Extreme Networks ExtremeWare 7.3.0 Command Reference Manual Download Page 761 | Manualshive

Page: 761 / 2254

background image

ExtremeWare Software 7.3.0 Command Reference Guide

761

11

Security Commands

This chapter describes:

•

Commands for creating and configuring routing access policies

•

Commands for creating and configuring IP access lists

•

Commands for creating and configuring route maps

•

Commands for managing the switch using SSH2

•

Commands related to switch user authentication through a RADIUS client

•

Commands related to switch user authentication through

•

Commands for protecting the switch from Denial of Service (DoS) attacks

•

Commands for Network Login configuration

•

Commands for Trusted MAC or OUI configuration

•

Commands for configuring secure access for all wired and wireless stations through Unified
Access™ Security

Access policies

are a generalized category of features that impact forwarding and route forwarding

decisions. Access policies are used primarily for security and quality of service (QoS) purposes.

IP access lists

(also referred to as Access Lists or ACLs) consist of IP access rules and are used to perform

packet filtering and forwarding decisions on incoming traffic. Each packet arriving on an ingress port is
compared to the access list in sequential order and is either forwarded to a specified QoS profile or
dropped. Using access lists has no impact on switch performance.

Access lists are typically applied to traffic that crosses layer 3 router boundaries, but it is possible to use
access lists within a layer 2 VLAN. Extreme products are capable of performing this function with no
additional configuration.

Routing access policies

are used to control the advertisement or recognition of routing protocols, such as

RIP, OSPF, IS-IS, or BGP. Routing access policies can be used to ‘hide’ entire networks or to trust only
specific sources for routes or ranges of routes. The capabilities of routing access policies are specific to
the type of routing protocol involved, but are sometimes more efficient and easier to implement than
access lists.

To use routing access policies, follow these steps:

1

Create an access profile.

2

Configure the access profile mode to be of type

permit

,

deny

, or

none (which allows per-entry

configuration of the permit/deny attribute).

«
...
759
760
761
762
763
...
»

Summary of Contents for ExtremeWare 7.3.0

Page 1: ...ks Inc 3585 Monroe Street Santa Clara California 95051 888 257 3000 http www extremenetworks com ExtremeWare Software Command Reference Guide Software Version 7 3 0 Published March 2005 Part number 10...

Page 2: ...to change without notice Adobe Acrobat and Reader are registered trademarks of Adobe Systems Incorporated NetWare and Novell are registered trademarks of Novell Inc Merit is a registered trademark of...

Page 3: ...dns client add 71 configure dns client add domain suffix 72 configure dns client add name server 73 configure dns client default domain 74 configure dns client delete 75 configure dns client delete do...

Page 4: ...e community 119 configure snmp delete trapreceiver 121 configure snmp sysContact 122 configure snmp sysLocation 123 configure snmp sysName 124 configure snmpv3 add access 125 configure snmpv3 add comm...

Page 5: ...ent update interval 159 configure web login timeout 160 disable alt queue management 161 disable snmp access 162 disable snmp dot1dTpFdbTable 163 disable snmp traps 164 disable snmp traps exceed commi...

Page 6: ...show snmpv3 group 204 show snmpv3 mib view 205 show snmpv3 notify 206 show snmpv3 target addr 207 show snmpv3 target addr ext 208 show snmpv3 target params 209 show snmpv3 user 210 show sntp client 2...

Page 7: ...configure ports link detection level 245 configure ports redundant 246 configure ports vdsl 248 configure sharing address based 249 configure slot 250 disable edp ports 253 disable flooding ports 255...

Page 8: ...show slot 304 unconfigure msm failover 308 unconfigure port aggregate bandwidth 309 unconfigure ports display string 310 unconfigure ports redundant 311 unconfigure slot 312 Chapter 5 VLAN Commands co...

Page 9: ...able mac vlan port 342 enable gvrp 343 enable mac vlan mac group port 344 show gvrp 345 show mac vlan 346 show protocol 347 show vlan 348 unconfigure ports monitor vlan 351 unconfigure vlan ipaddress...

Page 10: ...2 configure vlan priority 393 configure vlan qosprofile 394 disable diffserv examination ports 395 disable diffserv replacement ports 396 disable dlcs 397 disable dot1p replacement ports 398 disable q...

Page 11: ...rect add next hop 440 configure flow redirect delete next hop 441 configure flow redirect service check ftp 442 configure flow redirect service check http 443 configure flow redirect service check L4...

Page 12: ...synguard 471 configure slb global tcp port check 472 configure slb global telnet 473 configure slb gogo mode health check 474 configure slb gogo mode ping check 475 configure slb gogo mode service ch...

Page 13: ...check pop3 514 configure slb vip service check smtp 515 configure slb vip service check telnet 516 configure vlan slb type 517 create flow redirect 518 create slb pool 520 create slb vip 521 delete fl...

Page 14: ...failover ping check 556 enable slb global synguard 557 enable slb gogo mode 558 enable slb gogo mode ping check 559 enable slb gogo mode service check 560 enable slb gogo mode tcp port check 561 enab...

Page 15: ...4 clear log counters 606 clear log diag error 608 clear log diag remap 609 clear transceiver test 610 configure flowstats export add port 611 configure flowstats export delete port 613 configure flows...

Page 16: ...ransceiver test failure action 661 configure transceiver test period 663 configure transceiver test threshold 664 configure transceiver test window 665 create log filter 666 delete log filter 667 disa...

Page 17: ...alth check 701 enable syslog 703 enable temperature logging 704 enable transceiver test 706 show flowstats 708 show flowstats export 710 show flowstats 711 show log 713 show log components 717 show lo...

Page 18: ...state 764 clear netlogin state mac address 765 configure access profile add 766 configure access profile delete 769 configure access profile mode 770 configure auth mgmt access radius 771 configure a...

Page 19: ...ure route map add match 803 configure route map add set 805 configure route map delete 807 configure route map delete goto 808 configure route map delete match 809 configure route map delete set 811 c...

Page 20: ...profile 840 configure vlan dhcp address range 841 configure vlan dhcp lease timer 843 configure vlan dhcp options 844 configure vlan netlogin lease timer 847 create access list icmp destination source...

Page 21: ...counting 884 disable tacacs authorization 885 disable trusted mac address 886 disable web http 887 disable web https 888 download ssl certificate 889 download ssl privkey 890 enable access list 891 en...

Page 22: ...s list fdb 920 show access list monitor 921 show access profile 922 show arp learning vlan 923 show arp learning vlan ports 924 show auth 925 show cpu dos protect 926 show enhanced dos protect 927 sho...

Page 23: ...e radius accounting 961 unconfigure tacacs 962 unconfigure tacacs accounting 963 unconfigure vlan dhcp address range 964 unconfigure vlan dhcp options 966 Chapter 12 EAPS Commands configure eaps add c...

Page 24: ...nfigure stpd hellotime 1009 configure stpd maxage 1010 configure stpd mode 1011 configure stpd ports cost 1012 configure stpd ports link type 1014 configure stpd ports mode 1016 configure stpd ports p...

Page 25: ...port mode ports 1062 configure msm failover esrp failover mode 1064 configure vlan add domain member vlan 1066 configure vlan add elrp poll ports 1067 configure vlan add ports no restart 1068 configur...

Page 26: ...oll enable 1091 configure vlan esrp esrp election 1093 configure vlan esrp esrp premaster timeout 1095 configure vlan esrp group 1096 configure vlan esrp group add esrp aware ports 1097 configure vlan...

Page 27: ...gure bootprelay delete 1147 configure bootprelay dhcp agent information check 1148 configure bootprelay dhcp agent information option 1150 configure bootprelay dhcp agent information policy 1151 confi...

Page 28: ...subvlan 1183 create udp profile 1184 delete udp profile 1185 disable bootp vlan 1186 disable bootprelay 1187 disable icmp address mask 1188 disable icmp parameter problem 1189 disable icmp port unreac...

Page 29: ...ceeded 1217 enable icmp timestamp 1218 enable icmp unreachables 1219 enable icmp useredirects 1220 enable iparp checking 1221 enable iparp refresh 1222 enable ipforwarding 1223 enable ipforwarding lpm...

Page 30: ...clear isis adjacency 1259 clear isis lsdb 1260 configure isis add area address 1261 configure isis add vlan 1262 configure isis area add domain summary 1263 configure isis area delete domain summary 1...

Page 31: ...ure ospf area add range 1294 configure ospf area delete range 1295 configure ospf area normal 1296 configure ospf area nssa stub default cost 1297 configure ospf area stub stub default cost 1298 confi...

Page 32: ...a 1328 delete isis area 1329 delete ospf area 1330 disable isis 1331 disable isis export 1332 disable isis ignore attached bit 1334 disable isis originate default 1335 disable isis overload 1336 disab...

Page 33: ...enable rip 1367 enable rip aggregation 1368 enable rip export cost 1369 enable rip export static cost 1371 enable rip exportstatic 1372 enable rip originate default cost 1373 enable rip poisonreverse...

Page 34: ...path filter 1409 configure bgp neighbor dampening 1410 configure bgp neighbor maximum prefix 1412 configure bgp neighbor next hop self 1414 configure bgp neighbor nlri filter 1415 configure bgp neighb...

Page 35: ...configure bgp soft reconfiguration 1445 create bgp neighbor peer group 1446 create bgp neighbor remote AS number 1447 create bgp peer group 1448 delete bgp neighbor 1449 delete bgp peer group 1450 dis...

Page 36: ...onfigure dvmrp vlan cost 1488 configure dvmrp vlan export filter 1489 configure dvmrp vlan import filter 1490 configure dvmrp vlan trusted gateway 1491 configure dvmrp vlan timer 1492 configure igmp 1...

Page 37: ...517 configure pim vlan trusted gateway 1518 disable dvmrp 1519 disable dvmrp rxmode vlan 1520 disable dvmrp txmode vlan 1521 disable igmp 1522 disable igmp snooping 1523 disable igmp snooping with pro...

Page 38: ...1561 configure ipxrip vlan export filter 1562 configure ipxrip vlan import filter 1563 configure ipxrip vlan max packet size 1564 configure ipxrip vlan trusted gateway 1565 configure ipxrip vlan upda...

Page 39: ...590 show ipxrip 1591 show ipxroute 1592 show ipxsap 1593 show ipxservice 1594 show ipxstats 1595 unconfigure ipxrip 1596 unconfigure ipxsap 1597 unconfigure vlan xnetid 1598 xping 1599 Chapter 21 ARM...

Page 40: ...e aps timers 1636 configure diffserv dscp mapping ports 1637 configure dot1q tagmapping ports 1639 configure dot1q tagnesting ports 1641 configure flowstats export add 1643 configure flowstats export...

Page 41: ...ace section ports 1672 create account pppuser 1673 create aps 1674 delete account pppuser 1675 delete aps 1676 disable aps 1677 disable red ports queue 1678 enable aps 1679 enable red ports queue 1680...

Page 42: ...1713 configure ppp user 1714 configure qosprofile min bps 1715 configure qosprofile wanqos maxbuf 1717 configure vlan add multilink 1718 configure vlan delete multilink 1719 configure wanqos egress ma...

Page 43: ...1754 configure mpls add vpls 1756 configure mpls add tls tunnel 1758 configure mpls add vlan 1761 configure mpls delete 1763 configure mpls delete tls tunnel 1764 configure mpls delete vlan 1765 conf...

Page 44: ...vp te delete path 1798 configure mpls rsvp te add ero 1799 configure mpls rsvp te delete ero 1801 configure mpls rsvp te profile 1802 configure mpls rsvp te vlan 1804 configure mpls tls tunnel lsp 180...

Page 45: ...ure mpls 1850 unconfigure mpls qos mapping 1851 vplsping 1852 vplstrace 1854 Chapter 26 High Density Gigabit Ethernet Commands abort diagnostics cable 1858 configure application examination ports 1859...

Page 46: ...configure qostype ingress priority 1897 Chapter 27 Power Over Ethernet Commands clear inline power connection history slot 1900 clear inline power fault ports 1901 clear inline power stats ports 1902...

Page 47: ...unconfig inline power violation precedence ports 1937 Chapter 28 H VPLS Commands clear mpls vpls counters 1940 configure mpls add vpls 1941 configure mpls delete 1943 configure mpls edge service mode...

Page 48: ...clear wireless ports interface ap scan results 1991 clear wireless ports interface client history 1992 clear wireless ports interface client scan counters 1993 clear wireless ports interface client s...

Page 49: ...rap 2020 configure wireless ports interface channel 2021 configure wireless ports interface client history size 2023 configure wireless ports interface client history timeout 2024 configure wireless p...

Page 50: ...interface client scan 2058 enable wireless ports interface iapp 2059 enable wireless ports interface svp 2060 enable wireless ports time 2061 reset wireless ports 2062 reset wireless ports interface 2...

Page 51: ...configuration mode 2108 configure download server 2109 configure switch 2110 download bootrom 2112 download configuration 2113 download configuration cancel 2115 download configuration every 2116 down...

Page 52: ...race ipxsap entry 2164 configure debug trace ipxsap message 2165 configure debug trace isis cli 2166 configure debug trace isis event 2167 configure debug trace isis hello 2168 configure debug trace i...

Page 53: ...2203 configure system dump timeout 2204 disable log debug mode 2205 enable log debug mode 2206 nslookup 2207 ping 2208 run diagnostics 2210 run diagnostics packet memory slot 2212 show debug trace 221...

Page 54: ...54 ExtremeWare Software 7 3 0 Command Reference Guide Contents...

Page 55: ...are responsible for installing and setting up network equipment It assumes knowledge of Extreme Networks switch configuration For conceptual information and guidance on configuring Extreme Networks sw...

Page 56: ...ided in Adobe Portable Document Format PDF Displaying or printing PDF files requires that your computer be equipped with Adobe Reader software which is available free of charge from Adobe Systems Inco...

Page 57: ...licate effective cross referenced linking between the ExtremeWare Software User Guide and the ExtremeWare Software Command Reference Guide follow the PDF guidelines in this section Opening Both PDF Fi...

Page 58: ...58 ExtremeWare Software 7 3 0 Command Reference Guide Preface Open cross document links in same window To deselect this option make sure that the check box next to it is unchecked 5 Click OK...

Page 59: ...ogies supported by Extreme Networks switches see the installation and user guides for your product This guide does not replace the installation and user guides this guide supplements the installation...

Page 60: ...ng information is provided Command Syntax The actual syntax of the command The syntax conventions the use of braces or curly brackets for example are defined in the section Understanding the Command S...

Page 61: ...there are more names than can be displayed The syntax helper also provides assistance if you have entered an incorrect command Table 3 Command Syntax Symbols Symbol Description angle brackets Enclose...

