameters are as follows alert threshold 4000 packets per second notice threshold 4000 packets per second timeout 15 seconds messages on messages are sent to syslog filter precedence 10 Example The following command resets the denial of service protection configuration to the default values unconfig cpu dos protect History This command was ...

Page 676: ...t Unconfigures both primary and secondary servers Usage Guidelines None Example The following command unconfigures the secondary RADIUS server for the client unconfig radius server secondary History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms primary Unconfigures the primary RADIUS server secondary Unconfigures the secondary ...

Page 677: ...igures both the primary and secondary accounting servers Usage Guidelines None Example The following command unconfigures the secondary RADIUS accounting server for the client unconfig radius accounting server secondary History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on all platforms primary Unconfigures the primary RADIUS accounting serv...

Page 678: ...ault Unconfigures both the primary and secondary TACACS servers Usage Guidelines None Example The following command unconfigures all TACACS servers for the client unconfig tacacs History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms primary Unconfigures the primary TACACS server secondary Unconfigures the secondary TAC...

Page 679: ...nconfigures both the primary and secondary TACACS accounting servers Usage Guidelines None Example The following command unconfigures all TACACS accounting servers for the client unconfig tacacs accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on the i series platforms primary Unconfigures the primary TACACS accounting server se...

Page 680: ...680 ExtremeWare Software 7 0 0 Command Reference Guide Security Commands ...

Page 681: ...he master node is designated the master node s primary port P to the ring another port is designated as the master node s secondary port S to the ring In normal operation the master node blocks the secondary port for all non control traffic belonging to this EAPS domain If the master node detects a break in the ring it unblocks its secondary port and allows data traffic to be transmitted and recei...

Page 682: ... may be added as members of the control VLAN The ring ports of the control VLAN must be tagged This ensures that EAPS control VLAN traffic is serviced before any other traffic and that control VLAN messages reach their intended destinations The control VLAN must be assigned a QoS profile of QP8 with the QoS profile priority setting HighHi A control VLAN cannot belong to more than one EAPS domain E...

Page 683: ... you configure the VLAN that will act as a protected VLAN the ring ports of the protected VLAN must be tagged except in the case of the default VLAN As long as the ring is complete the master node blocks the protected VLANs on its secondary port Example The following command adds the protected VLAN orchid to the EAPS domain eaps_1 config eaps eaps_1 add protect vlan orchid History This command was...

Page 684: ...S domain Syntax Description Default N A Usage Guidelines None Example The following command deletes the control VLAN keys from the EAPS domain eaps_1 config eaps eaps_1 delete control vlan keys History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the name of an EAPS domain vlan_name Specifies the name o...

Page 685: ...ed EAPS domain Syntax Description Default N A Usage Guidelines None Example The following command deletes the protected VLAN orchid from the EAPS domain eaps_1 config eaps eaps_1 delete protect vlan orchid History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the name of an EAPS domain vlan_name Specifie...

Page 686: ...lete state and the failed state by waiting long enough to receive a health check packet when the network is congested When the master node declares a failed state it also flushes its forwarding database FDB and sends a flush FDB message to all the transit switches on the ring by way of the control VLAN The reason for flushing the FDB is so that the switches can relearn the new directions to reach ...

Page 687: ...otime value should not affect the network convergence time because transit nodes are already sending link down notifications This command applies only to the master node If you configure the polling timers for a transit node they will be ignored If you later reconfigure that transit node as the master node the polling timer values will be used as the current values Example The following command co...

Page 688: ...s the master node for the domain named eaps_1 config eaps eaps_1 mode master The following command identifies this switch as a transit node for the domain named eaps_1 config eaps eaps_1 mode transit History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the name of an EAPS domain master Specifies that th...

Page 689: ...e other must be configured as the secondary port Example The following command adds port 1 of the module installed in slot 8 of a BlackDiamond switch to the EAPS domain eaps_1 as the primary port config eaps eaps_1 primary port 8 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the name of an EAPS...

Page 690: ...ription Default N A Usage Guidelines None Example The following command renames EAPS domain eaps 1 to eaps 5 config eaps eaps 1 name eaps 5 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms old_name Specifies the current name of an EAPS domain new_name Specifies a new name for the EAPS domain ...

Page 691: ...ies the EAPS domain to be created EAPS domain names and VLAN names must be unique Do not use the same name string to identify both an EAPS domain and a VLAN Example The following command creates EAPS domain eaps_1 on an i series switch create eaps eaps 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specif...

Page 692: ...h the specified name Syntax Description Default N A Usage Guidelines None Example The following command deletes EAPS domain eaps_1 delete eaps eaps 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the name of an EAPS domain to be deleted ...

Page 693: ... Disabled for the entire switch Usage Guidelines None Example The following command disables the EAPS function for entire switch disable eaps The following command disables the EAPS function for the domain eaps 1 disable eaps eaps 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms name Specifies the name of an EAP...

Page 694: ...r the entire switch Usage Guidelines EDP must be enabled on the switch and EAPS ring ports Example The following command disables the EAPS function for entire switch enable eaps The following command disables the EAPS function for the domain eaps 1 enable eaps eaps 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platform...

Page 695: ...ation fields that are not shown for a master node Also some state values are different on a transit node than on a master node The fields displayed are as follows name Specifies the name of an EAPS domain detail Specifies all available detail for each domain EAPS Enabled Current state of EAPS on this switch Yes EAPS is enabled on the switch no EAPS is not enabled Number of EAPS instances Number of...

Page 696: ...ot yet been determined Up The port is up and is forwarding data Down The port is down Blocked The port is up but data is blocked from being forwarded Tag status Tagged status of the control VLAN Tagged The control VLAN has this port assigned to it and the port is tagged in the VLAN Untagged The control VLAN has this port assigned to it but the port is untagged in the control VLAN Undetermined Eith...

Page 697: ...detail The results for a transit node are shown as follows EAPS Enabled Yes Number of EAPS instances 1 EAPSD Bridge links 2 Name eaps1 instance 0 State Links Up Running Yes Enabled Yes Mode Transit Primary port 13 Port status Up Tag status Tagged Secondary port 14 Port status Up Tag status Tagged Hello Timer interval 1 sec Fail Timer interval 3 sec Preforwarding Timer interval 3 sec Last update Fr...

Page 698: ... Protected Vlans 2 The following command displays summary EAPS information show eaps summary The results for this command are as follows EAPS Enabled Yes Number of EAPS instances 2 EAPSD Bridge links 6 Domain State Mode Enabled Control VLAN VID Protect VLANs eaps2 Link Down Transit Yes cv2 4002 2 eaps1 Link Down Transit Yes cv1 4001 2 History This command was first available in ExtremeWare 6 2 The...

Page 699: ... This is helpful when viewing the status info for large numbers of EAPS domains quickly Example The following command displays summary EAPS information show eaps summary The results for this command are as follows EAPS Enabled Yes Number of EAPS instances 2 EAPSD Bridge links 1610 Domain State Mode Enabled Control VLAN VID Protect VLANs domain_5 Links Up Transit Yes control_5 4060 804 domain_4 Lin...

Page 700: ... Idle state with a port status of Unknown when you use the show eaps detail command to display the status information about the port Example The following command unconfigures this node s EAPS primary ring port on the domain eaps_1 unconfig eaps eaps_1 primary port History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 701: ...s The switch can be partitioned into multiple virtual bridges Each virtual bridge can run an independent Spanning Tree instance Each Spanning Tree instance is called a Spanning Tree Domain STPD Each STPD has its own root bridge and active path After an STPD is created one or more VLANs can be assigned to it A port can belong to multiple STPDs In addition a VLAN can span multiple STPDs The key poin...

Page 702: ...e is an extension of STP that allows a physical port to belong to multiple STPDs by assigning the port to multiple VLANs EMISTP adds significant flexibility to STP network design BPDUs are sent with an 802 1Q tag having an STPD instance Identifier StpdID in the VLANid field PVST mode This mode implements PVST in compatibility with third party switches running this version of STP The STPDs running ...

Page 703: ...orts in overlapping domains do not interfere with the orderly working of each domain s protocol You must create a VLAN to add a VLAN to the STPD To create a VLAN use the create vlan vlan name command You can create STP domains using the create stpd spanning tree name command For version 6 2 Added keywords dot1d emistp and pvst plus to specify STP port modes dot1d This mode is reserved for backward...

Page 704: ...le STPDs it is associated with multiple STP ports It is possible for the physical port to run in different modes for different domains for which it belongs When the switch boots it automatically creates a VLAN named default with a tag value of 1 and STPD s0 with an StpdID of 1 The switch associates VLAN default to STPD s0 By default all ports that belong to this VLAN and STPD in 802 1d mode Exampl...

Page 705: ...yntax Description Default N A Usage Guidelines None Example The following command deletes a VLAN named Marketing from the STPD STPD1 config stpd stpd1 delete vlan marketing History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms spanning tree name Specifies an STPD name on the switch vlan name Specifies a VLAN name ports Specifie...

Page 706: ... not configure any STP parameters unless you have considerable knowledge and experience with STP The default STP parameters are adequate for most networks The range for the seconds parameter is 4 through 30 seconds Example The following command sets the forward delay from STPD1 to 20 seconds config stpd stpd1 forwarddelay 20 History This command was first available in ExtremeWare 2 0 Platform Avai...

Page 707: ...You should not configure any STP parameters unless you have considerable knowledge and experience with STP The default STP parameters are adequate for most networks The range for the seconds parameter is 1 through 10 seconds Example The following command sets the time delay from STPD1 to 10 seconds config stpd stpd1 hellotime 10 History This command was first available in ExtremeWare 2 0 Platform ...

Page 708: ... STP The default STP parameters are adequate for most networks The range for the seconds parameter is 6 through 40 seconds Note that the time must be greater than or equal to 2 Hello Time 1 and less than or equal to 2 Forward Delay 1 Example The following command sets the maximum age of STPD1 to 30 seconds config stpd stpd1 maxage 30 History This command was first available in ExtremeWare 2 0 Plat...

Page 709: ...detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 The range for the cost parameter is 1 through 65 535 The switch automatically assigns a default path cost based on the speed of the port Example The following command configures a cost of 100 to ports 1 through 5 in STPD s0 on a stand alone switch config stpd s0 ports ...

Page 710: ...710 ExtremeWare Software 7 0 0 Command Reference Guide STP Commands Platform Availability This command is available on all platforms ...

Page 711: ...llowing command configures STPD s1 with PVST packet formatting for slot 2 port 1 on a modular switch config stpd s1 ports mode pvst plus 2 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms spanning tree name Specifies an STPD name on the switch dot1d Specifies IEEE 802 1d compliant packet formatting A physical port can on...

Page 712: ...ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 For version 6 0 and higher The range for the priority parameter is 0 through 31 For version 2 0 and 4 0 The range for the priority parameter is 0 through 255 Example The following command assi...

Page 713: ...713 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 1 to update the priority parameter This command was modified in ExtremeWare 4 0 to support modular switches Platform Availability This command is available on all platforms ...

Page 714: ...ers are adequate for most networks By changing the priority of the STPD you can make it more or less likely to become the root bridge The range for the priority parameter is 0 through 65 535 A setting of 0 indicates the highest priority Example The following command sets the bridge priority of STPD1 to 16 384 config stpd stpd1 priority 16384 History This command was first available in ExtremeWare ...

Page 715: ...VLANs in that STP domain Unless all ports are running in 802 1d mode an STPD must be configured with an StpdID You must create and configure the VLAN along with the tag before you can configure the STPD tag To create a VLAN use the create vlan command To configure the VLAN use the config vlan command In addition to the VLAN attributes that you will use in the STPD you must first create an STPD To ...

Page 716: ...2 1Q tag having an STPD instance Identifier StpdID in the VLANid field This is an Extreme proprietary mode and cannot be used with non Extreme devices pvst plus This mode implements PVST in compatibility with third party switches running this version of STP The STPDs running in this mode have a one to one relationship with VLANs and send and process packets in PVST format These port modes are for ...

Page 717: ...vlan add ports stpd ExtremeWare Software 7 0 0 Command Reference Guide 717 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all i series platforms ...

Page 718: ...TPD name must be unique and cannot duplicate any other named elements on the switch such as VLANs QoS profiles Access profiles or route maps If you are uncertain about the VLAN profile names on the switch use the show vlan command to view the VLAN profiles If you are uncertain about QoS profile names on the switch use the show qos qos profile command to view the QoS profiles Each STPD has its own ...

Page 719: ...he VLANs that were members of that STPD are also deleted An STPD can only be removed if all VLANs have been deleted from it The default STPD s0 cannot be deleted Example The following command deletes an STPD named purple_st delete stpd purple_st History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms spanning tree name Specifies ...

Page 720: ...a VLAN without being processed by STP even if STP is enabled on the port If you have a known topology and have switches outside of your network within your STPD use this feature to keep the root bridge within your network Example The following command disables the ignore stp option on the VLAN accounting disable ignore stp accounting History This command was first available in ExtremeWare 2 0 Plat...

Page 721: ...TP port information Syntax Description Default Disabled Usage Guidelines The vlan keyword is optional Example The following command disables the ignore stp option on the VLAN accounting disable ignore stp accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 722: ...do not want to run STP on a VLAN you must add the VLAN to an STPD that is disabled The spanning tree name keyword is optional You do not need to indicate an STPD name if you disable the STP mechanism for all STPDs Example The following command disables an STPD named purple_st disable stpd purple_st History This command was first available in ExtremeWare 2 0 Platform Availability This command is av...

Page 723: ...s in Chapter 1 You must create one or more STP domains configure and enable an STPD before you can use the disable stpd port command Example The following command disables port 4 on an STPD named Backbone_st on a stand alone switch disable stpd backbone_st ports 4 The following command disables slot 2 port 4 on an STPD named Backbone_st on a modular switch disable stpd backbone_st ports 2 4 Histor...

Page 724: ...ot failover on the switch use the show stpd command The show stpd command displays information about the STPD configuration on the switch including the enable disable state for rapid root failover Example The following command disables rapid root fail over on STPD Backbone_st disable stpd backbone_st rapid root failover History This command was first available in ExtremeWare 6 2 Platform Availabil...

Page 725: ...tion Default Disabled Usage Guidelines This command is useful when you have a known topology with switches outside your network and you wish to keep the root bridge within your network Example The following command configures the switch to ignore STP BPDUs t on the VLAN accounting enable ignore bpdu vlan accounting History This command was first available in ExtremeWare 6 2 Platform Availability T...

Page 726: ...cription Default Disabled Usage Guidelines This command is useful when multiple VLANs share the same physical ports but only some of the VLANs require STP protection Example The following command enables the ignore stp option on the VLAN accounting enable ignore stp accounting History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platfor...

Page 727: ... create one or more STP domains and configure an STPD before you can use the enable stpd command Use the create stpd spanning tree name command to create an STPD Example The following command enables an STPD named Backbone_st enable stpd backbone_st History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms spanning tree name Specif...

Page 728: ... root failover on the switch use the show stpd command The show stpd command displays information about the STPD configuration on the switch including the enable disable state for rapid root failover Example The following command enables rapid root fail over on STPD Backbone_st enable stpd backbone_st rapid root failover History This command was first available in ExtremeWare 6 2 Platform Availabi...

Page 729: ...h portlist can be a list of slots and ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command enables port 4 on an STPD named Backbone_st on a stand alone switch enable stpd backbone_st ports 4 The following command en...

Page 730: ...P domain If you have considerable knowledge and experience with STP you can configure the STPD using the config stpd commands However the default STP parameters are adequate for most networks Use the create stpd name command to create an STPD Use the enable stpd spanning tree name command to enable an STPD Example The following command displays STPD settings on an STPD named Backbone_st show stpd ...

Page 731: ...ithout a port list the detail option replaces the all option to specify that information should be displayed for all ports Example The following command displays the state of port 4 on an STPD named Backbone_st on a stand alone switch show stpd ports Backbone_st 4 The following command displays the state of slot 2 port 4 on an STPD named Backbone_st on a modular switch show stpd ports Backbone_st ...

Page 732: ...0 0 Command Reference Guide STP Commands History This command was first available in ExtremeWare 2 0 Support for modular switches was introduced in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 733: ...mmand to restore default STP values to a particular STPD For version 2 0 You can use the all parameter to specify all STPDs Example The following command restores default values to an STPD named Backbone_st unconfig stpd backbone_st History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms spanning tree name Specifies an STPD name ...

Page 734: ...734 ExtremeWare Software 7 0 0 Command Reference Guide STP Commands ...

Page 735: ...eature is necessary ESRP is configured on a per VLAN basis on each switch A maximum of four switches can participate in providing redundant layer 3 or layer 2 services to a single VLAN A maximum of 3000 VLANs can run ESRP simultaneously on a single switch The switches exchange keep alive packets for each VLAN independently Only one switch can actively provide layer 3 routing and or layer 2 switchi...

Page 736: ...e ports directly attached to the slave s hosts to communicate with other hosts that are connected to the master don t count has the effect of not counting the host ports and normal ports as active ports This has the convenience of minimal ESRP state changes due to frequent client activities like reboots and unplugging laptops An L2 connection for VLANs between ESRP switches is required Example The...

Page 737: ...config esrp port mode ports ExtremeWare Software 7 0 0 Command Reference Guide 737 Platform Availability This command is available on the i series platforms ...

Page 738: ... are in forward or blocked states The domain master does not need to have all the ports as the domain members Domain master VLANs can have their own set of ports and the members can have different ports Example The following command adds the sub VLAN sub_esrp1 to ESRP enabled super VLAN esrp super config vlan esrp super add domain member vlan sub_esrp1 History This command was first available in E...

Page 739: ... and then add them again with the no restart option or directly add the ports with the no restart option Example The following command disables port restart for ports 7 9 on VLAN esrp1 config vlan esrp1 add ports 7 9 no restart History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies an ESRP enabled VL...

Page 740: ...es downstream devices to remove the ports from their FDB tables After 3 seconds the ports re establish connection with the ESRP enabled device This feature allows you to use ESRP in networks that include equipment from other vendors Example The following command enables port restart for ports 7 9 on VLAN esrp1 config vlan esrp1 add ports 7 9 restart History This command was first available in Extr...

Page 741: ... 254 Setting the priority to 255 configures the switch to standby mode and makes it ineligible to become the master The switch will remain in standby mode even when the VLAN fails over from the current master To make effective use of this feature the normal priority of the ESRP enabled VLANs must be higher than the failover priority of this command Example The following command enables BGP failure...

Page 742: ...lue is 0 to 254 Setting the priority to 255 configures the switch to standby mode and makes it ineligible to become the master The switch will remain in standby mode even when the VLAN fails over from the current master To make effective use of this feature the normal priority of the ESRP enabled VLANs must be higher than the failover priority of this command Example The following command enables ...

Page 743: ... into standby The range of the priority value is 0 to 254 Setting the priority to 255 configures the switch to standby mode and to be ineligible to become the master The switch will remain in standby mode even when the VLAN fails over from the current master To make effective use of this feature the normal priority of the ESRP enabled VLANs must be higher than the failover priority of this command...

Page 744: ...ce automatically relinquishes master status and remains in standby mode for ESRP or backup mode for VRRP This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command enables IP route failure tracking for routes to the specified subnet config vlan esrp 1 add track iproute 192 168 46 0 24 History This command was first available in ExtremeWare 6 0 Platform Avail...

Page 745: ...he range of the priority value is 0 to 254 Setting the priority to 255 configures the switch to standby mode and to be ineligible to become the master The switch will remain in standby mode even when the VLAN fails over from the current master To make effective use of this feature the normal priority of the ESRP enabled VLANs must be higher than the failover priority of this command Example The fo...

Page 746: ... VRRP This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command enables ping tracking for the external gateway at 10 207 29 17 pinging every 10 seconds and considering the gateway to be unreachable if no response is received to 5 consecutive pings config vlan esrp 1 add track ping 10 207 29 17 frequency 10 miss 5 History This command was first available in ...

Page 747: ...igible to become the master The switch will remain in standby mode even when the VLAN fails over from the current master To make effective use of this feature the following should be true The priority field should be given precedence over the other election factors by assigning the priority ports track mac election algorithm to the VLAN The normal priority of the ESRP enabled VLANs must be higher ...

Page 748: ...inquishes master status and remains in standby mode for ESRP or backup mode for VRRP An ESRP or VRRP VLAN can track one VLAN This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command enables ESRP enabled VLAN esrp 1 to track port connectivity to VLAN engineering config vlan esrp 1 add track vlan engineering History This command was first available in Extrem...

Page 749: ...ot need to have all the ports as the domain members Domain master VLANs can have their own set of ports and the members can have different ports Example The following command deletes the sub VLAN sub_esrp1 from ESRP enabled super VLAN esrp super config vlan esrp super delete domain member vlan sub_esrp1 History This command was first available in ExtremeWare 6 0 Platform Availability This command ...

Page 750: ...tracking for an ESRP enabled VLAN Syntax Description Default N A Usage Guidelines None Example The following command disables BGP tracking for VLAN esrp 1 config vlan esrp 1 delete track bgp History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies an ESRP enabled VLAN name ...

Page 751: ...agnostics failure tracking for an ESRP enabled VLAN Syntax Description Default N A Usage Guidelines None Example The following command disables diagnostic failure tracking for VLAN esrp 1 config vlan esrp 1 delete track diagnostic History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on the i series platforms vlan name Specifies a VLAN name ...

Page 752: ...ironmental failure tracking Syntax Description Default N A Usage Guidelines None Example The following command disables environmental failure tracking for VLAN esrp 1 config vlan esrp 1 delete track environment History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on the i series platforms vlan name Specifies a VLAN name ...

Page 753: ...t N A Usage Guidelines This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command disables tacking of routes to the specified subnet for VLAN esrp 1 config vlan esrp 1 delete track iproute 192 168 46 0 24 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms vlan name Specifies a...

Page 754: ...cking for an ESRP enabled VLAN Syntax Description Default N A Usage Guidelines None Example The following command disables OSPF route tracking for VLAN esrp 1 config vlan esrp 1 delete track ospf History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies an ESRP enabled VLAN name ...

Page 755: ... Guidelines This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command disables ping tracking for the external gateway at 10 207 29 17 config vlan esrp 1 delete track ping 10 207 29 17 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms vlan name Specifies an ESRP enabled or VR...

Page 756: ...ESRP enabled VLAN Syntax Description Default No RIP route tracking Usage Guidelines None Example The following command disables RIP route failure tracking for VLAN esrp 1 config vlan esrp 1 delete track rip History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies an ESRP enabled VLAN name ...

Page 757: ...lt N A Usage Guidelines This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command disables the tracking of port connectivity to VLAN engineering config vlan esrp 1 delete track vlan engineering History This command was first available in ExtremeWare 4 1 Platform Availability This command is available on the i series platforms vlan name Specifies an ESRP ena...

Page 758: ...can be used to ensure that there is no failback if the original Master recovers the Master will have the same ports tracks and priority but a higher MAC vlan name Specifies a VLAN name ports track priority Specifies that this VLAN should consider election factors in the following order Active ports tracking information ESRP priority ports track priority mac Specifies that this VLAN should consider...

Page 759: ...s on that same VLAN When a switch is in standby it does not perform layer 3 routing or layer 2 switching services for the VLAN Example The following command configures the election algorithm to use tracking information as the first criteria for determining the ESRP master switch for VLAN esrp 1 config vlan esrp 1 esrp esrp election track ports priority mac History This command was first available ...

Page 760: ... see the neutral timer settings use the show vlan esrp command CAUTION Configure the neutral state timeout only with guidance from Extreme Networks personnel Misconfiguration can severely degrade the performance of ESRP and your switch Example The following command configures the neutral timeout to 6 seconds for the VLAN esrp 1 config vlan esrp 1 esrp esrp neutral timeout 6 History This command wa...

Page 761: ...hm the highest priority value determines which switch will act as master for a particular VLAN Setting the priority to 255 configures the switch to standby mode and to be ineligible to become the master The switch will remain in standby mode even when the VLAN fails over from the current master This feature is typically used to ensure a switch cannot become the ESRP master while it is offline for ...

Page 762: ...hat ESRP waits before considering the neighbor down The timeout value must be at least 3 times but not more than 30 times the timervalue Entering a value outside of that range generates an error message In a large ESRP configuration the slave ESRP VLAN might inadvertently become the master ESRP VLAN This can occur when FDB entries are flushed during a master slave transition To avoid this we recom...

Page 763: ... 7 0 0 Command Reference Guide 763 History This command was first available in ExtremeWare 4 0 This command was modified to include the esrp nbr timeout option in ExtremeWare 6 2 2 Platform Availability This command is available on all platforms ...

Page 764: ...hysical device per switch The most typical application for multiple ESRP groups is when two or more sets of ESRP switches are providing fast failover protection within a common subnet for two or more groups of users An additional use for ESRP groups is ESRP Host Attach ESRP VLANs that share ESRP HA ports must be members of different ESRP groups Example The following command configures VLAN esrp 1 ...

Page 765: ... ESRP on a VLAN Syntax Description Default Disabled Usage Guidelines None Example The following command disables ESRP on the VLAN accounting disable esrp vlan accounting History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies an ESRP enabled VLAN name ...

Page 766: ...ault Disabled Usage Guidelines EDP must be enabled on all ports participating in ESRP ESRP cannot be enabled on the VLAN default Example The following command enables ESRP on the VLAN esrp 1 enable esrp vlan esrp 1 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 767: ...R TP T demo_esrp 4093 192 168 1 1 Slave 00 01 30 33 28 00 1 000 00 001 00 00 02 Nbr Number of Neighbors Pri Priority In Use Gr Group Prt Number of Active Ports TR Tracked Rt Ping TP Tracked Ports T Hello Time Host Direct attach no count Ports on System The following command displays detailed ESRP status information for the VLANs on the switch show esrp detail It produces output similar to the foll...

Page 768: ...d Ip Routes None Tracked Pings Freq N_miss None Neighbours 1 Nbr Active Ports 1 Nbr Tracked Rt Ping 0 Nbr Tracked Ports 0 Nbr Priority 0 Nbr MacID 00 01 30 33 28 00 Nbr HelloTimer 2 Nbr ESRP State Master Host Direct attach no count Ports on System History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on the i series platforms ...

Page 769: ... aware show esrp aware vlan demo esrp aware On an ESRP aware switch it produces output similar to the following Summit48i 24 sh esrp aware VLAN Interface uj mas1 DisableLearnTimeout 0 secs Total Fdb Flushes 6 Last EsrpAware Fdb Flush on Mon Nov 18 05 22 26 2002 Esrp Group 0 Esrp Master Mac 00 01 30 08 36 00 Age 1 secs VLAN Interface uj mas2 DisableLearnTimeout 0 secs Total Fdb Flushes 6 Last EsrpA...

Page 770: ...owing VLAN Interface demo_esrp Virtual IP address 192 168 1 1 Priority 0 Priority In Use 0 Active Ports 1 Tracked Rt Ping 0 Tracked Ports 0 Tracked Diag Tracked Env Tracked RIP Tracked OSPF Tracked BGP Election Algorithm ports track priority mac Group 0 Hello Timer 2 State Enabled Slave on Wed Jan 23 10 09 48 2002 State Trans Counters ToMaster 0 ToSlave 1 Host ports no count None Restart Ports Non...

Page 771: ...e 7 0 0 Command Reference Guide 771 Nbr MacID 00 01 30 33 28 00 Nbr HelloTimer 2 Nbr ESRP State Master History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms ...

Page 772: ...772 ExtremeWare Software 7 0 0 Command Reference Guide ESRP Commands ...

Page 773: ...ompliant with RFC 2338 Virtual Router Redundancy Protocol The following points pertain to VRRP VRRP packets are encapsulated IP packets The VRRP multicast address is 224 0 0 18 The virtual router MAC address is 00 00 5E 00 01 vrid An interconnect link between VRRP routers should not be used except when VRRP routers have hosts directly attached A maximum of 64 VRID instances are supported on the ro...

Page 774: ...ween master and backup router s The master router sends periodic advertisements to the backup routers to indicate that it is alive VRRP also supports the following tracking options VRRP VLAN tracking VRRP route table tracking VRRP ping tracking If a tracking option is enabled and the object being tracked becomes unreachable the master device will fail over These tracking features are documented in...

Page 775: ...ption Enables VRRP on a particular VLAN Syntax Description Default N A Usage Guidelines None Example The following enables VRRP on VLAN vrrp 1 config vrrp add vlan vrrp 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies a VLAN name ...

Page 776: ...Default N A Usage Guidelines None Example The following command disables VRRP on VLAN vrrp 1 config vrrp delete vlan vrrp 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies the name of a VLAN on which to disable VRRP all Specifies that VRRP should be disabled on all VLANs on this device ...

Page 777: ...aster router as long as it remains functional Example The following command sets up this device as the master router for VLAN vrrp 1 using IP address 192 168 1 3 as the virtual router IP address config vrrp vlan vrrp 1 add master vrid 1 192 168 1 3 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifi...

Page 778: ...e following command configures authentication for VRRP VLAN vrrp 1 with the password newvrrp config vrrp vlan vrrp 1 authentication simple password newvrrp History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies the name of a VRRP VLAN none Specifies that no password is required simple password Specif...

Page 779: ...xample The following command deletes the virtual router identified by VRID 2 config vrrp vlan vrrp 1 delete vrid 2 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies the name of a VRRP VLAN number Specifies a Virtual Router ID VRID Value can be in the range of 1 255 all Specifies that all virtual...

Page 780: ...eempt mode controls whether a higher priority backup router preempts a lower priority master preempt allows preemption dont_preempt prohibits preemption The default setting is preempt The router that owns the virtual router IP address always preempts independent of the setting of this parameter Example The following commands set a priority and advertisement interval for the VRRP router on VLAN vrr...

Page 781: ...ig vrrp vlan vrid ExtremeWare Software 7 0 0 Command Reference Guide 781 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 782: ...and has no arguments or variables Default N A Usage Guidelines This disables VRRP on the device All virtual routers defined on this device will also be disabled Example The following command disables VRRP on the device disable vrrp History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 783: ...s or variables Default N A Usage Guidelines IGMP snooping must be enabled for VRRP to operate correctly Use the following command to enable IGMP snooping enable igmp snooping Example The following command enables VRRP on this device enable vrrp History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 784: ...0 0 Y Y 1 En Enabled Ds Disabled Pri Priority T Advert Timer M Preempt Prt Active Ports TR Tracked Routes Pings TPr Tracked Ports W TrackWinner The following command displays detail status information for VRRP show vrrp detail It produces output similar to the following VRRP Router Enabled Vlan demo_vrrp IpAddress Owner 192 168 1 2 Vrrp ENABLED Router ENABLED Authentication None Tracked VLANs Trac...

Page 785: ...Command Reference Guide 785 Transition Counters ToMaster 1 ToBackup 1 Skew 0 609375 Master Dn Int 3 60938 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms ...

Page 786: ...istics for a particular VLAN Syntax Description Default N A Usage Guidelines None Example The following command displays statistics for VLAN vrrp 1 show vrrp vlan vrrp 1 stats History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on the i series platforms vlan name Specifies the name of a VRRP VLAN ...

Page 787: ...ot configure the same IP subnet on different VLANs The Extreme Networks switch maintains an IP routing table for network routes and host routes The table is populated from the following sources Dynamically by way of routing protocol packets or by ICMP redirects exchanged with other routers Statically by way of routes entered by the administrator Default routes configured by the administrator Local...