Page 62: ...mmand When you enter a command to configure a named component you do not need to use the keyword of the component For example to create a VLAN you must enter a unique VLAN name create vlan engineering...

Page 63: ...g Keys Key s Description Backspace Deletes character to left of cursor and shifts remainder of line to left Delete or Ctrl D Deletes character under cursor and shifts remainder of line to left Ctrl K...

Page 64: ...oftware 7 3 0 Command Reference Guide Command Reference Overview Command History ExtremeWare remembers the last 49 commands you entered You can display a list of these commands by using the following...

Page 65: ...l account can view and change all switch parameters It can also add and delete users and change the password associated with any account name The administrator can disconnect a management session that...

Page 66: ...the show session command The show session output displays information about current Telnet sessions including The session number The login date and time The user name The type of Telnet session Depen...

Page 67: ...d option in the CLI For ExtremeWare 6 1 and higher The password cannot be specified on the command line Instead the switch will interactively prompt you to enter the password and will then prompt you...

Page 68: ...be echoed as you enter the new password After you enter the password the switch will then prompt you to reenter it Reenter password Assuming you enter it successfully a second time the password is now...

Page 69: ...ar the banner press Return at the beginning of the first line For ExtremeWare 6 0 and higher You can enter up to 24 rows of 79 column text that is displayed before the login prompt of each session For...

Page 70: ...r users do not see the normal banner If no banner is configured the Extreme logo is displayed The network login banner displays in HTML No links or images are supported Press Enter to enter text on a...

Page 71: ...rs can be configured in ExtremeWare versions prior to 6 2 1 In ExtremeWare 6 2 1 and later eight DNS name servers can be configured Example The following command specifies that the switch use the DNS...

Page 72: ...cently added entry on the domain suffix list will be the last name used during name resolution This command will not overwrite any exiting entries If a null string is used as the last suffix in the li...

Page 73: ...Default N A Usage Guidelines Up to three DNS name servers can be configured in ExtremeWare versions prior to 6 2 1 In ExtremeWare 6 2 1 and later eight DNS name servers can be configured Example The f...

Page 74: ...ame The default domain name will be used to create a fully qualified host name when a domain name is not specified For example if the default default domain name is set to food com then when a command...

Page 75: ...ame server from the available server list for the DNS client Syntax Description Default N A Usage Guidelines None Example The following command removes a DNS server from the list configure dns client...

Page 76: ...from the domain suffix list If the deleted item was not the last entry in the list all items that had been added later are moved up in the list If no entries in the list match the domain name specifie...

Page 77: ...ves a DNS name server from the available server list for the DNS client Syntax Description Default N A Usage Guidelines None Example The following command removes a DNS server from the list configure...

Page 78: ...feature must be enabled for this command to have an effect the idletimeouts feature is disabled by default In ExtremeWare v 6 2 0 the time out interval was specified in seconds not minutes Example Th...

Page 79: ...rough 11 and the PM hours range from 12 through 23 For ExtremeWare 6 0 and higher You cannot set the year past 2035 For ExtremeWare 2 0 and 4 x You cannot set the year past 2023 Example The following...

Page 80: ...n length The default is an empty string dst_offset Specifies an offset from standard time in minutes Value is in the range of 1 to 60 Default is 60 minutes floating_day Specifies the day week and mont...

Page 81: ...unday april The ends specification defaults to every last sunday october The ends date may occur earlier in the year than the begins date This will be the case for countries in the Southern Hemisphere...

Page 82: ...Rome Italy Bern Switzerland Stockholm Sweden Oslo Norway 2 00 120 EET Eastern European Russia Zone 1 Athens Greece Helsinki Finland Istanbul Turkey Jerusalem Israel Harare Zimbabwe 3 00 180 BT Baghda...

Page 83: ...name EDT configure timezone 300 autodst The following command configures the GMT offset and automatic DST adjustment for the Middle European timezone with the optional timezone ID of MET configure tim...

Page 84: ...e sensitive For ExtremeWare 6 0 and higher User account names must have a minimum of 1 character and can have a maximum of 32 characters Passwords must have a minimum of 0 characters and can have a ma...

Page 85: ...switch to generate an ASCII configuration using the upload configuration command and parsing a switch generated configuration using the download configuration command Example The following command cr...

Page 86: ...privileges to delete a user account There must be one administrator account on the system the command will fail if an attempt is made to delete the last administrator account on the system Do not del...

Page 87: ...delete account ExtremeWare Software 7 3 0 Command Reference Guide 87 Platform Availability This command is available on all platforms...

Page 88: ...a page This command disables the pause mechanism and allows the display to print continuously to the screen NOTE Press q and then press Return to force a pause when CLI paging is disabled To view the...

Page 89: ...remain open until the switch is rebooted or you logoff Telnet sessions remain open until you close the Telnet client To view the status of idle time outs on the switch use the show management command...

Page 90: ...when the display reaches the end of a page To view the status of CLI paging on the switch use the show management command The show management command displays information about the switch including th...

Page 91: ...or the required length of time This ensures that there are no hanging connections To view the status of idle time outs on the switch use the show management command The show management command display...

Page 92: ...cable to your software or switch can be used To view the type of license you are currently running on the switch use the show switch command The license key number is not displayed but the type of lic...

Page 93: ...guments or variables Default N A Usage Guidelines ExtremeWare remembers the last 49 commands you entered on the switch Use the history command to display a list of these commands Example The following...

Page 94: ...the modules that can be rebooted have separate images from the ExtremeWare image for the switch The modules that can be rebooted are E1 T1 T3 ARM ATM MPLS PoS and slave or switch fabric MSM modules N...

Page 95: ...slot 5 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 7 0 0 to include the slot option This command was modified in ExtremeWare 7 1 0 to include...

Page 96: ...nformation in a tabular format User Name The name of the user This list displays all of the users who have access to the switch Access The SNMP community strings This may be listed as R W for read wri...

Page 97: ...show accounts pppuser ExtremeWare Software 7 3 0 Command Reference Guide 97 Platform Availability This command is available on all platforms...

Page 98: ...delines Use this command to view the banner that is displayed before the login prompt Example The following command displays the switch banner show banner Output from this command looks similar to the...

Page 99: ...nes None Example The following command displays the DNS configuration show dns client Output from this command looks similar to the following Number of domain suffixes 2 Domain Suffix 1 njudah local D...

Page 100: ...e best out of your network The show switch command displays sysName sysLocation sysContact MAC address License type System mode Diagnostics mode BlackDiamond switch only RED configuration DLCS state B...

Page 101: ...Carlos_Beronio System MAC 00 01 30 23 C1 00 License Full L3 System Mode 802 1Q EtherType is 8100 Hex CPU Tx Priority High RED Probability 0 DLCS Enabled SysHealth Check Enabled Alarm Level Log Recover...

Page 102: ...4 11 54 03 2003 Secondary Config Created by EW Version 6 2 2 Build 56 38 2900 bytes saved on Thu Jan 30 04 21 10 2003 History This command was first available in ExtremeWare 2 0 This command was modi...

Page 103: ...3 45 67 8 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support the hostname parameter This command was modified in ExtremeWare 6 1 to sup...

Page 104: ...104 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Accessing the Switch...

Page 105: ...e MIB variable as described in RFC 2021 Authorized managers An authorized manager can be either a single network management station or a range of addresses for example a complete subnet specified by a...

Page 106: ...e Network Time Protocol ExtremeWare supports the client portion of the Simple Network Time Protocol SNTP Version 3 based on RFC1769 SNTP can be used by the switch to update and synchronize its interna...

Page 107: ...Read community strings provide read only access to the switch The default read only community string is public The community string for all authorized trap receivers must be configured on the switch f...

Page 108: ...108 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available on all platforms...

Page 109: ...mmunity strings provide read and write access to the switch The default read write community string is private The community string for all authorized trap receivers must be configured on the switch f...

Page 110: ...110 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available on all platforms...

Page 111: ...rings so that all switches and trap receivers are not forced to use identical community strings The configure snmp add community command allows you to add multiple community strings in addition to the...

Page 112: ...tremeWare Software 7 3 0 Command Reference Guide Commands for Managing the Switch History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on all pla...

Page 113: ...ies that the value to follow is to be supplied as a colon separated string of hex octets community string Specifies the community string of the trap receiver source ip address Specifies the IP address...

Page 114: ...pfLsdbOverflow ospfLsdbApproachingOverflow ospfTraps 1 3 6 1 2 1 14 16 2 ping traceroute traps pingTestFailed pingTestCompleted tracerouteTestFailed tracerouteTestCompleted pingNotifications 1 3 6 1 2...

Page 115: ...owing command adds the IP address 10 101 0 100 as a trap receiver with community string purple configure snmp add trapreceiver 10 101 0 100 community purple The following command adds the IP address 1...

Page 116: ...traps bgp traps History This command was first available in ExtremeWare 1 0 This command was modified in ExtremeWare 6 2 1 to support the port community and source from options This command was modifi...

Page 117: ...ing is private It is recommended that you change the values of the default read write and read only community strings You use the configure snmp community command to change the value of the default co...

Page 118: ...tremeWare Software 7 3 0 Command Reference Guide Commands for Managing the Switch History This command was first available in ExtremeWare 1 0 Platform Availability This command is available on all pla...

Page 119: ...figured on the switch for the trap receiver to receive switch generated traps SNMP community strings can contain up to 32 characters It is recommended that you change the defaults of the read write an...

Page 120: ...wing command deletes a read write community string named extreme configure snmp delete community readwrite extreme History This command was first available in ExtremeWare 2 0 Support for the add param...

Page 121: ...that only the trap receiver entry with the specified community string should be removed Example The following command deletes the trap receiver 10 101 0 100 from the trap receiver list configure snmp...

Page 122: ...name of the system contact listed on the switch use the show switch command The show switch command displays switch statistics including the name of the system contact To restore defaults to all SNMP...

Page 123: ...h use the show switch command The show switch command displays switch statistics including the location of the switch To restore defaults to all SNMP related entries including the SNMP parameters modi...

Page 124: ...rs in the switch prompt To view the name of the system listed on the switch use the show switch command The show switch command displays switch statistics including the name of the system To restore d...

Page 125: ...number of default permanent groups already defined These groups are admin initial initialmd5 initialsha initialmd5Priv initialshaPriv v1v2c_ro v1v2c_rw hex Specifies that the value to follow is to be...

Page 126: ...ll the default values security model usm security level noauth read view defaultUserView no write view notify view defaultUserView and storage nonvolatile configure snmpv3 add access defaultROGroup In...

Page 127: ...the community index hex of 4 E community name hex of EA 12 CD CF AB 11 3C user security name v1v2c_user using transport tag 34872 and volatile storage configure snmpv3 add community hex 4 E name hex E...

Page 128: ...This command can be used multiple times to configure the exact filter profile desired Example Use the following command to add a filter to the filter profile prof1 that includes the MIB subtree 1 3 6...

Page 129: ...s associated with target addresses and the filter profile is associated with a series of filters so in effect you are associating a series of filters with a target address Example Use the following co...

Page 130: ...dentified by a security name and security model So the same security name can be associated to a group name but with different security models Example Use the following command to associate the user u...

Page 131: ...re snmpv3 add group user ExtremeWare Software 7 3 0 Command Reference Guide 131 History This command was first available in ExtremeWare 7 1 0 Platform Availability This command is available on all pla...

Page 132: ...he following command to create the MIB view allMIB with the subtree 1 3 included as non volatile configure snmpv3 add mib view allMIB subtree 1 3 Use the following command to create the view extremeMi...

Page 133: ...ure snmpv3 add mib view ExtremeWare Software 7 3 0 Command Reference Guide 133 History This command was first available in ExtremeWare 7 1 0 Platform Availability This command is available on all plat...

Page 134: ...n associated with the tags present in the table notifications will be sent based on the filters also associated with the target addresses Example Use the following command to send notification to addr...

Page 135: ...address and an entry in the snmpNotifyFilterProfileTable which specifies filters to use for notifications to the target address Example The following command specifies a target address of 10 203 0 22...

Page 136: ...136 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available on all platforms...

Page 137: ...mpv3 add target addr on page 135 Example The following command specifies a target parameters entry named P1 a user name of guest message processing and security model of SNMPv2c and a security level o...

Page 138: ...mands for Managing the Switch configure snmpv3 add target params P1 user guest mp model snmpv2c sec model snmpv2c sec level noauth History This command was first available in ExtremeWare 7 1 0 Platfor...

Page 139: ...thentication The default user names are admin initial initialmd5 initialsha initialmd5Priv initialshaPriv The initial password for admin is password For the other default users the initial password is...

Page 140: ...palertyu Use the following command to configure the user authSHApriv to use SHA authentication with the hex key shown below the privacy password palertyu and volatile storage configure snmpv3 add use...

Page 141: ...sword privacy hex hex octet password volatile Users cloned from the default users will have the storage type of non volatile The default names are admin initial initialmd5 initialsha initialmd5Priv in...

Page 142: ...and configure snmpv3 delete group hex group name user all non defaults hex user name sec model sec model snmpv1 snmpv2c usm Example The following command deletes all entries with the group name userGr...

Page 143: ...e group userGroup with the security model snmpv1 and security level of authentication and no privacy authnopriv configure snmpv3 delete access userGroup sec model snmpv1 sec level authnopriv History T...

Page 144: ...unity index comm_index configure snmpv3 delete community comm_index Use the following command to create an entry with the community name hex of EA 12 CD CF AB 11 3C configure snmpv3 delete community n...

Page 145: ...cify a profile name and a subtree to delete just those entries for that filter profile and subtree Example Use the following command to delete the filters from the filter profile prof1 that reference...

Page 146: ...y a profile name to delete all entries for that profile name Specify a profile name and a parameter name to delete just those entries for that filter profile and parameter name Example Use the followi...

Page 147: ...ely identified by a security name and security model So the same security name can be associated to a group name but with different security models The default groups are admin initial v1v2c_ro v1v2c_...

Page 148: ...ch Use the following command to delete the user guest from the group userGroup with the security model USM configure snmpv3 delete group userGroup user guest History This command was first available i...

Page 149: ...from its security group by specifying a different view Example The following command deletes all views only the permanent views will not be deleted configure snmpv3 delete mib view all non defaults T...

Page 150: ...e tags present in the table notifications will be sent based on the filters also associated with the target addresses There is one default notification that cannot be deleted defaultNotify Example Use...

Page 151: ...and to delete an entry in the SNMPv3 snmpTargetAddressTable Example The following command deletes target address named A1 configure snmpv3 delete target addr A1 History This command was first availabl...

Page 152: ...message processing model security level security model and the storage parameters for messages to any target addresses associated with a particular parameter name Example The following command delete...