Page 788: ... on subnets being service by the switch and going to hosts on different subnets This feature can be used in various applications including DHCP services between Windows NT servers and clients running Windows 95 UDP forwarding is a flexible and generalized routing utility for handling the directed forwarding of broadcast UDP packets UDP forwarding allows applications such as multiple DHCP relay ser...

Page 789: ...nditions are satisfied The valid IP ARP Request is received on a router interface The target IP address matches the IP address configured in the proxy ARP table The proxy ARP table entry indicates that the system should always answer this ARP Request regardless of the ingress VLAN the always parameter must be applied After all the proxy ARP conditions have been met the switch formulates an ARP Res...

Page 790: ...ntax Description Default N A Usage Guidelines Permanent IP ARP entries are not affected Example The following command removes a dynamically created entry from the IPARP table clear iparp 10 1 1 5 24 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ip address Specifies an IP address vlan name Specifies a VLAN name ...

Page 791: ...lt N A Usage Guidelines If no options are specified all IP FDB entries are removed Example The following command removes dynamically created entries in the IP forwarding database clear ipfdb 10 1 2 1 24 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ip address Specifies an IP address netmask Specifies a subnet mask vlan name S...

Page 792: ...d by the switch and going to hosts on different subnets To configure the relay function follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using the following command enable bootprelay 3 Configure the addresses to which DHCP or BOOTP requests should be directed using the following command config bootprelay add ip address Example The following comm...

Page 793: ...ced by the switch and going to hosts on different subnets To configure the relay function follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using the following command enable bootprelay 3 Configure the addresses to which DHCP or BOOTP requests should be directed using the following command config bootprelay add ip address Example The following co...

Page 794: ... Guidelines Add a permanent IP ARP entry to the system The ip address is used to match the IP interface address to locate a suitable interface Example The following command adds a permanent IP ARP entry to the switch for IP address 10 1 2 5 config iparp add 10 1 2 5 00 11 22 33 44 55 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platfo...

Page 795: ...ts on behalf of the device as long as the following conditions are satisfied The valid IP ARP Request is received on a router interface The target IP address matches the IP address configured in the proxy ARP table The proxy ARP table entry indicates that the system should always answer this ARP Request regardless of the ingress VLAN the always parameter must be applied After all the proxy ARP con...

Page 796: ...ault N A Usage Guidelines Removes any IP ARP entry dynamic or permanent from the table The ip address is used to match the IP interface address to locate a suitable interface Example The following command deletes an IP address entry from the ARP table config iparp delete 10 1 2 5 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 797: ... the host sends ARP Request for another host on another subnet the switch answers the ARP Request and all subsequent traffic will be sent directly to the router You can configure up to 64 proxy ARP entries When the mask is not specified then software will assume a host address that is a 32 bit mask When the MAC address is not specified then the software uses the switch s MAC address as the proxy h...

Page 798: ... Default 4096 Usage Guidelines Range 1 20480 The maximum IP ARP entries include dynamic static and incomplete IP ARP entries Example The following command sets the maximum IP ARP entries to 2000 entries config iparp max entries 2000 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms number Specifies a number of maximum IP AR...

Page 799: ...tries Syntax Description Default 256 Usage Guidelines Range 1 20480 but cannot be greater than the configured IP ARP max entries value Example The following command sets the maximum IP ARP entries to 500 entries config iparp max pending entries 500 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms number Specifies a number ...

Page 800: ...imeout period Syntax Description Default 20 minutes Usage Guidelines A setting of 0 disables ARP aging Example The following command sets the IP ARP timeout period to 10 minutes config iparp timeout 10 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms minutes Specifies a time in minutes ...

Page 801: ...rfaces Syntax Description Default N A Usage Guidelines None Example The following command configures the forwarding functionality destined to nonworking IP interfaces config ip down vlan action forward History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms consume Specifies the consume function drop Specifies the drop function f...

Page 802: ...uidelines Use a value of 255 255 255 255 for mask to indicate a host entry Example The following command adds a static address to the routing table config iproute add 10 1 1 1 24 123 45 67 1 5 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ip address Specifies an IP address mask Specifies a subnet mask gateway Specifies a VLAN...

Page 803: ...ess to be discarded Blackhole entries are useful as a security measure or in special circumstances where a specific destination address must be discarded Blackhole entries are treated like permanent entries in the event of a switch reset or power off on cycle Blackhole entries are never aged out of the forwarding database FDB Example The following command adds a blackhole address to the routing ta...

Page 804: ...ed to a specified IP destination a default blackhole route is for discarding traffic to the unknown IP destination Using this command all traffic with an unknown destination is discarded If there is another static default route existing in the routing table the blackhole default route takes higher route priority The default blackhole route is treated like a permanent entry in the event of a switch...

Page 805: ...he requested destination A default gateway must be located on a configured IP interface Use the unicast only or multicast only options to specify a particular traffic type If not specified both unicast and multicast traffic uses the default route Example The following command configures a default route for the switch config iproute add default 123 45 67 1 History This command was available in Extr...

Page 806: ...Default N A Usage Guidelines Use a value of 255 255 255 255 for mask to indicate a host entry Example The following command deletes an address from the gateway config iproute delete 10 101 0 250 24 10 101 0 1 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ip address Specifies an IP address mask Specifies a subnet mask gateway ...

Page 807: ...ole address from the routing table Syntax Description Default N A Usage Guidelines None Example The following command removes a blackhole address from the routing table config iproute delete blackhole 100 101 145 4 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ip address Specifies an IP address mask Specifies a subnet mask ...

Page 808: ...lackhole route from the routing table Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command deletes a blackhole default route from the routing table config iproute delete blackhole default History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on all platforms ...

Page 809: ...t N A Usage Guidelines Default routes are used when the router has no other dynamic or static route to the requested destination A default gateway must be located on a configured IP interface Example The following command deletes a default gateway config iproute delete default 123 45 67 1 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all p...

Page 810: ...iorities can be changed do not attempt any manipulation unless you are expertly familiar with the possible consequences rip Specifies RIP bootp Specifies BOOTP icmp Specifies ICMP static Specifies static routes ospf intra Specifies OSPFIntra routing ospf inter Specifies OSPFInter routing ospf as external Specifies OSPF as External routing ospf extern1 Specifies OSPF External 1 routing ospf extern2...

Page 811: ...Reference Guide 811 Example The following command sets IP route priority for static routing to 1200 config iproute priority static 1200 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 812: ...ng can be dynamically changed In the case of direct and static route origins the changes are reflected immediately In the case of routes that are sourced from other origin the changes are reflected within 30 seconds MPLS uses route map based filters for controlling label advertisement and label propagation The implementation of the delete route map route map command has been augmented to support t...

Page 813: ...Guide 813 History This command was first available in ExtremeWare 6 1 5 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platform Availability This command is available on i series platforms ...

Page 814: ... messages Syntax Description Default Multicast 224 0 0 1 Usage Guidelines None Example The following command sets the address of the router advertiser messages to multicast config irdp multicast History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms multicast Specifies multicast setting broadcast Specifies broadcast setting ...

Page 815: ...e the use of this router The default setting is 0 Example The following command configures the router advertisement message timers config irdp 30 40 300 1 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms mininterval Specifies the minimum amount of time between router advertisements in seconds The default setting is 450 sec...

Page 816: ...n the specified rater or the total number of outstanding connection requests exceed the system limit the system ages out incomplete connection requests at a faster rate The range is from 5 to 200 000 Example The following command configures a 50 second limit for the switch to process TCP connection requests config tcp sync rate 50 History This command was first available in ExtremeWare 6 2 Platfor...

Page 817: ...ing the UDP port and destination IP address or VLAN A VLAN can make use of a single UDP forwarding profile UDP packets directed toward a VLAN use an all ones broadcast on that VLAN Example The following command adds port 34 to UDP profile port_34_to_server config udp profile port_34_to_server add 34 ip address 10 1 1 1 History This command was first available in ExtremeWare 6 1 Platform Availabili...

Page 818: ...scription Default N A Usage Guidelines None Example The following command removes port 34 from UDP profile port_34_to_server config udp profile port_34_to_server delete 34 ip address 10 1 1 1 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series platforms profile_name Specifies a UDP profile name udp_port Specifies a UDP port number...

Page 819: ...guration of overlapping sub VLAN address ranges between multiple sub VLANs Doing so can result in unexpected behavior of ARP within the super VLAN and associated sub VLANs Example The following command configures the super VLAN vsuper to prohibit the entry of IP addresses from hosts outside of the configured range of IP addresses config vlan vsuper subvlan address range 10 1 1 1 10 1 1 255 History...

Page 820: ...ast UDP packets that match the user configured UDP port number and forwards those packets to the user defined destination If the UDP port is the DHCP BOOTP port number appropriate BOOTP DHCP proxy functions are invoked Example The following command assigns a UDP profile to VLAN accounting config vlan accounting udp profile port_34_to_server History This command was first available in ExtremeWare 4...

Page 821: ...fault router set to the IP address or the super VLAN All traffic IP unicast and IP multicast between sub VLANs is routed through the super VLAN For example no ICMP redirects are generated for traffic between sub VLANs because the super VLAN is responsible for sub VLAN routing Unicast IP traffic across the sub VLANs is facilitated by the automatic addition of an ARP entry similar to a proxy ARP ent...

Page 822: ...822 ExtremeWare Software 7 0 0 Command Reference Guide IP Unicast Commands Platform Availability This command is available on i series platforms ...

Page 823: ...er VLAN All traffic IP unicast and IP multicast between sub VLANs is routed through the super VLAN For example no ICMP redirects are generated for traffic between sub VLANs because the super VLAN is responsible for sub VLAN routing Unicast IP traffic across the sub VLANs is facilitated by the automatic addition of an ARP entry similar to a proxy ARP entry when a sub VLAN is added to a super VLAN T...

Page 824: ...arded Syntax Description Default N A Usage Guidelines You must give the profile a unique name in the same manner as a VLAN protocol filter or Spanning Tree Domain STD A maximum of 10 UDP forwarding profiles can be defined Example The following command creates a UPD profile named backbone create udp profile backbone History This command was first available in ExtremeWare 4 0 Platform Availability T...

Page 825: ...tes a UDP forwarding profile Syntax Description Default N A Usage Guidelines None Example The following command deletes a UPD profile named backbone delete udp profile backbone History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms profile_name Specifies a UDP profile name ...

Page 826: ...ress for the VLAN from a BOOTP server Syntax Description Default Enabled for all VLANs Usage Guidelines None Example The following command disables the generation and processing of BOOTP packets on a VLAN named accounting disable bootp vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN na...

Page 827: ...n different subnets This feature can be used in various applications including DHCP services between Windows NT servers and clients running Windows 95 To configure the relay function follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using the following command enable bootprelay 3 Configure the addresses to which DHCP or BOOTP requests should be d...

Page 828: ... is received The default setting is enabled If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command disables the generation of an ICMP address mask reply on VLAN accounting disable icmp address...

Page 829: ...perly process the IP header or IP option information If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command disables the generation of an ICMP parameter problem message on VLAN accounting disa...

Page 830: ...h and no application is waiting for the request or access policy denies the request If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command disables ICMP port unreachable messages on VLAN accou...

Page 831: ...his option only applies to the switch when the switch is not in routing mode Example The following command disables ICMP redirects from VLAN accounting disable icmp redirects vlan accounting History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platform Availability Thi...

Page 832: ...LAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command disables the generation of ICMP time exceeded messages on VLAN accounting disable icmp time exceeded vlan accounting History This command was f...

Page 833: ...estamp request is received If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command disables the generation of an ICMP timestamp response on VLAN accounting disable icmp timestamp vlan accountin...

Page 834: ... Default Enabled Usage Guidelines None Example The following command disables the generation of ICMP unreachable messages on all VLANs disable icmp unreachables History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platform Availability This command is available on i se...

Page 835: ... message is received Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines This option only applies to the switch when the switch is not in routing mode Example The following command disables the changing of routing table information disable icmp useredirects History This command was available in ExtremeWare 2 0 Platform Availability This command is availa...

Page 836: ... IP address is within the range of the local interface or VLAN domain Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables IP ARP checking disable iparp checking History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on i series platforms ...

Page 837: ...uments or variables Default Enabled Usage Guidelines IP ARP refresh can only be disabled if IP forwarding is disabled The purpose of disabling ARP refresh is to reduce ARP traffic in a high node count layer 2 switching only environment Example The following command disables IP ARP refresh disable iparp refresh History This command was first available in ExtremeWare 6 2 Platform Availability This c...

Page 838: ...e added IP forwarding and IP broadcast forwarding is disabled by default Other IP related configuration is not affected Example The following command disables forwarding of IP broadcast traffic for a VLAN named accounting disable ipforwarding broadcast vlan accounting History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technology Services Release ba...

Page 839: ... VLAN Syntax Description Default Disabled Usage Guidelines Disabling LPM routing does not disable IP forwarding Example The following command disables LPM routing for all configured VLANs disable ipforwarding lpm routing The following command disables LPM routing for a VLAN named accounting disable ipforwarding lpm routing accounting History This command was first available in ExtremeWare 7 0 0 Pl...

Page 840: ...the loose source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the loose source route IP option disable ip option loose source route History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 841: ...Disables the record route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the record route IP option disable ip option record route History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 842: ... the record timestamp IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the record timestamp IP option disable ip option record timestamp History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 843: ...Disables the strict source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the strict source route IP option disable ip option strict source route History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 844: ...ion of the router alert IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables generation of the router alert IP option disable ip option use router alert History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 845: ...th OSPF routes In OSPF this capability is referred to as equal cost multipath ECMP routing Configure static routes and or OSPF as you would normally ExtremeWare supports unlimited route sharing across static routes and up to 12 ECMP routes for OSPF Route sharing is useful only in instances where you are constrained for bandwidth This is typically not the case using Extreme switches Using route sha...

Page 846: ...es on one or all VLANs Syntax Description Default Enabled Usage Guidelines If no optional argument is specified all the IP interfaces are affected Example The following command disables IRDP on VLAN accounting disable irdp vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 847: ...N A Usage Guidelines Use this command to specify a stable interface as a source interface for routing protocols This decreases the possibility of route flapping which can disrupt connectivity Example The following command disallows the VLAN accounting to be placed in the UP state without an external active port disable loopback mode vlan accounting History This command was first available in Extre...

Page 848: ...sage Guidelines The multinetting features requires the user to change the MAC FDB aging timer to be at least 3000 seconds on the switch This command will automatically change the FDB timer to 3000 seconds if it is shorter than 3000 seconds Example The following command disables multinetting on the system disable multinetting History This command was available in ExtremeWare 2 0 Platform Availabili...

Page 849: ...y ARP function This allows clients on one sub VLAN to communicate with clients on another sub VLAN In certain circumstances intra sub VLAN communication may not be desired for isolation reasons NOTE The isolation option works for normal dynamic ARP based client communication Example The following command disables the automatic entry of sub VLAN information in the proxy ARP table of the super VLAN ...

Page 850: ...his command has no arguments or variables Default Disabled Usage Guidelines UDP Echo packets are used to measure the transit time for data between the transmitting and receiving end Example The following command disables UDP echo server support disable udp echo server History This command was available in ExtremeWare 6 2 1 Platform Availability This command is available on all platforms ...

Page 851: ...ss for the VLAN from a BOOTP server Syntax Description Default Enabled for all VLANs Usage Guidelines None Example The following command enables the generation and processing of BOOTP packets on a VLAN named accounting enable bootp vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name a...

Page 852: ...n different subnets This feature can be used in various applications including DHCP services between Windows NT servers and clients running Windows 95 To configure the relay function follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using the following command enable bootprelay 3 Configure the addresses to which DHCP or BOOTP requests should be d...

Page 853: ...st is received The default setting is enabled If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command enables the generation of an ICMP address mask reply on VLAN accounting enable icmp address...

Page 854: ...process the IP header or IP option information If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command enables the generation of an ICMP parameter problem message on VLAN accounting enable icmp...

Page 855: ...witch and no application is waiting for the request or access policy denies the request If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command enables ICMP port unreachable messages on VLAN ac...

Page 856: ... option only applies to the switch when the switch is not in routing mode Example The following command enables the generation of ICMP redirect messages on all VLANs enable icmp redirects History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platform Availability This c...

Page 857: ... VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command enables the generation of ICMP time exceeded messages on VLAN accounting enable icmp time exceeded vlan accounting History This command was f...

Page 858: ...tamp request is received If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled by the access list commands Example The following command enables the generation of an ICMP timestamp response on VLAN accounting enable icmp timestamp vlan accounting Hi...

Page 859: ...ption Default Enabled Usage Guidelines None Example The following command enables the generation of ICMP unreachable messages on all VLANs enable icmp unreachables History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platform Availability This command is available on a...

Page 860: ...sage is received Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines This option only applies to the switch when the switch is not in routing mode Example The following command enables the modification of route table information enable icmp useredirects History This command was available in ExtremeWare 2 0 Platform Availability This command is available ...

Page 861: ...e IP address is within the range of the local interface or VLAN domain Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables IP ARP checking enable iparp checking History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on i series platforms ...

Page 862: ...s no arguments or variables Default Enabled Usage Guidelines IP ARP refresh can only be disabled if IP forwarding is disabled The purpose of disabling ARP refresh is to reduce ARP traffic in a high node count layer 2 switching only environment Example The following command enables IP ARP refresh enable iparp refresh History This command was first available in ExtremeWare 6 2 Platform Availability ...

Page 863: ...g is disabled by default Other IP related configuration is not affected Example The following command enables forwarding of IP traffic for all VLANs with IP addresses enable ipforwarding The following command enables forwarding of IP broadcast traffic for a VLAN named accounting enable ipforwarding broadcast vlan accounting History This command was available in ExtremeWare 2 0 This command was mod...

Page 864: ...n either an ARM or MPLS module is installed in a BlackDiamond switch the module can be configured to forward IP packets for specified VLANs using LPM routing If no VLAN is specified LPM routing is enabled for all configured VLANs except the management VLAN Example The following command enables LPM routing for all configured VLANs enable ipforwarding lpm routing The following command enables LPM ro...

Page 865: ...Enables the loose source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the loose source route IP option enable ip option loose source route History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 866: ...es the record route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the record route IP option enable ip option record route History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 867: ...Enables the record timestamp IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the record timestamp IP option enable ip option record timestamp History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 868: ...he strict source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the strict source route IP option enable ip option strict source route History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 869: ...generation of the router alert IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables generation of the router alert IP option enable ip option use router alert History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 870: ...OSPF routes In OSPF this capability is referred to as equal cost multipath ECMP routing Configure static routes and or OSPF as you would normally ExtremeWare supports unlimited route sharing across static routes and up to 12 ECMP routes for OSPF Route sharing is useful only in instances where you are constrained for bandwidth This is typically not the case using Extreme switches Using route sharin...

Page 871: ... one or all VLANs Syntax Description Default Enabled Usage Guidelines If no optional argument is specified all the IP interfaces are affected Example The following command enables IRDP on VLAN accounting enable irdp vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 872: ...Usage Guidelines Use this command to specify a stable interface as a source interface for routing protocols This decreases the possibility of route flapping which can disrupt connectivity Example The following command allows the VLAN accounting to be placed in the UP state without an external active port enable loopback mode vlan accounting History This command was first available in ExtremeWare 6...

Page 873: ...age Guidelines The multinetting features requires the user to change the MAC FDB aging timer to be at least 3000 seconds on the switch This command will automatically change the FDB timer to 3000 seconds if it is shorter than 3000 seconds Example The following command enables multinetting on the system enable multinetting History This command was available in ExtremeWare 2 0 Platform Availability ...

Page 874: ...unction This allows clients on one sub VLAN to communicate with clients on another sub VLAN In certain circumstances intra sub VLAN communication may not be desired for isolation reasons NOTE The isolation option works for normal dynamic ARP based client communication Example The following command enables the automatic entry of sub VLAN information in the proxy ARP table opf the super VLAN vsuper ...

Page 875: ...This command has no arguments or variables Default Disabled Usage Guidelines UDP Echo packets are used to measure the transit time for data between the transmitting and receiving end Example The following command enables UDP echo server support enable udp echo server History This command was available in ExtremeWare 6 2 1 Platform Availability This command is available on all platforms ...

Page 876: ...ed to the rtlookup command When the mpls keyword is specified the information displayed is modified some of the information normally displayed is omitted and the LSP endpoint and outgoing MPLS label are displayed instead The LSP endpoint is the IP address prefix of the FEC associated with the LSP The LSP endpoint matches the destination for direct LSPs and is a 32 bit prefix address of a proxy rou...

Page 877: ...IP address 10 20 30 55 run ipfdb check 10 20 30 55 History This command was first available in ExtremeWare 6 1 9 Platform Availability This command is available on all i series platforms The extended option is available on the BlackDiamond switch only bucket Specifies the bucket portion of the FDB hash index entry Specifies the entry portion of the FDB hash index ip address Specifies an IP address...

Page 878: ...delines Displays the IP ARP table including IP address MAC address Aging timer value VLAN name VLAN ID and port number Flags Example The following command displays the IP ARP table show iparp 10 1 1 5 24 History This command was available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 2 1 to provide the MAC address option Platform Availability This command is available on all platfo...

Page 879: ...ription Default N A Usage Guidelines If no argument is specified then all proxy ARP entries are displayed Example The following command displays the proxy ARP table show iparp proxy 10 1 1 5 24 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ip address Specifies an IP address mask Specifies a subnet mask ...

Page 880: ...g information IP multicast forwarding information BOOTP configuration VLAN name and VLANID ICMP configuration global IGMP configuration global IRDP configuration global Example The following command displays configuration information on a VLAN named accounting show ipconfig vlan accounting History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technolo...

Page 881: ... 201 00C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 200 01C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 203 02C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 202 03C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 205 04C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 0 5 0 050F 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 204 05C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 207 ...

Page 882: ... 0 202 07C7 0 4646 0 0000 00 10 E3 1D 00 1E 4000 1 10 205 4 193 08C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 192 09C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 883: ...oute command has been enhanced to include information about MPLS LSPs associated with the routes The flags field displayed by this command has been enhanced to indicate the presence of MPLS next hops An uppercase L indicates the presence of a direct LSP next hop for the route A lowercase l indicates the presence of an indirect LSP next hope for the route An optional mpls keyword has been added to ...

Page 884: ... 201 VLAN helium Origin d Metric 1 Flags U u Time 13 15 26 49 Use 14409 M Use 0 Acct 1 0 Destination 10 11 166 112 29 Gateway 10 17 0 1 VLAN helium Origin be Metric 2 Flags UG um Time 01 11 23 49 Use 0 M Use 0 Acct 1 0 Destination 10 13 105 112 29 Gateway 10 11 110 123 VLAN helium Origin be Metric 2 Flags UG um Time 00 29 09 23 Use 0 M Use 0 Acct 1 History This command was available in ExtremeWare...

Page 885: ...packets with an IP Header Error forwarded to the CPU Bad vers Total number of packets with a version other than IP v4 in the IP version field Bad chksum Total number of packets with a bad IP checksum forwarded to the CPU Short pkt IP packets that are too short Short hdr IP packets with a header that is too short Bad hdrlen IP packets with a header length that is less than the length specified Bad ...

Page 886: ...Badlen Incoming ICMP packets with length errors echo reply In Out ICMP echo reply packets that are received and transmitted destination unreachable In Out ICMP packets with destination unreachable that are received and transmitted port unreachable In Out ICMP packets with port unreachable that are received and transmitted echo In Out ICMP echo packets that are received and transmitted Table 21 Glo...

Page 887: ...P Decline responses DHCP Ack Number of DHCP Ack responses DHCP NAck Number of DHCP NAck responses DHCP Release Number of DHCP Release instances DHCP Inform Not used Table 23 Router Interface Statistics Field Definitions Field Definition Packets IN OUT Total number of IP packets received or transmitted on a VLAN router interface Octets IN OUT Total number of octets received or transmitted on a VLAN...

Page 888: ...e following information Profile names Input rules of UDP port destination IP address or VLAN Source VLANs to which the profile is applied Example The following command displays the UDP profile information for the UPD profile named backbone show udp profile backbone History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms profile_n...

Page 889: ...arguments or variables Default N A Usage Guidelines None Example The following command resets all ICMP settings to the default values unconfig icmp History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platform Availability This command is available on all platforms ...

Page 890: ...max pending entries to their default values Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets all IP ARP related settings to the default values unconfig iparp History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on i series platforms ...

Page 891: ...ngs to the default values Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets all router advertisement settings to the default values unconfig irdp History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 892: ...ion for one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command removes the UDP profile configuration from the VLAN accounting unconfig udp profile vlan accounting History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all UDP profiles ...

Page 893: ...er into areas The topology within an area is hidden from the rest of the autonomous system Hiding this information enables a significant reduction in LSA traffic and reduces the computations needed to maintain the LSDB Routing within the area is determined only by the topology of the area The three types of routers defined by OSPF are as follows Internal Router IR An internal router has all of its...

Page 894: ...ter that data must traverse is considered to be one hop The routing table in a router using RIP contains an entry for every known destination network Each routing table entry contains the following information IP address of the destination network Metric hop count to the destination network IP address of the next router Timer that tracks the amount of time since the entry was last updated The rout...

Page 895: ...specified all adjacencies for all VLANs are cleared Example The following command clears the level 1 adjacencies for VLAN v1 clear isis adjacency level 1 vlan v1 History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms level 1 Specifies IS IS level 1 adjacencies level 2 Specifies IS IS level 2 adjacencies level 1 2 Spec...

Page 896: ...rameters are specified all entries are cleared Example The following command clears all non pseudonode LSDB clear isis lsdb type non pseudonode History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms level 2 Specifies the level 2 subdomain isis area identifier Specifies a level 1 area identifier system identifier Speci...

Page 897: ...eful when multiple areas are merged or when one area is split into multiple areas Multiple area addresses enable you to remember an area individually as needed If no area address is configured the IS IS process will not start Example The following command adds an IS IS area address for level 2 subdomains config isis level 2 add 02 History This command was first available in ExtremeWare v6 1 8 IS I...

Page 898: ...evel 1 area in which the interface is present is specified with this option level 1 2 Both level 1 and level 2 adjacency is established if the neighbor s interface is also configured as level 1 2 and there is at least one area in common If there is no area in common a level 2 adjacency is established The area identifier of the level 1 area in which the interface is present is specified with this o...

Page 899: ...oadvert option filters out the summary Example The following command adds the domain summary address 10 0 0 0 8 to the level 1 area a1 advertises the the address and sets the cost to 15 config isis area a1 add domain summary 10 0 0 0 8 advertise cost 15 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Av...

Page 900: ...When the summary address is deleted the summarized IP reachability information must not be included in the level 2 LSP Example The following command deletes one summary address 10 0 0 0 8 from the level 1 area a1 config isis area a1 delete domain summary 10 0 0 0 8 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0...

Page 901: ...ss profile is not configured none of the information is filtered By default no access profile is present on a level 1 area Example The following command configures access profile ap1 as the domain filter for the area a1 config isis area a1 domain filter ap1 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platfor...

Page 902: ...ion HMAC on the data present in the packet The no check option prevents the system from dropping received packets that cannot be authenticated Example The following command configures authentication using the simple password extreme with no checking for the level 2 subdomain configure isis level 2 authentication simple password extreme no check History This command was first available in ExtremeWa...

Page 903: ...rily useful when multiple areas are merged or when one area is split into multiple areas Multiple area addresses enable you to remember an area individually as needed If no area address is configured the IS IS process will not start Example The following command deletes an IS IS area address 00 0001 for the level 2 subdomain config isis level 2 delete 00 0001 History This command was first availab...

Page 904: ...fault IS IS is not enabled on an interface Usage Guidelines None Example The following command disables IS IS on all VLANs config isis delete vlan all History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms vlan name Specifies the name of a VLAN a...

Page 905: ...es The filter is applied on the routes from all the non IS IS origins When an access profile is not configured none of the routes are filtered Example The following command configures an external filter for a level 1 area with the access profile ap configure isis area a1 external filter ap History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporat...

Page 906: ...Description Default 10 seconds Usage Guidelines The LSP hold down interval range is from 3 to 120 seconds Example The following command configures the LSP hold down interval config isis lsp holddown interval 20 History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms seconds Specifies the LSP hold down interval in secon...

Page 907: ... only use this command when IS IS is disabled The LSP lifetime range is from 400 to 65 535 seconds Example The following command sets the LSP lifetime to 1000 config isis lsp lifetime 1000 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms se...

Page 908: ... this command when IS IS is disabled The LSP refresh interval range is from 100 to 65 235 seconds Example The following command configures the LSP refresh interval config isis lsp refresh interval 120 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series ...

Page 909: ...ic specifications The wide option indicates that the metric can have a maximum value of 4 261 412 864 as specified in the traffic engineering draft The both option indicates that the metric should be described in both formats You can only use this command when IS IS is disabled Example The following command configures the metric size as both for the level 2 subdomain confit isis level 2 metric siz...

Page 910: ...ge Guidelines The SPF hold time range is from 1 to 300 seconds Example The following command configures the IS IS shortest path first hold time config isis spf hold time 7 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms seconds Specifies t...

Page 911: ...es that default Usage Guidelines The system identifier can only be configured when IS IS processing is disabled Example The following command sets the system identifier config isis system identifier 0000 0000 001a History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on ...

Page 912: ...corresponding Hello packets are not sent or received on that interface Any packet that is received is ignored As result of this no adjacency is established Example The following command configures vlan v1 as a level 2 passive interface configure isis vlan v1 level 2 passive History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeW...

Page 913: ...et The no check option prevents the system from dropping received packets that cannot be authenticated The level 1 level 2 and level 1 2 options specify the levels on which the authentication is to be configured Example The following command configures authentication for level 1 and level 2 to use the simple password extreme for vlan v1 and to drop non authenticated packets config isis vlan v1 lev...

Page 914: ...where 16 777 215 is the maximum value allowed with wide metrics If cost is greater than 63 a value of 63 is advertised as the regular metric of the interface The default is 10 The level 1 level 2 and level 1 2 options specify the levels to which the metric is applied Example The following command configures the level 1 vlan v1 cost as 25 config isis vlan v1 level 1 cost 25 History This command was...

Page 915: ...hold time in the IS IS hellos is the hello multiplier times the hello interval The hello multiplier range is 3 to 1000 and the default is 3 The level 1 level 2 and level 1 2 options specify the levels to which the timers are applied Example The following command configures the hello multiplier on level 1 of all VLANs to be 100 config isis vlan all level 1 hello multiplier 100 History This command ...

Page 916: ... designated IS for that level on that interface The range of priority is 0 to 127 and the default is 64 The level 1 level 2 and level 1 2 options specify the levels for which the priority is applied Example The following command configures an IS IS priority of 100 to level 1 of all VLANs config isis vlan all level 1 priority 100 History This command was first available in ExtremeWare v6 1 8 IS IS ...

Page 917: ...nd the default is 10 The hellotime interval is the time in seconds between transmission of Hello PDUS on the interface The range is 3 to 3600 and the default is 10 The level 1 level 2 and level 1 2 options specify the levels to which the timers are applied Example The following command configures the level 1 hellotime interval to 60 seconds for all VLANs config isis vlan all level 1 timer hellotim...

Page 918: ...918 ExtremeWare Software 7 0 0 Command Reference Guide IGP Commands Platform Availability This command is available on the i series platforms ...

Page 919: ...sautomatic Usage Guidelines None Example The following command configures the cost metric of the VLAN accounting config ospf area 0 0 0 6 vlan accounting cost 10 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms area identifier Specifies an OSPF area vlan name Specifies a VLAN name all Specifies all VLANs automatic Determine the ...

Page 920: ...ines The range is 0 through 255 and the default setting is 1 Setting the value to 0 ensures that the router is never selected as the designated router or backup designated router Example The following command sets the switch to not be selected as the designated router config ospf area 1 2 3 4 priority 0 History This command was available in ExtremeWare 2 0 Platform Availability This command is ava...

Page 921: ...5_key is a numeric value with the range 0 to 65 536 When the OSPF area is specified authentication information is applied to all OSPF interfaces within the area Example The following command configures MD5 authentication on the VLAN subnet_26 config ospf vlan subnet_26 authentication md5 32 test History This command was available in ExtremeWare 2 0 Platform Availability This command is available o...

Page 922: ...the time of configuration If you add more VLANs to the area you must configure the timers and authentication for the new VLANs explicitly Example The following command sets the timers on the virtual link in area 0 0 0 2 config ospf virtual link 6 6 6 6 0 0 0 2 timer 10 1 20 200 History This command was available in ExtremeWare 2 0 The syntax was modified in ExtremeWare 6 2 2 vlan name Specifies a ...

Page 923: ...config ospf timer ExtremeWare Software 7 0 0 Command Reference Guide 923 Platform Availability This command is available on all platforms ...

Page 924: ...BRs that have a common area with one ABR connected to the backbone Specify the following routerid Far end router interface number area identifier Transit area used for connecting the two end points The transit area cannot have the IP address 0 0 0 0 the transit area cannot be a stub area or an NSSA Example The following command configures a virtual link between the two interfaces config ospf add v...

Page 925: ... Extreme Standby Routing Protocol ESRP is enabled on the VLAN to which the IP address is assigned In either case LDP must be configured to advertise label mappings for direct routing interfaces In some configurations you may want to enable loopback mode on the VLAN to which the tunnel endpoint IP address is assigned One situation where loopback mode may be useful is when multiple physical interfac...

Page 926: ...926 ExtremeWare Software 7 0 0 Command Reference Guide IGP Commands Platform Availability This command is available on all platforms ...

Page 927: ...s the OSPF link type as automatic on a VLAN named accounting config ospf add vlan accounting area 0 0 0 1 link type auto History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on i series platforms vlan name Specifies a VLAN name all Specifies all VLANs area identifier Specifies the area to which the VLAN is assigned auto Specifies to automatica...

Page 928: ...d into that area NOTE If any of the external routes specified in the filter have already been advertised those routes will remain until the associated LSAs in that area time out Using the none mode specifies that no external filter is applied Example The following command configures an external filter policy from the access profile nosales config ospf area 1 2 3 4 external filter nosales History T...

Page 929: ...BR function an access profile can be applied to an OSPF area that filters a set of OSPF inter area routes from being sourced from any other areas Example The following command configures an inter area filter policy from the access profile nosales config ospf area 0 0 0 6 interarea filter nosales History This command was first available in ExtremeWare 4 0 Platform Availability This command is avail...

Page 930: ... is used to summarize a certain range of IP addresses within an area and export them out as a single address config ospf area 1 2 3 4 add range 10 1 2 0 24 advertise type 3 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms area identifier Specifies an OSPF area ipaddress Specifies an IP address mask Specifies a subnet mask advert...

Page 931: ...P addresses in an OSPF area Syntax Description Default N A Usage Guidelines None Example The following command deletes an aggregated IP address range config ospf area 1 2 3 4 delete range 10 1 2 0 24 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms area identifier Specifies an OSPF area ipaddress Specifies an IP address mask Spe...

Page 932: ... normal area is an area that is not any of the following Stub area NSSA Virtual links can be configured through normal areas External routes can be distributed into normal areas Example The following command configures an OSPF area as a normal area config ospf area 10 1 0 0 normal History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms...

Page 933: ... should only be used on NSSA border routers where translation is to be enforced If translate is not used on any NSSA border router in a NSSA one of the ABRs for that NSSA is elected to perform translation as indicated in the NSSA specification The option should not be used on NSSA internal routers Doing so inhibits correct operation of the election algorithm Example The following command configure...

Page 934: ...area External route information is not distributed into stub areas Stub areas are used to reduce memory and computation requirements on OSPF routers Example The following command configures an OSPF area as a stub area config ospf area 0 0 0 6 stub nosummary stub default cost 10 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ar...

Page 935: ... static route re distribution into OSPF an access profile can be used to limit the routes that are advertised into OSPF for the switch as a whole Example The following command configures a route filter for all routes OSPF exports from RIP or other sources config ospf asbr filter subnet25 filter History This command was first available in ExtremeWare 4 0 Platform Availability This command is availa...

Page 936: ...router goes into overflow state it stays there until OSPF is disabled and then re enabled Usage Guidelines None Example The following command configures the AS external LSA limit and overflow duration config ospf ase limit 50000 timeout 1800 History This command was available in ExtremeWare 6 1 5 Platform Availability This command is available on i series platforms number Specifies the number of e...

Page 937: ...N A Usage Guidelines This command is only valid on an ASBR Example The following command summarizes AS external routes config ospf ase summary add 175 1 0 0 16 cost 10 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series platforms ipaddress Specifies an IP address mask Specifies a subnet mask cost Specifies a metric that will be gi...

Page 938: ...te Syntax Description Default N A Usage Guidelines This command is only valid on an ASBR Example The following command deletes the aggregated AS external route config ospf ase summary delete 175 1 0 0 16 History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on i series platforms ipaddress Specifies an IP address mask Specifies a subnet mask ...

Page 939: ...ion Removes a virtual link Syntax Description Default N A Usage Guidelines None Example The following command deletes a virtual link config ospf delete virtual link 10 1 2 1 10 1 0 0 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms routerid Specifies a router interface number area identifier Specifies an OSPF area ...

Page 940: ...one or all VLANs router interfaces Syntax Description Default N A Usage Guidelines None Example The following command disables OSPF on VLAN accounting config ospf delete vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all VLANs ...

Page 941: ...ble ospf export rip Using ExtremeWare 6 0 and above you must configure ExtremeWare to export these direct routes to OSPF You can use an access profile to filter unnecessary direct routes For switches configured to support direct route re distribution into OSPF an access profile can be used to limit the routes that are advertised into OSPF for the switch as a whole Example The following command con...

Page 942: ...nes The range is between 0 disabled and 600 seconds using multiples of 5 seconds The LSAs added to the LSDB during the interval are batched together for refresh or timeout Example The following command configures the OSPF LSA batching timer to a value of 100 seconds config ospf lsa batching timer 100 History This command was first available in ExtremeWare 6 1 Platform Availability This command is ...

Page 943: ...t 10 Mbps The default cost is 10 100 Mbps The default cost is 5 1 Gbps The default cost is 4 10 Gbps The default cost is 2 Usage Guidelines None Example The following command configures the automatic interface costs for 10 Mbps 100 Mbps and 1 Gbps interfaces config ospf metric table 10m 20 100m 10 1g 2 History This command was first available in ExtremeWare 6 1 Platform Availability This command i...

Page 944: ...nk state database remaining in use NOTE Do not set the router ID to 0 0 0 0 The implementation of the config ospf routerid command has been augmented to support automatic advertisement of a label mapping for the OSPF router ID A label is advertised for the OSPF router ID regardless of whether OSPF distributes a route for the router ID IP address in its router LSA To support the use of indirect LSP...

Page 945: ...config ospf routerid ExtremeWare Software 7 0 0 Command Reference Guide 945 Platform Availability This command is available on all platforms ...

Page 946: ...t Path First SPF recalculations Syntax Description Default 3 seconds Usage Guidelines None Example The following command configures the minimum number of seconds between Shortest Path First SPF recalculations config ospf spf hold time 6 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms seconds Specifies a time in seconds ...

Page 947: ...rt with area 0 and then expand into other areas The backbone allows summary information to be exchanged between ABRs Every ABR hears the area summaries from all other ABRs The ABR then forms a picture of the distance to all networks outside of its area by examining the collected advertisements and adding in the backbone distance to each advertising router When a VLAN is configured to run OSPF by d...

Page 948: ...o point neighbor Syntax Description Default N A Usage Guidelines None Example The following command configures the IP address of a point to point neighbor config ospf vlan accounting neighbor add 10 0 0 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on i series platforms vlan name Specifies a VLAN name ipaddress Specifies an IP address...

Page 949: ...f a point to point neighbor Syntax Description Default N A Usage Guidelines None Example The following command deletes the IP address of a point to point neighbor config ospf vlan accounting neighbor delete 10 0 0 1 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on i series platforms vlan name Specifies a VLAN name ipaddress Specifies an...

Page 950: ...e routerdeadinterval Under some circumstances setting the waitinterval to smaller values can help OSPF routers on a broadcast network to synchronize more quickly at the expense of possibly electing an incorrect DR or BDR This value should not be set to less than the hellointerval The default value is equal to the routerdeadinterval Example The following command configures the OSPF wait interval on...

Page 951: ...tremeWare Software 7 0 0 Command Reference Guide 951 History This command was first available in ExtremeWare 6 2 This command was modified in ExtremWare 6 22 Platform Availability This command is available on i series platforms ...

Page 952: ...uidelines When an IP interface is created RIP configuration is disabled on the interface by default When the RIP interface is disabled the parameters are not reset to default automatically Example The following command configures RIP on the VLAN finance config rip add finance History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan...

Page 953: ...age Guidelines When an IP interface is created RIP configuration is disabled on the interface by default When the RIP interface is disabled the parameters are not reset to default automatically Example The following command deletes RIP on a VLAN named finance config rip delete finance History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platf...

Page 954: ...e RIP garbage time Syntax Description Default 120 seconds Usage Guidelines None Example The following command configures the RIP garbage time to have a 60 second delay config rip garbagetime 60 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms seconds Specifies a time in seconds ...

Page 955: ... does not receive an update message from its neighbor within the route timeout period 180 seconds by default the router assumes the connection between it and its neighbor is no longer available Example The following example sets the route timeout period to 120 seconds config rip routetimeout 120 History This command was available in ExtremeWare 2 0 Platform Availability This command is available o...

Page 956: ...nd configures the receive mode for the VLAN finance to accept only RIP version 1 format packets config rip rxmode v1only finance History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms none Specifies to drop all received RIP packets v1only Specifies to accept only RIP version 1 format packets v2only Specifies to accept only RIP version...

Page 957: ...AN finance to transmit version 2 format packets to the broadcast address config rip txmode v1comp finance History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms none Specifies to not transmit any packets on this interface v1only Specifies to transmit RIP version 1 format packets to the broadcast address v1comp Specifies to transmit RI...

Page 958: ...ines The router exchanges an update message with each neighbor every 30 seconds default value or if there is a change to the overall routed topology also called triggered updates The timer granularity is 10 seconds Example The following command sets the update timer to 60 seconds config rip updatetime 60 History This command was available in ExtremeWare 2 0 Platform Availability This command is av...

Page 959: ... Description Default The default setting is 1 Usage Guidelines None Example The following command configures the cost for the VLAN finance to a metric of 3 config rip vlan finance cost 3 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series platforms vlan name Specifies a VLAN name all Specifies all VLANs cost Specifies a cost metri...

Page 960: ... or deny attribute The operation is compared with each entry in the list When a match is found the operation is either permitted or denied depending on the configuration of the matched entry If no match is found the operation is implicitly denied Example The following command uses the access profile nosales to determine which RIP routes are advertised into the VLAN backbone config rip vlan backbon...

Page 961: ...an contain a combination of permit and deny entries Each entry must have a permit or deny attribute The operation is compared with each entry in the list When a match is found the operation is either permitted or denied depending on the configuration of the matched entry If no match is found the operation is implicitly denied Example The following command configures the VLAN backbone to accept sel...

Page 962: ...pared with each entry in the list When a match is found the operation is either permitted or denied depending on the configuration of the matched entry If no match is found the operation is implicitly denied Example The following command configures RIP to use the access profile nointernet to determine from which RIP neighbor to receive or reject the routes to the VLAN backbone config rip vlan back...

Page 963: ...an area identifier is 32 characters The identifier must begin with one alphabetic character followed by up to 31 alphabetic or numeric characters Example The following command creates an IS IS level 1 area create isis area a1000 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command i...

Page 964: ...Syntax Description Default Area 0 0 0 0 Usage Guidelines Area 0 0 0 0 does not need to be created It exists by default Example The following command creates an OSPF area create ospf area 1 2 3 4 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms area identifier Specifies an OSPF area ...

Page 965: ...th one alphabetic character followed by up to 31 alphabetic or numeric characters The all option deletes all of the level 1 areas simultaneously The level 1 area can only be deleted when no interface attaches to it Example The following command deletes an IS IS level 1 area delete isis area a1000 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently inc...

Page 966: ...Description Default N A Usage Guidelines An OSPF area cannot be deleted if it has an associated interface Example The following command deletes an OSPF area delete ospf area 1 2 3 4 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms area identifier Specifies an OSPF area all Specifies all areas ...

Page 967: ... variables Default Disabled Usage Guidelines To enable IS IS routing use the following command enable isis Example The following command disables IS IS routing disable isis History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms ...

Page 968: ...le The following command disables redistribution of OSPF routes for a level 2 subdomain disable isis level 2 export ospf History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 level 2 Specifies a level 2 subdomain isis area identifier Specifies an IS IS level 1 area bgp Specifies BGP routes i bgp Specifies I BGP routes...

Page 969: ...disable isis export ExtremeWare Software 7 0 0 Command Reference Guide 969 Platform Availability This command is available on the i series platforms ...

Page 970: ...it ATT bit from level 1 2 switches This command has the effect of enabling the feature described in the ExtremeWare Software User Guide Software Version 7 0 0 in the chapter Interior Gateway Protocols in the section Default Routes to Nearest Level 1 2 Switch for Level 1 Only Switches See the user guide for more information Example The following command disables ignoring the attached bit disable is...

Page 971: ...iption Default The default setting is disabled Usage Guidelines None Example The following command disables the origination of an IS IS default route for the level 2 subdomain disable isis level 2 originate default History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on...

Page 972: ...The at startup option disables setting the overload bit at system startup time Example The following command disables setting the overload bit for the level 1 area a1 disable isis area a1 overload History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series plat...

Page 973: ...F process for the router Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables the OSPF process for the router disable ospf History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 974: ...PF network should support opaque LSAs Routers that do not support opaque LSAs do not store or flood them At minimum a well interconnected subsection of your OSPF network needs to support opaque LSAs to maintain reliability of their transmission On an OSPF broadcast network the designated router DR must support opaque LSAs or none of the other routers on that broadcast network will reliably receive...

Page 975: ...nd disables OSPF to export BGP related routes to other OSPF routers disable ospf export bgp History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series platforms bgp Specifies BGP routing direct Specifies direct routing i bgp Specifies I BGP routing e bgp Specifies E BGP routing isis Specifies IS IS routing isis level 1 Specifies IS IS le...

Page 976: ... includes a link with the router ID IP address and a mask of 255 255 255 255 in the router LSA The link type is stub and the metric is 0 When disabled OSPF does not include a link with the router ID IP address in the router LSA Example The following command disables the distribution of a route for the OSPF router ID in the router LSA disable ospf originate router id History This command was availa...

Page 977: ...networks including A limit of 15 hops between the source and destination networks A large amount of bandwidth taken up by periodic broadcasts of the entire routing table Slow convergence Routing decisions based on hop count no concept of link costs or delay Flat networks no concept of areas or boundaries Example The following command disables RIP for the whole router disable rip History This comma...

Page 978: ...he RIP aggregation of subnet information on an interface configured to send RIPv2 compatible traffic The switch summarizes subnet routes to the nearest class network route The following rules apply when using RIP aggregation Within a class boundary no routes are aggregated If aggregation is disabled subnet routes are never aggregated even when crossing a class boundary Example The following comman...

Page 979: ...rned from OSPF disable rip export ospf History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms static Specifies static routes direct Specifies interface routes only interfaces that have IP forwarding enabled are exported isis Specifies IS IS routes isis level 1 Specifies IS IS level 1 routes isis level 1 external Specifies IS IS ...

Page 980: ... used for security reasons to control which routes you want advertised by the router You can decide if you want all static routes to be advertised Static routes are never aged out of the routing table A static route must be associated with a valid IP subnet An IP subnet is associated with a single VLAN by its IP address and subnet mask If the VLAN is subsequently deleted the static route entries u...

Page 981: ...te to its neighbors If always is not specified RIP adds a default route if a reachable default route is not in the route table Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command unconfigures a default route to be advertised by RIP if no other default route is advertised disable rip originate default cost 0 History This comm...

Page 982: ...on poison reverse is a scheme for eliminating the possibility of loops in the routed topology In this case a router advertises a route over the same interface that supplied the route but the route uses a hop count of 16 defining it as unreachable Example The following command disables the split horizon with poison reverse algorithm for RIP disable rip poisonreverse History This command was availab...

Page 983: ...bled Usage Guidelines Split horizon is a scheme for avoiding problems caused by including routes in updates sent to the router from which the route was learned Split horizon omits routes learned from a neighbor in updates sent to that neighbor Example The following command disables the split horizon algorithm for RIP disable rip splithorizon History This command was available in ExtremeWare 2 0 Pl...

Page 984: ...ments or variables Default Enabled Usage Guidelines Triggered updates occur whenever a router changes the metric for a route and it is required to send an update message immediately even if it is not yet time for a regular update message to be sent This will generally result in faster convergence but may also result in more RIP related traffic Example The following command disables the trigger upd...

Page 985: ...variables Default Disabled Usage Guidelines To enable IS IS routing use the following command enable isis Example The following command enables IS IS routing enable isis History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms ...

Page 986: ...f specified If a route map is specified routes can be assigned different metric and metric types Routes maps can also filter out routes level 2 Specifies a level 2 subdomain isis area identifier Specifies an IS IS level 1 area bgp Specifies BGP routes i bgp Specifies I BGP routes e bgp Specifies E BGP routes direct Specifies direct routes rip Specifies RIP routes static Specifies static routes vip...

Page 987: ...stribution of direct routes to the level 1 area a1 with the route map rm enable isis area a1 export direct rm History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms ...

Page 988: ...ATT bit from level 1 2 switches This command has the effect of disabling the feature described in the ExtremeWare Software User Guide Software Version 7 0 0 in the chapter Interior Gateway Protocols in the section Default Routes to Nearest Level 1 2 Switch for Level 1 Only Switches See the user guide for more information Example The following command enables ignoring the attached bit enable isis i...

Page 989: ...therwise the default route will be originated only if the default route is available in the kernel route table Example The following command enables the origination of an IS IS default route that uses the internal metric type and a cost of 15 for the level 2 subdomain enable isis level 2 originate default cost 15 type internal History This command was first available in ExtremeWare v6 1 8 IS IS te...

Page 990: ...ion of the overload bit If the duration is not specified the bit is set until it is disabled The range is 1 to 186 400 seconds Example The following command enables IS IS overload for the level 1 area a1 with a duration of 100 seconds enable isis area a1 overload 100 History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0...

Page 991: ... process for the router Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command enables the OSPF process for the router enable ospf History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 992: ...F network should support opaque LSAs Routers that do not support opaque LSAs do not store or flood them At minimum a well interconnected subsection of your OSPF network needs to support opaque LSAs to maintain reliability of their transmission On an OSPF broadcast network the designated router DR must support opaque LSAs or none of the other routers on that broadcast network will reliably receive ...

Page 993: ...IP learned static and direct routes injected into OSPF If the cost metric is set to 0 the cost is inserted from the route The tag value is used only by special routing applications Use 0 if you do not have specific requirements for using a tag The tag value in this instance has no relationship with 802 1Q VLAN tagging The same cost cost type and tag values can be inserted for all the export routes...

Page 994: ...e The following command enables OSPF to export BGP related routes using LSAs to other OSPF routers enable ospf export bgp cost 1 ase type 1 tag 0 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series platforms ...

Page 995: ...OSPF to RIP and the routes to export from RIP to OSPF The cost metric is inserted for all BGP VIP RIP learned static and direct routes injected into OSPF If the cost metric is set to 0 the cost is inserted from the route The tag value is used only by special routing applications Use 0 if you do not have specific requirements for using a tag The tag value in this instance has no relationship with 8...

Page 996: ...ands History This command was first available in ExtremeWare 6 1 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platform Availability This command is available on i series platforms ...

Page 997: ...a tag The tag value in this instance has no relationship with 802 1Q VLAN tagging When re distributing RIP routes you should turn off RIP aggregation unless you are expertly familiar with the possible consequences and impact By default new configurations of RIP using ExtremeWare 4 0 and above disable RIP aggregation In previous ExtremeWare versions RIP aggregation is enabled by default This config...

Page 998: ...The cost metric is inserted for all BGP VIP RIP learned static and direct routes injected into OSPF The tag value is used only by special routing applications Use 0 if you do not have specific requirements for using a tag The tag value in this instance has no relationship with 802 1Q VLAN tagging Example The following command enables the exporting of static routes to OSPF enable ospf export static...

Page 999: ...e 2 routes The default setting is disabled The cost metric is inserted for all BGP VIP RIP learned static and direct routes injected into OSPF If the cost metric is set to 0 the cost is inserted from the route The tag value is used only by special routing applications Use 0 if you do not have specific requirements for using a tag The tag value in this instance has no relationship with 802 1Q VLAN ...

Page 1000: ...1000 ExtremeWare Software 7 0 0 Command Reference Guide IGP Commands Platform Availability This command is available on i series platforms ...

Page 1001: ...ecified OSPF always advertises the default route If always is not specified OSPF adds the default LSA if a reachable default route is in the route table Example The following command generates a default external type 1 LSA enable ospf originate default cost 1 ase type 1 tag 0 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series pla...

Page 1002: ...cludes a link with the router ID IP address and a mask of 255 255 255 255 in the router LSA The link type is stub and the metric is 0 When disabled OSPF does not include a link with the router ID IP address in the router LSA Example The following command enables the distribution of a route for the OSPF router ID in the router LSA enable ospf originate router id History This command was first avail...

Page 1003: ...etworks including A limit of 15 hops between the source and destination networks A large amount of bandwidth taken up by periodic broadcasts of the entire routing table Slow convergence Routing decisions based on hop count no concept of link costs or delay Flat networks no concept of areas or boundaries Example The following command enables RIP for the whole router enable rip History This command ...

Page 1004: ...compatible traffic The switch summarizes subnet routes to the nearest class network route The following rules apply when using RIP aggregation Subnet routes are aggregated to the nearest class network route when crossing a class boundary Within a class boundary no routes are aggregated If aggregation is enabled the behavior is the same as in RIPv1 If aggregation is disabled subnet routes are never...

Page 1005: ...s inserted from the route The tag value is used only by special routing applications Use 0 if you do not have specific requirements for using a tag Example The following command enables RIP to redistribute routes from all OSPF routes enable rip export ospf cost 0 static Specifies static routes direct Specifies interface routes only interfaces that have IP forwarding enabled are exported isis Speci...

Page 1006: ...ware 7 0 0 Command Reference Guide IGP Commands History This command was first available in ExtremeWare 4 0 The keyword metric was changed to the keyword cost Platform Availability This command is available on all platforms ...

Page 1007: ...also be used for security reasons to control which routes you want advertised by the router You can decide if you want all static routes to be advertised Static routes are never aged out of the routing table A static route must be associated with a valid IP subnet An IP subnet is associated with a single VLAN by its IP address and subnet mask If the VLAN is subsequently deleted the static route en...

Page 1008: ...ines The cost metric is inserted for all RIP learned static and direct routes injected into OSPF If the cost metric is set to 0 the cost is inserted from the route The tag value is used only by special routing applications Use 0 if you do not have specific requirements for using a tag Example The following command configures a default route to be advertised by RIP if no other default route is adve...

Page 1009: ... horizon poison reverse is a scheme for eliminating the possibility of loops in the routed topology In this case a router advertises a route over the same interface that supplied the route but the route uses a hop count of 16 defining it as unreachable Example The following command enables the split horizon with poison reverse algorithm for RIP enable rip poisonreverse History This command was ava...

Page 1010: ...sage Guidelines Split horizon is a scheme for avoiding problems caused by including routes in updates sent to the router from which the route was learned Split horizon omits routes learned from a neighbor in updates sent to that neighbor Example The following command enables the split horizon algorithm for RIP enable rip splithorizon History This command was available in ExtremeWare 2 0 Platform A...

Page 1011: ...o arguments or variables Default Enabled Usage Guidelines Triggered updates occur whenever a router changes the metric for a route and it is required to send an update message immediately even if it is not yet time for a regular update message to be sent This will generally result in faster convergence but may also result in more RIP related traffic Example The following command enables the trigge...

Page 1012: ...or the system and other system runtime information Syntax Description This command has no arguments or variables Default N A Usage Guidelines None History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms ...

Page 1013: ...cy information for all the VLANs in the area is displayed Example The following command shows the adjacency information of VLAN v1 in detail show isis adjacency vlan v1 detail History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms level 2 Specifi...

Page 1014: ... Usage Guidelines None Example The following command shows the IS IS VLAN v1 interface information in detail show isis interface vlan v1 detail History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms vlan name Specifies the name of a VLAN isis are...

Page 1015: ... History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the i series platforms level 2 Specifies the level 2 subdomain isis area identifier Specifies a level 1 area identifier system identifier Specifies a system identifier The format is xxxx xxxx xxxx where x is a hex...

Page 1016: ...global OSPF information Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays global OSPF information show ospf History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 1017: ...mation about a particular OSPF area Syntax Description Default N A Usage Guidelines None Example The following command displays information about OSPF area 1 2 3 4 show ospf area 1 2 3 4 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms area identifier Specifies an OSPF area ...

Page 1018: ...all OSPF areas Syntax Description Default N A Usage Guidelines None Example The following command displays information about all OSPF areas show ospf area detail History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms detail Specifies to display the information in detailed format ...

Page 1019: ...te aggregation configuration Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the OSPF external route aggregation configuration show ospf ase summary History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms ...

Page 1020: ...about all OSPF interfaces Syntax Description Default N A Usage Guidelines None Example The following command displays information about all OSPF interfaces show ospf interfaces History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on i series platforms detail Specifies to display the information in detailed format ...

Page 1021: ...ription Default If no argument is specified all OSPF interfaces are displayed Usage Guidelines None Example The following command displays information about one or all OSPF interfaces on the VLAN accounting show ospf interfaces vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name area ...

Page 1022: ...is command is to omit all optional parameters resulting in the following shortened form show ospf lsdb The shortened form displays all areas and all types in a summary format You can filter the display using either the area ID the remote router ID or the link state ID The default setting is all with no detail If detail is specified each entry includes complete LSA information Example The following...

Page 1023: ...show ospf lsdb area lstype ExtremeWare Software 7 0 0 Command Reference Guide 1023 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 1024: ... Guidelines area identifier Transit area used for connecting the two end points The transit area cannot have the IP address 0 0 0 0 Example The following command displays virtual link information about a particular router show ospf virtual link 1 2 3 4 10 1 6 1 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms area identifier Spe...

Page 1025: ... for all VLANs Syntax Description Default N A Usage Guidelines None Example The following command displays RIP specific configuration and statistics for all VLANs show rip History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms detail Specifies to display the information in detailed format ...

Page 1026: ...include the following per interface Packets transmitted Packets received Bad packets received Bad routes received Number of RIP peers Peer information Example The following command displays RIP specific statistics for all VLANs show rip stat History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms detail Specifies to display the informa...

Page 1027: ...pecific statistics for a VLAN Syntax Description Default N A Usage Guidelines None Example The following command displays RIP specific statistics for the VLAN accounting show rip stat accounting History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 1028: ...statistics for a VLAN Syntax Description Default All Usage Guidelines None Example The following command displays RIP configuration and statistics for the VLAN accounting show rip vlan accounting History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 1029: ...lt settings Syntax Description Default N A Usage Guidelines None Example The following command resets the OSPF interfaces to the default settings on the VLAN accounting unconfig ospf accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on i series platforms vlan name Specifies a VLAN name area identifier Specifies an OSPF area ...

Page 1030: ... VLAN Syntax Description Default All Usage Guidelines Does not change the enable disable state of the RIP settings Example The following command deletes RIP configuration from the VLAN finance unconfig rip finance History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 1031: ...ocol I BGP BGP Attributes The following well known BGP attributes are supported by the switch Origin Defines the origin of the route Possible values are IGP EGP and incomplete AS_Path The list of ASs that are traversed for this route Next_hop The IP address of the next hop BGP router to reach the destination listed in the NLRI field Multi_Exist_Discriminator Used to select a particular border rout...

Page 1032: ...quire common handling ExtremeWare supports the following well known BGP community attributes no export no advertise internet BGP Features This section lists BGP features supported by ExtremeWare Route Reflectors Route Confederations Route Aggregation IGP Synchronization Using the Loopback Interface BGP Peer Groups BGP Route Flap Dampening ...

Page 1033: ...sgs Out total msgs In updates Out updates Last error FsmTransitions Example The following command resets the counters for the BGP neighbor at 10 20 30 55 clear bgp neighbor 10 20 30 55 counters History This command was first available in ExtremeWare 6 2 1 This command was modified in ExtremeWare 6 2 2 to add the FsmTransitions counter Platform Availability This command is available on all i series...

Page 1034: ...ighbor clear bgp neighbor flap statistics 10 10 10 10 History This command was introduced in ExtremeWare 7 0 0 ip address Specifies an IP address that identifies a BGP neighbor transmitted routes Specifies that only transmitted routes should be displayed access_profile Specifies an access profile used as a community attribute no advertise Specifies the no advertise community attribute no export Sp...

Page 1035: ...clear bgp neighbor flap statistics ExtremeWare Software 7 0 0 Command Reference Guide 1035 Platform Availability This command is available on all i series platforms ...

Page 1036: ... route aggregation follow these steps 1 Enable aggregation using the following command enable bgp aggregation 2 Create an aggregate route using the following commands config bgp add aggregate address ip address masklength as set as match summary only advertise route map route map attribute route map route map Example The following command configures a BGP aggregate route config bgp add aggregate a...

Page 1037: ...config bgp add aggregate address ExtremeWare Software 7 0 0 Command Reference Guide 1037 Platform Availability This command is available on all i series platforms ...

Page 1038: ...cially when BGP is used as an interior gateway protocol One way to reduce the size of a fully meshed AS is to divide the AS into multiple sub autonomous systems and group them into a routing confederation Within the confederation all BGP speakers in each sub AS must be fully meshed The confederation is advertised to other networks as a single AS Example The following command adds one sub AS to a c...

Page 1039: ...ds the route to BGP only if the route is present in the routing table The enable bgp export command redistributes an individual route from the routing table to BGP If you use both commands to redistribute routes the routes redistributed using the network command take precedence over routes redistributed using the export command Example The following command adds a network to be originated from thi...

Page 1040: ... Syntax Description Default N A Usage Guidelines BGP must be disabled before the as number can be changed Example The following command changes the local AS number used by BGP config bgp AS number 65001 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms number Specifies a local AS number ...

Page 1041: ... same cluster of clients Extreme Networks recommends disabling BGP before configuring the cluster ID Example The following command appends a BGP route reflector cluster ID to the cluster list of a route config bgp cluster id 40000 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms bgp cluster id Specifies a 4 byte f...

Page 1042: ...uce the size of a fully meshed AS is to divide the AS into multiple sub autonomous systems and group them into a routing confederation Within the confederation each sub AS must be fully meshed The confederation is advertised to other networks as a single AS Use a confederation ID of 0 to indicate no confederation Example The following command specifies the BGP routing confederation ID as 200 confi...