Page 153: ...ssociation from the VACMSecurityToGroupTable To remove the association use the following command configure snmpv3 delete group hex group name user all non defaults hex user name sec model snmpv1 snmpv...

Page 154: ...gine Boots value needs to be explicitly configured Engine Boots and Engine Time will be reset to zero if the Engine ID is changed Engine Boots can be set to any desired value but will latch on its max...

Page 155: ...ill be reverted back to their original passwords keys while non default users will be reset to the security level of no authorization no privacy In a chassis the snmpEngineID will be generated using t...

Page 156: ...nfigure snmpv3 add target addr is uploaded instead The latter has no tokens for ignore mp model or ignore event come Therefore upon downloading the configuration the setting for these objects is lost...

Page 157: ...configure snmpv3 target addr ext ExtremeWare Software 7 3 0 Command Reference Guide 157 Platform Availability This command is available on all platforms...

Page 158: ...1 second or if it is not synchronized the switch queries the second server If the switch cannot obtain the time it restarts the query process Otherwise the switch waits for the sntp client update int...

Page 159: ...res the interval between polls for time information from SNTP servers Syntax Description Default 64 seconds Usage Guidelines None Example The following command configures the interval timer configure...

Page 160: ...on Default 30 seconds Usage Guidelines The Show for this parameter is displayed by using the following command show management Example The following command configures the interval timer configure snt...

Page 161: ...guments or variables Default Disabled Usage Guidelines The following command enables Alt Queue Management enable alt queue management To disable the Alt Queue Management feature for the next boot use...

Page 162: ...llowing command enable snmp access By using the enable and disable commands you can enable all SNMP access no SNMP access or only SNMPv3 access You cannot enable only SNMPv1 v2c access To enable SNMPv...

Page 163: ...nfiguration of the dot1dTpFdb table on the switch use the show management command The show management command displays information about the switch including the enable disable state the dot1dTpFdb ta...

Page 164: ...ult Enabled Usage Guidelines This command does not clear the SNMP trap receivers that have been configured The command prevents SNMP traps from being sent from the switch even if trap receivers are co...

Page 165: ...nabled use the show config command Example The following command will prevent SNMP exceed committed rate traps from being sent for all ingress QOS profiles on ports 2 5 through 2 8 disable snmp traps...

Page 166: ...ent command Example The following command will prevent link up or link down traps from being sent for any port on the switch except the management port if it has one disable snmp traps port up down al...

Page 167: ...rts portlist limit learning command That command configures a limit on the number of MAC addresses that can be learned on a port s After that limit has been reached on a particular port a trap will be...

Page 168: ...lock from a Network Time Protocol NTP server After the SNTP client has been enabled the switch sends out a periodic query to the indicated NTP server or the switch listens to broadcast NTP updates In...

Page 169: ...Enabled Usage Guidelines The watchdog timer reboots the switch if the CPU becomes trapped in a processing loop If the watchdog timer is executed the switch captures information on the cause of the reb...

Page 170: ...n This command has no arguments or variables Default Enabled Usage Guidelines You must be logged in as an administrator to enable or disable Telnet Example With administrator privilege the following c...

Page 171: ...he switch If you are using ExtremeWare Vista for web access you must create and configure an access profile before you can use this option You create an access profile using the create access profile...

Page 172: ...ion SysContact support extremenetworks com 1 888 257 3000 System MAC 00 01 30 12 2A D0 License Full L3 System Mode 802 1Q EtherType is 8100 Hex Diag Mode Fast Post RED Probability 0 Marked Probability...

Page 173: ...e following command to disable Alt Queue Management disable alt queue management Example The following command configures Alt Queue Management enable alt queue management History This command was avai...

Page 174: ...N Syntax Description Default N A Usage Guidelines None Example The following command enables DHCP for port 9 in VLAN corp enable dhcp ports 9 vlan corp History This command was first available in Extr...

Page 175: ...network manager provides its own user interface to the management facilities For SNMPv3 additional security keys are used to control access so an SNMPv3 manager is required for this type of access Th...

Page 176: ...176 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available on all platforms...

Page 177: ...figuration of the dot1dTpFdb table on the switch use the show management command The show management command displays information about the switch including the enable disable state the dot1dTpFdb tab...

Page 178: ...uments or variables Default Enabled Usage Guidelines An authorized trap receiver can be one or more network management stations on your network The switch sends SNMP traps to all trap receivers Exampl...

Page 179: ...he syslog when this trap is enabled The trap that is sent to the SNMP application will consist of Trap Type 1 Exceeded CIR 2 Dropped Bytes Status 1 event occurred 0 event condition cleared Port Queue...

Page 180: ...are Software 7 3 0 Command Reference Guide Commands for Managing the Switch History This command was first available in ExtremeWare 7 2 Platform Availability This command is available on 3 series I O...

Page 181: ...d Example The following command will enable link up or link down traps on all ports of the switch except the management port if it has one enable snmp traps port up down all History This command was f...

Page 182: ...rts portlist limit learning command That command configures a limit on the number of MAC addresses that can be learned on a port s After that limit has been reached on a particular port a trap will be...

Page 183: ...m a Network Time Protocol NTP server After the SNTP client has been enabled the switch sends out a periodic query to the indicated NTP server or the switch listens to broadcast NTP updates In addition...

Page 184: ...ines The watchdog timer reboots the switch if the CPU becomes trapped in a processing loop If the watchdog timer is executed the switch captures information on the cause of the reboot and posts it to...

Page 185: ...ger you must have at least one VLAN on the switch and it must be assigned an IP address and subnet mask IP addresses are always assigned to a VLAN The switch can be assigned multiple IP addresses For...

Page 186: ...ide Commands for Managing the Switch History This command was first available in ExtremeWare 2 0 Support for the access profile none and port parameters was introduced in ExtremeWare 6 0 Platform Avai...

Page 187: ...se this option You create an access profile using the create access profile command You configure an access profile using the configure access profile command Apply an access profile only when Extreme...

Page 188: ...Syntax Description This command has no arguments or variables Default N A Usage Guidelines Use this command to log out of a CLI or Telnet session Example The following command logs out the session of...

Page 189: ...cription This command has no arguments or variables Default N A Usage Guidelines Use this command to log out of a CLI or Telnet session Example The following command logs out the session of a current...

Page 190: ...t Syntax Description This command has no arguments or variables Default N A Usage Guidelines Use this command to log out of a CLI or Telnet session Example The following command logs out the session o...

Page 191: ...ommand has no arguments or variables Default N A Usage Guidelines This command displays the entries in the View based Access Control Model VACM context table VACMContextTable Example The following com...

Page 192: ...the ID manually configured EngineBoots Number of times the agent has been rebooted EngineTime Time since agent last rebooted in centiseconds Max Message Size Maximum SNMP Message size supported by the...

Page 193: ...d higher the following show management output is also displayed Enable disable state for SSH2 and access profile information RMON polling configuration For ExtremeWare 6 2 2 and higher the enable disa...

Page 194: ...ced Trap Groups s STP b BGP o OSPF p Ping Traceroute v VRRP y System e Extreme m Smart Traps a Auth l Link Up Down r RMON c Security A All SNMP MAC Security traps disabled Link Up Link Down traps enab...

Page 195: ...show management ExtremeWare Software 7 3 0 Command Reference Guide 195 Platform Availability This command is available on all platforms...

Page 196: ...t even when the component is plugged into different chassis the odometer counter will be available in the new switch chassis The following components are monitored by the odometer For the Black Diamon...

Page 197: ...show odometer ExtremeWare Software 7 3 0 Command Reference Guide 197 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all platforms...

Page 198: ...following command displays the active sessions on the switch show session Following is the output from this command Login Time User Type Auth CLI Auth Location 0 Tue Feb 19 18 08 42 2002 admin console...

Page 199: ...is command was first available in ExtremeWare 2 0 Support for the CLI Auth command field definition was introduced in ExtremeWare 6 0 Support for the Auth command field definition was introduced in Ex...

Page 200: ...l display details for all the groups This command displays the SNMPv3 VACMAccessTable entries Example The following command displays all the access details show snmpv3 access The following command dis...

Page 201: ...3 counters snmpUnknownSecurityModels snmpInvalidMessages snmpUnknownPDUHandlers usmStatsUnsupportedSecLevels usmStatsNotInTimeWindows usmStatsUnknownUserNames usmStatsUnknownEngineIDs usmStatsWrongDig...

Page 202: ...tree If you specify only the profile name you will display all entries for that profile name If you do not specify a profile name then all the entries are displayed Example Use the following command t...

Page 203: ...ame is associated with target addresses and the filter profile is associated with a series of filters so in effect you are associating a series of filters with a target address Example Use the followi...

Page 204: ...the command will display details for all the groups Example The following command displays information about all groups for every security model and user name show snmpv3 group The following command...

Page 205: ...w name will be displayed This command displays the SNMPv3 VACMViewsTreeFamilyTable Example The following command displays all the view details show snmpv3 mib view The following command displays a vie...

Page 206: ...otifyTable This table lists the notify tags that the agent will use to send notifications traps If no notify name is specified all the entries are displayed Example The following command displays the...

Page 207: ...rgetAddressTable If no target address is specified the entries for all the target addresses will be displayed Example The following command displays the entry for the target address named A1 show snmp...

Page 208: ...elines Use this command to display entries in the SNMPv3 extremeTargetAddressExtTable Example The following command displays the entry for the target address named A1 show snmpv3 target addr ext A1 Hi...

Page 209: ...essing model security level security model and the storage parameters for messages to any target addresses associated with a particular parameter name If no parameter name is specified all the entries...

Page 210: ...on and privacy passwords and keys will not be displayed The user entries in SNMPv3 are stored in the USMUserTable so the entries are indexed by EngineID and user name Example The following command lis...

Page 211: ...d SNTP client is enabled SNTP time is valid Primary server 172 17 1 104 Secondary server 172 17 1 104 Query interval 64 Last valid SNTP update From server 172 17 1 104 on Wed Oct 30 22 46 03 2002 SNTP...

Page 212: ...212 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Managing the Switch Platform Availability This command is available on all platforms...

Page 213: ...scription Default Summary information for all VLANs on the device Usage Guidelines Display the IP address MAC address and time assigned to each end device Example The following command displays DHCP a...

Page 214: ...mer and DHCP Lease Timer Example The following example shows output for the show vlan dhcp config command where the VLAN named vlantest3 is configured with a primary DHCP address range a secondary sub...

Page 215: ...show vlan dhcp config ExtremeWare Software 7 3 0 Command Reference Guide 215 Platform Availability This command is available on all platforms...

Page 216: ...advertently the switch terminates the session within two hours Before you can start a Telnet session you need to configure the switch IP parameters To open a Telnet connection you must specify the hos...

Page 217: ...Reference Guide 217 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 x to support the hostname and port number parameters Platform Availability T...

Page 218: ...to all SNMP related entries Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command restores default values to all SNMP related e...

Page 219: ...setting for each port You can select to manually configure the duplex setting and the speed of 10 100 Mbps ports and you can manually configure the duplex setting on Gigabit Ethernet ports All ports...

Page 220: ...nd parameters allow you to view various issues such as real time collision statistics link speed flow control and packet size Commands that require you to enter one or more port numbers use the parame...

Page 221: ...put into a mismatch state where the inserted module does not match the configured slot and is not brought online To use the new module type in a slot the slot configuration must be cleared or configu...

Page 222: ...the algorithm used to choose the path for each packet crossing the backplane Selecting a policy for a particular situation will depend on the type of traffic and network topology however for many situ...

Page 223: ...configured maximum MTU size that does not include the additional 4 bytes of CRC included in a jumbo frame configuration Ensure that the NIC maximum MTU is at or below the maximum MTU size configured...

Page 224: ...224 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Configuring Slots and Ports on a Switch Platform Availability This command is available on all platforms...

Page 225: ...does not include the additional 4 bytes of CRC Ensure that the NIC maximum MTU size is at or below the maximum MTU size configured on the switch Frames that are larger than the MTU size configured on...

Page 226: ...ommand Reference Guide Commands for Configuring Slots and Ports on a Switch configure jumbo frame size 5500 History This command was first available in ExtremeWare 6 0 Platform Availability This comma...

Page 227: ...lyzer or RMON probe for packet analysis The switch uses a traffic filter that copies a group of traffic to the monitor port The traffic filter can be defined based on one of the following criteria Phy...

Page 228: ...stand alone switch on port 1 and the VLAN default to the mirror port configure mirroring add ports 1 vlan default The following example sends all traffic coming into or out of a modular switch on slo...

Page 229: ...ess to specify mirroring Example The following example deletes the mirroring filter on a stand alone switch defined for port 1 on VLAN default configure mirroring delete ports 1 vlan default The follo...

Page 230: ...reserved After a hitless failover has completed the routing protocols initialize like they do on a full reboot The neighboring routers see that the router has restarted and the neighbors re route IP t...

Page 231: ...xternal ports from being reset when an MSM failover occurs configure msm failover link action keep links up History This command was first available in ExtremeWare 6 2 2 This command was modified to a...

Page 232: ...sm failover link action command Example The following command configures the slave MSM 3 to inherit the software configuration from the current master MSM 3 configure msm failover slave config inherit...

Page 233: ...es from when hitless failover begins until the relearned layer 3 databases are linked to the FDB All FDB entries that are not linked to one of the databases at the timeout are deleted The time paramet...

Page 234: ...te bandwidth of all queues of a specific port This feature is useful if you use several queues for classifying traffic e g importance delay sensitivity burst and you want to restrict total bandwidth f...

Page 235: ...ly learned entries still get aged and can be cleared If entries are cleared or aged out after the learning limit has been reached new entries will then be able to be learned until the limit is reached...

Page 236: ...traffic will still flow to the port Packets destined for the permanent MAC and other non blackholed MACs Broadcast traffic EDP traffic Traffic from the permanent MAC will still flow from the virtual...

Page 237: ...configure ports ExtremeWare Software 7 3 0 Command Reference Guide 237 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all platforms...

Page 238: ...modified All ports on a stand alone switch can be configured for half duplex or full duplex operation By default the ports autonegotiate the duplex setting In certain interoperability situations it i...

Page 239: ...ernet port on a stand alone switch configure ports 4 auto off duplex full The following example turns autonegotiation off for slot 2 port 1 on a modular switch configure ports 2 1 auto off duplex full...

Page 240: ...only It is enabled or disabled as part of autonegotiation If autonegotiation is set to off flow control is disabled When autonegotiation is turned on flow control is enabled For version 6 1 The all pa...

Page 241: ...241 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 1 to support the all parameter This command was modified in ExtremeWare 4 0 to support modula...