Page 1043: ... are advertised as a single route Aggregation reduces the amount of information that a BGP speaker must store and exchange with other BGP speakers Reducing the information that is stored and exchanged also reduces the size of the routing table Example The following command deletes a BGP aggregate route config bgp delete aggregate address 192 1 1 4 30 History This command was first available in Ext...

Page 1044: ...ially when BGP is used as an interior gateway protocol One way to reduce the size of a fully meshed AS is to divide the AS into multiple sub autonomous systems and group them into a routing confederation Within the confederation each sub AS must be fully meshed The confederation is advertised to other networks as a single AS Example The following command deletes a sub AS from a confederation confi...

Page 1045: ...this router Syntax Description Default N A Usage Guidelines None Example The following command deletes a network to be originated from this router config bgp delete network 192 1 1 12 30 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all i series platforms all Specifies all networks ip address masklength Specifies an IP address and a ...

Page 1046: ...t to lowest higher weight higher local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost to Next Hop lowest routerID Example The following command changes the default local preference attribute to 500 config bgp local preference 500 History This command was first available in ExtremeWare 6 1 Platform Availability This command is availabl...

Page 1047: ...selects routes based on the following precedence from highest to lowest weight local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost to Next Hop lowest routerID Example The following command configures the metric to be included in the MED path attribute config bgp med 3 History This command was first available in ExtremeWare 6 1 Platfo...

Page 1048: ...he peer group inherit the parameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the AS path filter for a neighbor based on the access profile nosales config bgp neighbor 192 1 1 22 as path filter i...

Page 1049: ...config bgp neighbor as path filter ExtremeWare Software 7 0 0 Command Reference Guide 1049 Platform Availability This command is available on all i series platforms ...

Page 1050: ... value above which a route will be suppressed The range is 1 20 000 and the default is 2 000 The maximum hold down time is the maximum time a route can be suppressed no matter how unstable it has been as long as it no longer flaps The range is 1 255 minutes and the default is 4 the half life Use the following command to disable route flap dampening for BGP neighbors config bgp neighbor ip address ...

Page 1051: ...config bgp neighbor dampening ExtremeWare Software 7 0 0 Command Reference Guide 1051 Platform Availability This command is available on all i series platforms ...

Page 1052: ...threshold for warning messages to 60 and specifies SNMP traps config bgp neighbor all maximum prefix 5000 threshold 60 send traps History This command was introduced in ExtremeWare 6 2 2 ip address Specifies an IP address all Specifies all neighbors number Specifies the maximum number of prefixes accepted The range is 0 to 4294967294 A value of 0 disables prefix limit feature percent Specifies the...

Page 1053: ...config bgp neighbor maximum prefix ExtremeWare Software 7 0 0 Command Reference Guide 1053 Platform Availability This command is available on all i series platforms ...

Page 1054: ... The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the next hop address used in the updates to be the address of the BGP connection originating it config bgp neighbor 172 16 5 25 next hop self History This command was availabl...

Page 1055: ...config bgp neighbor next hop self ExtremeWare Software 7 0 0 Command Reference Guide 1055 Platform Availability This command is available on all i series platforms ...

Page 1056: ...roup inherit the parameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the NLRI filter for a neighbor based on the access profile nosales config bgp neighbor 192 1 1 22 nlri filter in nosales Histo...

Page 1057: ...config bgp neighbor nlri filter ExtremeWare Software 7 0 0 Command Reference Guide 1057 Platform Availability This command is available on all i series platforms ...

Page 1058: ...elines Use the following command to enable route flap dampening for BGP neighbors config bgp neighbor ip address all dampening half life reuse suppress max suppress route map route map Example The following command disables route flap dampening to the BGP neighbor at 192 168 1 22 config bgp neighbor 192 168 1 22 no dampening History This command was first available in ExtremeWare 7 0 0 Platform Av...

Page 1059: ...nt will automatically disable and enable the peer session The encrypted option is used by the switch when generating an ASCII configuration file using the upload configuration command and parsing a switch generated configuration file using the download configuration command Do not select the encrypted option in the CLI Example The following command configures the password for a neighbor as Extreme...

Page 1060: ...1060 ExtremeWare Software 7 0 0 Command Reference Guide BGP Commands Platform Availability This command is available on all i series platforms ...

Page 1061: ... to a BGP peer group use the following command create bgp neighbor ip address peer group peer group multi hop The new neighbor is created as part of the peer group and inherits all of the existing parameters of the peer group The peer group must have remote AS configured Example The following command configures an existing neighbor as the member of the peer group external config bgp neighbor 192 1...

Page 1062: ...r groups to group together up to 200 BGP neighbors All neighbors within the peer group inherit the parameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the route map filter filter for a neighbor b...

Page 1063: ...eighbor route map filter ExtremeWare Software 7 0 0 Command Reference Guide 1063 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1064: ...nging the route reflector status of a peer the peer will automatically be disabled and re enabled and a warning message will appear on the console and in the log A cluster is formed by the route reflector and its client routers Peer routers that are not part of the cluster must be fully meshed according to the rules of BGP Example The following command configures a BGP neighbor to be a route refle...

Page 1065: ...quire common handling ExtremeWare supports the following well known BGP community attributes no export no advertise no export subconfed Example The following command includes the community path attribute associated with a BGP NLRI in the route updates sent to all BGP neighbors config bgp neighbor all send community History This command was first available in ExtremeWare 6 1 Platform Availability T...

Page 1066: ...ute map configured for the neighbor on the input and or output side of the router This command does not affect the switch configuration Example The following command applies the current input routing policy to the routing information already exchanged with the neighbor config bgp neighbor 192 168 1 5 soft reset input History This command was first available in ExtremeWare 6 1 Platform Availability...

Page 1067: ...tion Default Any Usage Guidelines None Example The following command changes the BGP source interface on the VLAN accounting config bgp neighbor 192 168 1 5 source interface vlan accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ip address Specifies an IP address all Specifies all neighbors any Specifies...

Page 1068: ...Guidelines None Example The following command configures the BGP neighbor timers config bgp neighbor 192 168 1 5 timer keep alive 120 hold time 360 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ip address Specifies an IP address all Specifies all neighbors keepalive Specifies a BGP neighbor timer keepalive time...

Page 1069: ...ilable to the same network The range is 0 to 4294967295 BGP selects routes based on the following precedence from highest to lowest weight local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost to Next Hop lowest routerID Example The following command assigns a locally used weight of 10 to a neighbor connection config bgp neighbor 192 1...

Page 1070: ... the penalty value above which a route will be suppressed The range is 1 20 000 and the default is 2 000 The maximum hold down time is the maximum time a route can be suppressed no matter how unstable it has been as long as it no longer flaps The range is 1 255 minutes and the default is 4 the half life Use the following command to disable route flap dampening for a BGP peer group config bgp peer ...

Page 1071: ...config bgp peer group dampening ExtremeWare Software 7 0 0 Command Reference Guide 1071 Platform Availability This command is available on all i series platforms ...

Page 1072: ...rnal to 5000 sets the threshold for warning messages to 60 and specifies SNMP traps config bgp peer group external maximum prefix 5000 threshold 60 send traps History This command was introduced in ExtremeWare 6 2 2 name Specifies a peer group number Specifies the maximum number of prefixes accepted The range is 0 to 4294967294 A value of 0 disables prefix limit feature percent Specifies the perce...

Page 1073: ...config bgp peer group maximum prefix ExtremeWare Software 7 0 0 Command Reference Guide 1073 Platform Availability This command is available on all i series platforms ...

Page 1074: ...parameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the next hop address used in the updates to be the address of the BGP connection originating it config bgp peer group external next hop self Hi...

Page 1075: ...config bgp peer group next hop self ExtremeWare Software 7 0 0 Command Reference Guide 1075 Platform Availability This command is available on all i series platforms ...

Page 1076: ... by default Usage Guidelines Use the following command to enable route flap dampening for a BGP peer group config bgp peer group name dampening half life reuse suppress max suppress route map route map Example The following command disables route flap dampening to the BGP peer group external config bgp peer group no dampening History This command was first available in ExtremeWare 7 0 0 Platform A...

Page 1077: ...ter to be a route reflector The peer group must be in the same AS of this router Example The following command configures the peer group external as a route reflector client config bgp peer group external route reflector client History This command was available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms peer group Specifies a peer group route re...

Page 1078: ...arameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures communities to be sent to neighbors as part of route updates config bgp peer group external send community History This command was available in...

Page 1079: ...mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the as path filters for the peer group external and its neighbors using the access profile nosales config bgp peer group external as path filter in nosales History This command was available...

Page 1080: ...rameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the NLRI filter for the peer group external and its neighbors using the access profile nosales config bgp peer group external nlri filter in nosales History This command was available in ExtremeWare 6 1...

Page 1081: ...he peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset password Example The following command configures the password as Extreme for the peer group external and its neighbors config bgp peer group external password extreme History This command was available in ExtremeWare 6 1 5 Plat...

Page 1082: ...plied to all neighbors in the peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset password Example The following command configures the remote AS number for the peer group external and its neighbors config bgp peer group external remote AS number 65001 History This command was avail...

Page 1083: ...ing mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command configures the route map filter for the peer group external and its neighbors using the access profile nosales config bgp peer group external route map filter in nosales History This command was av...

Page 1084: ... configuration of the switch Changes made to the parameters of a peer group are applied to all neighbors in the peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset password Example The following command applies the current input routing policy to the neighbors in the peer group exte...

Page 1085: ... all neighbors in the peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset password Example The following command configures the source interface for the peer group external and its neighbors on the VLAN accounting config bgp peer group external source interface accounting History Th...

Page 1086: ...oup Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset password Example The following command configures the keepalive timer and hold timer values for the peer group external and its neighbors config bgp peer group external timer keep alive 30 hold time 30 History This command was available i...

Page 1087: ...ollowing precedence from highest to lowest weight local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost to Next Hop lowest routerID Example The following command configures the weight for the peer group external and its neighbors config bgp peer group external weight 5 History This command was available in ExtremeWare 6 1 5 Platform Av...

Page 1088: ...routes based on the following precedence from highest to lowest weight local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost to Next Hop lowest router ID Example The following command changes the router ID config bgp router id 192 1 1 13 History This command was first available in ExtremeWare 6 1 Platform Availability This command is a...

Page 1089: ...and redistribution Syntax Description This command has no arguments or variables Default N A Usage Guidelines This command does not affect the switch configuration Example The following command applies the route map associated with the network command aggregation and redistribution config bgp soft reconfiguration History This command was first available in ExtremeWare 6 1 Platform Availability Thi...

Page 1090: ...e the current setting use the show ipconfig command Example The following command clears only the IPFDB entries associated with the new route s subnet config ipfdb route add clear subnet History This command was first available in ExtremeWare 7 0 Platform Availability This command is available on all i series platforms clear all Clears all IPFDB entries associated with a route if a more specific r...

Page 1091: ... all peer group peer group acquire all If you do not specify acquire all only the mandatory parameters are inherited from the peer group If you specify acquire all all of the parameters of the peer group are inherited This command disables the neighbor before adding it to the peer group Example The following command creates a new neighbor and makes it part of the peer group external create bgp nei...

Page 1092: ...onsider an IBGP peer otherwise the neighbor is an EBGP peer The BGP session to a newly created peer is not started until the enable bgp neighbor command is issued Example The following command creates a new BGP peer create bgp neighbor 192 168 1 17 remote AS 65001 History This command was available in ExtremeWare 6 2 Platform Availability This command is available on all i series platforms ip addr...

Page 1093: ... of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Each BGP peer group is assigned a unique name when the peer group is created Example The following command creates a new peer group named external create bgp peer group external History This com...

Page 1094: ...A Usage Guidelines Use this command to delete one or all BGP neighbors Example The following command deletes the specified BGP neighbor delete bgp neighbor 192 168 1 17 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all i series platforms ip address Specifies the IP address of the BGP neighbor to be deleted all Specifies all neighbors...

Page 1095: ...p Syntax Description Default N A Usage Guidelines Use this command to delete a specific BGP peer group Example The following command deletes the peer group named external delete bgp peer group external History This command was available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms peer group Specifies a peer group ...

Page 1096: ...tax Description This command has no arguments or variables Default N A Usage Guidelines Use this command to disable BGP on the router Example The following command disables BGP disable bgp History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1097: ...eral routes so that they are advertised as a single route Aggregation reduces the amount of information that a BGP speaker must store and exchange with other BGP speakers Reducing the information that is stored and exchanged also reduces the size of the routing table Use this command to disable BGP route aggregation Example The following command disables BGP route aggregation disable bgp aggregati...

Page 1098: ...ommand has no arguments or variables Default Enabled Usage Guidelines MED is only used when comparing paths from the same AS Use this command to disable the MED from being used when selecting a route Example The following command disables MED from being used in the route selection algorithm disable bgp always compare med History This command was first available in ExtremeWare 6 1 Platform Availabi...

Page 1099: ...and upload commands Syntax Description Default N A Usage Guidelines Using this command communities are displayed as a single decimal value Example The following command disables the AS number number format of display for communities disable bgp community format AS number number History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all i seri...

Page 1100: ... Origin and Local Preference with the routes Route maps can also be used to filter out exported routes Using the export command to redistribute routes complements the redistribution of routes using the config bgp add network command The config bgp add network command adds the route to BGP only if the route is present in the routing table The enable bgp export command redistributes an individual ro...

Page 1101: ...owing command disables BGP from exporting routes from the OSPF protocol to BGP peers disable bgp export ospf History This command was first available in ExtremeWare 6 1 The IS IS options were added in ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms ...

Page 1102: ...lines After the session has been disabled all the information in the route information base RIB for the neighbor is flushed Example The following command disables the BGP session disable bgp neighbor 192 1 1 17 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ip address Specifies an IP address all Specifies all ne...

Page 1103: ... remote AS does not have officially allocated AS numbers You want to conserve AS numbers if you are multi homed to the local AS Private AS numbers should not be advertised on the Internet Private AS numbers can only be used locally within an administrative domain Therefore when routes are advertised out to the Internet the private AS number can be stripped out from the AS paths of the advertised r...

Page 1104: ... Usage Guidelines Disabling the soft input reset feature can potentially limit the amount of system memory consumed by the RIB in Example The following command disables the soft input reset feature disable bgp neighbor 192 168 1 17 soft in reset History This command was available in ExtremeWare 6 2 Platform Availability This command is available on all i series platforms all Specifies all neighbor...

Page 1105: ...parameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command disables the BGP peer group external and all of its neighbors disable bgp peer group external History This command was available in ExtremeWare 6 1 5 Plat...

Page 1106: ...efault Enabled Usage Guidelines When enabled BGP waits for IGP to provide the exact same IP route before installing the route into the local fowarding database and advertising the route to an external neighbor Example The following command disables the synchronization between BGP and IGP disable bgp synchronization History This command was first available in ExtremeWare 6 2 Platform Availability T...

Page 1107: ...Default Not enabled Usage Guidelines This command enables the Border Gateway Protocol BGP on the router Before invoking this command the local AS number and BGP router ID must be configured Example The following command enables BGP enable bgp History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1108: ...hange with other BGP speakers Reducing the information that is stored and exchanged also reduces the size of the routing table To use BGP route aggregation follow these steps 1 Enable aggregation using the following command enable bgp aggregation 2 Create an aggregate route using the following command config bgp add aggregate address ip address masklength as set as match summary only advertise rou...

Page 1109: ...s no arguments or variables Default Enabled Usage Guidelines MED is only used when comparing paths from the same AS A MED value of zero is treated as the lowest MED and therefore the most preferred route Example The following command enables BGP to use the Multi Exit Discriminator MED from neighbors in different autonomous systems in the route selection algorithm enable bgp always compare med Hist...

Page 1110: ...load commands Syntax Description Default N A Usage Guidelines If not enabled the communities are displayed as a single decimal value Example The following command enables the AS number number format of display for communities enable bgp community format AS number number History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all i series platf...

Page 1111: ...d Local Preference with the routes Route maps can also be used to filter out exported routes Using the export command to redistribute routes complements the redistribution of routes using the config bgp add network command The config bgp add network command adds the route to BGP only if the route is present in the routing table The enable bgp export command redistributes an individual route from t...

Page 1112: ...lowing command enables BGP to export routes from the OSPF protocol to BGP peers enable bgp export ospf History This command was first available in ExtremeWare 6 1 The IS IS options were added in ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms ...

Page 1113: ...f the peer group The peer group must have remote AS configured To add an existing neighbor to a peer group use the following command config bgp neighbor ip address all peer group peer group acquire all If you do not specify acquire all only the mandatory parameters are inherited from the peer group If you specify acquire all all of the parameters of the peer group are inherited This command disabl...

Page 1114: ...oes not have officially allocated AS numbers You want to conserve AS numbers if you are multi homed to the local AS Private AS numbers should not be advertised on the Internet Private AS numbers can only be used locally within an administrative domain Therefore when routes are advertised out to the Internet the routes can be stripped out from the AS paths of the advertised routes using this featur...

Page 1115: ...efault N A Usage Guidelines Disabling the soft input reset feature can potentially limit the amount of system memory consumed by the RIB in Example The following command enables the soft recognition feature enable bgp neighbor 192 168 1 17 soft in reset History This command was available in ExtremeWare 6 2 Platform Availability This command is available on all i series platforms all Specifies all ...

Page 1116: ...ers of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next hop self Example The following command enables the BGP peer group external and all its neighbors enable bgp peer group external History This command was available in ExtremeWare 6 1 5 Platform Availab...

Page 1117: ...mand has no arguments or variables Default Enabled Usage Guidelines When enabled BGP waits for IGP to provide the exact same route before advertising the BGP route to an external neighbor Example The following command enables synchronization between BGP and IGP enable bgp synchronization History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on ...

Page 1118: ...bles Default N A Usage Guidelines Displays information such as AS number router ID local preference sync flag route reflection cluster ID confederation ID and AS redistributed networks Example The following command displays BGP configuration information show bgp History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1119: ...hat only flap statistics should be displayed for route flap dampening enabled routes received routes Specifies that only received routes should be displayed rejected routes Specifies that only rejected routes should be displayed suppressed routes Specifies that only suppressed routes should be displayed for route flap dampening enabled routes transmitted routes Specifies that only transmitted rout...

Page 1120: ... IN AS Path Filter None OUT AS Path Filter None IN ROUTE MAP None OUT ROUTE MAP None State IDLE Reached maximum prefix limit RemoteAddr 10 10 10 10 179 LocalAddr 10 10 10 51 1024 PeerRtrId 0 0 0 0 InUpdates 26549 OutUpdates InQ 0 0 InTotalMsgs 26559 OutTotalMsgs 9 InUpdateElapsedTime 0 0 00 20 InMsgElapsedTime 0 0 00 20 InPrefix 0 HoldTime 180 KeepAlive 60 FsmTransitions 1 RestartAfter 0 04 43 FSM...

Page 1121: ...nt from the ones that are configured in the peer group will be displayed If no peer group name is specified all the peer group information will be displayed Example The following command displays the peer groups configured in the system show bgp peer group detail History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on all i series platforms ...

Page 1122: ...ommand displays the BGP route information base RIB show bgp routes all History This command was available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms all Specifies all routes as path expression Specifies an AS path number Specifies a community number detail Specifies to display the information in detailed format ip address Specifies an IP address ma...

Page 1123: ...eries the multicast group to see if the group is still in use If the group is still active a single IP host responds to the query and group registration is maintained IGMP is enabled by default on the switch However the switch can be configured to disable the generation of period IGMP query packets IGMP query should be enabled when the switch is configured to perform IP unicast or IP multicast rou...

Page 1124: ...wing command config pim crp static rp address When a router has a multicast packet to distribute it encapsulates the packet in a unicast message and sends it to the RP The RP decapsulates the multicast packet and distributes it among all member routers When a router determines that the multicast rate from of a particular group from a particular originating router not the RP has exceeded a configur...

Page 1125: ...tion Default Enabled Usage Guidelines This command can be used by network operations to manually remove IGMP group entries instantly Example The following command clears IGMP groups from VLAN accounting clear igmp group accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 1126: ...command can be used by network operations to manually remove IGMP snooping entries instantly However removing an IGMP snooping entry can disrupt the normal forwarding of multicast traffic Example The following command clears IGMP snooping from VLAN accounting clear igmp snooping accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all ...

Page 1127: ...ons are specified all IP multicast cache entries are flushed Usage Guidelines None Example The following command resets the IP multicast table for group 224 1 2 3 clear ipmc cache 224 1 2 3 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms IP multicast groupgroup Specifies a group address source IP address Specifies a source IP a...

Page 1128: ... Guidelines If no options are specified all IP multicast forwarding database entries are cleared Example The following command resets the IP multicast forwarding database entry clear ipmc fdb group 10 0 0 1 sender 10 0 0 2 24 History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms ipaddress Specifies a group IP address ipaddress ...

Page 1129: ...Disabled Usage Guidelines If all is specified DVMRP is enabled on all IP interfaces When an IP interface is created DVMRP is disabled by default Example The following command enables DVMRP on the VLAN accounting config dvmrp add vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all ...

Page 1130: ...ces Syntax Description Default Disabled Usage Guidelines If all is specified DVMRP is disabled on all IP interfaces Example The following command disables DVMRP on the VLAN accounting config dvmrp delete vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all VLANs ...

Page 1131: ... expiration of the route report interval route replacement time The route expiration time commonly called route timeout Initially it is 2 x route report interval 20 2 x 60 20 140 It is the time for a particular DVMRP route to expire while the route hold down time is initially 2 x route report interval 2 x 60 120 which is the time before a route gets removed from advertisement after it has been exp...

Page 1132: ...x Description Default The default setting is 1 Usage Guidelines None Example The following command configures the cost metric of the interface on the VLAN accounting config dvmrp vlan accounting cost 5 History This command was available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all VLANs cost Specifies a cost m...

Page 1133: ...nd to filter out certain routes when performing the route advertisement The filtered routes are specified in an access profile Example The following command configures DVMRP to filter out routes according to the nosales access profile config dvmrp vlan accounting export filter nosales History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all...

Page 1134: ...lines Use this command to filter out certain routes when accepting routes from its neighbors The filtered routes are specified in an access profile Example The following command configures DVMRP to use the nosales access profile to determine which DVMRP routes are to accept config dvmrp vlan accounting import filter nosales History This command was first available in ExtremeWare 4 0 Platform Avail...

Page 1135: ... Using this command to specify trusted versus non trusted neighbors Example The following command configures DVMRP to use the nosales access policy to determine which DVMRP neighbor is trusted and to receive routes from config dvmrp vlan accounting trusted gateway nosales History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vl...

Page 1136: ... is 1 to 2 147 483 647 seconds 68 years The default setting is 10 seconds neighbor timeout The amount of time before a DVMRP neighbor router is declared to be down The range is 1 to 2 147 483 647 seconds 68 years The default setting is 35 seconds 3 5 probe interval Example The following command configures the DVMRP timers config dvmrp vlan accounting timer 3000 3000 History This command was first ...

Page 1137: ...29 496 729 seconds query response interval The maximum response time inserted into the periodic general queries The range is 1 to 25 seconds last member query interval The maximum response time inserted into a group specific query sent in response to a leave group message The range is 1 to 25 seconds Example The following command configures the IGMP timers config igmp 100 5 1 History This command ...

Page 1138: ...nto the access profile a 32 bit host address is recommended This feature is meant to solve the multicast connectivity problem for unknown destination addresses within system reserved ranges Specifically this feature was introduced to solve the problem of recognizing certain stream as control packets NOTE The switch will not validate any IP address in the access profile used in this command Therefo...

Page 1139: ...24 1 0 1 32 The following command configures the multicast data stream specified in access1 for slow path flooding config igmp snooping flood list access1 The following command specifies that no access profile is to be used this effectively disabling slow path flooding config igmp snooping flood list none History This command was first available in ExtremeWare 6 2 Platform Availability This comman...

Page 1140: ...a multiple of 100 ms For values of more than one second you must set the leave timout to a multiple of 1000 ms one second The specified time is the maximum leave timeout value The switch could leave sooner if an IGMP leave message is received before the timeout occurs Example The following command configures the IGMP snooping leave timeout config igmp snooping leave timeout 10000 History This comm...

Page 1141: ... usage of network bandwidth and prevents multicast traffic from being flooded to parts of the network that do not need it The switch does not reduce any IP multicast traffic in the local multicast domain 224 0 0 x IGMP snooping is enabled by default on the switch If you are using multicast routing IGMP snooping can be enabled or disabled in versions of ExtremeWare previous to 7 0 0 IGMP snooping m...

Page 1142: ...1142 ExtremeWare Software 7 0 0 Command Reference Guide IP Multicast Commands Platform Availability This command is available on all platforms ...

Page 1143: ... and sparse mode operation You can configure dense mode or sparse mode on a per interface basis After they are enabled some interfaces can run dense mode while others run sparse mode Example The following command enables PIM DM multicast routing on VLAN accounting config pim add vlan accounting dense History This command was first available in ExtremeWare 4 0 Platform Availability This command is ...

Page 1144: ...s the lowest priority Usage Guidelines The VLAN specified for CBSR must have IP forwarding enabled for PIM sparse mode Example The following command configures a candidate bootstrap router on the VLAN accounting config pim cbsr vlan accounting 30 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms vlan name Specifies a VLAN n...

Page 1145: ...sible for receiving and distributing multicast packets If you use a static RP all switches in your network must be configured with the same RP address The access profile contains a list of multicast group accesses served by this RP Example The following command configures an RP address and its associated groups statically config pim crp static 10 0 3 1 HQ_10_0_3 History This command was first avai...

Page 1146: ...e operation Syntax Description Default The default is 60 seconds Usage Guidelines None Example The following command configures the candidate rendezvous point advertising interval to 120 seconds config pim crp timer 120 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms crp advertisement interval Specifies a candidate rendez...

Page 1147: ...ced by this RP To delete a CRP use the keyword none as the access policy The VLAN specified for CBSR must have ipconfig enabled for PIM sparse mode Example The following command configures the candidate rendezvous point for PIM sparse mode operation on the VLAN HQ_10_0_3 with the access profile rp list and priority set to 30 config pim crp HQ_10_0_3 rp list 30 History This command was available in...

Page 1148: ...les PIM on an interface Syntax Description Default N A Usage Guidelines None Example The following command disables PIM DM on VLAN accounting config pim delete vlan accounting History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all VLANs ...

Page 1149: ...non zero value is configured the first hop switch would send register mseeages only at time second intervals The default value is zero which sends continous register messages This command takes effect only until the register stop message is not received in other words when the register suppression timer is not running Example The following command configures the initial PIM register rate limit int...

Page 1150: ...ent every 55 seconds register suppress interval register probe interval A response to the null register is expected within register probe interval By specifying a larger interval a CPU peak load can be avoided because the null registers are generated less frequently Example The following command configures the register suppress interval and register probe time config pim register suppress interval...

Page 1151: ... to exclude data for RFC compliant operation in the register message Syntax Description Default Include data Usage Guidelines None Example The following command configures the checksum mode to include data for compatibility with Cisco Systems products config pim register checksum to include data History This command was first available in ExtremeWare 6 1 Platform Availability This command is avail...

Page 1152: ...ting is 0 Usage Guidelines For the best performance leveraged by hardware forwarding use default value 0 0 or small values below 16 From release 6 2 2 onwards since the RP learns the source address from the register message the RP threshold has no effect Example The following command sets the threshold for switching to SPT config pim spt threshold 4 16 History This command was first available in E...

Page 1153: ...ines None Example The following command configures the global PIM timers on the VLAN accounting config pim timer 150 300 vlan accounting History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms hello interval Specifies the amount of time before a hello message is sent out by the PIM router The range is 1 to 65 519 seconds join pru...

Page 1154: ... nature different When the PIM protocol is used for routing IP multicast traffic the switch can be configured to use an access profile to determine trusted PIM router neighbors for the VLAN on the switch running PIM Example The following command configures a trusted neighbor policy on the VLAN backbone config pim vlan backbone trusted gateway nointernet History This command was first available in ...

Page 1155: ...les DVMRP on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables DVMRP on the system disable dvmrp History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 1156: ...ackets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command disables the receive capability of DVMRP packets on the VLAN accounting disable dvmrp rxmode vlan accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all VLANs ...

Page 1157: ...MRP packets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command disables the transmit capability of DVMRP packets on the VLAN accounting disable dvmrp txmode vlan accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all ...

Page 1158: ...multicast group to see if the group is still in use If the group is still active hosts respond to the query and group registration is maintained IGMP is enabled by default on the switch However the switch can be configured to disable the generation and processing of IGMP packets IGMP should be enabled when the switch is configured to perform IP unicast or IP multicast routing Example The following...

Page 1159: ...r only changes the mode so that all multicast traffic is forwarded to any IP router If not in the forward mcrouter mode the command disable igmp snooping forward mcrouter only has no effect To change the snooping mode you must disable IP multicast forwarding Use the command disable ipmcforwarding Example The following command disables IGMP snooping on the VLAN accounting disable igmp snooping acco...

Page 1160: ...bleshooting purpose It should be enabled for normal network operation Enabling the proxy allows the switch to suppress the duplicate join requests on a group to forward to the connected layer 3 switch The proxy also suppresses unnecessary IGMP leave messages so that they are forwarded only when the last member leaves the group Example The following command disables the IGMP snooping proxy disable ...

Page 1161: ...ticast forwarding is disabled by default IP forwarding must be enabled before enabling IP multicast forwarding and IP multicast forwarding must be disabled before disabling IP forwarding Disabling IP multicast forwarding disables any layer 3 forwarding for the streams coming to the interface Example The following command disables IP multicast forwarding on the VLAN accounting disable ipmcforwardin...

Page 1162: ...ables PIM on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables PIM on the system disable pim History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 1163: ...es DVMRP on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables DVMRP on the system enable dvmrp History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 1164: ...ackets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command enables the receive capability of DVMRP packets on the VLAN accounting enable dvmrp rxmode vlan accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all VLANs ...

Page 1165: ...RP packets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command enables the transmit capability of DVMRP packets on the VLAN accounting enable dvmrp txmode vlan accounting History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name all Specifies all VLA...

Page 1166: ...cast group to see if the group is still in use If the group is still active IP hosts respond to the query and group registration is maintained IGMP is enabled by default on the switch However the switch can be configured to disable the generation and processing of IGMP packets IGMP should be enabled when the switch is configured to perform IP unicast or IP multicast routing Example The following c...

Page 1167: ... mode you must disable IP multicast forwarding To disable IP multicast forwarding use the command disable ipmcforwarding To change the IGMP snooping mode from the forward mcrouter only mode to the non non forward mcrouter only mode use the command disable igmp snooping forward mcrouter only The snooping mode is not changed from the non forward mcrouter only mode to the forward mcrouter only mode s...

Page 1168: ...1168 ExtremeWare Software 7 0 0 Command Reference Guide IP Multicast Commands History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 1169: ...twork operation The command does not alter the snooping setting IP multicast forwarding should be disabled globally for this command Enabling the proxy allows the switch to suppress the duplicate join requests on a group to forward to the connected layer 3 switch The proxy also suppresses unnecessary IGMP leave messages so that they are forwarded only when the last member leaves the group Example ...

Page 1170: ...d IP interfaces are affected When new IP interfaces are added IPMC forwarding is disabled by default IP forwarding must be enabled before enabling IPMC forwarding and IPMC forwarding must be disabled before disabling IP forwarding Example The following command enables IPMC forwarding on the VLAN accounting enable ipmcforwarding vlan accounting History This command was available in ExtremeWare 2 0 ...

Page 1171: ...PIM on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables PIM on the system enable pim History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 1172: ...oup 168 192 2 4 run ipmcfdb check 168 192 2 4 195 1 1 100 vlan lab1 extended detail History This command was first available in ExtremeWare 6 1 9 Platform Availability This command is available on all i series platforms bucket Specifies the bucket portion of the FDB hash index entry Specifies the entry portion of the FDB hash index IP multicast group Specifies a multicast group FDB entries with th...

Page 1173: ...Description Default All Usage Guidelines None Example The following command displays the DVMRP configuration and statistics for the VLAN accounting show dvmrp vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name route Specifies a route detail Specifies to display the information in det...

Page 1174: ...VLANs are displayed You can also filter the display by group address and by multicast stream sender address Example The following command lists the IGMP group membership for the VLAN accounting show igmp group 10 0 0 1 sender 10 0 0 2 accounting History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms group ip address Specifies a ...

Page 1175: ...entry are sender entry and subscribed entry The following information is displayed in a per interface format Group membership information Router entry Timeout information Example The following command displays IGMP snooping registration information on the VLAN accounting show igmp snooping vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is a...

Page 1176: ... VLAN port to upstream neighbor Cache expiry time Routing protocol When the detail option is specified the switch displays the egress VLAN list and the pruned VLAN list Example The following command displays the IP multicast table for group 224 1 2 3 show ipmc cache 224 1 2 3 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms deta...

Page 1177: ... N A Usage Guidelines If the group address is specified only the IP multicast FDB entries corresponding to the group address are displayed Example The following command displays the IP multicast forwarding database show ipmc fdb History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms ip address Specifies an IP group address ...

Page 1178: ...d switched and snooped Syntax Description Default N A Usage Guidelines None Example The following command displays the counters for the number of packets bridged switched and snooped for the VLAN accounting show l2stats accounting History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 1179: ...pecified for the rp set option Rendezvous Point set all groups are displayed Usage Guidelines None Example The following command displays the PIM configuration and statistics for the VLAN accounting show pim accounting History This command was first available in ExtremeWare 4 0 The rp set option was added in ExtremeWare 6 1 Platform Availability This command is available on all platforms detail Sp...

Page 1180: ...default settings Syntax Description Default If no VLAN is specified all interfaces are reset Usage Guidelines None Example The following command resets all DVMRP timers on VLAN accounting unconfig dvmrp vlan accounting History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 1181: ...lears the IGMP group table Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets all IGMP settings to their default values and clears the IGMP group table unconfig igmp History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms ...

Page 1182: ... values Syntax Description Default If no VLAN is specified the configuration is reset for all PIM interfaces Usage Guidelines None Example The following command resets all PIM settings on the VLAN accounting unconfig pim vlan accounting History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms vlan name Specifies a VLAN name ...

Page 1183: ... traffic between IPX router interfaces A router interface is simply a VLAN that has an IPX network identifier NetID and IPX encapsulation type assigned to it As you create VLANs with different IPX NetIDs the switch automatically routes between them Both the VLAN switching and IPX routing function occur within the switch NOTE A VLAN can be configured with either an IPX NetID or an IP address A VLAN...

Page 1184: ...fault The default setting is 16 Usage Guidelines Change the default number only if NetWare Link Services Protocol NLSP is running in the IPX network Example The following command configures a maximum IPX hop count of 24 config ipxmaxhops 24 History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems number Specifies a hop ...

Page 1185: ... is enabled by default when you configure the IPX VLAN Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command configures IPX VLAN backbone to run IPX RP config ipxrip add vlan backbone History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a ...

Page 1186: ... Description Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command disables IPX RIP on VLAN backbone config ipxrip delete vlan backbone History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name all Specifies all VLANs ...

Page 1187: ...The default setting is 55 milliseconds Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command configures a delay of 80 milliseconds config ipxrip vlan accounting delay 80 History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name all ...

Page 1188: ...the export filter will be added to the IPX route table Example The following command assigns an export route filter to ingress VLAN accounting config ipxrip vlan accounting export filter my profile History This command was introduced in ExtremeWare 4 0 access profiles modified in version 6 1 5b20 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN...

Page 1189: ... matching the import filter will be added to the IPX route table Example The following command assigns an import route filter to ingress VLAN accounting config ipxrip vlan accounting import filter my profile History This command was introduced in ExtremeWare 4 0 access profiles modified in version 6 1 5b20 Platform Availability This command is available on the all i series systems vlan name Specif...

Page 1190: ...ult setting is 432 bytes Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command configures an MTU size of 128 for the IPX RIP packet config ipxrip vlan accounting max packet size 128 History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VL...

Page 1191: ...vices matching the trusted gateway are advertised on the egress VLAN Example The following command assigns export route filter smith to VLAN accounting config ipxrip vlan accounting trusted gateway access_profile History This command was introduced in ExtremeWare 4 0 access profiles modified in version 6 1 5b20 Platform Availability This command is available on all platforms vlan name Specifies a ...

Page 1192: ...and the aging interval of learned routes The aging period is calculated using the formula update interval multiplier Example The following command configures the IPX RIP updates for an update interval of 30 seconds and a hold multiplier of 2 for VLAN accounting config ipxrip vlan accounting update interval 30 hold multiplier 30 History This command was introduced in ExtremeWare 4 0 Platform Availa...

Page 1193: ...tic routes are never aged out of the routing table Static routes are advertised to the network using IPX RIP Example The following command adds a static IPX route entry to the IPX route table config ipxroute add default 0011 00 eb 2a 0b 1e 0a History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems dest_netid Specifies the d...

Page 1194: ...f whether the VLAN or VLAN IP address that used them remains You should manually delete the routes if no VLAN IP address is capable of using them Example The following command deletes a static IPX route entry to the IPX route table config ipxroute delete default 0011 00 eb 2a 0b 1e 0a History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all ...

Page 1195: ... no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command configures the IPX VLAN accounting to run IPX SAP routing config ipxsap add vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan na...

Page 1196: ...f no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command disables IPX SAP on VLAN accounting config ipxsap delete vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLA...

Page 1197: ...s If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command sets the time between each SAP packet to 40 milliseconds for VLAN accounting config ipxsap vlan accounting delay 40 History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the ...

Page 1198: ...ng the export filter will be added to the IPX route table Example The following command assigns an export route filter to ingress VLAN accounting config ipxsap vlan accounting export filter none History This command was introduced in ExtremeWare 4 0 access profiles modified in version 6 1 5b20 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN na...

Page 1199: ... ID matching the import filter will be added to the IPX route table Example The following command assigns an import route filter to ingress VLAN accounting config ipxsap vlan accounting import filter none History This command was introduced in ExtremeWare 4 0 access profiles modified in version 6 1 5b20 Platform Availability This command is available on the all i series systems vlan name Specifies...

Page 1200: ...VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command configures an MTU size of 356 bytes for the IPX SAP packets on VLAN accounting config ipxsap vlan accounting max packet size 356 History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series syst...

Page 1201: ...ervices matching the trusted gateway are advertised on the egress VLAN Example The following command assigns an export SAP service filter named smith to VLAN accounting config ipxsap vlan accounting trusted gateway smith History This command was introduced in ExtremeWare 4 0 access profiles modified in version 6 1 5b20 Platform Availability This command is available on all platforms vlan name Spec...

Page 1202: ...aging period is calculated using the formula update interval multiplier The default multiplier is 3 Triggered update is always enabled therefore new information is processed and propagated immediately Example The following command configures an update interval of 30 seconds and a hold multiplier of 2 for the IPX SAP updates for VLAN accounting config ipxsap vlan accounting update interval 30 hold ...

Page 1203: ...s possible 0 milliseconds Usage Guidelines If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command sets a GNS delay time of 20 milliseconds on VLAN accounting config ipxsap vlan accounting gns delay 20 History This command was introduced in ExtremeWare 4 0 Platform Availability This ...

Page 1204: ...ing server chalk to the IPX service table with 0004 as SAP for a file server 00 AO C9 17 22 F5 as the MAC address 0451 as the socket number for a connection request and 3 as the number of hops to the server config ipxservice add chalk 0004 00 AO C9 17 22 F5 0451 3 History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems serv...

Page 1205: ...ar function on the server Example The following command deletes non advertising server chalk from the IPX service table with 0004 as SAP for a file server 00 AO C9 17 22 F5 as the MAC address 0451 as the socket number for a connection request and 3 as the number of hops to the server config ipxservice delete chalk 0004 00 AO C9 17 22 F5 0451 History This command was introduced in ExtremeWare 4 0 P...

Page 1206: ...ries systems vlan name Specifies a VLAN name netid Specifies the IPX network identifier of the server enet_ii Specifies an Ethernet 2 header enet_8023 Specifies the IEEE 802 3 length field enet_8022 Specifies and IEEE format and includes the IEEE 802 2 LLC header enet_snap Specifies to add SNAP header to the IEEE 802 2 LLC header Table 24 ENET_II The frame uses the standard Ethernet 2 header ENET_...

Page 1207: ...Description This command has no arguments or variables Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following disables IPX RIP on the router disable ipxrip History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems ...

Page 1208: ...ents or variables Default N A Usage Guidelines If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following disables IPX SAP on the router disable ipxsap History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems ...

Page 1209: ...e switch the GNS reply service is automatically enabled When a station requests a particular service on the network for example locating a print server the station sends a GNS request and the switch responds to the request If GNS reply is disabled the switch drops the request Example The following command disables GNS reply on IPX VLAN accounting disable ipxsap gns reply vlan accounting History Th...

Page 1210: ...s Syntax Description Default Enabled Usage Guidelines Type 20 packets are NetBIOS inside IPX Example The following command disables the forwarding of IPX type 20 packets for VLAN accounting disable type20 forwarding vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name ...

Page 1211: ...iption This command has no arguments or variables Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command enables IPX RIP on the router enable ipxrip History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems ...

Page 1212: ... or variables Default N A Usage Guidelines If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command enables IPX SAP on the router enable ipxsap History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems ...

Page 1213: ... Description Default The default setting is enabled Usage Guidelines If no VLAN is specified GNS reply is enabled on all IPX interfaces Example The following command enables GNS reply for IPX VLAN accounting enable ipxsap gns reply vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a...

Page 1214: ...s Syntax Description Default Enabled Usage Guidelines Type 20 packets are NetBIOS inside IPX Example The following command enables the forwarding of IPX type 20 packets for VLAN accounting enable type20 forwarding vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name ...

Page 1215: ... IP protocol It displays summary global IPX configuration information followed by per VLAN information Information includes enable disable status for IPX RIP IPX SAP IPX route sharing IPX service sharing and so on Example The following command displays the IPX configuration information for VLAN accounting show ipxconfig vlan accounting History This command was introduced in ExtremeWare 4 0 Platfor...

Page 1216: ...ccess control MAC addresses received on all of its ports It uses the information in the FDB to decide whether a frame should be forwarded or filtered Example The following command displays the hardware IPX FDB information for VLAN accounting show ipxfdb vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems...

Page 1217: ...P displayed includes operational and administrative status It also lists any identified IPX RIP neighbors RIP packet statistics and several other timer settings Example The following command displays the IPX RIP configuration information and statistics for VLAN accounting show ipxrip vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is availa...

Page 1218: ...te add command IPX RIP is automatically enabled when a NetID is assigned to the VLAN To remove the advertisement of an IPX VLAN use the config ipxrip delete command Example The following command displays the IPX routes in the route table for VLAN accounting show ipxroute vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the al...

Page 1219: ...ational and administrative status including the GNS reply service It also lists any identified IPX SAP neighbors SAP packet statistics and several other timer settings Syntax Description Default N A Usage Guidelines None History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name ...

Page 1220: ...ormation is entered into the IPX Service Table in one of the following two ways Dynamically by way of SAP Statically using the config ipxservice add command Example The following command displays IPX SAP service information for VLAN accounting show ipxservice vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series s...

Page 1221: ...or all VLANs Syntax Description Default All VLANs Usage Guidelines Displays both RIP and SAP packet statistics Example The following command displays IPX packet statistics for VLAN accounting show ipxstats vlan accounting History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name ...

Page 1222: ... the default Syntax Description Default N A Usage Guidelines Removes import and export filters and resets the MTU size update interval and inter packet delay Example The following command unconfig ipxrip vlan backbone History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name ...

Page 1223: ...on Default N A Usage Guidelines Removes import and export filters and resets the MTU size update interval and inter packet delay Example The following command resets the IPX SAP settings on VLAN backbone to the defaults unconfig ipxsap vlan backbone History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies...

Page 1224: ...escription Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command removes the IPX NetID of VLAN accounting unconfig vlan accounting xnetid History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems vlan name Specifies a VLAN name ...

Page 1225: ...he default ping packet size is 256 data bytes The size range is between 1 and 1 484 bytes Example The following command pings IPX node 0010460 with a node address of 00 2b 2a 00 1c 0a xping 0010460 00 2b 2a 00 1c 0a History This command was introduced in ExtremeWare 4 0 Platform Availability This command is available on the all i series systems continuous Specifies that pings are to be sent contin...

Page 1226: ...1226 ExtremeWare Software 7 0 0 Command Reference Guide IPX Commands ...

Page 1227: ...ome routes and the ARM s longest prefix match for others This feature is called Selective LPM The second feature destination sensitive accounting collects statistics that are maintained for forwarded IP traffic to support billing on a destination basis To configure destination sensitive accounting a bin number can be assigned to one or more IP route entries using the ExtremeWare route map command ...

Page 1228: ... sensitive accounting configuration process as a general context for the detailed command description sections that follow In the most basic terms to enable the accounting function you must enable the accounting feature create a customer VLAN ID enable IP forwarding and configure the accounting bin using the route map feature You use a special set of commands to configure the ARM module to initiat...

Page 1229: ...nd has no arguments or variables Default N A Usage Guidelines None Example The following command clears zeroes out all of the accounting statistics clear accounting counters History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on ...

Page 1230: ...eter is an accounting bin number The bin_number parameter is an integer between 0 7 and allows you to define the accounting bin number Example The following command configures the accounting bin number to be associated with the specified route map entry config route map rt40 11 add set accounting index 1 value 5 History This command was first available in an ExtremeWare IP Technology Services Rele...

Page 1231: ...counting index 1 value ExtremeWare Software 7 0 0 Command Reference Guide 1231 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1232: ... iphost routing property is added to a route map packets are forwarded to the IP prefixes next hop using the hardware host based IP FDB The iphost routing keyword is only significant for routes learned on VLANs that are lpm routing enabled Example This command enables Selective LPM and specifies IP host routing on the route map lpm_map config lpm_map 20 add set iphost routing History This command ...

Page 1233: ...s If the lpm routing property is added to a route map packets are forwarded to the IP prefixes next hop by the ARM MPLS module using LPM routing The lpm routing keyword is only significant for routes learned on VLANs that are not lpm routing enabled Example This command enables Selective LPM and specifies lpm routing on the route map lpm_map config lpm_map 10 add set lpm routing History This comma...

Page 1234: ... traffic to support billing on a destination basis To configure destination sensitive accounting a bin number can be assigned to one or more IP route entries using the ExtremeWare route map command Example The following command disables the destination sensitive accounting function disable accounting History This command was first available in an ExtremeWare IP Technology Services Release based on...

Page 1235: ...ed for all configured VLANs except the management VLAN Specifying the lpm routing keyword for the disable command only disables LPM routing it does not disable IP forwarding By default lpm routing is not enabled on the VLAN when IP forwarding is enabled for example all VLANs perform host based IP routing by default Example This command configures LPM and IP host routing for the hop1 VLAN disable i...

Page 1236: ...bles Default Default is disabled Usage Guidelines None Example The following command disables the Selective LPM feature disable lpm History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1237: ...nfigure destination sensitive accounting a bin number can be assigned to one or more IP route entries using the ExtremeWare route map command Destination sensitive accounting LPM and SLB are mutually exclusive functions and cannot be simultaneously enabled Example The following command enables the destination sensitive accounting function enable accounting History This command was first available ...

Page 1238: ...f the vlan name parameter is omitted lpm routing is enabled for all configured VLANs except the management VLAN By default lpm routing is not enabled on the VLAN when IP forwarding is enabled for example all VLANs perform host based IP routing by default Example This command configures LPM and IP host routing for the hop2 VLAN enable ipforwarding lpm routing hop2 History This command was first ava...

Page 1239: ...e MSM CPU is used for slow path traffic When LPM is enabled slow path traffic is forwarded by the MPLS ARM module at a faster rate Also if LPM is enabled fast path traffic to specified vlans or route maps can be forwarded using longest prefix match on the module without installing IP FDB entries Example The following command enables the Selective LPM feature enable lpm History This command was fir...

Page 1240: ...ounting vlan name command The show accounting vlan name command lists the packet and octet counts for each bin number per VLAN Omitting the VLAN name displays the accounting statistics for all the VLANs Example The following command displays accounting statistics for the vlan1 VLAN show accounting vlan1 History This command was first available in an ExtremeWare IP Technology Services Release based...

Page 1241: ...cription This command has no arguments or variables Default N A Usage Guidelines Example History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1242: ...1242 ExtremeWare Software 7 0 0 Command Reference Guide ARM Commands ...

Page 1243: ...s cities then use ATM modules in a BlackDiamond 6800 series switch to connect those cities to a carrier s ATM infrastructure In the second application operators of server co location networks can use ATM modules in BlackDiamond 6800 series switches to create an ATM based connection between server co location sites The result is that their network is simpler to manage and problems can be isolated a...

Page 1244: ...efined in RFC 2648 1483 The encap parameter indicates the type of encapsulation that is to be used on the PVC for traffic from the associated VLAN The l2 keyword is an abbreviation for Layer 2 and indicates the LLC Encapsulation for Bridged Protocols defined in RFC 2684 The ip keyword indicates that the VLAN will carry only routed IP traffic and that the LLC Encapsulation for Routed Protocols defi...

Page 1245: ...Guide 1245 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1246: ...the PVC identified via the vpi and vci parameters for all PVCs defined for the specified VLAN s or port s The all keyword may be used as either a portlist parameter to indicate that the command should be applied to all ATM ports or all PVCs A PVC is completely deleted when there are no longer any VLANs configured for the PVC on a given ATM port NOTE All associated PVCs must be deleted before an AT...

Page 1247: ...e Guide 1247 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1248: ...ing is enabled by default Example The following command example turns off the scrambling function for port 1 of the ATM module installed in slot 8 of a BlackDiamond switch config atm scrambling off ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availabi...

Page 1249: ...tistics Table 26 describes the ATM receive statistics and Table 27 describes the ATM transmit statistics portlist Specifies list of ports or slots and ports May be in the form 1 2 3 5 2 5 2 6 2 8 Table 26 Summary of ATM Receive Statistics Receive Statistics Description Cells Received Number of cells received Cells OAM Number of Operations Administration and Maintenance OAM cells received Cells Dro...

Page 1250: ... available on the BlackDiamond switch only PDUs Dropped Oversized Number of PDUs discarded because they were too large PDUs Dropped Other PDUs dropped due to an invalid VLAN ID Spanning Tree Protocol STP state or invalid encapsulation Table 27 Summary of ATM Transmit Statistics Receive Statistics Description Cells Transmitted Number of cells transmitted Cells Dropped Congestion Number of cells dro...

Page 1251: ...arrow the range of status information the command displays otherwise the command displays the status information for all PVCs associated with all ATM ports By default the command displays a summary of status information for the specified PVC The summary of status information includes the following information for each PVC Port number VPI VCI VLAN IDs on this PVC Type of PVC L2 or IP Peer IP addres...

Page 1252: ...ion for a PVC configured on an ATM port in a BlackDiamond switch show atm pvc 5 101 port 1 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1253: ...tructure and interconnecting server co location network sites directly using SONET links In the first application the metropolitan area network service provider can build service network sites in various cities then use PoS modules in a BlackDiamond switch to connect those cities to a carrier s SONET infrastructure In the second application operators of server co location networks can use PoS modu...

Page 1254: ...ne service is restored only if no errors are detected on the working line during the WTR period The minutes parameter is an integer in the range 0 12 Conversely in nonrevertive mode traffic will remain on the protection line until either manual intervention or a failure on the protection line forces a switch back to the working line This parameter is only applicable to SONET ports performing the p...

Page 1255: ...ct of network outages on APS functionality It is important that the network connecting working and protection switches always has sufficient bandwidth to support APS control transfers In routing configurations the working line and the protection line should represent the same IP address from a neighboring PPP router s perspective When the working line and protection line reside in the same BlackDi...

Page 1256: ...0 0 Command Reference Guide PoS Commands History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1257: ...r an APS group reside in different BlackDiamond switches then the same string must be configured at both BlackDiamond switches for authentication to work properly The authentication string is used to validate APS control frames received over an Ethernet link If authentication fails the associated APS control frame is discarded Example The following command example enables APS authentication for gr...

Page 1258: ...om the APS group If you delete the working line from a group it causes a switch to the protection line however if you delete an active protection line from a group it does not initiate a switch to the working line Example The following command example deletes port 1 of the module installed in slot 8 of the BlackDiamond switch from APS group 1001 config aps 1001 delete 8 1 History This command was ...

Page 1259: ... forced switch request 1 a force off command 2 a lockout on command that was either in effect before the force command or issued after the force command or 3 a signal fail condition on the protection line This command is only applicable to SONET ports performing the protection line function Additionally the effects of this command are not preserved across a switch reboot Example The following comm...

Page 1260: ...t off This command is only applicable to SONET ports performing the protection line function Additionally the effects of this command are not preserved across a switch reboot Example The following command example turns on lockout mode for APS group 1001 config aps 1001 lockout on History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform A...

Page 1261: ...estore period to elapse A manual switch is a lower priority request than a forced switch events that can override a manual switch include 1 a manual off command 2 a force working or a force protection command 3 a lockout on command or 4 a signal fail or signal degrade line condition This command is only applicable to SONET ports performing the protection line function Additionally the effects of t...

Page 1262: ...ses parameter is an integer in the range 1 100 that controls the time interval the protection switch will wait before assuming that the working switch has failed If the working switch does not respond within consecutive_misses hello intervals or consecutive_misses seconds seconds then the protection switch assumes that the working switch has failed and initiates a line switch Example The following...

Page 1263: ...SCP of a packet received from the SONET link is replaced with an output DSCP before the packet is forwarded The replacement is straightforward the input DSCP is used as an index into a 64 entry table that contains the output DSCPs associated with each of the input DSCP values The operation is similar in the egress direction with the DSCP mapping occurring before the packet is transmitted onto the ...

Page 1264: ... to apply to the egress direction and a symmetrical mapping with the input_codepoint and output_codepoint reversed is automatically configured in the ingress direction Example The following command example configures the congested state mappings for DSCPs 10 AF11 config diffserv dscp mapping 10 12 egress congestion History This command was first available in an ExtremeWare IP Technology Services R...

Page 1265: ...ates that the mapping is to be applied to input frames received from the PoS link The mappings are applied following classification to a QoS profile Frames containing the specified input_vlanid are altered such that the VLAN ID is set to the specified output_vlanid before the frame is forwarded The tables also allow the option of preserving the 802 1p priority or overwriting the priority field wit...

Page 1266: ...N ID 30 and output VLAN ID 130 for port 1 of the module installed in slot 8 for the input frames from the PPP link config dot1q tagmapping 30 130 port 8 1 ingress History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1267: ... the specified vlanid or one of the VLAN IDs in the specified vlanid_range The syntax of the vlanid_range parameter is start_vlanid end_vlanid Omission of the vlanid vlanid_range parameter indicates that the command settings should be applied to all VLAN IDs For push operations the new tag added to frames contains the specified new_vlanid The pop keyword indicates that the top level tag is to be r...

Page 1268: ...ain a VLAN tag The tag nesting operations are applied after classification to a QoS profile The default PPP MRU is sufficient for a single level of tag nesting where the frame contains two VLAN tags between two Extreme switches jumbo frame support must be enabled if higher levels of VLAN tag nesting are needed The DiffServ RED functions are not performed by PoS ports when frames contain nested tag...

Page 1269: ...orted NetFlow datagrams are distributed across the available destinations This NetFlow distribution feature enables a scalable collection architecture that is able to accommodate high volumes of exported data The distribution algorithm ensures that all the records for a given flow are exported to the same collector The algorithm also ensures that flow records for both the ingress and egress direct...

Page 1270: ...1270 ExtremeWare Software 7 0 0 Command Reference Guide PoS Commands Platform Availability This command is available on the BlackDiamond switch only ...

Page 1271: ...datagrams are distributed across the available destinations This NetFlow distribution feature enables a scalable collection architecture that is able to accommodate high volumes of exported data The distribution algorithm ensures that all the records for a given flow are exported to the same collector The algorithm also ensures that flow records for both the ingress and egress directions of a TCP ...

Page 1272: ...1272 ExtremeWare Software 7 0 0 Command Reference Guide PoS Commands Platform Availability This command is available on the BlackDiamond switch only ...

Page 1273: ... Use this keyword to specify that the filter being defined in the command is one of the eight filters to be applied to ingress flows egress Use this keyword to specify that the filter being defined in the command is one of the eight filters to be applied to egress flows filterspec Each filter is defined using a value filtermask pair for each of the five components in the following sequence des tin...

Page 1274: ...omponents can be configured with a single command The filterspec parameter also supports the match all flows and match no flows keywords The match all flows keyword adjusts the settings such that the filter matches any flow that is the value filtermask pairs are set to 0 0 for all the 5 tuple components while the match no flows keyword adjusts the settings such that the filter does not match any f...

Page 1275: ...tFlow datagrams to identify the switch that sent the information It is recommended that the configured ip address be associated with a VLAN that has loopback mode enabled Example The following command example specifies that the IP address 192 168 100 1 is to be used as the source IP address for exported NetFlow datagrams config flowstats source ipaddress 192 168 100 1 History This command was firs...

Page 1276: ...onfigured on the port BCP and IPCP should be off Furthermore the port should be the only port in a VLAN and a MPLS TLS tunnel should be configured for this VLAN The payload inside HDLC could be PPP or some other HDLC encapsulated protocol SONET APS automatic protection switching is supported between tunneled PoS ports on the same module or different modules in the same switch APS for tunneled port...

Page 1277: ...P address configuration option for example Juniper routers If the peer router does advertise an IP address via IPCP the configured peer ipaddress is ignored BCP enables Ethernet MAC frames to be transported across a PPP link Thus any protocol can be transported across a BCP connection Essentially BCP enables the PPP link to appear as an Ethernet LAN segment to the rest of the switch Therefore the ...

Page 1278: ...llowing command example configures BCP on the PPP port and applies to a PoS module installed in slot 1 of a BlackDiamond switch config ppp bcp off port 1 4 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond switch only A similar command is available on the Alpine switch ...

Page 1279: ... pap indicates that either CHAP or PAP may be used to authenticate the peer Example The following command example turns on CHAP authentication for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config ppp authentication chap ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This comm...

Page 1280: ... to recover from the link failure fast enough that there is no need to perturb the logical connection with the peer PPP entity which minimizes network down time A non zero value is desirable when APS is configured at either end of the link The delayed down time parameter is configured in seconds with a valid range of 0 20 Example The following command example sets the delayed down time interval to...

Page 1281: ...1 100 that controls the amount of time that PPP waits for a reply If an echo reply is not received within an interval of duration consecutive_misses seconds seconds the link is brought down The link maintenance protocol may be disabled using the off keyword Example The following example enables link maintenance on port 1 of a PoS module in slot 8 and sets seconds to 3 and consecutive misses to 10 ...

Page 1282: ...bit FCS or a 16 bit FCS RFC 2615 recommends that a 32 bit FCS be used Example The following command example sets the FCS to 16 for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config ppp pos checksum 16 ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on ...

Page 1283: ...oleted PoS standard specified in RFC 1619 Scrambling was introduced in RFC 2615 to alleviate potential security problems where malicious users might generate packets with bit patterns that create SONET synchronization problems Example The following command example turns off the scrambling function for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config ppp pos scrambling...

Page 1284: ... an integer in the range 1 300 that determines how often quality reports are to be received from the peer LQM entity that is the reporting interval Specifying the seconds parameter is optional It can take up to seven reporting intervals for LCP to bring a link down If the link quality subsequently improves LCP will automatically bring the link back up this type of service restoration will take a m...

Page 1285: ...um length of 32 characters If no password is provided on the command line then you are prompted to enter the password twice with the second time serving as a confirmation You should not enter the encrypted parameter option it is used by the switch when generating an ASCII configuration Example The following command example sets the name to titus and sets the password to 1Afortune for port 1 of the...

Page 1286: ...percentage of the bandwidth that must be available for transmissions from the profile The sum of the minbw parameters across all eight profiles cannot exceed 90 The maxbw parameter is also an integer in the range 1 100 that specifies the maximum percentage of the bandwidth that can be used for transmissions from the profile The priority level may be set to low lowHi normal normalHi medium mediumHi...

Page 1287: ...ures the QoS profile in the egress direction with a minimum bandwidth of 10 percent and a maximum of 20 percent config qosprofile qp8 minbw 10 maxbw 20 2 1 2 2 egress History This command was modified in an ExtremeWare IP Technology Services Release based on v6 1 5b20 to support the PoS module Platform Availability This command is available on the BlackDiamond switch only ...

Page 1288: ...is active WRED is only applied to IP packets and the config diffserv examination code point command supports complete flexibility in assigning DSCPs to the two different drop probability levels The configured mapping of DSCPs to drop probability levels is used by WRED even if diffserv examination is disabled on the port The drop probability keyword indicates that the specified percentage should be...

Page 1289: ... 0 Command Reference Guide 1289 History This command was modified in an ExtremeWare IP Technology Services Release based on v6 1 5b20 to support PoS modules Platform Availability This command is available on the BlackDiamond switch only ...

Page 1290: ... the range 1 100 For PoS ports the minimum threshold is a percentage of 1000 packet buffers and the maximum threshold is set to minimum 3 minimum threshold buffers maximum available buffers The settings for both the minimum and maximum thresholds in terms of number of buffers are displayed by the show ports info detail command Example The following command configures minimum queue length threshold...

Page 1291: ...ived bitstream when line clocking is configured Example The following command example selects line clocking for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config sonet clocking line ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond sw...

Page 1292: ...andard or the SDH standard SONET is primarily an American standard SDH is the international version Example The following command example selects SDH framing for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config sonet framing sdh ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability ...

Page 1293: ...d signal is looped back onto the receive interface When line loopback is configured the received signal is looped back onto the transmit interface Example The following command configures loopback on SONET port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config sonet loop internal ports 8 1 History This command was first available in ExtremeWare 7 0 0 Platform Availability T...

Page 1294: ...be overridden by specifying a particular hex octet that is to be used instead where hex octet is a hexadecimal integer in the range 0 xFF It may be necessary to specify a particular hex octet in order to interoperate with implementations that do not follow the standard conventions for the signal label field Example The following command example sets the Signal Label to the hexadecimal value CF for...

Page 1295: ...SD event will initiate a line switch The error_rate parameter is an integer in the range 5 9 where the SD BER is 10 error_rate The default value of the error_rate parameter is 6 which equates to a SD BER of 10 6 or 1 per million Example The following command example sets the Signal Degrade threshold value to 8 for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config sonet...

Page 1296: ...SF event will initiate a line switch The error_rate parameter is an integer in the range 3 5 where the SF BER is 10 error_rate The default value of the error_rate parameter is 5 which equates to a SF BER of 10 5 or 1 per hundred thousand Example The following command example sets the signal fail threshold value to 3 for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config...

Page 1297: ...d decimal notation If no IP address is assigned to the port s VLAN id_string defaults to a string of 64 NULL characters When SONET framing is configured a 64 character string is repetitively transmitted one character per frame If the configured string is less than 64 characters it is padded with NULL characters Operation is similar when SDH framing is configured except that the maximum string leng...