Page 242: ...the ports for which the feature has been disabled To verify the current autopolarity status use the show ports portlist all info detail command Example The following command disables the autopolarity...

Page 243: ...ports that connected to a particular department a common display string The string is displayed in certain commands such as the show ports info command Example The following command configures the use...

Page 244: ...es drop packets when packets are transmitted using a value of 12 Thus by increasing the Interpacket Gap packet transmission is slowed and packet loss can be minimized or prevented The Interpacket Gap...

Page 245: ...following command configures the link detection level for port 3 to 4 configure ports 3 link detection level 4 History This command was first available in ExtremeWare 6 2 2 Platform Availability This...

Page 246: ...onfiguring a software controlled redundant port You must manually configure the primary and redundant ports identically in terms of VLANs QoS settings access lists and so on Auto negotiation must be e...

Page 247: ...ollowing command configures a software controlled redundant port on a stand alone switch configure ports 3 redundant 4 The following command configures a software controlled redundant port on a modula...

Page 248: ...DSL customer premises equipment CPE A lower rate may support a longer cable distance depending on the installation Example The following command configures all the VDSL ports on slot 2 to 5 Mbps confi...

Page 249: ...on MAC and IP address and the TCP port number IPX packets Uses the source and destination MAC address and IPX identifiers All other packets Uses the source and destination MAC address To verify your c...

Page 250: ...tx Specifies a Gigabit Ethernet 12 port copper module g16x Specifies a Gigabit Ethernet 16 mini GBIC port oversubscribed fiber module g24t Specifies a Gigabit Ethernet 24 port oversubscribed copper mo...

Page 251: ...e Upon powering up the chassis or when an I O module is hot swapped ExtremeWare automatically determines the system power budget and protects the BlackDiamond switch from any potential overpower confi...

Page 252: ...252 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Configuring Slots and Ports on a Switch Platform Availability This command is available on modular switches only...

Page 253: ...d to locate neighbor Extreme Networks switches For version 6 1 The all parameter specifies all ports on the switch For Version 6 0 and later SummitLink is not supported For version 2 0 and 4 0 EDP can...

Page 254: ...Ports on a Switch History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches This command was modified in ExtremeWare 6 1 to s...

Page 255: ...arning and flooding are mutually exclusive To enable learning you must disable flooding On a modular switch portlist can be a list of slots and ports On a stand alone switch portlist can be one or mor...

Page 256: ...Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Use the disable jumbo frame ports command when you no longer need jumbo frame support Example The following command disables jumbo frame supp...

Page 257: ...ist between different ports The feature will disable any port that both has the feature enabled and receives an LACP message that was sent from the local system Example The following example disables...

Page 258: ...here access is granted via permanent forwarding databases FDBs per port Learning must be disabled to allow port flooding See the enable flooding command for information on enabling port flooding NOTE...

Page 259: ...disable learning ports ExtremeWare Software 7 3 0 Command Reference Guide 259 Platform Availability This command is available on all platforms...

Page 260: ...Description This command has no arguments or variables Default Enabled Usage Guidelines Use the disable mirroring command to stop configured copied traffic associated with one or more ports Example Th...

Page 261: ...ubleshooting purposes Even though a port is disabled the link remains enabled for diagnostic purposes Example The following command disables ports 3 5 and 12 through 15 on a stand alone switch disable...

Page 262: ...ster port retains all configuration including VLAN membership Configuration for all other member ports is reset to default values Member ports are removed from all VLANs to prevent loops Example The f...

Page 263: ...y or use the disable slot all to disable all the slots If there is no I O card present in a slot when the user disables the slot the slot still goes to the Disable state If a card is inserted in a slo...

Page 264: ...alone Switch Numerical Ranges in Chapter 1 Use with Extreme Networks switches that support privacy and backup uplinks When smartredundancy is disabled the switch changes the active link only when the...

Page 265: ...ning on a normal switch port EDP is used to by the switches to exchange topology information with each other Information communicated using EDP includes the following Switch MAC address switch ID Swit...

Page 266: ...e Commands for Configuring Slots and Ports on a Switch History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches Platform Ava...

Page 267: ...flooding you must first disable learning When ports are configured for flooding the FDB will be flushed for the entire system which means all the entries in the dynamic FDB must be relearned On a modu...

Page 268: ...switch portlist can be a list of slots and ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges...

Page 269: ...le any port that both has the feature enabled and receives an LACP message that was sent from the local system If no timeout is specified the port is disabled permanently if there is a loop detected O...

Page 270: ...alone Switch Numerical Ranges in Chapter 1 Example The following command enables MAC address learning on ports 7 and 8 on a stand alone switch enable learning ports 7 8 The following command enables M...

Page 271: ...s copied to the monitor port Virtual port All data specific to a VLAN on a specific port is copied to the monitor port Up to eight mirroring filters and one monitor port can be configured on the switc...

Page 272: ...alone switch enable mirroring to port 3 tagged The following example selects slot 1 port 3 as the mirror port on a modular switch enable mirroring to port 1 3 History This command was first available...

Page 273: ...e Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command enables ports 3 5 and 12 through 15 on the stand alone switch enable ports 3 5 12 15...

Page 274: ...ls traffic is redistributed to the remaining ports in the load sharing group If the failed port becomes active again traffic is redistributed to include that port Load sharing must be enabled on both...

Page 275: ...ring group Additionally you can choose the load sharing algorithm used by the group This feature is supported between Extreme Networks switches only but may be compatible with third party trunking or...

Page 276: ...3 9 3 12 5 7 5 10 In this example logical port 3 9 represents physical ports 3 9 through 3 12 and 5 7 through 5 10 History This command was first available in ExtremeWare 2 0 The command was modified...

Page 277: ...le all the slots After the user enables the slot the show slot command shows the state as Operational or will display the appropriate state if the card could not be brought up successfully Note that t...

Page 278: ...explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command enables the Smart Redundancy feature on port 4...

Page 279: ...alone Switch Numerical Ranges in Chapter 1 Example The following command resets autonegotiation on port 4 on a stand alone switch restart ports 4 The following command resets autonegotiation on slot 1...

Page 280: ...uses a user specified MSM failover Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command causes a user specified MSM failover ru...

Page 281: ...mple The following command displays the connectivity and configuration of neighboring Extreme Networks switches show edp Following is the output from this command Port 1 EDP is enabled Remote system S...

Page 282: ...and Ports on a Switch Remote Vlans Mgmt 4094 10 45 208 226 Default 1 MacVlanDiscover 0 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to supp...

Page 283: ...can use this command to display mirroring statistics and determine if mirroring is enabled or disabled on the switch To view the status of port mirroring on the switch use the show mirroring command T...

Page 284: ...hardware layer 3 hardware STP EAPS ARP ESRP Each of the supported subsystems display one of the following states disable Hitless failover is disabled This is also the initial state initial Hitless fai...

Page 285: ...fter a reboot or insertion of a slave MSM 3 use this command to ensure that the slave is ready before initiating a hitless failover History This command was first available in ExtremeWare 7 1 1 Platfo...

Page 286: ...ys real time collision statistics on port 7 on a stand alone switch show ports 7 collisions The following command displays real time collision statistics on slot 1 ports 1 16 on a modular switch show...

Page 287: ...0 0 0 0 0 0 0 0 0 14 R 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 15 R 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 16 R 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Link Status A Active R Ready D Disabled NP Not Present LB Loopback 0 C...

Page 288: ...orts configuration statistics are displayed for all ports This status information may be useful for your technical support representative if you have a network problem This command displays port confi...

Page 289: ...ABLED R ON 1000 AUTO 2 8 ENABLED R ON 1000 AUTO 3 1 ENABLED R ON 1000 AUTO SX 3 1 ENABLED R ON 1000 AUTO SX 3 2 ENABLED R ON 1000 AUTO SX 3 3 ENABLED R ON 1000 AUTO SX 3 4 ENABLED R ON 1000 AUTO SX 3...

Page 290: ...ate limiting configurations Syntax Description Default N A Usage Guidelines This command displays the following Port number Diagnostics Port configuration RED state Admin state Link state Link counter...

Page 291: ...er up indicates the number of link transitions from down to up at the middle layer filter The link filter down indicates the number of link transitions from up to down at the middle layer filter NOTE...

Page 292: ...om this command Port 2 6 Type UTP Diagnostic passed Random Early Drop Disabled Admin state Enabled with auto duplex auto speed sensing Link state Ready Link counter Up 0 time s Down 0 times s VLAN cfg...

Page 293: ...ority field based on queue number Smart Redundancy Enabled VLANs monitored for stats Software redundant port disabled jitter tolerance enabled link filtering isr filter yes middle layer filter no Hist...

Page 294: ...have a network problem The following packet statistics are displayed port number link status packet size Example The following command displays packet statistics for ports 1 through 3 on a stand alone...

Page 295: ...2 3 R 0 0 0 0 0 0 0 2 4 R 0 0 0 0 0 0 0 2 5 R 0 0 0 0 0 0 0 2 6 R 0 0 0 0 0 0 0 2 7 R 0 0 0 0 0 0 0 2 8 R 0 0 0 0 0 0 0 3 1 R 0 0 0 0 0 0 0 Link Status A Active R Ready D Disabled NP Not Present LB Lo...

Page 296: ...output from this command admin 3 sh port 5 4 sharing Load Sharing Monitor Config Current Ld Share Ld Share Link Link Master Master Type Group Status Ups 5 4 7 4 r 5 4 NP 1 r 5 5 NP 1 r 7 4 A 2 r 7 5 A...

Page 297: ...show ports sharing ExtremeWare Software 7 3 0 Command Reference Guide 297 Platform Availability This command is available on all platforms...

Page 298: ...h Numerical Ranges in Chapter 1 If you do not specify a port number or range of ports port utilization information is displayed for all ports This status information may be useful for your technical s...

Page 299: ...down ESC exit The second display shows utilization in terms of bytes Link Utilization Averages Wed Jan 23 21 30 03 2002 Port Link Receive Peak Rx Transmit Peak Transmit Status bytes sec bytes sec byt...

Page 300: ...e Commands for Configuring Slots and Ports on a Switch History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches Platform Ava...

Page 301: ...ave f IP Forwarding Enabled G GVRP Enabled i ISIS Enabled I IP Forwarding lpm routing Enabled L Loopback Enabled M ESRP Master m IPmc Forwarding Enabled N GNS Reply Enabled o OSPF Enabled P IPX SAP En...

Page 302: ...302 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Configuring Slots and Ports on a Switch Platform Availability This command is available on all platforms...

Page 303: ...ket protocol as follows IP packets Uses the source and destination MAC and IP address and the TCP port number IPX packets Uses the source and destination MAC address and IPX identifiers All other pack...

Page 304: ...es includes multiple software packages One software package runs on the MSM or SMMi module while another package runs on each ARM ATM MPLS PoS or WAN module You must download the software packages ind...

Page 305: ...work Processor status General Purpose Processor status hardware serial number and type and image version and boot settings For the ARM ATM MPLS PoS and WAN modules the information displayed by this co...

Page 306: ...ware image configured secondary Primary software version 7 0 0 Build 44 oc12 by Beta_Master on Sat 10 12 2002 06 16p Secondary software version 7 0 0 Build 44 oc12 by Beta_Master on Sat 10 12 2002 06...

Page 307: ...y HW Module Type Empty Configured Type Not configured History This command was first available in ExtremeWare 4 0 This command was modified in ExtremeWare 6 1 to support PoS modules This command was m...

Page 308: ...ter you execute this command The external ports are reset when an MSM failover occurs No state is preserved when a failover occurs The MSM failover timeout returns to 60 seconds The new master uses th...

Page 309: ...e egress bandwidth of a particular port to 100 Syntax Description Default None Usage Guidelines None Example The following command restores the egress bandwidth of port 3 on slot 1 to 100 unconfigure...

Page 310: ...s For a detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 Example The following command clears the user defined display...

Page 311: ...string command to configure a display string for the port The list of port numbers or the port display string specifies the redundant port s Example The following command unconfigures a software cont...

Page 312: ...lot of a previously assigned module type Syntax Description Default N A Usage Guidelines None Example The following command clears slot 4 of a previously assigned module type unconfigure slots 4 Histo...

Page 313: ...fault 802 1Q tag Tagging is most commonly used to create VLANs that span switches Ethernet LLC SAP or LLC SNAP Ethernet protocol type Protocol based VLANs are most often used in situations where netwo...

Page 314: ...ue other than 8100 This feature is useful for VMAN tunneling Extreme Networks recommends the use of IEEE registered ethertype 0x88a8 for deploying vMANs Extreme switches assume an Ethertype value of 8...

Page 315: ...o receive GVRP information only by default it can send and listen and then enables GVRP configure gvrp listen port 3 enable gvrp If the switch receives GVRP information on this port it will do one of...

Page 316: ...316 ExtremeWare Software 7 3 0 Command Reference Guide VLAN Commands Platform Availability This command is available on all platforms...

Page 317: ...ommand sets up the end station with MAC address 00 00 00 00 00 01 to participate in VLAN engineering via the MAC enabled ports 16 or 17 configure mac vlan add mac address 00 00 00 00 00 01 mac group a...

Page 318: ...318 ExtremeWare Software 7 3 0 Command Reference Guide VLAN Commands History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on all platforms...

Page 319: ...participating in any MAC based VLANs configure mac vlan delete mac address 00 00 00 00 00 02 The following commands remove the all MAC addresses from participating in any VLANs configure mac vlan del...

Page 320: ...issuing the command four times For example if you want to monitor VLANs dog1 dog2 dog3 and dog4 on slot 1 use the following commands configure ports 1 monitor vlan dog1 configure ports 1 monitor vlan...

Page 321: ...active and configured for use Example The following command configures a protocol named Fred by adding protocol type LLC SAP with a value of FFEF configure protocol fred add llc feff History This com...

Page 322: ...mmand was first available in ExtremeWare 1 0 Platform Availability This command is available on all platforms protocol_name Specifies a protocol filter name protocol_type Specifies a protocol type Sup...

Page 323: ...te member VLANs Traffic from any member VLAN destined to the translation VLAN is switched and the VLAN tag is translated appropriately Traffic from the translation VLAN destined to any member VLAN is...

Page 324: ...rst remove them from the default VLAN You do not need to do this to add them to another VLAN as tagged ports You must configure a loopback port with a unique loopback VLAN tag ID before adding rate sh...

Page 325: ...configure vlan add ports ExtremeWare Software 7 3 0 Command Reference Guide 325 Platform Availability This command is available on all platforms...

Page 326: ...up bi directional rate shaping using a loopback port and a rate shaped port First create the VLAN that will have rate shaped ports as members create vlan ratelimit Create the loopback port to rate sh...