Page 1298: ...nly applicable when SONET framing is configured In this case the configured id_byte value is transmitted in each SONET frame Analogously the id_string parameter is only applicable when SDH framing is configured SDH framing repetitively cycles through a 15 character string sending one character per frame If the configured string is less than 15 characters it is padded with NULL characters Example T...

Page 1299: ... string with a maximum length of 32 characters If no password is provided on the command line then you are prompted to enter the password twice with the second time serving as a confirmation You should not enter the encrypted parameter option it is used by the switch when generating an ASCII configuration Example The following command example sets the authentication database name to stretch and se...

Page 1300: ...oup numbers must also be used in a consistent manner across BlackDiamond switches For example if the working line is assigned to group 1 on BlackDiamond 1 and the associated protection line resides on BlackDiamond 2 then the protection line must also be assigned to group 1 on BlackDiamond 2 The group is used to identify the partner in other words working or protection line in Ethernet messages exc...

Page 1301: ...e Existing links already authenticated are not affected by this command Example The following command example removes the entry for stretch from the authentication database delete account pppuser stretch History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the on the BlackDiamond switch A sim...

Page 1302: ...meter which is an integer in the range 1 65535 The group identifies the APS group to delete Example The following command example deletes APS group 1001 delete aps 1001 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond switch only group Specifies the APS group to which the...

Page 1303: ...lt APS is disabled by default Usage Guidelines If APS is disabled interfaces configured as protection lines will not carry any traffic Example To disable the APS function for the entire switch use the following command disable aps History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the Black...

Page 1304: ...d then the command applies to all egress queue numbers for the PoS port s RED is not supported on the ingress queues Example The following command disables RED for all PHBs except the EF PHB disable red ports 2 1 2 2 queue 8 History This command was modified in an ExtremeWare IP Technology Services Release based on v6 1 5b20 to support PoS modules Platform Availability The general form of this com...

Page 1305: ...efault APS is disabled by default Usage Guidelines If APS is enabled interfaces configured as protection lines can carry traffic Example To enable the APS function for the entire switch use the following command enable aps History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond ...

Page 1306: ...s an integer in the range 0 7 If the queue keyword is omitted then the command applies to all egress queue numbers for the PoS port s RED is not supported on the ingress queues Example The following command enables RED for all PHBs except the EF PHB enable red ports 2 1 2 2 History This command was modified in an ExtremeWare IP Technology Services Release based on v6 1 5b20 to support PoS modules ...

Page 1307: ...ries in the PPP user accounts database used for authentication when a link is initiated from a remote peer Example The following command displays the PPP accounts database show accounts pppuser History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This comm...

Page 1308: ...signal fail SF or signal degrade SD event due to an excessive bit error rate BER currently exists on the line associated with each configured port along with a timestamp indicating when the last such error occurred Note that the BER thresholds that cause SF and SD events may be specified as part of configuring a SONET port Counts of the number of SF and SD events initiated by each configured port ...

Page 1309: ...nd protection line failures occurs when a signal fail request code is received on the protection line Additional detailed status information reported for each protection line port includes Current contents of received K1 and K2 bytes Contents of K1 and K2 bytes that are currently being transmitted An indication of whether an APS mode mismatch failure is currently active An indication of whether a ...

Page 1310: ... information Values of all flow statistics configuration parameters Count of flow records that have been exported Counts of the number of packets bytes for which flow statistics were not maintained due to insufficient resources Summary status for an export group port includes the following information Values of all configuration parameters State of each export destination device Detailed status fo...

Page 1311: ... following command displays status information for the flow statistics function show flowstats History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1312: ...y specifying the detail parameter Summary status includes the following information for each PPP port Values of all PPP configuration parameters Physical link status operational down LCP state IPCP BCP state EDPCP state MPLSCP state OSINLCP state link packet and octet counters Detailed status includes the information reported in the summary status along with the following additional status and man...

Page 1313: ... received LQR Link Quality Report time since last received LQR LQR packet counters number of link down events due to LQM MPLSCP OSINLCP Example The following command displays status information for the PPP ports show ppp History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond sw...

Page 1314: ...More detailed status information can be obtained for the port s by specifying the detail parameter Summary status includes the following information for each port Values of all port configuration parameters State of the port Identification of all currently active events Example The following command displays the SONET port status show sonet History This command was first available in an ExtremeWar...

Page 1315: ...mand applies to The command does not affect the ports that have been added to the APS group The command does cancel any outstanding lockout force or manual switch requests Example The following command example resets the configuration parameters of APS group 1001 to their default values unconfig aps 1001 History This command was first available in an ExtremeWare IP Technology Services Release base...

Page 1316: ...aightforward the input DSCP is used as an index into a 64 entry table that contains the output DSCPs associated with each of the input DSCP values The operation is similar in the egress direction with the DSCP mapping occurring before the packet is transmitted onto the SONET link s The mapping operation is performed after the packet has been assigned to a QoS profile One potential use of the DSCP ...

Page 1317: ...unconfig diffserv dscp mapping ports ExtremeWare Software 7 0 0 Command Reference Guide 1317 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1318: ... modules are not members of any VLANs by default all other ports are members of the default VLAN by default Example The following command resets the PPP configuration parameters for port 1 slot 8 of a BlackDiamond switch to the default values unconfig ppp ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability Thi...

Page 1319: ...ort 1 slot 8 of a BlackDiamond switch to the default values unconfig sonet ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on the BlackDiamond switch only portlist Specifies the port number s clock setting internal Framing sonet signal label auto where the value of the signal Labe...

Page 1320: ...1320 ExtremeWare Software 7 0 0 Command Reference Guide PoS Commands ...

Page 1321: ...tworks WAN modules allow you to pass Ethernet traffic over technologies originally developed for telecommunications T1 E1 and T3 links have all been used to pass voice traffic over telecommunications networks for many years Now you can pass data traffic with these modules developed specifically for the Extreme Networks Alpine 3800 family of switches To pass data traffic over these modules the trad...

Page 1322: ...ill inherit the configuration of the first port Any other ports added to the link will be configured to match the multilink configuration Only T1 or E1 ports can be added to multilink groups Example The following command add ports the previously created multilink group example_1 config multilink example_1 add ports 2 1 2 4 tag History This command was first available in ExtremeWare v6 1 5w2 01WAN ...

Page 1323: ...iously created multilink group Example The following command deletes a port from the multilink group example_1 config example_1 delete ports 2 3 History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform when a WAN modul...

Page 1324: ...source is configured as line but the clock cannot be recovered from the signal on the line the hardware will use the internal clock instead Example The following command sets the clock source to internal config ports 4 2 t1 clock source internal History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technolo...

Page 1325: ...o determine when each packet starts and ends The two choices for E1 framing are CRC4 and No CRC4 Example The following command sets framing to CRC4 for the E1 ports config ports 3 1 3 4 e1 framing crc4 History This command was first available in ExtremeWare v6 1 8w3 0 1b56 WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is...

Page 1326: ... reduce crosstalk Receiver gain is only configurable for E1 links For T1 links see config multilink add on page 1322 and for T3 links see config ports t1 framing on page 1331 Example The following command configures the receiver gain config ports 2 2 e1 receivergain 43 db History This command was first available in ExtremeWare v6 1 8w3 0 1b56 WAN technology release This command was subsequently in...

Page 1327: ... not need to configure which timeslots are used For installations that do not use the total E1 bandwidth your E1 provider will tell you which timeslots to use A timeslot list uses a dash to represent a range of numbers and a comma to separate single numbers or ranges Valid timeslots range from 1 to 31 Example The following command specifies timeslots 1 through 15 and 17 through 31 for the E1 port ...

Page 1328: ... SNMP trap receivers that have been configured To configure SNMP trap receivers and for more information about configuring SNMP in ExtremeWare see the ExtremeWare Software User Guide The module can also be configured not to send an SNMP alert to the SMMi Any red yellow or blue alarms will not be reported to the SNMP trap receivers Example The following command disables snmp alerts from a port conf...

Page 1329: ... to 6000 feet T1 equipment uses more sensitive receivers and crosstalk is more likely to occur Under these conditions the transmitter level is set by selecting a transmitter attenuation level in dB from the following values 22 5 15 7 5 or 0 From lowest to highest transmitter level use the following values for the config port t1 cablelength command 22 5 db 15 db 7 5 db 0 db 133 feet 266 feet 399 fe...

Page 1330: ...ettings are ignored when a port is configured for SF framing The two T1 standards supported for FDL are ATT described by the ATT 54016 specification and ANSI described by the T1 403 standard Example The following command enables ATT FDL on four T1 links config ports 4 1 4 4 t1 fdl att History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequ...

Page 1331: ...is enabled by default To choose the T1 framing scheme use the following command If you choose to use SF framing you should disable yellow alarm detection for the T1 line SF framing may generate false yellow alarms See the command config ports snmp alert on page 1328 to disable yellow alarms Example The following command sets framing to SF for the T1 ports config ports 3 1 3 4 t1 framing sf History...

Page 1332: ...ack mode and send any received signal back to the remote end Inband loopback detection is only possible if facility data link FDL is enabled and configured as ATT See the command config ports t1 fdl on page 1330 for more information Example The following command enables inband loopback detection config ports 4 1 4 2 t1 lbdetect inband History This command was first available in ExtremeWare v6 1 5w...

Page 1333: ...dards are bipolar eight zero suppression B8ZS or alternate mark inversion AMI Example The following command sets the linecoding to AMI config ports 2 3 2 4 t1 linecoding ami History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 ser...

Page 1334: ...on of yellow alarms for a T1 port When SF framing is used yellow alarm detection and generation should be set to off because detection of yellow alarms is not reliable when data traffic is transmitted with SF framing data traffic often contains bit combinations that do not occur for encoded voice traffic Example The following command enables only the detection of yellow alarms config ports 3 1 3 4...

Page 1335: ...ice provider does not match one of these values For example choose 349 for a 50 foot cable and 900 for a 450 foot cable The default value is 349 which corresponds to cables in the range of 0 349 feet Example The following command sets the cablelength for the T3 port config ports 2 1 t3 cablelength 900 feet History This command was first available in ExtremeWare v6 1 8w3 0 1b61 WAN technology relea...

Page 1336: ...ardware to determine when each packet starts and ends The two choices for T3 framing are C Bit and M13 Example The following command sets framing to M13 for the T3 port config ports 3 1 t3 framing m13 History This command was first available in ExtremeWare v6 1 8w3 0 1b61 WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is ...

Page 1337: ...his is the encapsulation that is familiar to most users of PPP The routed packets do not contain Ethernet headers so cannot preserve VLAN tags However the WAN ports still must be added as tagged ports to the VLAN that contains them The module uses the tags internally and strips them off before the packets are transmitted The IP addresses used for the PPP MLPPP link are taken from the IP address as...

Page 1338: ...P is operating in Legacy mode There is no Legacy BCP specific configuration and the display for the command show ppp info is identical for BCP and Legacy BCP To determine if the link is using Legacy BCP use the following command show log warning and look for the message BCP Legacy BCP UP Only a single VLAN over BCP is supported Example The following command example configures IPCP on a PPP port an...

Page 1339: ...n PAP if CHAP fails to authenticate the peer Example The following command example turns on CHAP authentication for the multilink group m1_remote config ppp authentication chap multilink m1_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available...

Page 1340: ...ided on the command line then you are prompted to enter the password twice with the second time serving as a confirmation You should not enter the encrypted parameter option it is used by the switch when generating an ASCII configuration Example The following command example sets the name to titus and sets the password to 1Afortune for the multilink group m_link1 config ppp user titus 1Afortune mu...

Page 1341: ... can transport more than one VLAN s traffic see config ppp user on page 1340 for details Example The following command adds the multilink group marmots to the VLAN corporate config corporate add ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is a...

Page 1342: ...t VLAN s traffic across the link Example The following command deletes the multilink group ml_remote from the VLAN corporate config corporate delete ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform wh...

Page 1343: ...tion it is used by the switch when generating an ASCII configuration Example The following command example adds an entry to the authentication database A username stretch with password baserunner is added to the database create account pppuser stretch baserunner History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into...

Page 1344: ...roup is created ExtremeWare recognizes the group name as a multilink group so the multilink keyword is not needed in other commands that manipulate multilink groups Example The following command creates the multilink group ml_remote create multilink ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into Ex...

Page 1345: ... not affected by this command Example The following command example removes the entry for stretch from the authentication database delete account pppuser stretch History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform...

Page 1346: ...to delete a multilink group Example The following command deletes the multilink group ml_remote delete multilink ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform when a WAN module is installed groupna...

Page 1347: ...ilink group will stop transporting traffic across the link Example The following command disables the multilink group ml_remote disable multilink ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform when ...

Page 1348: ... command to return the remote T1 or T3 port to normal mode from loopback mode enable ports portlist t1 t3 loopback remote loopdown Example The following command blah disable ports 2 1 2 4 t1 loopback History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare...

Page 1349: ...nable a multilink group Example The following command enables the multilink group ml_remote enable multilink ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform when a WAN module is installed groupname S...

Page 1350: ...rk payload For remote loopback modes use the command enable ports portlist t1 t3 loopback remote line payload loopdown Example The following command enables network line loopback mode on all the ports of an E1 module enable ports 4 1 4 4 e1 loopback network line History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 ...

Page 1351: ...no equivalent command for E1 links The loopdown keyword is used to disable loopback at the remote end Example The following command causes the remote end of a T3 link to enter payload loopback mode enable ports 3 1 t3 loopback remote payload History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology r...

Page 1352: ...itional modes local and network line loopback Use the following command for these modes enable ports portlist t1 e1 t3 loopback local network line For remote loopback modes use the command enable ports portlist t1 t3 loopback remote line payload loopdown Example The following command enables network payload loopback mode on a T1 link enable ports 4 3 t1 loopback network payload History This comman...

Page 1353: ...by default Usage Guidelines This command enables VMAN termination for T1 and E1 links There is no equivalent command for T3 links Example The following command enables VMAN termination on ports 1 1 and 1 3 enable vman termination ports 1 1 1 3 History This command was first available in ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform when a WAN ...

Page 1354: ...ve changed any configuration parameters of the MLPPP group The changed configuration does not take effect until you disable then enable the link or until you restart the link Example The following command restarts the multilink group ml_remote restart multilink ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorpor...

Page 1355: ... to examine the entries in the PPP user accounts database used for authentication when a link is initiated from a remote peer Example The following command displays the PPP accounts database show accounts pppuser History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This comm...

Page 1356: ...group and the PPP configuration of the group Example The following command displays the configuration for the multilink group m_remote1 show multilink m_remote1 History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform ...

Page 1357: ...link use the command show ports portlist t3 alarms Example The following command displays the alarms for T1 ports in the multilink group ml_example show multilink ml_example t1 alarms History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release This command was subsequently incorporated into Ext...

Page 1358: ...rrent interval For T1 multilink group errors use the following command show multilink groupname t1 errors near end far end totals intervals current Example The following command displays the E1 multilink group errors detected on the near end during the current interval for the multilink group m_example1 show multilink m_example1 e1 errors near end current History This command was first available i...

Page 1359: ...roup Example The following command displays the detailed statistics for the multilink group m_remote1 show multilink m_remote1 stats detail History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series platform when a WAN module is ...

Page 1360: ...he current interval For errors on E1 multilink groups use the following command show multilink groupname e1 errors near end totals intervals current Example The following command displays the T1 errors detected on the near end during the current interval show ports t1 errors near end current History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release T3 support was ad...

Page 1361: ...llowing command displays the alarms for T1 ports in show ports 2 1 2 4 t1 stats History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Avail...

Page 1362: ... Example The following command displays the T1 configuration and status of one port show ports 4 1 t1 configuration History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology release This command was subsequently incorporated i...

Page 1363: ...rs detected per interval in the past or errors detected in the current interval For E1 errors use the following command show ports portlist e1 errors near end totals intervals current Example The following command displays the T1 errors detected on the near end during the current interval show ports t1 errors near end current History This command was first available in ExtremeWare v6 1 5w2 01WAN t...

Page 1364: ...detected errors detected per interval in the past or errors detected in the current interval For T1 and T3 errors use the following command show ports portlist t1 t3 errors near end far end totals intervals current Example The following command displays the E1 errors detected on the near end during the current interval show ports e1 errors near end current History This command was first available ...

Page 1365: ...following command displays the T1 information for a single port show ports 4 2 t1 info History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platfor...

Page 1366: ...lowing command displays the statistics for the T1 ports in slot 2 show ports 2 1 2 4 t1 stats History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 ...

Page 1367: ...l PPP ports More detailed status information can be obtained for the PPP port s by specifying the detail parameter Example The following command displays status information for the PPP ports show ppp History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is availa...

Page 1368: ...ired Example The following command example resets the PPP parameters of all the ports in the multilink group m_remote1 to BCP and no authentication unconfig ppp m_remote1 History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the Alpine 3800 series...

Page 1369: ...ntaining the forwarding database Forwarding database entries indicate the outgoing port and any label s to be applied to forwarded frames Thus forwarding may consist of a simple lookup and replacement of the incoming label with the appropriate outgoing label otherwise known as label swapping The MPLS module includes the following features MultiProtocol label switching MPLS MultiProtocol Label Swit...

Page 1370: ...tremeWare Software 7 0 0 Command Reference Guide MPLS Commands This chapter documents the MPLS command set Some commands are new for the MPLS module other commands have been enhanced to support the MPLS module ...

Page 1371: ...g LSR within the specified hello hold_time the hello adjacency is not maintained with that neighboring LSR The session keep alive hold_time interval_time parameter specifies the time in seconds during which an LDP message must be received for the LDP session with a particular peer LSR to be ldp Specifies an LDP session targeted ldp Specifies a targeted LDP session hello hold_time interval_time The...

Page 1372: ...time interval_time are 6 and 65 534 respectively This command can only be executed when MPLS is disabled Example The following command configures LDP session hello hold time to 30 seconds and the interval time to 5 seconds config mpls ldp hello 30 5 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporate...

Page 1373: ...SR that is the endpoint of the tunnel This IP address should be configured with a 32 bit prefix on the peer LSR When the peer LSR is also an Extreme switch either OSPF must also be enabled on the VLAN to which the IP address is assigned using the config ospf add vlan command on the peer switch or the peer switch must be configured to distribute direct routes into the OSPF domain using the enable o...

Page 1374: ...e peer TLS node All traffic received from the tunnel LSP that contains the ingress_label is forwarded to the local VLAN identified by the local_vlan_name parameter When ingress traffic is forwarded to the local VLAN the VLAN ID is set to the VLAN ID of the local VLAN without regard to the VLAN ID in the MAC header of the frame received from the tunnel LSP Thus there is no requirement that all site...

Page 1375: ...o be enabled on the switch If all VLANs are selected MPLS is enabled on all VLANs that have an IP address and IP forwarding enabled If you have enabled MPLS on an OSPF interface that is used to reach a particular destination make sure that you enable MPLS on all additional OSPF interfaces that can reach that same destination for example enable MPLS on all VLANs that are connected to the backbone n...

Page 1376: ...1376 ExtremeWare Software 7 0 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch only ...

Page 1377: ...specific group Specify the groupid if you want to delete all TLS tunnels belonging to a specific group Use the all keyword to delete all TLS tunnels Example The following command deletes the TLS tunnel rt40 config mpls delete tls tunnel rt40 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into E...

Page 1378: ...t specified both are disabled for the specified VLAN Example The following command disables RSVP TE on vlan1 config mpls delete vlan vlan1 rsvp te History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch onl...

Page 1379: ...lter is applied to the FECs associated with static routes You can configure the advertisement filter as follows all All unsolicited label mappings are originated for all routes of the specified type direct RIP or static This is the default setting for direct routes none No unsolicited label mappings are originated for all routes of the specified type This is the default setting for RIP and static ...

Page 1380: ...abel and direct routes are advertised with an MPLS label unless PHP is enabled Advertising labels for a large number of routes may increase the required number of labels that must be allocated by LSRs Take care to ensure that the number of labels advertised by LERs does not overwhelm the label capacity of the LSRs Example The following command configures a filter to be used by LDP when originating...

Page 1381: ...N The LDP label origination configuration for directly attached routing interfaces can also be set using the config mpls ldp advertise direct command Example The following command configures LDP to advertise a label for the direct route configured for VLAN vlan1 config mpls advertise add vlan vlan1 History This command was first available in an ExtremeWare IP Technology Services Release based on v...

Page 1382: ...LER PHP is requested by assigning the Implicit Null Label in an advertised mapping PHP is always performed when requested by an egress LSR for example when the switch is acting as an intermediate LSR The Implicit Null Label is always used in conjunction with routes exported by OSPF regardless of the PHP configuration This command can only be executed when MPLS is disabled Example The following com...

Page 1383: ...ertently introduced When propagate ip ttl is disabled the LSP is viewed as a point to point link between the ingress LSR and the egress LSR Intermediate LSRs in the MPLS network are not viewed as router hops from an IP TTL perspective In this case the IP TTL is decremented once by the ingress LSR and once by the egress LSR When disabled the MPLS TTL is set to 255 by the ingress LSR and is independ...

Page 1384: ...tremeWare Software 7 0 0 Command Reference Guide MPLS Commands This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1385: ...ExtremeWare QoS policies There is a one to one mapping between the hardware queue and the 802 1p priority values that are inserted into frames forwarded to the MPLS module For example the 802 1p priority value is set to 0 for frames forwarded from hardware queue 0 set to 1 for frames forwarded from hardware queue 1 and so on The dot1p to exp table maps 802 1 priority values to MPLS EXP values The ...

Page 1386: ...hen classifying MPLS encapsulated packets received from the SONET link When a PoS port receives an MPLS encapsulated packet from the SONET link the packet is classified based on the EXP value in the MPLS shim header The EXP value from the received frame is used as an index into the exp to dot1p mapping table to retrieve and 802 1p priority value The frame is then assigned to a QoS profile based on...

Page 1387: ...file is applied to the LSP If no explicitly specified the path_name defaults to the primary path The LSP is immediately signaled as soon as it is configured The maximum number of configurable LSPs is 1024 Example The following command adds a primary RSVP TE LSP that takes the routed path named paththroughdenver config mpls rsvp te add lsp lsptonyc path paththroughdenver History This command was fi...

Page 1388: ...tion may be configured by adding additional path_names and specifying the same ipaddress or host_name as the path endpoint The RSVP TE path is not signaled until an LSP is added with the specified path_name If no explicit route objects are configured the path will follow the best routed path to the configured ipaddress or IP address obtained from DNS name resolution Optionally the from keyword can...

Page 1389: ...config mpls rsvp te add path ExtremeWare Software 7 0 0 Command Reference Guide 1389 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1390: ...alue is zero which indicates that the QoS for the LSP is best effort ExtremeWare does not support bandwidth reservation The setup priority and hold priority are optional parameters indicating the LSP priority During path set up if the requested bandwidth cannot be reserved through the LSR the setup priority parameter is compared to the hold priority of existing LSPs to determine if any of the exis...

Page 1391: ...he configured metric is less than or equal to the calculated IGP metric the LSP is used for sending routed IP traffic In this case the LSP is also used to send TLS data when the TLS tunnel is configured by specifying the tunnel LSP endpoint IP address Traffic is distributed across up to four equal cost LSPs The valid metric values range from 1 to 65535 Specifying the igp tracking keyword forces th...

Page 1392: ...Ps cannot be deleted if the specified lsp_name has been configured as the LSP for a TLS tunnel If you specify the all keyword all LSPs not associated with a TLS tunnel are deleted Example The following command deletes all RSVP TE LSPs config mpls rsvp te delete lsp all History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subs...

Page 1393: ...ation for path_name is deleted A path cannot be deleted as long as the path_name is associated with an LSP If the all keyword is specified all paths not associated with an LSP are deleted Example The following command deletes all RSVP TE paths config mpls rsvp te delete path all History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This comman...

Page 1394: ...is associated with a configured LSP the profile cannot be deleted If you specify the all keyword all profiles not associated with an LSP are deleted except for the default profile Example The following command deletes all RSVP TE path profiles config mpls rsvp te delete profile all History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This com...

Page 1395: ... through the network to the same LSP endpoint Adding a secondary path_name designates a path as a hot standby redundant path used in the event that the primary or secondary path cannot be established or fails Provided the path_name has not already been established all path names are signaled as soon as they are associated with an lsp_name If the primary path_name fails is not configured or cannot ...

Page 1396: ...Commands History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1397: ...ation for path_name is deleted A path cannot be deleted as long as the path_name is associated with an LSP If the all keyword is specified all paths not associated with an LSP are deleted Example The following command deletes all RSVP TE paths config mpls rsvp te delete path all History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This comman...

Page 1398: ...s a direct router interface or a directly attached subnet the switch verifies that the path message is received on the matching router interface If the LSR specified matches the OSPF router ID or a configured loopback IP address the router interface on which the packet is received is ignored If the IP address is specified as strict the strict subobject must be topologically1 adjacent to the previo...

Page 1399: ...e ERO subobject must be deleted and re added using a different order If a subobject is added to or deleted from the ERO while the associated LSP is established the path is torn down and is resignaled using the new ERO Duplicate ERO subobjects are not allowed Defining an ERO for the path is optional If you do not configure an ERO the path is signaled along the best routed path and the ERO is not in...

Page 1400: ...ger required to take an explicit routed path The path is then signaled along the best routed path and no ERO is included in the path message Example The following command deletes all configured ERO subobjects from the specified path config mpls rsvp te path paththroughdc delete ero all History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This...

Page 1401: ...ue is increased the LSRs along the existing path may not be able to accommodate the additional reserved bandwidth In this scenario the LSP is torn down and resignaled Example The following command configures the attributes for the specified profile config mpls rsvp te profile customer1 ping interval 2 profile_name Specifies the profile name bandwidth Specifies the reserved bandwidth for the LSP se...

Page 1402: ...Commands History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1403: ...longer active RSVP sessions are torn down if an RSVP refresh message is not received from a neighbor within keep multiplier 0 5 1 5 refresh time seconds The default refresh time is 30 seconds and the default keep multiplier value is three The minimum and maximum refresh time values are one and 36 000 seconds or one hour respectively The minimum and maximum keep multiplier values are one and 255 re...

Page 1404: ... RSVP TE peers supporting RSVP refresh reduction Example The following command configures the rsvp te interface parameters for VLAN vlan1 config mpls rsvp te vlan vlan1 hello interval 2 refresh time 5 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability Th...

Page 1405: ...he packet the packet is fragmented before it is forwarded onto an MPLS LSP If the DF bit is set in the packet header Path MTU Discovery starts Fragmentation is based on either the minimum value of the configured MPLS IP MTU size or the configured IP MTU size for the egress VLAN The IP MTU size is configured using the config ip mtu number vlan vlan name command Configure the MPLS IP MTU so that the...

Page 1406: ...1406 ExtremeWare Software 7 0 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch only ...

Page 1407: ...s of this command apply to all MPLS enabled VLANs Example The following command configures a filter to be used by LDP when propagating unsolicited label mappings to vlan1 config mpls vlan vlan1 ldp propagate route map bgp_out History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0...

Page 1408: ... for which there is one non TLS VLAN configured to track the state of the LSP When ESRP detects that the LSP has failed all of the VLANs in the configured ESRP domain transition to neutral state and the backup LSR becomes the master switch for all of the TLS VLANs The add track lsp command configures ESRP to track up to eight LSPs Fail over to the slave switch is based on the total number of estab...

Page 1409: ...dd track lsp ExtremeWare Software 7 0 0 Command Reference Guide 1409 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1410: ...all configured LSPs are removed from ESRP tracking for the specified VLAN Example The following command disables diagnostic failure tracking for VLAN esrp 1 config vlan esrp 1 delete track lsp History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This comma...

Page 1411: ...es Disabling MPLS causes all LSPs to be released and all LDP neighbor sessions to be terminated Example The following command globally disables MPLS on the switch disable mpls History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available o...

Page 1412: ...es Disabling MPLS causes all LSPs to be released and all LDP neighbor sessions to be terminated Example The following command globally enables MPLS on the switch enable mpls History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on ...

Page 1413: ... When the vlan parameter is specified this command displays the current values of the MPLS configuration parameters that are specific to the VLAN If the optional detail keyword is specified additional detailed VLAN information is displayed Example The following command displays MPLS configuration information for the VLAN accounting show mpls vlan accounting History This command was first available...

Page 1414: ...t hop IP address Outgoing label Interface number of the outgoing VLAN If the detail keyword is specified the following additional information is displayed Outgoing port number Counts of packets and bytes that have been transmitted using the database entry By default information is displayed for active mappings To display information for liberally retained inactive mappings use the inactive keyword...

Page 1415: ...ion from the FEC to NHLFE database show mpls forwarding prefix 10 1 1 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond switch only ...

Page 1416: ...g the keyword ldp targeted ldp or rsvp te limits the information displayed to only those interface types Example The following command displays interface information for RSVP TE interfaces show mpls interface rsvp te History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform...

Page 1417: ...information is displayed for the label Use the fec keyword to display the label associated with an FEC You can specify both host and prefix FEC types The summary keyword displays the number of labels allocated from each label range partition By default the information displayed includes Next hop IP address Outgoing and incoming labels Interface number of the outgoing VLAN FEC associated with the i...

Page 1418: ...ncoming Label Map ILM for RSVP TE LSPs Example The following command displays the summary information from the Incoming Label Map show mpls label summary History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond swi...

Page 1419: ...s displayed To display additional information in the comprehensive detailed format use the detail keyword Displayed summary information includes Peer type targeted or not targeted Peer status Peer sessions Peer session state If you specify the detail keyword the following additional information is displayed LDP error counts LDP status timers Maximum PDU length Example The following command display...

Page 1420: ...1420 ExtremeWare Software 7 0 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch only ...

Page 1421: ... variables Default N A Usage Guidelines Configured mappings for both dot1p to exp and exp to dot1p are displayed Example The following command displays MPLS QoS mapping information show mpls qos mappings History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability...

Page 1422: ...layed Additional information is displayed in the detailed format if you specify the optional detail keyword The more detailed RSVP TE information includes the number and type of RSVP messages transmitted through the local RSVP TE interface Example The following displays detailed information about all configured RSVP TE LSPs show mpls rsvp te detail History This command was first available in an Ex...

Page 1423: ...the optional detail keyword additional information is displayed for each LSP The detailed information includes a list of all configured paths including the path state error codes for the LSP associated with each path up time for each LSP the bound profile name and a list of TLS tunnels configured to use the LSP Example The following displays the configuration and status information for all configu...

Page 1424: ...displayed If a specific path name is specified only information for the specified path is displayed If you specify the optional detail keyword the list of subobjects specified for the explicit route object and any LSPs that are configured to use the path are displayed Example The following displays information about all RSVP TE routed paths in detailed format show mpls rsvp te path detail History ...

Page 1425: ... If the profile name is omitted the profile parameter values for all configured LSP profiles are displayed Example The following command displays the profile parameter values for all configured LSP profiles show mpls rsvp te profile History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWar...

Page 1426: ...TLS tunnel information is displayed using the comprehensive detail format If the optional summary keyword is specified summary TLS tunnel counts are displayed The summary counters displayed include the total number of active static and dynamic TLS tunnels Example The following command displays configuration and status information for the TLS tunnel rt40 show mpls tls tunnel rt40 History This comma...

Page 1427: ...filter settings on all VLANs LDP advertisement filter settings LDP session timers RSVP TE interface parameters RSVP TE profile parameters Settings for propagate ip ttl QoS mapping tables Example The following command resets MPLS configuration parameters to the default settings unconfig mpls History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12...

Page 1428: ...t the LDP peer has failed or no longer wishes to label switch using the previously advertised label space The session keep alive time specifies the minimum amount of time in seconds that an LSR must receive an LDP PDU from an LDP peer to which it has an established LDP session If an LDP PDU is not received within the specified session keep alive time since the reception of the last LDP PDU the LDP...

Page 1429: ...nput value of n to an output value of n Example The following command restores the default values for the dot1p to exp QoS mapping table unconfig mpls qos mapping dot1p to exp History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available o...

Page 1430: ...1430 ExtremeWare Software 7 0 0 Command Reference Guide MPLS Commands ...

Page 1431: ... secondary image You can download a new image into either one of these and you can select which image will load on the next switch reboot The configuration is the customized set of parameters that you have selected to run on the switch As you make configuration changes the new settings are stored in run time memory To retain the settings and have them load when you reboot the switch you must save ...

Page 1432: ...one from the server named tftphost from the ASCII file primeconfig txt residing in directory configs archive on the server config download server primary tftphost configs archive prime_config txt History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on the i series platforms primary Specifies that the following parameters refer to the primary T...

Page 1433: ...special BootROM menu see the ExtremeWare Software User Guide Use of the hostname parameter requires that DNS be enabled Example The following command downloads a bootROM image from the tftp server tftphost from the file bootimages residing in directory images on the server download bootrom tftphost images bootimage History This command was first available in ExtremeWare 4 0 This command was modifi...

Page 1434: ...hrough a power cycle You can include a save command at the end of the configuration file to have the save done at the end of the download The file on the server is assumed to be located relative to the TFTP server base directory You can specify a path as part of the file name Use of the hostname parameter requires that DNS be enabled Example The following command clears the current switch configur...

Page 1435: ...irst available in ExtremeWare 2 0 Support for the hostname parameter was introduced in ExtremeWare 4 0 Support for incremental downloads was introduced in ExtremeWare 6 0 Platform Availability This command is available on all platforms The incremental download option is available on the i series platforms ...

Page 1436: ...ines This command cancels the scheduled download command completely not just the next scheduled daily download The download configuration every hour command must be issued again to resume automatic downloads If there are no downloads scheduled this command has no effect Example The following command cancels a previously scheduled download download configuration cancel History This command was firs...

Page 1437: ... to specify The TFTP server and the configuration file from which the downloaded configuration will be obtained Whether this TFTP server is the primary server or the secondary backup TFTP server Example The following commands set up a scheduled incremental download of the file config_info txt to be done from the TFTP server named tftphost into the primary configuration area every day at 10 00 pm c...

Page 1438: ...ced If no parameters are specified the software image is saved to the current image Use of the hostname parameter requires that DNS be enabled Example The following command downloads the switch software image from the TFTP server named tftphost from the file named s4119b2 xtr to the secondary image store download image tftphost s4119b2 xtr secondary History This command was available in ExtremeWar...

Page 1439: ...download image ExtremeWare Software 7 0 0 Command Reference Guide 1439 Platform Availability This command is available on all platforms ...

Page 1440: ...current configuration to the location used on the last reboot Usage Guidelines The configuration takes effect on the next reboot Example The following command save the current switch configuration in the secondary configuration area save configuration secondary History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms primary Specifies t...

Page 1441: ...ging command to pause the display when the output fills the screen The default for clipaging is enabled Example This command shows the current configuration active in the switch show config detail History This command was available in ExtremeWare 2 0 This command was modified to show the auto negotiation status of Gigabit Ethernet ports in ExtremeWare 6 2 2 Platform Availability This command is av...

Page 1442: ...o a sync to bring the master s configurations over to the slave However if one of the configurations on the master MSM is empty the sync process will not overwrite the corresponding configuration on the slave If the configuration on the slave MSM64i is an older configuration this can cause problems if the switch is rebooted using the outdated configuration This command does not replicate the run t...

Page 1443: ...rs account information date and time settings and so on Include the parameter all to clear the entire current configuration including all switch parameters and reboot using the last used image and configuration Example The following command erases the entire current configuration resets to factory defaults and reboots the switch using the last specified saved image and saved configuration unconfig...

Page 1444: ...switch or to one or more different switches Send a copy of the configuration file to Extreme Networks Technical Support for problem solving purposes If every time is specified the switch automatically saves the configuration to the server once per day at the specified time Because the filename is not changed the configured file stored in the TFTP server is overwritten every day For version 4 0 The...

Page 1445: ...ion to the file configbackup txt on the TFTP server named tftphost every night at 10 15 p m upload configuration tftphost configbackup txt every 22 15 History This command was available in ExtremeWare 2 0 Support for the hostname parameter was introduced in ExtremeWare 4 0 Platform Availability This command is available on all platforms ...

Page 1446: ...e Guidelines This command cancels the scheduled upload command completely not just the next scheduled daily upload You must re issue the upload configuration every hour command to resume automatic uploads If there are no uploads scheduled this command has no effect Example The following command cancels the current automatic upload schedule upload configuration cancel History This command was avail...

Page 1447: ...on Default N A Usage Guidelines The keyword configuration can be abbreviated to config Example The following command specifies that the next reboot should use the primary saved configuration use configuration primary History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms primary Specifies the primary saved configuration secondary Spec...

Page 1448: ...mple The following command configures the switch to use the primary image on the next reboot use image primary History This command was first available in ExtremeWare 2 0 Support for the slot parameter was introduced in ExtremeWare 7 0 0 Platform Availability This command is available on all platforms primary Specifies the primary saved software image secondary Specifies the secondary saved softwa...

Page 1449: ... 998 2408 or 408 579 2826 If CPU utilization is high use the debug trace commands sparingly as they require the CPU Disable any external syslog before you configure a debug trace because the debug trace utility can send large amounts of information to the syslog and if your syslog is external that information travels over your network Configure a debug trace at lower levels first and look for obvi...

Page 1450: ...els to the factory settings of level 0 Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets the debug trace levels to level 0 clear debug trace History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1451: ...fault level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Not currently supported 1 Not currently supported 2 Not currently supported 3 Not currently supported 4 No...

Page 1452: ...nting DBUG DSA Vlan vlan1 Vlan ID 4091 DBUG DSA processDSBMessage rsp type 2 from slot 6 DBUG DSA npGenPipe sendMsg 0x8093f70c sends to slot 5 len 68 DBUG DSA npGenPipeAllocTCB TCB allocated by Accounting DSB Accounting DBUG DSA Vlan vlan0 Vlan ID 4092 DBUG DSA processDSBMessage rsp type 2 from slot 6 DBUG DSA npGenPipe sendMsg 0x8093f70c sends to slot 5 len 68 DBUG DSA npGenPipeAllocTCB TCB alloc...

Page 1453: ...essDSBMessage rsp type 2 from slot 6 DBUG DSA npGenPipe sendMsg 0x8093f70c sends to slot 5 len 68 DBUG DSA npGenPipeAllocTCB TCB allocated by Accounting DSB Accounting DBUG DSA Vlan Default Vlan ID 1 DBUG DSA All Vlan History This command was first available in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 Platform Availability This command is available on the ARM an...

Page 1454: ... is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Not currently supported 1 Not currently supported 2 Not currently supported 3 Not currently supported 4 Not currently...

Page 1455: ...tion process The state of FSM transitions to next state upon events occurred The major events in this process includes Connects to neighbor TCP port 179 and transitions to CONNECT state Passive connected and transitions to CONNECT state TCP connecting failed and transitions to ACTIVE state Connects retry on ConnectRetry timer expired the CONN_EXP event occurs and transitions to CONNECT state Sends...

Page 1456: ...ISHED DBUG BGP last message repeated 9 times DBUG BGP NewState ESTABLISHED INFO SYST serial admin show bgp neighbor detail DBUG BGP last message repeated 7 times DBUG BGP NewState ESTABLISHED INFO SYST serial admin show bgp neighbor INFO SYST Log cleared INFO SYST serial admin clear log History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on a...

Page 1457: ...keepalive messages to peer with peer IP address local socket number and the total BGP message length is printed The keepalive message is sent every negotiated keepalive timer period Records received messages from peer with peer IP address printed This keepalive message is received every negotiated keepalive timer period 3 Records the following neighbor negotiation FSM messages while transmitting k...

Page 1458: ... 10 10 0 1 socket 14 event KEEP_EXP oldState ESTABLISHED DBUG BGP NewState ESTABLISHED DBUG BGP Sending non update to peer 10 10 0 1 socket 14 len 19 DBUG BGP Queuing keepalive for peer 10 10 0 1 DBUG BGP Peer 10 10 0 1 socket 14 event KEEP_EXP oldState ESTABLISHED DBUG BGP NewState ESTABLISHED DBUG BGP Sending non update to peer 10 10 0 1 socket 14 len 19 DBUG BGP Queuing keepalive for peer 10 10...

Page 1459: ...s level 02 01 2002 13 55 52 DBUG BGP Checking for changes in Next Hops 02 01 2002 13 55 46 DBUG BGP last message repeated 2 times 02 01 2002 13 55 22 DBUG BGP Checking for changes in Next Hops 02 01 2002 13 55 16 DBUG BGP last message repeated 2 times 02 01 2002 13 54 52 DBUG BGP Checking for changes in Next Hops 02 01 2002 13 54 44 INFO SYST Log cleared 02 01 2002 13 54 44 INFO SYST serial admin ...

Page 1460: ...or error subcode printed 2 Records transmitted BGP message packets to peer with peer IP address local socket number and total BGP message length printed The BGP message types include Open sending nonupdate to peer Update sending update to peer Notification sending notification message to peer with error code or error subcode recorded Transmitted keepalive messages are not recorded Records received...

Page 1461: ...10 10 0 1 DBUG BGP Rx update from peer 10 10 0 1 DBUG BGP Rcvd data from peer 10 10 0 1 DBUG BGP Rx update from peer 10 10 0 1 DBUG BGP Rcvd data from peer 10 10 0 1 DBUG BGP Rx update from peer 10 10 0 1 DBUG BGP Rcvd data from peer 10 10 0 1 DBUG BGP Rx update from peer 10 10 0 1 DBUG BGP Rcvd data from peer 10 10 0 1 DBUG BGP last message repeated 10 times DBUG BGP Rx update from peer 10 10 0 1...

Page 1462: ...m a single neighbor if you specify a different neighbor only messages from that neighbor are recorded This command does not affect error messages recorded by the config debug trace bgp misc command because those error messages are not related to neighbors To disable this command and record messages from all neighbors specify an IP address of 0 0 0 0 Example The following command limits the BGP mes...

Page 1463: ... config debug trace bgp update in 3 Following is the log output at this level INFO SYST Log cleared INFO SYST serial admin clear log static debug level Specifies a debug level 0 None 1 None 2 Records received BGP Update messages with network prefix and next hop attribute information Records actions triggered by the received and update message including Add accepted routes to BGP routing table Add ...

Page 1464: ...nlri 193 227 14 0 255 255 255 0 from peer 10 10 0 1 DBUG BGP Rx nlri 193 227 13 0 255 255 255 0 from peer 10 10 0 1 DBUG BGP Updating FDB for NLRI 193 227 15 0 255 255 255 0 DBUG BGP Add dst 193 41 197 0 24 gw 10 10 30 10 cost 6 DBUG BGP Deleting dst 193 41 197 0 24 gw 10 10 30 10 cost 7 DBUG BGP Updating FDB for NLRI 193 41 197 0 255 255 255 0 DBUG BGP Add dst 193 108 128 0 23 gw 10 10 30 10 cost...

Page 1465: ...ntry 198 58 1 0 255 255 255 0 DBUG BGP Processing Int change entry 198 58 0 0 255 255 255 0 DBUG BGP Processing Int change entry 192 251 195 0 255 255 255 0 DBUG BGP Processing Int change entry 193 77 24 0 255 255 255 0 DBUG BGP Qing Int Chg Blk for Rt 212 46 224 0 255 255 248 0 DBUG BGP Qing Ext Chg Blk for Rt 212 46 224 0 255 255 248 0 DBUG BGP Add dst 212 46 224 0 21 gw 10 10 30 10 cost 7 DBUG ...

Page 1466: ...255 255 255 0 DBUG BGP Qing Ext Chg Blk for Rt 213 242 62 0 255 255 255 0 DBUG BGP Add dst 213 242 62 0 24 gw 10 10 30 10 cost 9 DBUG BGP Deleting dst 213 242 62 0 24 gw 10 10 30 10 cost 5 DBUG BGP Updating FDB for NLRI 213 242 62 0 255 255 255 0 DBUG BGP Qing Int Chg Blk for Rt 195 246 44 0 255 255 255 0 DBUG BGP Qing Ext Chg Blk foge entry 212 33 128 0 255 255 224 History This command was first ...

Page 1467: ...er levels also record the messages recorded at lower levels Example The following command sets the reporting level for BOOTP relay errors to 3 config debug trace bootprelay 3 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 None 1 Records error messages and tracks BOOTP messag...

Page 1468: ...send_bpdu s0 port 1 8 config DBUG KERN 0x088134e474 00 00 14 00 02 00 0f 00 DBUG KERN 0x088134e464 7d 00 00 00 00 00 80 00 00 e0 2b 8 1 7d 00 43 01 C DBUG KERN 0x088134e454 00 26 42 42 03 00 00 00 00 00 80 0 0 00 e0 2b 81 BB DBUG KERN 0x088134e444 01 80 c2 00 00 00 00 e0 2b 81 7d 0 0 81 00 e0 00 DBUG STP send_bpdu s0 port 7 1 config DBUG KERN 0x088134e474 00 00 14 00 02 00 0f 00 DBUG KERN 0x088134...

Page 1469: ...8134e454 00 26 42 42 03 00 00 00 00 00 80 0 0 00 e0 2b 81 BB DBUG KERN 0x088134e444 01 80 c2 00 00 00 00 e0 2b 81 7d 0 0 81 00 e0 00 DBUG STP send_bpdu s0 port 1 8 config History This command was first available in ExtremeWare 6 1 9 Platform Availability This command is available on all i series platforms ...

Page 1470: ...cket da 00 01 30 41 f9 00 sa 00 90 27 96 22 e4 inSlot 1 Ch Subch 32 0x20 WARN BRDG bridge c 871 Continued inPif 1 len d etype 0x800 offset 0x13 inVlan 4093 INFO BRDG bridge c 795 PKTID inPif 1 inVlan 4093 eType 0x800 offset 0x12 INFO BRDG bridge c 794 PKTID da 00 01 30 41 f9 00 sa 00 90 27 96 22 e4 inSlot 1 Ch Subch 32 0x20 INFO BRDG bridge c 756 PKTIN 1 32 0x20 4e 800 12 4093 INFO BRDG bridge c 1...

Page 1471: ...config debug trace bridging ExtremeWare Software 7 0 0 Command Reference Guide 1471 Platform Availability This command is available on all i series platforms ...

Page 1472: ... default level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Not currently supported 1 Not currently supported 2 Not currently supported 3 Not currently supported 4...

Page 1473: ...se this tool if the egress list of a cache is incorrect if there are missing cache entries or if the DVMRP task has been intermittently suspended Example The following command sets the reporting level for DVMRP cache errors to 3 config debug trace dvmrp cache 3 vlan v49 Following is the log output at this level INFO SYST serial admin configure debug trace dvmrp cache 4 vlan v49 DBUG DVMR dvcareq c...

Page 1474: ... Reference Guide Troubleshooting Commands DBUG DVMR dvcareq c 213 Build Cache for 192 168 3 10 224 10 253 4 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1475: ...config debug trace dvmrp hello 3 vlan v49 Following is the log output at this level INFO SYST serial admin configure debug trace dvmrp hello 4 vlan v49 DBUG DVMR dvrx c 151 Rx Hello from 192 168 200 2 on VLAN v49 DBUG DVMR dvnbr c 612 Tx Hello on Vlan v49 Len 16 nbr 1 DBUG DVMR dvrx c 151 Rx Hello from 192 168 200 2 on VLAN v49 DBUG DVMR dvnbr c 612 Tx Hello on Vlan v49 Len 16 nbr 1 DBUG DVMR dvrx...

Page 1476: ...xtremeWare Software 7 0 0 Command Reference Guide Troubleshooting Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1477: ...f a multicast stream cannot be stopped or does not come down to the receiver after the IGMP snooping entry is verified Example The following command sets the reporting level for DVMRP message errors to 3 config debug trace dvmrp message 3 vlan v49 Following is the log output at this level INFO SYST last message repeated 2 times INFO SYST serial admin disable dvmrp DBUG DVMR DVMRP task stopped Hist...

Page 1478: ...on VLAN to monitor when a neighbor is added or deleted Example The following command sets the reporting level for DVMRP neighbor errors to 3 config debug trace dvmrp neighbor 3 vlan v49 Following is the log output at this level INFO SYST serial admin enable dvmrp DBUG DVMR dvnbr c 149 Add new Nbr 192 168 200 2 on Vlan v49 Len 16 History This command was first available in ExtremeWare 6 1 Platform ...

Page 1479: ...9 Rx Report from 192 168 200 2 in VLAN v49 DBUG DVMR dvrx c 298 Rx route 10 1 2 0 24 Metric 0 1 from 192 168 200 2 DBUG DVMR dvrtrx c 330 Replace RT 10 1 2 0 24 Metrix 1 Flag 01 4 DBUG DVMR dvrx c 298 Rx route 192 168 3 0 24 Metric 1 1 from 192 168 200 2 DBUG DVMR dvrtrx c 330 Replace RT 192 168 3 0 24 Metrix 1 Flag 01 4 DBUG DVMR dvrx c 298 Rx route 192 168 1 3 32 Metric 1 1 from 192 168 200 2 DB...

Page 1480: ...0 2 DBUG DVMR dvrtrx c 330 Replace RT 192 168 1 3 32 Metrix 1 Flag 00 0 DBUG DVMR dvrttx c 492 Tx periodic report on VLAN v49 Len 49 DBUG DVMR dvrx c 159 Rx Report from 192 168 200 2 in VLAN v49 DBUG DVMR dvrx c 298 Rx route 172 17 1 0 24 Metric 1 34 from 192 168 200 2 DBUG DVMR dvrx c 298 Rx route 192 168 2 0 30 Metric 0 34 from 192 168 200 2 DBUG DVMR dvrx c 298 Rx route 192 168 100 0 30 Metric ...

Page 1481: ...ded at lower levels Example The following command sets the reporting level for DVMRP timer errors to 3 config debug trace dvmrp timer 3 vlan v49 Following is the log output at this level INFO SYST serial admin configure debug trace dvmrp timer 3 v49 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Spec...

Page 1482: ... eaps_runtime c 852 pdu Health Pdu DBUG EAPS eaps_runtime c 843 DEBUG vlanId 10 eapsdInst 0 DBUG EAPS eaps c 520 DEBUG Found Control Vlan EapsInst 0 DBUG EAPS eaps c 368 DEBUG Wowie Received EAPS_PDU_MSG DBUG EAPS eaps_runtime c 804 EAPS PDU Transmit OK Vlan c1 DBUG EAPS eaps_runtime c 779 Sending EAPS pdu out port 1 2 vlan c1 vlanId 10 DBUG EAPS eaps_runtime c 1295 EAPS man1 Hello Timer expired d...

Page 1483: ...EAPS eaps_runtime c 1673 Complete state unchanged EAPS man1 DBUG EAPS eaps_runtime c 931 Pdu Health Pdu EAPS man1 MAC 00 01 30 33 14 00 RcvdSeq 14850 CurrSeq History This command was first available in ExtremeWare 6 1 9 Platform Availability This command is available on all i series platforms ...

Page 1484: ...e 2 ActPrt 3 IntPrt 0 TrActPrt 0 TrIp 0 InPort 3 DBUG SYS edp c 2473 Refresh ESRP neighbor 00 01 30 e9 ef 00 DBUG SYS edp c 2025 MASTER Rx ESRP PDU Vlan test1 State 2 ActPrt 3 IntPrt 0 TrActPrt 0 TrIp 0 InPort 1 DBUG SYS edp c 2473 Refresh ESRP neighbor 00 01 30 e9 ef 00 10 30 2002 11 34 17 DBUG SYS edp c 1276 VLAN test1 winner TRUE debug level Specifies a debug level 0 Displays watchdog taskSpawn...

Page 1485: ...sh ESRP neighbor 00 01 30 e9 ef 00 DBUG SYS edp c 1276 VLAN test1 winner TRUE DBUG SYS edp c 1276 VLAN test1 winner TRUE DBUG SYS edp c 1553 Sending ESRP pdu out port 1 vlan 0xffd DBUG SYS edp c 1553 Sending ESRP pdu out port 3 vlan 0xffd DBUG SYS edp c 1553 Sending ESRP pdu out port 5 vlan 0xffd DBUG SYS edp c 1566 Tx ESRP PDU Success VLAN test1 State 1 ActPrt 3 IntPrt 0 TrActPrt 0 TrIp 0 DBUG SY...

Page 1486: ...ST Port 5 link down WARN SYS edp c 2046 MASTER Slave Recv Hi PDU VLAN test1 LOW on Active ports INFO SYST Port 5 link active 1000Mbs FULL duplex WARN SYS edp c 2183 SLAVE Master Timer VLAN test1 HIGHER Priority History This command was first available in ExtremeWare 6 1 debug level Specifies a debug level 0 Displays state changes after 2 minutes of system restart including cause of failover at pac...

Page 1487: ...config debug trace esrp state change ExtremeWare Software 7 0 0 Command Reference Guide 1487 Platform Availability This command is available on all i series platforms ...

Page 1488: ...00 IP IPX 0 0 0 0 00000000 vlanId 4093 netType 0 0x85c83d60 DBUG SYS edp c 1858 Pkt_Recv 4 5 Mac 00 01 30 e9 ef 00 IP IPX 0 0 0 0 00000000 vlanId 4093 netType 0 0x85c83d60 DBUG SYS edp c 1858 Pkt_Recv 2 3 Mac 00 01 30 e9 ef 00 IP IPX 0 0 0 0 00000000 vlanId 4093 netType 0 0x85c83d60 DBUG SYS edp c 1858 Pkt_Recv 0 1 Mac 00 01 30 e9 ef 00 IP IPX 0 0 0 0 00000000 vlanId 4093 netType 0 0x85c83d60 DBUG...

Page 1489: ...ac 00 01 30 e9 ef 00 IP IPX 0 0 0 0 00000000 vlanId 4093 netType 0 0x85c83d60 DBUG SYS edp c 1858 Pkt_Recv 0 1 Mac 00 01 30 e9 ef 00 IP IPX 0 0 0 0 00000000 vlanId 4093 netType 0 0x85c83d60 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1490: ...age Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Not currently supported 1 Not currently supported 2 Not currently supported 3 Not currently supported 4 Not currently support...

Page 1491: ... 148 Nexthop 30 0 0 9 Nfg ffff DBUG SYST i 3 Changing Nexthop fg fffc Source 24 3 89 147 Nexthop 30 0 0 8 Nfg fffe DBUG SYST i 2 Changing Nexthop fg fffc Source 24 3 89 146 Nexthop 30 0 0 7 Nfg fffd DBUG SYST i 1 Changing Nexthop fg fffc Source 24 3 89 145 Nexthop 30 0 0 6 Nfg fffb DBUG SYST i 0 Changing Nexthop fg fffc Source 24 3 89 144 Nexthop 30 0 0 5 Nfg fffa DBUG SYST Sag fffc DBUG SYST Grps...

Page 1492: ...stDelEntry Checking server entry 0x866c2efc 1 4 DBUG SYST redirectServerListDelEntry 0x8 66c2f5c 0 4 DBUG SYST redirectServerListDelEntry Checking server entry 0x866c198c 2 4 DBUG SYST redirectServerListDelEntry 0x866c19ec 0 4 DBUG SYST redirectServerListDelEntry Checking server entry 0x866c201c 3 4 DBUG SYST redirectServerListDelEntry 0x866c207c 0 4 DBUG SYST redirectServerListDelEntry Freeing se...

Page 1493: ...story This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Records error messages such as cannot open a socket cannot bind a socket or cannot add or remove a flow from health check 1 No additional information recorded 2 No additional information recorded 3 No additional information reco...

Page 1494: ... ldap Specifies LDAP messages nntp Specifies NNTP messages pop3 Specifies POP3 messages smtp Specifies SMTP messages socks Specifies SOCKS messages telnet Specifies Telnet messages tftp Specifies TFTP messages web Specifies HTTP messages wildcard Specifies messages from all services www Specifies HTTP messages debug level Specifies a debug level 0 Records unable to initialize or add a health check...

Page 1495: ...ecify If you do not configure a filter debug trace records messages at the debug level you specify for every service on every IP address When you save your configuration you also save your configured filter values Example The following command enables level 2 debug tracing config debug trace health check 2 The following command then configures a filter for a specific server and service config debu...

Page 1496: ...1496 ExtremeWare Software 7 0 0 Command Reference Guide Troubleshooting Commands Platform Availability This command is available on all i series platforms ...

Page 1497: ...ry trunk6 port 1 1 raddr 15 1 6 3 rp 2039713300 DBUG KERN End of chain 86499000 DBUG KERN 0x0886499046 00 14 00 04 3c 59 6d f3 00 00 00 00 Ym DBUG KERN 0x0886499036 06 03 e0 00 00 0d 20 00 35 2f 00 01 00 02 00 69 5 i DBUG KERN 0x0886499026 08 00 45 c0 00 26 3d 70 00 00 01 67 86 30 0f 01 E p g 0 DBUG KERN 0x0886499016 01 00 5e 00 00 0d 00 01 30 0a 7e 00 81 00 e2 58 0 X DBUG KERN m0 0x86499000 Lengt...

Page 1498: ...00 DBUG IGMP IGMPS igmpSnoopingDataInput L2 switch data trunk6 224 0 0 13 15 1 6 3 DBUG IGMP IGMPS addRouterEntry trunk6 port 1 1 raddr 15 1 6 3 rp 2039713300 DBUG KERN End of chain 86499400 DBUG KERN 0x08864994a6 01 00 c0 a8 64 03 00 96 fa 00 d DBUG KERN 0x0886499496 08 03 00 96 fa 00 01 00 0f 01 06 03 00 96 fa 00 DBUG KERN 0x0886499486 96 00 01 00 0f 03 01 01 00 96 96 00 01 00 0f 01 DBUG KERN 0x...

Page 1499: ...terface No free new entry Filter out multicast and broadcast source address Header too short ARP Ethernet IP Invalid hw prot length Wrong length 2 Records the following errors Router interface down Bad IP destination No mbuf available Failed to ARP SubVLAN proxy ARP disabled replied or ARPing No bridge available No ARP available No router interface in ARPT Loopback entry created Suppressed re ARP ...

Page 1500: ...192 12 DBUG SYS arpresolve Filled entry for 192 168 192 12 00 00 86 54 7f 2a DBUG SYS arpresolve START ac 0x82f3d6e0 m 0x849a6c00 IP 192 168 192 12 DBUG SYS arpresolve Filled entry for 192 168 192 12 00 00 86 54 7f 2a DBUG SYS arpresolve START ac 0x82f3d6e0 m 0x849a6800 IP 192 168 192 12 DBUG SYS arpresolve Filled entry for 192 168 192 12 00 00 86 54 7f 2a INFO SYST serial admin configure debug tr...

Page 1501: ...ROP Bad IP header chksum source dest 211 41 176 100 210 10 20 100 WARN IPRT ip_input c 220 DROP Bad chksum rtif port 2 1 1 source dest 211 41 176 100 210 10 20 100 WARN IPRT ip_slowpath c 432 DROP Dest is a blackhole source dest 211 41 176 100 200 10 10 100 WARN IPRT ip_input c 532 DROP Dest is a blackhole rtif port 2 1 1 source dest 211 41 176 100 200 10 10 100 WARN IPRT ip_slowpath c 450 DROP De...

Page 1502: ... 41 176 100 64 10 1 100 WARN IPRT ip_input c 1120 DROP Dest RTIF is not forwarding broadcast inRtif outRtif 1 2 source dest 211 41 176 100 64 1 1 255 INFO IPRT ip_input c 822 Completed processing source dest 20 1 1 200 10 1 1 200 INFO IPRT ip_output c 532 Send completed gw 10 1 1 200 INFO IPRT ip_output c 499 Calling if_output source dest 20 1 1 200 10 1 1 200 gw 10 1 1 200 on rif1 0 0x8 INFO IPRT...

Page 1503: ...averse Stuffing entry into packet DBUG XSAP SAP Traverse Ignoring type 0278 DBUG XSAP SAP Traverse Ignoring type 026b DBUG XSAP SAP Traverse Ignoring type 0640 DBUG XSAP SAP Traverse Ignoring type 0278 DBUG XSAP SAP Traverse Ignoring type 026b DBUG XSAP SAP Traverse Ignoring type 0640 DBUG XSAP type 0004 net 3646f895 mac 00 90 27 a1 44 3c socket 1105 DBUG XSAP SAP Traverse Stuffing entry into pack...

Page 1504: ...1504 ExtremeWare Software 7 0 0 Command Reference Guide Troubleshooting Commands Platform Availability This command is available on all i series platforms ...

Page 1505: ...leared INFO SYST serial admin clear log DBUG KERN 0x0881347d82 00 03 DBUG KERN 0x0881347d72 00 02 00 00 36 12 00 01 00 01 00 00 10 69 00 02 6 i DBUG XRIP Sending Rsp msg to f0001964 ff ff ff ff ff ff len 18 DBUG XRIP Added entry net 1069 hops 2 ticks 3 to rsp DBUG XRIP Added entry net 3612 hops 1 ticks 1 to rsp INFO EAPS eaps_runtime c 1426 State Change Failed Complete EAPS man1 INFO EAPS eaps_run...

Page 1506: ... 1 to rsp INFO EAPS eaps_runtime c 1449 State Change Complete Failed EAPS man1 INFO EAPS eaps_runtime c 1018 Pdu Link Down Pdu EAPS man1 MAC 00 01 30 32 ef 00 INFO EAPS eaps_runtime c 303 Primary Port Change Up Down INFO SYST Port 1 2 link down History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1507: ...d at lower levels Example The following command sets the reporting level for IPX RIP route errors to 2 config debug trace ipxrip route 2 Following is the log output at this level DBUG XRIP Added route to net f0220666 g w f0001964 00 01 30 32 8d 00 hops 2 tics 2 INFO SYST Log cleared History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i...

Page 1508: ...ult level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Not currently supported 1 Not currently supported 2 Not currently supported 3 Not currently supported 4 Not ...

Page 1509: ... config debug trace ipxsap message 3 Following is the log output at this level INFO USER admin logged in through console DBUG XSAP Generating SAP query opcode 0001 svc type ffff INFO SYST Port 2 1 link active 100Mbs FULL duplex INFO SYST Port 2 1 link down INFO SYST User admin logged out from console INFO SYST Log cleared INFO SYST serial admin clear log History This command was first available in...

Page 1510: ...nge is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms debug level Specifies a debug level Following are the debug levels 0 C...

Page 1511: ...g level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms debug level Specifies a debug level Following are the debug ...

Page 1512: ...ines The debug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms debug level Specifies a debug level Following a...

Page 1513: ...uidelines The debug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms debug level Specifies a debug level Follow...

Page 1514: ...e Guidelines The debug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms debug level Specifies a debug level Fol...

Page 1515: ...l range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS tech release and subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on all i series platforms debug level Specifies a debug level Following are the debug levels...

Page 1516: ...d 3 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP DBUG IPHS last message repeated 2 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP debug level Specifies a debug level 0 None 1 Records error and warning messages such as session up state machine errors Initialization errors label allocation errors patricia tree failures invalid message type or format memory allocation er...