Page 327: ...nd to delete a secondary IP address configure vlan delete secondary ip Example The following command configures the secondary IP address for the VLAN named test1 configure vlan test1 add secondary ip...

Page 328: ...328 ExtremeWare Software 7 3 0 Command Reference Guide VLAN Commands Platform Availability This command is available on all platforms...

Page 329: ...eletes a member VLAN to a translation VLAN Use the all keyword to delete all the member VLANs from the specified translation VLAN Example The following command deletes the member VLAN named v101 from...

Page 330: ...tion Default N A Usage Guidelines None Example The following command removes ports 1 2 3 and 6 from a VLAN named accounting configure accounting delete port 1 2 3 6 History This command was first avai...

Page 331: ...of a secondary IP address automatically deletes the DHCP address ranges associated with the secondary IP address Example The following command deletes a secondary IP address from the VLAN named test1...

Page 332: ...ontrol VLAN for an EAPS domain do NOT configure the VLAN with an IP address Example The following commands are equivalent both assign an IP address of 10 12 123 1 to a VLAN named accounting configure...

Page 333: ...Default N A Usage Guidelines You cannot change the name of the default VLAN Default Example The following command renames VLAN vlan1 to engineering configure vlan vlan1 name engineering History This...

Page 334: ...igure protocol command to define your own protocol filter Example The following command configures a VLAN named accounting as an IP protocol based VLAN configure accounting protocol ip History This co...

Page 335: ...N The 802 1Q tag will also be used as the internal VLANid by the switch You can specify a value that is currently used as an internal VLANid on another VLAN it will become the VLANid for the VLAN you...

Page 336: ...a particular packet belongs to a particular VLAN After you create the protocol you must configure it using the configure protocol command To assign it to a VLAN use the configure vlan vlan name protoc...

Page 337: ...s A newly created VLAN has no member ports is untagged and uses protocol filter any until you configure it otherwise Use the various configure vlan commands to configure the VLAN to your needs Interna...

Page 338: ...Reference Guide VLAN Commands Example The following command creates a VLAN named accounting create vlan accounting History This command was first available in ExtremeWare 1 0 Platform Availability Thi...

Page 339: ...Default N A Usage Guidelines If you delete a protocol that is in use by a VLAN the protocol associated with than VLAN will become None Example The following command deletes a protocol named fred delet...

Page 340: ...t members and you want those ports to be returned to the default VLAN you must add them back explicitly using the configure vlan add ports command NOTE The default VLAN cannot be deleted Example The f...

Page 341: ...ables GVRP functionality on the switch It does not change the GVRP configuration of individual ports but GVRP will no longer function on these ports GVRP is not supported in ExtremeWare version 6 1 or...

Page 342: ...over VLAN But does not automatically return it to the default VLAN If you need this port to be a member of the default VLAN you must explicitly add it back Example The following command disables ports...

Page 343: ...onfigured in each switch GVRP must be enabled on individual ports before GVRP information will be sent or received By default GVRP is enabled for both sending and receiving on all ports so executing t...

Page 344: ...owing set of commands removes ports 16 and 17 from the default VLAN and then enables them for use with the MAC based VLAN associated with any MAC group configure default delete port 16 17 enable mac v...

Page 345: ...P running 866422 JoinTime 20 LeaveTime 200 LeaveAllTime 1000 cs GVRP transmit 0 receive 0 tx errors 0 rx errors 0 int errors 0 Enabled for Tx Rx on ports 123456789 10111213141516171819 202122232425262...

Page 346: ...lay only the lower section Example The following is an example of the show mac vlan command Port Vlan Group State 11 MacVlanDiscover 10 Discover 12 MacVlanDiscover 10 Discover 16 MacVlanDiscover any D...

Page 347: ...s and values of its component protocols Example The following is an example of the show protocol command Protocol Name Type Value IP etype 0x0800 etype 0x0806 ipx etype 0x8137 netbios llc 0xf0f0 llc 0...

Page 348: ...ion for all VLANs This displays the same information as for an individual VLAN but shows every VLAN one by one After each VLAN display you can elect to continue or quit Protocol None indicates that th...

Page 349: ...an s 7 The following is an example of the show vlan Default command VLAN Interface 0 200 with name Default created by user Tagging 802 1Q Tag 1 Priority 802 1P Priority 7 IP 51 0 0 1 255 255 255 0 Sec...

Page 350: ...History This command was first available in ExtremeWare 1 0 This command was modified to support longer VLAN names in ExtremeWare 6 2 2 This command was modified to include the Member of STP Domain f...

Page 351: ...Syntax Description Default N A Usage Guidelines None Example The following command removes monitoring for ports on VLAN accounting unconfigure ports 8 1 8 6 monitor vlan accounting History This comman...

Page 352: ...P address es configured for the VLAN Example The following command removes the primary IP address for the VLAN named vlantest4 unconfig vlan vlantest4 ip address History This command was first availab...

Page 353: ...s set to zero all aging entries in the database are defined as static nonaging entries This means that they do not age but they are still deleted if the switch is reset Permanent entries Permanent ent...

Page 354: ...ves the questionable entry allows the table to be rebuilt naturally and remaps around the entry location If the entry is in use and is not safely removable MAC_NH IPSA IPMCDA IPDP IPSP IPXSN sends a w...

Page 355: ...2 0 The command was modified in ExtremeWare 6 2 1 to support the broadcast mac keyword and to support clearing locked static entries This command was modified in ExtremeWare 6 2 2b108 to support the...

Page 356: ...entries in the database are defined as static nonaging entries This means that they do not age out but non permanent static entries can be deleted if the switch is reset Example The following command...

Page 357: ...ive configuring an alarm level disables auto recovery and configuring auto recovery overrides the alarm level setting This setting is independent of and does not affect the system health check configu...

Page 358: ...Software 7 3 0 Command Reference Guide FDB Commands This command was not supported in ExtremeWare 7 0 This command is supported in ExtremeWare 7 1 0 Platform Availability This command is available on...

Page 359: ...el 06 19 2003 10 29 28 INFO SYST serial admin configure fdb scan period 1 n Extreme Networks recommends an interval period of at least 15 seconds This setting is independent of and does not affect the...

Page 360: ...t set as well as the b for ingress blackhole and or B for egress blackhole flags set Example The following example adds a blackhole entry to the FDB for MAC address is 00 E0 2B 12 34 56 in VLAN market...

Page 361: ...create fdbentry vlan blackhole ExtremeWare Software 7 3 0 Command Reference Guide 361 Platform Availability This command is available on all platforms...

Page 362: ...C address in a packet Thus initially the entry may not appear in the show fdb output Once the entry has been learned it is created as a permanent dynamic entry designated by dpm in the flags field of...

Page 363: ...following example associates the QoS profile qp2 with a dynamic entry for MAC address 00 A0 23 12 34 56 on VLAN net34 that will be learned by the FDB create fdbentry 00 A0 23 12 34 56 vlan net34 dyna...

Page 364: ...ries After they have been created permanent static entries stay the same as when they were created If the same MAC address is encountered on another virtual port that is not included in the permanent...

Page 365: ...ding their QoS profile associations Example The following example adds a permanent static entry to the FDB for MAC address is 00 E0 2B 12 34 56 in VLAN marketing on port 4 create fdbentry 00 E0 2B 12...

Page 366: ...entry from the FDB delete fdbentry all History This command was available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 2 0 to support the all option This command was modified in Extre...

Page 367: ...0 The default for the FDB scan is disabled If you load your saved ExtremeWare 6 2 2b108 configurations onto a switch with ExtremeWare 6 2 2b134 or ExtremeWare 7 1 0 or later FDB scanning is enabled Y...

Page 368: ...d was first available in ExtremeWare 6 2 2b108 The default for this command was changed to disabled in ExtremeWare 6 2 2b134 This command was not supported in ExtremeWare 7 0 This command is supported...

Page 369: ...r the FDB scan is enabled For ExtremeWare 6 2 2b134 and ExtremeWare 7 1 0 The default for the FDB scan is disabled If you load your saved ExtremeWare 6 2 2b108 configurations onto a switch with Extrem...

Page 370: ...d was first available in ExtremeWare 6 2 2b108 The default for this command was changed to disabled in ExtremeWare 6 2 2b134 This command was not supported in ExtremeWare 7 0 This command is supported...

Page 371: ...g commands will do consistency checking on this entry run fdb check 00 00 00 00 00 01 run fdb check 00 00 00 00 00 01 detail run fdb check 00 00 00 00 00 01 extended detail run fdb check 00 00 00 00 0...

Page 372: ...ommand was first available in ExtremeWare 6 1 9 This command was modified in ExtremeWare 6 2 1 to support the broadcast mac keyword Platform Availability This command is available on all platforms The...

Page 373: ...splays all permanent entries including the ingress and egress QoS profiles portlist Displays the entries for one or more ports May be in the form 1 2 3 5 2 5 2 6 2 8 remap Displays the remapped FDB en...

Page 374: ...0000 0000 s m CPU 51f50 100 00 01 30 CA F6 00 lab 4000 0000 0001 d i 1 67b20 100 00 30 D3 01 5A E0 lab 4000 0000 0001 d i 1 80a10 204 FF FF FF FF FF FF lab 4000 0000 0000 s m CPU 2 1 80fe0 208 FF FF...

Page 375: ...t1 4094 spm QP3 QP2 00 60 B0 F9 58 9D Default 0001 pm Flags B Egress Blackhole b Ingress Blackhole d Dynamic s Static p Permanent m MAC S secure MAC l lockdown MAC M Mirror i IP x IPX z translation MA...

Page 376: ...Ware 6 2 2b108 The failure action default is sys health check If you use the unconfigure fdb scan failure action command the switch returns to its default of performing the configured system health ch...

Page 377: ...ts or variables Default N A Usage Guidelines This setting is independent of and does not affect the system health check configurations Example The following command returns the FDB scan interval to 30...

Page 378: ...378 ExtremeWare Software 7 3 0 Command Reference Guide FDB Commands...

Page 379: ...ed QoS allows you to protect bandwidth for important categories of applications or specifically limit the bandwidth associated with less critical traffic The switch contains separate hardware queues o...

Page 380: ...itches support the standard 802 1p priority bits that are part of a tagged Ethernet packet DLCS The Dynamic Link Context System DLCS is a feature of ExtremeWare and Extreme switches that snoops Window...

Page 381: ...the IP address of an end station changes and the end station is not immediately rebooted the old host to IP mapping is not deleted You must delete the mapping through the ExtremeWare Enterprise Manag...

Page 382: ...eywords are applicable only to SONET ports The low drop probability and high drop probability keywords are useful in conjunction code_point Specifies a DiffServ code point a 6 bit value in the IP TOS...

Page 383: ...ity levels Example The following command specifies that packets arriving on ports 5 8 that use code point 25 be assigned to qp2 configure diffserv examination code point 25 qosprofile qp2 ports 5 8 Th...

Page 384: ...rity value to code point mappings are described as follows Example The following command specifies that a code point value of 25 should be used to replace the TOS bits in packets with an 802 1p priori...

Page 385: ...diffserv replacement priority ExtremeWare Software 7 3 0 Command Reference Guide 385 History This command was first available in ExtremeWare 6 0 Platform Availability This command is available on all...

Page 386: ...profile is as follows Example The following commands swap the QoS profiles associated with 802 1p priority values 1 and 2 on an i series device configure dot1p type 2 qosprofile qp2 configure dot1p ty...

Page 387: ...ion Default N A Usage Guidelines Extreme switches support eight QoS profiles QP1 QP8 Example The following command configures port five to use QoS profile QP3 configure ports 5 qosprofile QP3 History...

Page 388: ...ue will not consume all of the unallocated buffer space You should not modify the buffer parameter unless specific situations and application behavior indicate You must reboot the switch for changes t...

Page 389: ...sprofile qp5 minbw 10 maxbw 80 priority highHi ports 5 7 The following command configures the buffer size for QoS profile qp5 on an i series switch configure qosprofile qp5 minbw 10 maxbw 80 priority...

Page 390: ...S to take a higher precedence over FDB dest mac QoS with a default priority of 8 configure qostype priority source mac 9 History This command was first available in ExtremeWare 6 2 source mac Specifie...

Page 391: ...configure qostype priority ExtremeWare Software 7 3 0 Command Reference Guide 391 Platform Availability This command is available on all platforms...

Page 392: ...packets based on the configured RED drop probability The destination node detects the dropped packet and using standard TCP windowing mechanisms slows the transmission from the source node RED drop p...

Page 393: ...traffic for example when ping packets are sent out by a user on the switch console To configure which queue to use for traffic traveling across a VLAN use the following command configure vlan vlan na...

Page 394: ...ntax Description Default N A Usage Guidelines Extreme switches support eight QoS profiles QP1 QP8 Example The following command configures VLAN accounting to use QoS profile QP3 configure vlan account...

Page 395: ...Default N A Usage Guidelines None Example The following command disables Diffserv examination on selected ports disable diffserv examination ports 3 5 6 History This command was available in ExtremeWa...

Page 396: ...Default N A Usage Guidelines None Example The following command disables Diffserv replacement on selected ports disable diffserv replacement ports 3 5 6 History This command was available in ExtremeWa...

Page 397: ...all ports on which it was enabled Using the port parameter disabled WINS packet snooping only on the specified port Example The following command disables all WINS packet snooping on the switch disabl...

Page 398: ...Default N A Usage Guidelines None Example The following command disables Diffserv replacement on all ports disable dot1p replacement ports all History This command was available in ExtremeWare 6 0 Pl...

Page 399: ...bles the QoS monitoring capability Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables QoS monitoring disable qo...

Page 400: ...n the specified ports Syntax Description Default Disabled Usage Guidelines None Example The following command disables RED on ports 5 7 disable red ports 5 7 History This command was first available i...

Page 401: ...ax Description Default Disabled Usage Guidelines None Example The following command enables Diffserv examination on selected ports enable diffserv examination ports 3 5 6 History This command was avai...

Page 402: ...e configured on each port The 802 1P priority bits 3 bits are used to select one of the eight code points Example The following command enables Diffserv replacement on selected ports enable diffserv r...

Page 403: ...o enable DLCS on all Fast Ethernet ports rather than having to enter each port individually Example The following command enables DLCS snooping on port 4 enable dlcs ports 4 Either of the following co...

Page 404: ...cket If 802 1p replacement is enabled the 802 1p priority information that is transmitted is determined by the hardware queue that is used when transmitting the packet The mapping is described in Tabl...

Page 405: ...enable dot1p replacement ports ExtremeWare Software 7 3 0 Command Reference Guide 405 Platform Availability This command is available on all platforms...

Page 406: ...y and a separate option for retrieving information in the background and writing it to the log The real time display scrolls through the given portlist to provide statistics The particular port being...

Page 407: ...on the configured RED drop probability Instead of dropping sessions during times when the queue depth is exceeded RED causes the switch to lower session throughput The destination node detects the dro...

Page 408: ...ooping WINS packets Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays DLCS status and data from the switch show dlc...

Page 409: ...r variables Default N A Usage Guidelines None Example The following command displays the current 802 1p to QoS mappings on the switch show dot1p Following is the output from this command 802 1p Priori...

Page 410: ...t A port is sampled for five seconds before the packets per second pps value is displayed on the screen Example The following command shows the real time QoS statistics related to the specified ports...

Page 411: ...Reference Guide 411 0 Clear Counters U page up D page down R rate screen ESC exit History This command was available in ExtremeWare 2 0 This command was updated to support PoS in Extreme 6 2 Platform...

Page 412: ...The following command shows the QoS information for the specified port show qosprofile 2 1 Following is sample output from this command 2 1 Queue Q0 using QP1 MinBw 0 MaxBw 100 Pri 2 Q1 using QP2 MinB...

Page 413: ...show qosprofile ExtremeWare Software 7 3 0 Command Reference Guide 413 Platform Availability This command is available on all platforms...

Page 414: ...iority settings Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the QoS traffic grouping priority settings for th...

Page 415: ...ion Default N A Usage Guidelines None Example The following command removes Diffserv code point examination from ports 5 8 unconfigure diffserv examination ports 5 8 History This command was first ava...

Page 416: ...ault N A Usage Guidelines None Example The following command removes Diffserv replacement from ports 5 8 unconfigure diffserv replacement ports 5 8 History This command was first available in ExtremeW...

Page 417: ...ription This command has no arguments or variables Default N A Usage Guidelines Resets the traffic grouping priorities to the following access list 11 dest mac 8 source mac 7 diffserv 3 dot1p 2 vlan 1...

Page 418: ...418 ExtremeWare Software 7 3 0 Command Reference Guide QoS Commands...

Page 419: ...s to the public probably Internet IP addresses you want the inside addresses translated to The mappings between inside and outside IP addresses are done using rules that specify the IP subnets involve...

Page 420: ...ics Syntax Description Default N A Usage Guidelines None Example The following command clears NAT connections clear nat connections History This command was first available in ExtremeWare 6 2 Platform...

Page 421: ...tion IP address indicates that the rule applies only to packets with the specified layer 4 port s as their destination port Specifies a port number in the range 1 to 65535 any indicates that the rule...

Page 422: ...to use portmap mode As each new connection is initiated from the inside the NAT device picks the next available source layer 4 port on the first available outside IP address When all ports on a given...

Page 423: ...ure nat add out_vlan_1 map source 192 168 1 0 24 to 216 52 8 1 216 52 8 31 The following command defines a translation rule that specifies that TCP UDP packets coming from 192 168 1 12 and destined fo...

Page 424: ...rule applies only to traffic from the specified layer 4 port s When used with a destination IP address indicates that the rule applies only to packets with the specified layer 4 port s as their destin...

Page 425: ...The following command deletes a portmap translation rule configure nat delete out_vlan_2 map source 192 168 2 128 25 to 216 52 8 64 28 tcp portmap 1024 8192 History This command was first available i...

Page 426: ...the timeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeou...

Page 427: ...g the timeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeo...

Page 428: ...meout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for a...

Page 429: ...Setting the timeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures th...

Page 430: ...imeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeout for...

Page 431: ...the timeout to zero specifies that session table entries should not be timed out This is not normally recommended as NAT resources will get used up Example The following command configures the timeou...

Page 432: ...be able to initiate connections to the internal private IP addresses If you want to prevent this you can create IP and ICMP access lists on the outside VLAN ports to deny traffic destined for the insi...

Page 433: ...nslation on the switch Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables NAT functionality on the switch disab...

Page 434: ...nslation on the switch Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables NAT functionality on the switch enable...

Page 435: ...for the outside VLANs configured on the switch Rules are displayed in the order they are processed starting with the first one To display the NAT rules for a specific VLAN add the VLAN name Use the k...

Page 436: ...436 ExtremeWare Software 7 3 0 Command Reference Guide NAT Commands...

Page 437: ...ons only if the virtual server and node are both enabled and passing health checks The switch considers a virtual server or node active unless a health check fails If a health check fails the switch c...

Page 438: ...ctions from being established disable SLB to each virtual server using the following command disable slb vip vip name all To prevent new connections from being established to a specific virtual server...

Page 439: ...ption Default N A Usage Guidelines Use this command only during testing Clearing persistence disables applications such as shopping carts that require persistence Example The following command clears...

Page 440: ...yntax Description Default N A Usage Guidelines This command also automatically enables ping based health checking Example The following command adds the next hop of 10 2 1 20 to the flow redirect poli...

Page 441: ...t gateway Syntax Description Default N A Usage Guidelines None Example The following command deletes the next hop of 10 2 1 20 from the flow redirect policy named http_flow configure flow redirect htt...

Page 442: ...he FTP check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command configure flow redirect timer service c...

Page 443: ...y include the path in the specified URL The maximum length of a URL is 255 characters For ExtremeWare 6 2 0 and prior the frequency of the HTTP check is 60 seconds the timeout of the HTTP check is 180...

Page 444: ...6 2 0 and prior the frequency of the layer 4 port check is 10 seconds the timeout of the layer 4 port check is 30 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure...

Page 445: ...he NNTP check is 60 seconds the timeout of the NNTP check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following co...

Page 446: ...xt hop In ExtremeWare 6 2 0 and prior the frequency of the ping check is 10 seconds the timeout of the ping check is 30 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later con...

Page 447: ...timeout of the POP3 check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command configure flow redirect t...

Page 448: ...he frequency of the SMTP check is 60 seconds the timeout of the SMTP check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using...

Page 449: ...timeout of the Telnet check is 180 seconds and you cannot configure these times For ExtremeWare 6 2 1 and later configure the frequency and timeout using the following command configure flow redirect...

Page 450: ...fault timeout is 30 seconds Usage Guidelines The frequency must be less than the timeout Example The following command configures a flow redirect ping check frequency of 5 seconds and a timeout of 15...

Page 451: ...conds Usage Guidelines The frequency must be less than the timeout This frequency and timeout apply to all layer 7 service checks Example The following command configures a flow redirect service check...

Page 452: ...t timeout is 30 seconds Usage Guidelines The frequency must be less than the timeout Example The following command configures a flow redirect tcp port check frequency of 15 seconds and a timeout of 45...

Page 453: ...se the unit number to associate a group of virual servers with an ESRP VLAN so that ESRP controls the failover state of the virtual servers To set the unit number of a virtual server use the following...

Page 454: ...s that you set the timout greater than an even multiple of the frequency To enable active active operation use the following command enable slb failover Example The following command sets the alive fr...

Page 455: ...ription Default The default dead frequency is 2 seconds Usage Guidelines To enable active active operation use the following command enable slb failover Example The following command sets the dead fre...

Page 456: ...al failback is enabled use this command to force the recovered SLB unit to become the active unit Executing this command does not affect the SLB configuration To enable manual failback use the followi...

Page 457: ...ce Do not configure ping check to the remote SLB switch If you configure ping check to the remote SLB switch and the remote switch fails the local switch also fails Example The following command sets...

Page 458: ...dedicated layer 2 VLAN to connect the two active active switches Example The following command configures the local SLB switch with an IP address of 10 10 10 22 to direct unit 2 virtual servers to fai...

Page 459: ...s command when you are sure that you will have a minimum guaranteed number of connections Additional connection blocks are allocated when necessary Do not use this command unless you are absolutely su...

Page 460: ...arent and translation modes Syntax Description Default The default is one second Usage Guidelines None Example The following command configures the connection timeout for 50 seconds configure slb glob...

Page 461: ...To enable service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command configure slb global serv...

Page 462: ...oot directory include the path in the specified URL The maximum length of a URL is 255 characters To enable service checking use the following command enable slb vip vip name service check To configur...

Page 463: ...configure slb global http ExtremeWare Software 7 3 0 Command Reference Guide 463 Platform Availability This command is available on all platforms...

Page 464: ...cking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command configure slb global service check To configure...

Page 465: ...rsistence settings If you configure any vip persistence ensure that all virtual servers in all pools have the same services Example The following command sets the global persistence level to any vip c...

Page 466: ...e persistence timer use the following command configure slb vip vip name client persistence timeout Example The following command sets the global persistence method to expire at the end of the session...

Page 467: ...erride the global values using the following command configure slb node ip address ping check The frequency must be less than the timeout If the pinged node does not respond within the specified timeo...

Page 468: ...able service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command configure slb global service ch...

Page 469: ...out are not specified for a specific virtual server the global values are used To set specific frequency and timeout values for a virtual server use the following command configure slb vip vip name se...

Page 470: ...eck accesses the service To enable service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command c...

Page 471: ...lt To enable SYN guard use the following command enable slb global synguard SYN guard is automatically enabled if you configure a max unacknowledged SYNs value greater than 0 A max unacknowledged SYNs...

Page 472: ...and timeout are not specified for a specific node the global values are used You can configure a node to override the global values using the following command configure slb node ip address L4 port tc...

Page 473: ...rvice To enable service checking use the following command enable slb vip vip name service check To configure the frequency and timeout of service checks use the following command configure slb global...

Page 474: ...Guidelines Use this command to configure the IP address before configuring individual health checks Example The following command configures the GoGo mode health check for the group with port 29 as th...

Page 475: ...e IP address on the GoGo mode servers using the following command configure slb gogo mode health check To enable ping check for a GoGo mode group use the following command enable slb gogo mode port nu...

Page 476: ...476 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 477: ...up use the following command enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disable slb gogo mode port number service check Exa...

Page 478: ...the specified URL The maximum length of a URL is 255 characters Before you use this command configure the IP address on the GoGo mode servers using the following command configure slb gogo mode healt...

Page 479: ...b gogo mode service check http ExtremeWare Software 7 3 0 Command Reference Guide 479 History This command was first available in ExtremeWare 6 1 5 Platform Availability This command is available on a...

Page 480: ...lowing command enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disable slb gogo mode port number service check Example The follo...

Page 481: ...ng command configure slb gogo mode health check To enable service check for a GoGo mode group use the following command enable slb gogo mode port number service check To disable service check for a Go...

Page 482: ...llowing command enable slb gogo mode port number service check To disable service check for a GoGo mode group use the following command disable slb gogo mode port number service check Example The foll...

Page 483: ...xample The following command configures GoGo mode FTP service check for the group with port 29 as the master port with a frequency of 15 seconds and a timeout of 45 seconds configure slb gogo mode 29...

Page 484: ...484 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 485: ...as a GoGo mode TCP port check for the group with port 29 as the master port configure slb gogo mode 29 tcp port check add ftp History This command was first available in ExtremeWare 6 1 5 port number...

Page 486: ...486 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 487: ...etes FTP from the GoGo mode TCP port check for the group with port 29 as the master port configure slb gogo mode 29 tcp port check delete ftp History This command was first available in ExtremeWare 6...

Page 488: ...488 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 489: ...slb global tcp port check The frequency must be less than the timeout port number Specifies the GoGo mode master port ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https...

Page 490: ...TCP port check for the group with port 29 as the master port with a frequency of 15 seconds and a timeout of 45 seconds configure slb gogo mode 29 tcp port check timer ftp frequency 15 timeout 45 Hist...

Page 491: ...t the timeout values for a wildcard virtual server use a TCP or UDP port number of 0 Example The following command configures the ftp nodes with a TCP idle period of 30 seconds configure slb l4 port f...

Page 492: ...492 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms...

Page 493: ...ept a maximum of 10 connections configure slb node 10 1 1 2 80 max connections 10 ip address Specifies the IP address of the node ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port...

Page 494: ...494 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms...

Page 495: ...global ping check frequency and timeout use the following command configure slb global ping check Example The following command sets the ping check for the node with an IP address of 10 2 1 2 to a fre...

Page 496: ...pecifies the IP address of the node ftp Specifies the FTP TCP port check http Specifies the HTTP TCP port check https Specifies the HTTPS TCP port check imap4 Specifies the IMAP4 TCP port check ldap S...

Page 497: ...s the FTP TCP port check for the node with an IP address of 10 2 1 2 to a frequency of 30 seconds and a timeout of 90 seconds configure slb node 10 2 1 2 ftp tcp port check frequency 30 timeout 90 His...

Page 498: ...use the same ratio connections are distributed equally among the nodes A ratio of 0 results in no traffic to the node When you pool name Specifies a pool ip address Specifies the IP address of the nod...

Page 499: ...priority To configure a pool to use the priority load balancing method use the following command configure slb pool pool name lb method priority To change the ratio or priority of a node that is alre...

Page 500: ...ol Example The following command deletes the FTP node with an IP address of 10 2 1 2 from the pool ftp configure slb pool ftp delete 10 2 1 2 ftp pool name Specifies a pool ip address Specifies the IP...

Page 501: ...figure slb pool delete ExtremeWare Software 7 3 0 Command Reference Guide 501 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platfor...

Page 502: ...riority of a node use the following command configure slb pool pool name member Example The following command changes the load balancing method for the pool ftp to ratio configure slb pool ftp lb meth...

Page 503: ...name add Example The following command changes the priority of the FTP node with an IP address of 10 2 1 2 in the pool ftp to 2 pool name Specifies a pool ip address Specifies the IP address of the no...

Page 504: ...e 7 3 0 Command Reference Guide SLB Commands configure slb pool ftp member 10 2 1 2 ftp priority 2 History This command was first available in ExtremeWare 6 1 Platform Availability This command is ava...

Page 505: ...iption Default N A Usage Guidelines Use this command to force all clients from the specified proxy array to connect to the same physical server Example The following command specifies that the subnet...

Page 506: ...eate the virtual server before you use this command To create a virtual server use the following command create slb vip Example The following command configures the virtual server test with a unit num...

Page 507: ...works recommends that you specify a short client persistence timeout because longer timeout values consume more memory Example The following command configures the virtual server ftp with a client per...

Page 508: ...nforced When the maximum number of connections is reached the server stops responding to new requests existing connections are maintained Example The following command sets the maximum connections to...

Page 509: ...eturn to the global values specify 0 for frequency and timeout To set the global service check frequency and timeout use the following command configure slb global service check Example The following...

Page 510: ...TP service check logs into the service To configure the frequency and timeout of service checks use the following command configure slb global service check To configure the global parameters use the...

Page 511: ...ude http in the URL To check a URL beyond the root directory include the path in the specified URL The maximum length of a URL is 255 characters To configure the frequency and timeout of service check...