Page 1517: ...00000003 DBUG MPLS mpls_lsp_endpt c 765 MPLS Initiating SPF caculation for unbinded LSP to 10 3 1 1 DBUG MPLS mpls_lsp_endpt c 759 Cannot unbind LSP to 10 3 1 1 32 Type 1 nhop 10 0 1 2 without route entry DBUG MPLS mpls_rdb c 2689 RDB REQ not able to find 10 3 1 1 32 nhop 10 0 1 2 DBUG MPLS mpls_lsp_endpt c 735 unbind_from_ipv4_endpoint 10 3 1 1 32 Type 1 nhop 10 0 1 2 DBUG MPLS mpls_rdb c 2689 RD...

Page 1518: ... 100 12 32 nHop 10 0 2 2 DBUG MPLS mpls_rdb c 578 mpls_rdb_callback add route to 192 168 100 12 32 nhop 10 0 2 2 watch 0 orig 33 INFO MPLS mpls_gpp c 1617 Create ILM for FecIp 10 3 1 1 NhlfeIx 1324 EndptIx 1332 InLabel 0x11 OutLabel DBUG MPLS mpls_gpp c 763 MPLS Add ILM DBUG MPLS mpls_lpe c 1302 Bind LSP Req Label 0x00000011 to endpt 10 3 1 1 32 Type 1 INFO MPLS mplsevnt c 369 LMS Notify 0x8d3d1f2...

Page 1519: ...ping FDB refresh for 10 3 1 1 due to LSP DBUG IPHS last message repeated 3 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP DBUG IPHS last message repeated 3 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP DBUG IPHS last message repeated 3 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP INFO SYST User admin logged out from telnet 100 100 105 1 INFO USER admin ...

Page 1520: ...SIG NewSt UPS_RLS_AWT OldSt ESTABLISHED EV RTE_RECOMP_REQ DBUG MSIG NH 10 0 1 2 4 SESS 10 0 2 1 0 Peer 100 100 61 1 0 DBUG MSIG UP_FSM FEC 10 3 1 1 32 DBUG MSIG NH 10 0 1 2 4 NewNH_NoRouteToDestination 0x2 SESS 10 0 2 1 0 Peer 100 100 61 1 0 DBUG MSIG UP_FSM FEC 10 3 1 1 32 DBUG MSIG NH 10 0 1 2 4 NewSt IDLE OldSt EST EV RTE_RECOMP_REQ DBUG MSIG ING_UP_FSM FEC 10 3 1 1 32 DBUG MSIG NH 10 0 1 2 4 N...

Page 1521: ...dule errors to 3 config debug trace npcard 3 History This command was first available in ExtremeWare Platform Availability This command is available on the MPLS PoS ARM and ATM modules debug level Specifies a debug level 0 Indicates that a severe event has occurred that most likely will result in the termination or improper operation of the ARM 1 Indicates that a major event has occurred It may re...

Page 1522: ...0f 01 06 03 0f 01 06 01 DBUG KERN 0x08869c5450 ca 8c 00 00 00 00 00 00 00 00 00 00 ff ff ff 00 DBUG KERN 0x08869c5440 e0 00 00 05 02 01 00 30 01 01 01 01 00 00 00 00 0 DBUG KERN 0x08869c5430 00 c0 00 44 00 00 00 00 00 59 00 00 00 00 00 00 D Y DBUG OSPF 66236 Sending Hello pkt 0x869c5430 len 68 to 224 0 0 5 if rif3 DBUG KERN End of chain 8649b300 DBUG KERN 0x088649b394 01 01 01 01 DBUG KERN 0x08864...

Page 1523: ...0 00 c0 00 44 00 00 00 00 00 59 00 00 00 00 00 00 D Y DBUG OSPF 66233 Sending Hello pkt 0x869c5430 len 68 to 224 0 0 5 if rif5 DBUG KERN End of chain 86498a00 INFO SYST msm a console admin configure debug trace ospf hello 0 vlan all INFO SYST msm a console admin clear log static INFO SYST Log cleared INFO SYST msm a console admin configure debug trace ospf hello 4 vlan all DBUG OSPF 66336 Sending ...

Page 1524: ...el 0 None 1 None 2 Records type 4 and type 5 OSPF packets that are sent and received via the router The message includes Delete LSAs from local Link State Database Add LSAs to local Link State Database Send unicast LS Update packets to neighbor Send multicast LS Update packets Receive unicast LS Update packets from neighbor Receive multicast LS Update packets Send LS unicast LS Acknowledgement to ...

Page 1525: ...bug trace ospf lsa 3 INFO SYST Log cleared INFO SYST msm a console admin clear log static DBUG OSPF Ospf LSA Batch Interval Starting at 73291 DBUG OSPF Ospf LSA Batch Interval Starting at 73261 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1526: ...ST msm a console admin clear log static DBUG OSPF electDR circ 83349bc0 dr 15 1 4 1 bdr 0 0 0 0 DBUG OSPF NBR change rtid 2 2 2 2 ipa 15 1 4 2 state INIT DBUG OSPF electDR circ 83349bc0 dr 15 1 4 1 bdr 15 1 4 2 DBUG OSPF NBR change rtid 2 2 2 2 ipa 15 1 4 2 state FULL DBUG OSPF 73522 Received LS request packet from 15 1 4 2 to 15 1 4 1 len 84 proto 89 DBUG OSPF 73522 Sending LS request pkt 0x81a5f...

Page 1527: ...ng ddpkt 02020202 seq 000126ed flags SLAVE DBUG OSPF NBR change rtid 2 2 2 2 ipa 15 1 4 2 state EXCHANGE DBUG OSPF is slave DBUG OSPF ProcDDP nbr 2 2 2 2 seq 000126ed flags I M MS DBUG OSPF 73522 Received Database packet from 15 1 4 2 to 15 1 4 1 len 32 proto 89 DBUG OSPF 73522 Sending Database pkt 0x81a5f8a0 len 52 to 15 1 4 2 if rif2 DBUG OSPF sending ddpkt 02020202 seq 000007f1 flags I M MASTER...

Page 1528: ...YST Log cleared INFO SYST msm a console admin clear log DBUG OSPF End Extern Spf Incremental 0 DBUG OSPF End Extern Route Table update area 0 0 0 0 debug level Specifies a debug level 0 None 1 None 2 Records SPF calculation and route table update for each area The message includes Intra area SPF calculation for nonbackbone areas Intra area route table update for nonbackbone areas Intra area SPF ca...

Page 1529: ...id 15 2 1 1 data 255 255 255 0 ptype 0x02 tos 0 DBUG OSPF type 0x02 LSA T 2 Id 15 2 1 1 AR 1 1 1 1 DBUG OSPF TryAddTent pent 0x8388DE0C id 15 2 1 1 data 255 255 255 0 cost 8 DBUG OSPF Added pent 0x833c26b4 numHops 1 15 2 2 0 255 255 255 0 cost 9 cost2 0 type 3 lsai 0x0 hashbucket 16 DBUG OSPF LSA lsai NULL cost2 0 DBUG OSPF AddTent vid 15 2 2 0 data 255 255 255 0 cost 9 tmp_pent 0x8388DE0C type 0x...

Page 1530: ...xtremeWare Software 7 0 0 Command Reference Guide Troubleshooting Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1531: ... is incorrect if there are missing cache entries or if any multicast stream jitters Example The following command sets the reporting level for PIM cache errors to 3 config debug trace pim cache 3 Following is the log output at this level INFO SYST msm a console admin configure debug trace pim cache 3 DBUG PIM PIM 142 168 100 100 236 58 16 16 pimSendRegStop dst 15 1 6 3 DBUG PIM PIM ProcRegister sp...

Page 1532: ...8 100 101 235 48 13 0 entry timer starting for 210 DBUG PIM PIM 142 168 100 101 235 48 13 0 fwd extending entry s life DBUG PIM PIM ProcRegister NoBorder rp 15 2 1 1 src 15 1 6 3 DBUG PIM PIM ProcRegister 142 168 100 101 235 48 13 0 DBUG PIM PIM ProcRegister null bit set DBUG PIM PIM ProcRegister NoBorder rp 15 1 4 1 src 15 1 6 3 DBUG PIM PIM ProcRegister 192 168 100 201 229 55 150 208 DBUG PIM PI...

Page 1533: ... level INFO SYST msm a console admin configure debug trace pim hello 3 vlan all INFO SYST Log cleared INFO SYST msm a console admin clear log static DBUG PIM PIM Receiving Hello pkt of len 18 from src 15 2 1 2 thro 15 2 1 1 DBUG PIM PIM Receiving Hello pkt of len 18 from src 15 1 4 2 thro 15 1 4 1 DBUG PIM PIM Xmitting Hello pkt of len 18 from src 15 2 1 1 to 224 0 0 13 DBUG PIM PIM Xmitting Hello...

Page 1534: ...rom src 15 1 4 2 thro 15 1 4 1 DBUG PIM PIM Xmitting Hello pkt of len 18 from src 15 2 1 1 to 224 0 0 13 DBUG PIM PIM Xmitting Hello pkt of len 18 from src 15 1 4 1 to 224 0 0 13 DBUG PIM PIM Receiving Hello pkt of len 18 from src 15 1 6 3 thro 15 1 6 1 DBUG PIM PIM Xmitting Hello pkt of len 18 from src 15 1 6 1 to 224 0 0 13 INFO SYST msm a console admin configure debug trace pim hello 3 vlan all...

Page 1535: ... The following command sets the reporting level for PIM message errors to 3 config debug trace pim message 3 Following is the log output at this level INFO SYST msm a console admin configure debug trace pim message 3 vlan all DBUG PIM PIM Xmitting RP Adv 8 pkt of len 22 from src 15 2 1 1 to 15 1 6 3 DBUG PIM PIM Xmitting RP Adv 8 pkt of len 22 from src 15 1 6 1 to 15 1 6 3 DBUG PIM PIM Xmitting RP...

Page 1536: ...0 DBUG PIM PIM ProcJPG handling 227 37 32 5 255 255 255 255 DBUG PIM PIM ProcJoin src 0 0 0 0 rp 15 1 6 1 type g DBUG PIM PIM ProcJoinPrune joins 1 prunes 0 DBUG PIM PIM ProcJPG handling 227 37 32 4 255 255 255 255 DBUG PIM PIM ProcJoin src 0 0 0 0 rp 15 2 1 1 type g DBUG PIM PIM ProcJoinPrune joins 1 prunes 0 DBUG PIM PIM ProcJPG handling 227 37 32 3 255 255 255 255 DBUG PIM PIM ProcJoin src 0 0 ...

Page 1537: ...mand sets the reporting level for PIM neighbor errors to 3 config debug trace pim neighbor 3 Following is the log output at this level INFO SYST msm a console admin configure debug trace pim neighbor 3 vlan all INFO SYST Log cleared INFO SYST msm a console admin clear log static INFO SYST Port 8 1 link down INFO SYST Port 8 2 link down INFO SYST Port 8 3 link down INFO SYST Port 8 4 link down DBUG...

Page 1538: ...xtremeWare Software 7 0 0 Command Reference Guide Troubleshooting Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms ...

Page 1539: ...g debug trace pim rp mgmt 3 Following is the log output at this level INFO SYST msm a console admin configure debug trace pim rp mgmt 3 INFO SYST Log cleared INFO SYST msm a console admin clear log static DBUG PIM PIM ProcBootstrap Wrong iif for BSR 15 1 6 3 DBUG PIM PIM ProcBootstrap from 15 1 4 2 in 15 1 4 1 len 56 DBUG PIM PIM rpDelEntry 15 3 1 1 Bootstrap DBUG PIM PIM ProcBootstrap rp 15 3 1 1...

Page 1540: ...ted DBUG PIM PIM rpDelEntry 15 1 8 2 Bootstrap DBUG PIM PIM ProcBootstrap rp 15 1 8 2 no longer listed DBUG PIM PIM rpDelEntry 15 2 1 1 Bootstrap DBUG PIM PIM ProcBootstrap rp 15 2 1 1 no longer listed DBUG PIM PIM rpDelEntry 15 1 6 1 Bootstrap DBUG PIM PIM ProcBootstrap rp 15 1 6 1 no longer listed DBUG PIM PIM rpDelEntry 15 1 4 1 Bootstrap DBUG PIM PIM ProcBootstrap rp 15 1 4 1 no longer listed ...

Page 1541: ...sage errors to 3 config debug trace rip message 3 Following is the log output at this level DBUG RIP Sending Rsp to 224 0 0 9 at 1012569160 950000 INFO SYST msm a console admin configure debug trace rip message 3 vlan all History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 None 1...

Page 1542: ... Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Not currently supported 1 Not currently supported 2 Not currently supported 3 Not currently supported 4 Not currently supp...

Page 1543: ... following command sets the reporting level for RIP triggered update errors to 3 config debug trace rip triggered update 3 Following is the log output at this level DBUG RIP Suppressing triggered updates for 1 secs INFO SYST msm a console admin enable rip INFO SYST msm a console admin disable rip History This command was first available in ExtremeWare 6 1 Platform Availability This command is avai...

Page 1544: ...and was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Records serious errors that can cause 3DNS support to fail This includes problems associated with system resources invalid iQuery messages and internal SLB and 3DNS table maintenance 1 Records task and or socket layer errors These errors might i...

Page 1545: ...ommand is available on all i series platforms debug level Specifies a debug level 0 Records critical failures such as insufficient memory unexpected internal state 1 Records unaccepted or dropped connections as well as physical ports removed from a GoGo mode group since a failed health check and physical ports added to a GoGo mode group since a passed health check 2 Records GoGo mode resources tha...

Page 1546: ...mple The following command sets the reporting level for SLB failover errors to 3 config debug trace slb failover 3 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Records possible software errors such as unexpected function call failures and bad function arguments 1 Records c...

Page 1547: ... in pdu 4 Following is the log output at this level DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config INFO SYST msm a console admin configure debug trace stp in pdu 2 DBUG STP last message repeated 3 times DBUG STP send_bpdu s0 port 3 3 config DBUG STP last message repeated 51 ...

Page 1548: ...send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 ...

Page 1549: ...g trace stp out pdu 3 Following is the log output at this level DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG STP send_bpdu s0 port 3 3...

Page 1550: ...port 3 3 config DBUG STP Stpd s0 Port 3 11 Received Config Bpdu DBUG KERN 0x088134e474 00 00 14 00 02 00 0f 00 DBUG KERN 0x088134e464 7d 00 00 00 00 00 80 00 00 e0 2b 81 7d 00 41 03 A DBUG KERN 0x088134e454 00 26 42 42 03 00 00 00 00 00 80 00 00 e0 2b 81 BB DBUG KERN 0x088134e444 01 80 c2 00 00 00 00 e0 2b 81 7d 00 81 00 e0 00 02 01 2002 10 48 09 DBUG STP send_bpdu s0 port 3 3 config DBUG STP Stpd...

Page 1551: ...t level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Not currently supported 1 Not currently supported 2 Not currently supported 3 Not currently supported 4 Not cu...

Page 1552: ... 5 config debug trace vrrp 5 Following is the log output at this level DBUG SYS Vlan Vrid vlan1 1 Putting virtualMac 00 00 5e 00 01 01 into arpcom DBUG SYS Vlan Vrid vlan1 1 Putting systemMac 00 01 30 04 c8 00 into arpcom History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all i series platforms debug level Specifies a debug level 0 Reco...

Page 1553: ...nsmit vrid 1 pri 255 cnt_ip_addr 1 auth_type 0 advert 1 ipaddr 10 45 208 10 DBUG SYS Sending vrrp pkt 0x8313d630 len 40 to 224 0 0 18 if rif0 mac 00 00 5e 00 01 01 DBUG KERN Start of chain 84859200 DBUG KERN m0 0x84859200 Length 40 m_off 20 m_data 0x84859214 DBUG KERN 0x0884859214 00 00 00 28 00 00 00 00 ff 70 00 00 00 00 00 00 p DBUG KERN 0x0884859224 e0 00 00 12 21 01 ff 01 00 01 05 c4 0a 2d d0 ...

Page 1554: ...tremeWare Software 7 0 0 Command Reference Guide Troubleshooting Commands History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all i series platforms ...

Page 1555: ...up config diagnostics fastpost History This command was first available in ExtremeWare 6 1 9 Platform Availability This command is available on i series BlackDiamond switches extended Selects an extended diagnostic routine to run at boot up Takes the switch fabric and ports offline and performs extensive ASIC ASIC memory packet switch and packet loopback tests This parameter is not supported in Ex...

Page 1556: ... show switch or show config commands If you reboot the switch manually or use the run msm failover or run diagnostics commands the time interval and count are both reset to 0 Example The following command configures the time interval to 5 minutes and the count to 4 config reboot loop protection threshold 5 4 History This command was first available in ExtremeWare 6 2 2 Platform Availability This c...

Page 1557: ...ge Guidelines The IP address specified is also used if no address is provided in the upload system dump command The IP address must be reachable through the VLAN mgmt Example The following command configures the IP address to transfer a system dump to 10 10 10 1 config system dump server 10 10 10 1 3 History This command was first available in ExtremeWare 6 2 2 Platform Availability This command i...

Page 1558: ...ault is 0 Usage Guidelines The minimum non zero value is 120 seconds The minimum recommended value is 480 seconds Example The following command configures the system dump timeout to 600 seconds config system dump timeout 600 History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on platforms with an Ethernet management port seconds Specifies a...

Page 1559: ...st Syntax Description Default N A Usage Guidelines None Example The following command looks up the IP address of a computer with the name of bigserver xyz_inc com nslookup bigserver xyz_inc com History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms hostname Specifies a hostname ...

Page 1560: ...tocol the from source and with record route options are not supported Example The following command enables continuous ICMP echo messages to be sent to a remote host udp Specifies that the ping request should use UDP instead of ICMP continuous Specifies that UDP or ICMP echo messages to be sent continuously This option can be interrupted by pressing any key start_size Specifies the size in bytes o...

Page 1561: ... command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 1 to support the hostname from and with record route parameters and incremental packets This command was modified in ExtremeWare 6 2 to support UDP Platform Availability This command is available on all platforms ...

Page 1562: ...l diagnostics are short series of tests that do not test all the internal ASIC functions On a management module the extended diagnostic routine tests all components including the internal ASIC functions The management module is taken off line while the diagnostic test is performed It is reset and operational once the test is completed To view results of normal or extended diagnostics tests use the...

Page 1563: ...xtended diagnostics will disrupt network traffic on the system Extended diagnostic will also execute Packet Memory Scan WARNING Device may be taken offline To prevent this first configure sys health check auto recovery online Are you sure you want to continue yes no y History This command was first available in ExtremeWare 6 1 5 The command was modified to support the MPLS module in an ExtremeWare...

Page 1564: ...heir locations are recorded in the blade s EEPROM Up to eight occurances can be recorded If a defect was found during the scan process the module is reset the defective buffer is mapped out from further use and the I O module is returned to the operational state If more than eight defects are detected or if the defects cannot be mapped out the module is treated as a failed module and left offline ...

Page 1565: ...cket 00 34 26 49 80 64 50 14 1f 60 54 1d a3 27 ee 5c 44 10 01 fd 1b 2a 15 0c 4e 79 71 c5 3c 19 1e 6b 36 83 20 40 39 35 79 67 2e 25 6c 7e ae 01 06 49 10 61 0e 30 3d da 55 9d 02 67 40 62 2a 2f 3a 64 47 dc 00 86 Transmit Packet 00 34 26 49 80 64 50 14 1f 60 54 1d a3 27 ee 5c 44 10 01 fd 1b 2a 15 0c 4e 79 71 c5 3c 19 1e 6b 36 83 20 44 39 35 79 67 2e 25 6c 7e ae 01 06 49 10 61 0e 30 3d da 55 9d 02 67 4...

Page 1566: ...el bgp keepalive Specifies BGP keepalive level bgp misc Specifies miscellaneous BGP level bgp msgs Specifies BGP message level bgp neighbor Not currently supported bgp update in Specifies incoming BGP update level bgp update out Specifies outgoing BGP update level bootprelay Specifies BOOTP relay level card state change Not currently supported dvmrp cache Specifies DVMRP cache level dvmrp hello Sp...

Page 1567: ... level ospf lsa Specifies OSPF LSA level ospf neighbor Specifies OSPF neighbor level ospf spf Specifies OSPF SPF level pim cache Specifies PIM cache level pim hello Specifies PIM hello level pim neighbor Specifies PIM neighbor level pim message Specifies PIM message level pim rp mgmt Specifies PIM RP level rip message Specifies RIP message level rip route change Specifies RIP route level rip trigg...

Page 1568: ... a msm b slot number Depending on the software version running on your switch or the model of your switch additional or different diagnostics information might be displayed Example The following command displays the results of module diagnostics for the MSM64i in slot B show diagnostics slot msm b slot number Specifies the slot number of an I O module msm a msm b Specifies the MSM64i Table 28 Show...

Page 1569: ...on a stand alone switch show diagnostics The results are similar to the following Diagnostic Test Result run on Thu Sep 14 16 01 15 2000 CPU System Passed Registers Test Passed Memory Test Passed System Test Passed History This command was available in ExtremeWare 4 1 19 and in ExtremeWare 6 1 5 The command was modified to include MSM64i modules in ExtremeWare 6 1 9 The command was modified to sup...

Page 1570: ... is specified the port mapping display is limited to active external I O ports only Used in conjunction with the show diagnostics backplane utilization command these commands are helpful for diagnosing over subscription problems related to backplane I O port switch mappings Example The following command displays diagnostic information related to the ARM module internal backplane switch ports show ...

Page 1571: ...arameter is specified the port mapping display is limited to active external I O ports only Used in conjunction with the show diagnostics backplane utilization command these commands are helpful for diagnosing over subscription problems related to backplane I O port switch mappings Example The following command displays diagnostic information related to the MPLS module internal backplane switch po...

Page 1572: ...ckplane links between active modules and MSM64i modules The number of packets transmitted and received The percentage of bandwidth used on the link Backplane utilization statistics can be reset by pressing 0 while the information is being displayed Example The following command displays backplane link utilization information show diagnostics backplane utilization History This command was first ava...

Page 1573: ...ct In ExtremeWare 6 2 1 this applies only to the G8Xi G8Ti G12SXi and F48Ti MSM blades are not supported in this release In ExtremeWare 6 2 2 this apples to all i series modules and switches Example The following command displays the results of a PM scan for slot 2 where a single defect was found show diagnostics packet memory slot 2 If no defects are found the output will look similar to the foll...

Page 1574: ...mmand Reference Guide Troubleshooting Commands recoverable 0 mem ID 9 bit position 0 address 0x18baa History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all i series switches ...

Page 1575: ...s all MAC cache entries learned on the VLAN Specifying the TLS tunnel displays all MAC cache entries learned on the TLS tunnel The MAC address VLAN name and TLS tunnel name are displayed for each MAC cache entry Example The following command displays the MAC cache entries learned on the VLAN test_1 for the MPLS module in slot 2 show diagnostics slot 2 fdb vlan test_1 History This command was first...

Page 1576: ...p server To specify the timeout use the following command config system dump timeout Example The following command displays the system dump server IP and dump timeout show system dump Following is the output from this command with nothing configured Server ip none Dump timeout none Following is the output from this command with both an IP address and timeout configured Server ip 10 5 2 82 ok Dump ...

Page 1577: ...re Software 7 0 0 Command Reference Guide 1577 Dump timeout 300 seconds History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on platforms with an Ethernet management port ...

Page 1578: ...ds show version show switch show config show diag show slot show fdb show iparp show ipfdb show ipstats show iproute show ipmc cache detail show ipmc fdb show igmp snooping detail show memory detail show log It also displays the output from internal debug commands This command disables the CLI paging feature This information can be useful for your technical support representative if you experience...

Page 1579: ...ence Guide 1579 show tech support History This command was first available in ExtremeWare 6 1 9 This command was modified to capture the show ipmc fbd command output in ExtremeWare 6 22 Platform Availability This command is available on all i series platforms ...

Page 1580: ...showing consistent or periodic high CPU utilization You can change the display by typing a character while the display is active These single character commands are as follows The following table defines the tasks Depending on your switch model and the functions it is executing you will see only a subset of these tasks Table 29 TOP command display options u Go up one screen d Go down one screen c ...

Page 1581: ... to be sent up by the hardware ASICs It only releases control of the CPU if packets are sent to the switch or if timer functions signal another task to become active tCardTask The I O card event task tCardTask manages the event signaling hardware and state machine for the I O cards in a chassis based system tChecksumPoll The i series chipset checksum polling task tChecksumPoll periodically polls t...

Page 1582: ...a BlackDiamond switch s redundant MSM CPU modules tOpenPort A server load balancing SLB Layer 4 Layer 7 health check sub task tospfMsgTask The OSPF message processing task tospfMsgTask implements and manages the processing of OSPF messages tospfSpfTask The OSPF shortest path forward task tospfSpfTask executes the SPF algorithm run processing for OSPF tospfTimer The OSPF timer task tospfTimer manag...

Page 1583: ...erver load balancing failover task tSlowTimer The slow timer task tSlowTimer maintains a queue of timer events triggering periodic or single event functions Typically these events have a large period gap in terms of time between reccurrences tsmartTrap Extreme smart trap task tSnmpd The SNMP daemon task manages all SNMP processing on the system tSntpc The simple network time protocol client task t...

Page 1584: ...9f4 PEND T 0 0 tbgpTimerT 81eaecd0 80749164 DELAY 0 0 tBgQosMon 81eb6be0 8075ab2c PEND 0 0 tEapsTask 82bd2a00 8075ab2c PEND 0 0 tSwFault 82c75530 8075ab2c PEND 0 0 tFdbAgeTas 82c85530 8075ab2c PEND 0 0 tFdbSyncTa 82c89530 807489a0 SUSPEND 0 0 tdiagTask 82c8d620 8075ab2c PEND 0 0 tIpxTask 82c91620 8075ab2c PEND 0 0 tIpxTx 836e97f0 8075ab2c PEND 0 1 Press h for help History This command was availabl...

Page 1585: ...scription This command has no arguments or variables Default N A Usage Guidelines Returns the system dump configuration to the defaults Example The following command unconfigures the system dump unconfig system dump History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on platforms with an Ethernet management port ...

Page 1586: ...sage Guidelines If you do not specify an IP address the configured system dump server IP address is used Example The following command tranfers a system dump to 10 10 10 1 upload system dump 10 10 10 1 3 History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on platforms with an Ethernet management port ip address Specifies the IP address to w...

Page 1587: ...umber 1040 config bgp cluster id 1041 config bgp confederation id 1042 config bgp delete aggregate address 1043 config bgp delete confederation peer sub AS number 1044 config bgp delete network 1045 config bgp local preference 1046 config bgp med 1047 config bgp neighbor as path filter 1048 config bgp neighbor dampening 1050 config bgp neighbor maximum prefix 1052 config bgp neighbor next hop self...

Page 1588: ... hello 1512 config debug trace isis lsp 1513 config debug trace isis spf 1515 config debug trace mpls 1516 config debug trace mpls signalling 1519 config debug trace npcard 1521 config debug trace ospf hello 1522 config debug trace ospf lsa 1524 config debug trace ospf neighbor 1526 config debug trace ospf spf 1528 config debug trace pim cache 1531 config debug trace pim hello 1533 config debug tr...

Page 1589: ... iproute priority 810 config iproute route map 812 config ipxmaxhops 1184 config ipxrip add vlan 1185 config ipxrip delete vlan 1186 config ipxrip vlan delay 1187 config ipxrip vlan export filter 1188 config ipxrip vlan import filter 1189 config ipxrip vlan max packet size 1190 config ipxrip vlan trusted gateway 1191 config ipxrip vlan update interval 1192 config ipxroute add 1193 config ipxroute ...

Page 1590: ...g ospf metric table 943 config ospf priority 920 config ospf routerid 944 config ospf spf hold time 946 config ospf timer 922 config ospf vlan area 947 config ospf vlan neighbor add 948 config ospf vlan neighbor delete 949 config ospf vlan timer 950 config pim add vlan 1143 config pim cbsr 1144 config pim crp static 1145 config pim crp timer 1146 config pim crp vlan access policy 1147 config pim d...

Page 1591: ...d 372 config slb global ping check 373 config slb global pop3 374 config slb global service check 375 config slb global smtp 376 config slb global synguard 377 config slb global tcp port check 378 config slb global telnet 379 config slb gogo mode health check 380 config slb gogo mode ping check 381 config slb gogo mode service check ftp 383 config slb gogo mode service check http 384 config slb go...

Page 1592: ...d track vlan 748 config vlan delete domain member vlan 749 config vlan delete multilink 1342 config vlan delete port 240 config vlan delete track bgp 750 config vlan delete track diagnostic 751 config vlan delete track environment 752 config vlan delete track iproute 753 config vlan delete track lsp 1410 config vlan delete track ospf 754 config vlan delete track ping 755 config vlan delete track r...

Page 1593: ...v examination ports 300 disable diffserv replacement ports 301 disable dlcs 302 disable dot1p replacement ports 303 disable dvmrp 1155 disable dvmrp rxmode vlan 1156 disable dvmrp txmode vlan 1157 disable eaps 693 disable edp ports 176 disable esrp vlan 765 disable flooding ports 178 disable flow redirect 429 disable flowstats 526 disable flowstats filter ports 527 disable flowstats ping check 529...

Page 1594: ...able slb gogo mode tcp port check 439 disable slb L4 port 441 disable slb node 442 disable slb node ping check 444 disable slb node tcp port check 445 disable slb proxy client persistence 447 disable slb vip 448 disable slb vip client persistence 450 disable slb vip service check 451 disable slb vip sticky persistence 452 disable slb vip svcdown reset 453 disable slot 185 disable smartredundancy 1...

Page 1595: ...able irdp 871 enable isis 985 enable isis export 986 enable isis ignore attached bit 988 enable isis originate default 989 enable isis overload 990 enable isq vlan 312 enable jumbo frame ports 190 enable lbdetect port 191 enable learning ports 192 enable license 76 enable log display 540 enable loopback mode vlan 872 enable lpm 1239 enable mac vlan mac group 253 enable mirroring to port 193 enable...

Page 1596: ...accounting 653 enable tacacs authorization 654 enable telnet 130 enable type20 forwarding 1214 enable udp echo server 875 enable vman termination 1353 enable vrrp 783 enable web 132 exit 133 H history 77 L logout 134 N nslookup 1559 P ping 1560 Q quit 135 R reboot 78 restart multilink 1354 restart ports 201 rtlookup 876 run diagnostics 1562 run diagnostics packet memory slot 1564 run fdb check 271...

Page 1597: ... multilink t1 alarms 1357 show multilink t1 errors 1360 show nat 341 show netlogin 664 show netlogin info 665 show odometer 138 show ospf 1016 show ospf area 1017 show ospf area detail 1018 show ospf ase summary 1019 show ospf interfaces 1021 show ospf interfaces detail 1020 show ospf lsdb 1022 show ospf virtual link 1024 show pim 1179 show pim rp set 1179 show ports alarms 1361 show ports collisi...

Page 1598: ...322 unconfig dvmrp 1180 unconfig eaps port 700 unconfig flowstats filter 566 unconfig icmp 889 unconfig igmp 1181 unconfig iparp 890 unconfig ipxrip 1222 unconfig ipxsap 1223 unconfig irdp 891 unconfig management 148 unconfig mpls 1427 unconfig mpls hello hold time 1428 unconfig mpls qos mapping 1429 unconfig ospf 1029 unconfig pim 1182 unconfig ports display string 223 unconfig ports monitor vlan...

Reviews:

No comments