Page 512: ...512 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 513: ...e NNTP service check logs into the service To configure the frequency and timeout of service checks use the following command configure slb global service check To configure the global parameters use...

Page 514: ...3 service check logs into the service To configure the frequency and timeout of service checks use the following command configure slb global service check To configure the global parameters use the f...

Page 515: ...MTP service check accesses the service To configure the frequency and timeout of service checks use the following command configure slb global service check To configure the global parameters use the...

Page 516: ...et service check logs into the service To configure the frequency and timeout of service checks use the following command configure slb global service check To configure the global parameters use the...

Page 517: ...on if a server originates or could possibly originate connections to other servers Example The following command configures the VLAN client_vlan as a client VLAN configure vlan client_vlan slb type cl...

Page 518: ...olicy named http that forwards TCP traffic to 10 1 1 10 port 80 from any source IP address create flow redirect http tcp destination 10 1 1 10 29 ip port 80 source any History This command was availab...

Page 519: ...create flow redirect ExtremeWare Software 7 3 0 Command Reference Guide 519 Platform Availability This command is available on all platforms...

Page 520: ...ad balancing method of an existing pool use the following command configure slb pool pool name lb method To add a node to the pool and set the ratio or priority use the following command configure slb...

Page 521: ...and creates the virtual server ftp_vip with an IP address of 10 10 10 2 in the pool ftp_pool and assigns the port translation forwarding mode configure slb vip ftp_vip pool ftp_pool mode port translat...

Page 522: ...ault N A Usage Guidelines To rename or modify a flow redirect policy you must delete and recreate the flow redirect policy Example The following command deletes a flow redirect policy named http delet...

Page 523: ...nes You must first delete all virtual servers before deleting the pool To delete a virtual server use the following command delete slb vip Example The following command the pool named http_pool delete...

Page 524: ...age Guidelines You must use this command to delete all virtual servers from a pool before deleting the pool Example The following command the virtual server named http_vip delete slb pool http_vip His...

Page 525: ...Guidelines When you create a new flow redirect policy flow redirect is automatically enabled To enable flow redirect use the following command enable flow redirect Example The following command disab...

Page 526: ...LB causes the following to occur Closes all connections Withdraws virtual server routes or routes that do not respond with proxy ARP responses of virtual server addresses Disconnects the switch from r...

Page 527: ...on This command has no arguments or variables Default 3DNS is disabled by default Usage Guidelines To enable 3DNS use the following command enable slb 3dns iquery client Example The following command...

Page 528: ...on This command has no arguments or variables Default SLB failover is disabled by default Usage Guidelines To enable SLB failover use the following command enable slb failover Example The following co...

Page 529: ...tion This command has no arguments or variables Default Manual failback is disabled by default Usage Guidelines To enable manual failback use the following command enable slb failover manual failback...

Page 530: ...scription This command has no arguments or variables Default Ping check is disabled by default Usage Guidelines To enable ping check use the following command enable slb failover ping check Example Th...

Page 531: ...ax Description This command has no arguments or variables Default SYN guard is disabled by default Usage Guidelines To enable SYN guard use the following command enable slb global synguard Example The...

Page 532: ...t the servers as they all have identical MAC and IP addresses which can cause VLAN conflicts To enable GoGo mode use the following command enable slb gogo mode Example The following command disables G...

Page 533: ...eck is disabled by default Usage Guidelines To enable ping check for a GoGo mode group use the following command enable slb gogo mode port number ping check Example The following command disables GoGo...

Page 534: ...rvice check Example The following command disables GoGo mode FTP service check for the group with port 29 as the master port disable slb gogo mode 29 service check ftp History This command was first a...

Page 535: ...ecks for the group with port 29 as the master port disable slb gogo mode 29 tcp port check all History This command was first available in ExtremeWare 6 1 5 port number Specifies the GoGo mode master...

Page 536: ...536 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 537: ...SLB for FTP ports disable slb L4 port ftp History This command was first available in ExtremeWare 6 1 all Specifies all nodes ftp Specifies an FTP node http Specifies an HTTP node https Specifies an H...

Page 538: ...538 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 539: ...all virtual servers associated with that pool are effectively disabled To enable a node use the following command enable slb node all Specifies all nodes ip address Specifies an IP address ftp Specifi...

Page 540: ...nds Example The following command disables all nodes and immediately closes all open connections disable slb node all close connections now History This command was first available in ExtremeWare 6 1...

Page 541: ...t Usage Guidelines Ping check is automatically enabled when a node is added to a pool To enable ping check on a node use the following command enable slb node ping check Example The following command...

Page 542: ...command disables all TCP port checks disable slb node all tcp port check History This command was first available in ExtremeWare 6 1 all Specifies all nodes ip address Specifies an IP address ftp Spec...

Page 543: ...disable slb node tcp port check ExtremeWare Software 7 3 0 Command Reference Guide 543 Platform Availability This command is available on all platforms...

Page 544: ...no arguments or variables Default Proxy client persistence is disabled by default Usage Guidelines To enable proxy client persistence use the following command enable slb proxy client persistence Exa...

Page 545: ...al server ftp_vip and closes all open connections all Specifies all virtual servers vip name Specifies a virtual server ip address Specifies an IP address ftp Specifies an FTP virtual server http Spec...

Page 546: ...tware 7 3 0 Command Reference Guide SLB Commands disable slb vip ftp_vip close connections now History This command was first available in ExtremeWare 6 1 Platform Availability This command is availab...

Page 547: ...e is disabled by default Usage Guidelines To enable client persistence use the following command enable slb vip client persistence Example The following command disables client persistence for the vir...

Page 548: ...sabled by default Usage Guidelines To enable service check use the following command enable slb vip service check Example The following command disables service check for the virtual server ftp_vip di...

Page 549: ...e is disabled by default Usage Guidelines To enable sticky persistence use the following command enable slb vip sticky persistence Example The following command disables sticky persistence for the vir...

Page 550: ...disabled by default Usage Guidelines To enable svcdown reset use the following command enable slb vip svcdown reset Example The following command disables svcdown reset for the virtual server ftp_vip...

Page 551: ...Guidelines When you create a new flow redirect policy flow redirect is automatically enabled To disable flow redirect use the following command disable flow redirect Example The following command enab...

Page 552: ...kup and connection setup Establishing communication with redundant SLB switches Positively responding to MIB 3DNS and SeeIT requests Before you enable SLB enable IP forwarding on the associated VLANs...

Page 553: ...efault Usage Guidelines The following 3DNS global balance modes are supported completion rate global_availability leastcon null packet_rate random ration rr return_to_dns To disable 3DNS use the follo...

Page 554: ...er is enabled the primary SLB switch automatically resumes primary status when it becomes active Before you enable SLB failover configure your switches using the following command configure slb failov...

Page 555: ...efault Usage Guidelines When manual failback is enabled the primary SLB switch does not automatically resume primary status until you use the following command configure slb failover failback now To d...

Page 556: ...s command has no arguments or variables Default Ping check is disabled by default Usage Guidelines To disable ping check use the following command disable slb failover ping check Example The following...

Page 557: ...Description This command has no arguments or variables Default SYN guard is disabled by default Usage Guidelines To disable SYN guard use the following command disable slb global synguard Example The...

Page 558: ...able GoGo mode use the following command disable slb gogo mode Example The following command enables GoGo mode for the group containing ports 15 17 19 23 and 25 30 with port 29 as the master port enab...

Page 559: ...uses the previously configured IP address You must enable GoGo mode for the group before you enable ping check To enable GoGo mode use the following command enable slb gogo mode To disable ping check...

Page 560: ...service check Example The following command enables GoGo mode FTP service check for the group with port 29 as the master port enable slb gogo mode 29 service check ftp History This command was first a...

Page 561: ...cks for the group with port 29 as the master port enable slb gogo mode 29 tcp port check all History This command was first available in ExtremeWare 6 1 5 port number Specifies the GoGo mode master po...

Page 562: ...562 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 563: ...lowing command enables SLB for FTP ports enable slb L4 port ftp History This command was first available in ExtremeWare 6 1 ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTT...

Page 564: ...564 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands Platform Availability This command is available on all platforms...

Page 565: ...ble slb node Example The following command enables all nodes enable slb node all all Specifies all nodes ip address Specifies an IP address ftp Specifies an FTP node http Specifies an HTTP node https...

Page 566: ...566 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms...

Page 567: ...sage Guidelines Ping check is automatically enabled when a node is added to a pool To disable ping check on a node use the following command disable slb node ping check Example The following command e...

Page 568: ...ommand enables all TCP port checks enable slb node all tcp port check History This command was first available in ExtremeWare 6 1 all Specifies all nodes ip address Specifies an IP address ftp Specifi...

Page 569: ...enable slb node tcp port check ExtremeWare Software 7 3 0 Command Reference Guide 569 Platform Availability This command is available on all platforms...

Page 570: ...no arguments or variables Default Proxy client persistence is disabled by default Usage Guidelines To disable proxy client persistence use the following command disable slb proxy client persistence Ex...

Page 571: ...s all virtual servers vip name Specifies a virtual server ip address Specifies an IP address ftp Specifies an FTP virtual server http Specifies an HTTP virtual server https Specifies an HTTPS virtual...

Page 572: ...572 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms...

Page 573: ...isabled Usage Guidelines To disable client persistence use the following command disable slb vip client persistence Example The following command enables client persistence for the virtual server ftp_...

Page 574: ...ormation If a service check is configured for a TCP port number instead of for a service ExtremeWare assigns the service based on the port number if the port number is well known and uses the global d...

Page 575: ...persistence is disabled by default Usage Guidelines To disable sticky persistence use the following command disable slb vip sticky persistence Example The following command enables sticky persistence...

Page 576: ...tch to send TCP RST packets to both the clients and the virtual server if the virtual server fails a health check To disable svcdown reset use the following command disable slb vip svcdown reset Examp...

Page 577: ...e check Flow IPSA Mode Displays the IP source address mode Enumeration Mode The default mode used for network masks from 32 to 20 Subnet Mode Used for network masks from 19 to 1 The mode is selected a...

Page 578: ...Timeout 180 Flow IPSA Mode Enumeration Mode http1 Proto tcp Dest 0 0 0 0 0 L4 Port 80 Enabled yes Source 0 0 0 0 0 Servers Up 0 1 Service Checking ping IP Address State Flow Info 24 3 89 145 Down 0000...

Page 579: ...information between the switch and the 3DNS querier Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the current...

Page 580: ...dcard Example The following command displays the current connection information for all connections show slb connections History This command was first available in ExtremeWare 6 1 ip address Specifie...

Page 581: ...show slb connections ExtremeWare Software 7 3 0 Command Reference Guide 581 Platform Availability This command is available on all platforms...

Page 582: ...nd has no arguments or variables Default N A Usage Guidelines None Example The following command displays the current ESRP configuration show slb esrp Following is the output from this command VLAN Na...

Page 583: ...rent SLB failover configuration and status show slb failover Following is the output from this command SLB Failover Configuration Failover Enabled Local unit ID 1 Local IP address 10 1 1 1 Remote IP a...

Page 584: ...584 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms...

Page 585: ...global configuration information show slb global Following is the output from this command SLB Enabled SynGuard Disabled 3DNS IQuery Support Status Disabled SLB persist level same vip same port SLB p...

Page 586: ...ress 10 1 1 2 TCP port number 1028 Remote Alive frequency 1 Remote Dead frequency 2 Keepalive Timeout 3 Ping check Disabled Ping check IP address 0 0 0 0 Ping frequency 1 Ping timeout 3 Manual failbac...

Page 587: ...a master port status for all GoGo mode groups with health checks configured is displayed Example The following command displays the current GoGo mode health check configuration for the group with por...

Page 588: ...configuration show slb L4 port Following is the output from this command Port 80 Enabled TCP idle timeout treaper 600 UDP idle timeout 600 History This command was first available in ExtremeWare 6 1 f...

Page 589: ...plays the current node configuration and statistics for all nodes show slb node ip address Specifies an IP address ftp Specifies an FTP node http Specifies an HTTP node https Specifies an HTTPS node i...

Page 590: ...imeout PoolsConns 1 111 1 1 E H 10 30 80 E 30 90 2 no limit 1 111 1 2 E H 10 30 80 E 30 90 2 no limit 1 111 1 3 E H 10 30 80 E 30 90 2 no limit Flags E Enable U Up R IP Route Up H Health check enabled...

Page 591: ...tence status of existing clients Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the current persistence status s...

Page 592: ...r_pool and ratio_pool show slb pool Following is the output from this command Name IP TCP UDP Ratio IP Flags Port Flags Priority rr_pool VIPs sharing 1 Load Bal Method Round Robin 1 111 1 1 E H 80 E 1...

Page 593: ...displayed If you specify vip but do not specify a specifuc virtual server status for all virtual servers is displayed If you do not specify a pool or virtual server status for all pools and virtual se...

Page 594: ...virtual servers currently ratio_vip and rr_vip show slb vip vip name Specifies a virtual server ip address Specifies an IP address ftp Specifies an FTP virtual server http Specifies an HTTP virtual se...

Page 595: ...10 1 1 10 80 1 TP PA EUA rr_pool0 3 Modes TP Transparent TL Translational PT Port Translational Automatically Exported via PA Proxy Arp HR Host Route SR Subnet Route Flags E Enable U Up A Active Unit...

Page 596: ...e Guidelines This command does not delete nodes pools or virtual servers To delete all nodes and pools use the following command delete slb pool all To delete all virtual servers use the following com...

Page 597: ...nd service check configurations for this GoGo mode group Syntax Description Default N A Usage Guidelines None Example The following command deletes all health check configurations for the GoGo mode gr...

Page 598: ...configuration for the GoGo mode group with port 29 as the master port unconfigure slb gogo mode 29 service check ftp History This command was first available in ExtremeWare 6 1 5 Platform Availability...

Page 599: ...onfiguration Syntax Description Default N A Usage Guidelines None Example The following command disables and deletes the FTP service check configurations for the virtual server ftp_vip unconfigure slb...

Page 600: ...600 ExtremeWare Software 7 3 0 Command Reference Guide SLB Commands...

Page 601: ...h function is inoperable The switch may need to be reset Error A problem is interfering with normal operation Warning An abnormal condition exists that may lead to a function failure Notice A normal b...

Page 602: ...direction of a TCP or UDP connection are exported to the same collector For Ethernet applications only ingress traffic is monitored on Ethernet ports By default each Ethernet port configured for flow...

Page 603: ...w port command to view port statistics Use the show log counters command to show event statistics Viewing and maintaining statistics on a regular basis allows you to see how well your network is perfo...

Page 604: ...uration Upon reboot the switch will not try to bring up a card with an error code so it will be shown in a failed state Use the clear log diag status command to clear the hardware error code so the mo...

Page 605: ...eWare Software 7 3 0 Command Reference Guide 605 The error led option was added in ExtremeWare 7 1 0 The messages option was added in ExtremeWare 7 1 0 Platform Availability This command is available...

Page 606: ...of the event conditions in the system use the following command show log events detail To get a listing of the components present in the system use the following command show log components Example Th...

Page 607: ...clear log counters ExtremeWare Software 7 3 0 Command Reference Guide 607 Platform Availability This command is available on all platforms...

Page 608: ...f Extreme Networks personnel Extreme Networks support personnel can clear the Alpine diagnostics failures from the NVRAM using the following command clear log diag error slot number Example The follow...

Page 609: ...Networks support personnel can clear the packet memory diagnostics failures from the EEPROM using the following command clear log diag remap slot number This command clears any error remapping Exampl...

Page 610: ...il Time_last_fail slot 1 Unknown slot 2 Unknown slot 3 FM8V Operational MAC 2b81b 0 slot 4 GM4X Operational MAC 2b81b 0 BPLNE SMMI Operational UART 2b81a 0 BPLNE SMMI Operational FLASH 2b81a 0 BPLNE S...

Page 611: ...hat all the records for a given flow are exported to the same collector The algorithm also ensures that flow records for both the ingress and egress directions of a TCP or UDP connection are exported...

Page 612: ...612 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Status Monitoring and Statistics Platform Availability This command is available on all platforms...

Page 613: ...wing command removes the flow collector device with IP address 10 205 30 15 using UDP port 2025 from export group 5 on this switch configure flowstats export 5 delete 10 205 30 15 2025 History This co...

Page 614: ...ss_value mask ipaddress_filtermask dest port port_value port_filtermask source port port_value port_filtermask protocol tcp udp ip protocol_value protocol_filtermask match all flows match no flows All...

Page 615: ...eated for filter 2 and so on If there is no match for any of the filters then statistics are not maintained for the flow Filters for any or all of the sequence components can be configured with a sing...

Page 616: ...he IP address of the VLAN that has the default route to the flow collector device Usage Guidelines The IP address must have a route to the flow collector device Example The following command specifies...

Page 617: ...tes parameter is an integer in the range 1 1440 Example The following command configures a timeout value of 15 minutes for ports 1 8 configure flowstats timeout 15 ports 1 8 This means that flow recor...

Page 618: ...include critical error warning info notice debug summary debug verbose and debug data In ExtremeWare 7 1 0 the ability to control logging to different targets was introduced The new command equivalen...

Page 619: ...configure log display ExtremeWare Software 7 3 0 Command Reference Guide 619 Platform Availability This command is available on all platforms...

Page 620: ...the events specified The delete keyword is used to remove events from the filter item list that were previously added using the add command All filter items currently in the filter item list that are...

Page 621: ...be used as a convenience when delete or exclude is specified The use of delete or exclude with severity all deletes or excludes previously added events of the same component of all severity values NOT...

Page 622: ...log components To get a listing of event condition definitions use the following command show log events To see the current configuration of a filter use the following command show log configuration f...

Page 623: ...620 for more information on specifying and using filters on event conditions and components on the details of the filtering process The discussion here is about the concepts of matching type value pa...

Page 624: ...ilter to match a source MAC address and a destination MAC address XYZ event5 will match the filter when the source MAC address matches regardless of the destination MAC address since the event contain...

Page 625: ...ve severity notice configure log bgpFilter add exclude events bgp keepalive severity notice match bgp neighbor 10 1 2 0 24 Filter Optimization As explained in the configure log filter events command e...

Page 626: ...onent and all subcomponents of STP of severity critical error warning notice and info For any of these events containing a physical port number as a match parameter limit the incidents to only those o...

Page 627: ...bgp keepalive severity notice use the following command configure log filter bgpFilter2 set severity info events bgp keepalive Using this single command is preferred to using a delete command followe...

Page 628: ...filter filter name Example To change the severity level of the filter item added with this command configure log filter bgpFilter2 add events bgp keepalive severity notice use the following command co...

Page 629: ...to change the severity level of the filter item added with this command configure log slbFilter2 add exclude events slb conn severity notice match source ipaddress 10 1 2 0 24 use the following comman...

Page 630: ...nd show log configuration target console display memory buffer nvram session syslog host name ip udp port local0 local7 To see the current configuration of a filter use the following command show log...

Page 631: ...essage is sent to a target if the target has been enabled the message passes the associated filter the message is at least as severe as the configured severity level and the message output matches the...

Page 632: ...tic messages with a severity level of warning and above were stored in NVRAM so they would be available across a reboot This remains the default behavior for ExtremeWare releases but message filtering...

Page 633: ...fies a syslog target host name ip Specifies the syslog host name or IP address udp port Specifies the UDP port number for the syslog target local0 local7 Specifies the local syslog facility timestamp...

Page 634: ...vent name none host name off priority on tag id off tag name on sequence number off process name off process id off source function off source line off Usage Guidelines This command configures the for...

Page 635: ...can be output by specifying severity on or suppressed by specifying severity off The default setting is severity on The abbreviations are Crit Erro Warn Noti Info Summ Verb and Data These correspond t...

Page 636: ...fying source line on or suppressed by specifying source line off The default setting is source line off Example In the following example the switch generates the identical event from the component SNT...

Page 637: ...fying any instead of match expression effectively removes a match expression that had been previously configured causing any message to be sent that has satisfied all of the other requirements To seet...

Page 638: ...The following command sends log messages to the current session that pass the current filter and severity level and contain the string user5 configure log target session match user5 History This comma...

Page 639: ...as the configured severity level and the message output matches the regular expression specified See the command show log on page 713 for a detailed description of severity levels To see the current...

Page 640: ...e Example The following command sends log messages to the current session that pass the current filter at a severity level of info or greater and contain the string user5 configure log target session...

Page 641: ...pecific slot s behavior if an error is discovered To configure the system health check for auto recovery use the configure sys health check auto recovery number offline online alarm level card down de...

Page 642: ...very mode offline slot 1 The following command enables packet memory scanning on the MSM module in slot B and specifies that the module be kept online configure packet mem scan recovery mode online sl...

Page 643: ...ow agent uses when sending data Typically you would set this to the IP address used to identify the switch in the network management tools that you use We recommend that you do not leave this paramete...

Page 644: ...value of 0 zero disables the backoff threshold feature Use the following command to reset the sFlow backoff threshold value to 0 zero unconfigure sflow backoff threshold Example The following command...

Page 645: ...ted to and from the sFlow agent You can configure up to four sFlow collectors Each unique IP address UDP port combination identifies a collector Using the unconfigure sflow collector command will rese...

Page 646: ...e sFlow collector This command is used to set the polling interval The same value is used for all data sources The polling interval applies to each counter separately and the polling is distributed am...

Page 647: ...rate at which the sFlow agent collects network traffic samples One sample per number of packets received will be sent to the sFlow collector If the sample rate is set to 0 zero no samples will be sent...

Page 648: ...rate critical error messages in the syslog and may also send a trap and or shut down the system The system health checker will continue to periodically forward test packets to failed components If aut...

Page 649: ...be stored in the EEPROM After the PM defect detection and mapping process has been run a card is considered failed and is taken offline in the following circumstances More than eight defects are detec...

Page 650: ...current behavior if you use the run diagnostics command Example The following command configures the system health checker to post a CRIT message to the log and send a trap configure sys health check...

Page 651: ...y also send a trap and or shut down the system The system health checker will continue to periodically forward test packets to failed components If auto recovery is configured the system will attempt...

Page 652: ...e consecutive checksum errors were detected by the health checker but no new defects were found by the memory scanning and mapping process After defects were detected and mapped out the same checksum...

Page 653: ...iled a system health check this command restores the MSM to full functionality This command should only be used for additional testing purposes and reproduction efforts of the original fault If you co...

Page 654: ...alth check scan recovery reset remap Entering this command generates the following message This command should only be used at the direction of Extreme Personnel Do you wish you continue y n Answering...

Page 655: ...configure sys health check scan recovery ExtremeWare Software 7 3 0 Command Reference Guide 655 Platform Availability This command is not available on the BlackDiamond 6816 switch...

Page 656: ...system will always reboot after a task exception when the system recovery level is specified as all or critical For ExtremeWare 6 2 or later you must specify whether the system should shut down or re...

Page 657: ...critical task exception occurs configure sys recovery level critical reboot The following command configures the Master MSM to failover to the Slave MSM if a software exception occurs configure sys re...

Page 658: ...xisting log messages in a wrap around memory buffer which may cause you to lose valuable information once the buffer becomes full The remote syslog server does not overwrite log information and can st...

Page 659: ...tremeWare Software 7 3 0 Command Reference Guide 659 configure syslog 123 45 67 78 local1 critical History This command was first available in ExtremeWare 2 0 Platform Availability This command is ava...

Page 660: ...ge Guidelines This command is used to delete a remote syslog server target Example The following command deletes the remote syslog server with an IP address of 10 0 0 1 configure syslog delete 10 0 0...

Page 661: ...recovery and configuring auto recovery overrides the alarm level setting By default the switch checks for errors within the last eight 20 second windows Use the configure transceiver test window comm...

Page 662: ...and Reference Guide Commands for Status Monitoring and Statistics This command was not supported in ExtremeWare 7 0 This command is supported in ExtremeWare 7 1 0 Platform Availability This command is...

Page 663: ...can affect system performance therefore Extreme Networks does not recommend changing the default transceiver test period The default is adequate for most networks Example The following command config...

Page 664: ...eme Networks does not recommend changing the default transceiver test threshold parameter The default parameter is adequate for most networks Example The following command configures the switch to acc...

Page 665: ...determine the number of errors the switch accepts before it takes action use the configure transceiver test threshold command Extreme Networks does not recommend changing the default transceiver test...

Page 666: ...customized Therefore the create log filter command can be used if a filter other than DefaultFilter is desired As its name implies DefaultFilter initially contains the default level of logging in whi...

Page 667: ...r must not be associated with a target To remove that association associate the target with DefaultFilter instead of the filter to be deleted using the following command configure log target target fi...

Page 668: ...ges and their sources that are made using the CLI via Telnet or the local console After you disable configuration logging no further changes are logged to the system log To view the status of configur...

Page 669: ...x Description This command has no arguments or variables Default Disabled Usage Guidelines When this feature is disabled no flow records are exported Example The following command disables the NetFlow...

Page 670: ...egress keywords are required for SONET ports Example The following command disables filter 3 for ports 1 8 on an i series switch disable flowstats filter 3 ports 1 8 The following command example disa...

Page 671: ...disable flowstats filter ports ExtremeWare Software 7 3 0 Command Reference Guide 671 Platform Availability This command is available on all platforms...

Page 672: ...Usage Guidelines On the PoS module if you do not include a group number ping check is disabled for all export groups The group number is not optional for other Extreme i series devices Example The fol...

Page 673: ...rotocol BCP Also there are no configuration restrictions that prohibit enabling of the flow statistics function on ports that are not configured to use IPCP statistics are not collected on those ports...

Page 674: ...command disables debug mode Debug mode must be enabled prior to logging debug messages which can severely degrade performance For typical network device monitoring debug mode should remain disabled t...

Page 675: ...onger written to the serial console This command setting is saved to FLASH and determines the initial setting of the console display at boot up In ExtremeWare 7 1 0 the ability to control logging to d...

Page 676: ...duration of the console display or telnet session and are not saved in FLASH Changes to the other targets are saved to FLASH In earlier versions of ExtremeWare a similar command was used to disable d...

Page 677: ...disable log target ExtremeWare Software 7 3 0 Command Reference Guide 677 Platform Availability This command is available on all platforms...

Page 678: ...d and thresholds can be on the absolute value of a variable or its delta value In addition alarm thresholds may be auto calibrated or set manually Events The Events group creates entries in an event l...

Page 679: ...idelines This command disables sFlow globally on the switch This command will not disable sFlow if it is enabled on any ports Per port sFlow must be disabled before executing this command by first usi...

Page 680: ...t to the sFlow collector in a second The backoff threshold is set by using the following command configure sflow backoff threshold If the number of packets sent to the collector exceeds the limit set...

Page 681: ...low is disabled globally all sampling and polling stops Use the following command to disable sFlow globally disable sflow Sampling and polling must first be stopped on every port through the disable s...

Page 682: ...is command has no arguments or variables Default Enabled Usage Guidelines If the system health checker is disabled it does not test I O modules MSM modules and the backplane for system faults Example...

Page 683: ...or variables Default Disabled Usage Guidelines Disables logging to all remote syslog server targets not to the switch targets This setting is saved in FLASH and will be in effect upon boot up Example...

Page 684: ...e current temperature of the system do the following 1 Disable the temperature logging feature using the following command disable temperature logging 2 Re enable the temperature logging feature using...

Page 685: ...ng is sample output Transceiver system health diag result Pass Fail Counters Are in HEX Slot Cardtype Cardstate Test Pass Fail Time_last_fail slot 1 Unknown slot 2 Unknown slot 3 FM8V Operational MAC...

Page 686: ...ions onto a switch with ExtremeWare 6 2 2b134 or ExtremeWare 7 1 0 or later the transceiver test is enabled You must manually disable the transceiver test if you want the feature disabled Example The...

Page 687: ...the system log Each log entry includes the user account name that performed the changes and the source IP address of the client if Telnet was used Configuration logging applies only to commands that...

Page 688: ...low statistics feature on the switch Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables NetFlow statistics featu...

Page 689: ...d are used to identify the particular filter that is being disabled One of either the ingress or egress keywords are required for SONET ports Example The following command enables filter 3 for ports 1...

Page 690: ...moved from the distribution list for any export groups of which it is a member The device will be returned to the distribution list automatically when subsequent ping checks are successful On the PoS...

Page 691: ...l protocol BCP Also there are no configuration restrictions that prohibit enabling of the flow statistics function on ports that are not configured to use IPCP statistics are not collected on those po...

Page 692: ...nables debug mode Debug mode must be enabled prior to logging debug messages which can severely degrade performance For typical network device monitoring debug mode should remain disabled the default...

Page 693: ...nfigure the messages displayed in the log using the configure log display or configure log target console display commands In ExtremeWare 7 1 0 the ability to control logging to different targets was...

Page 694: ...only for the duration of the console display or telnet session and are not saved in FLASH Others are saved in FLASH In earlier versions of ExtremeWare a similar command was used to enable displaying...

Page 695: ...enable log target ExtremeWare Software 7 3 0 Command Reference Guide 695 Platform Availability This command is available on all platforms...

Page 696: ...any RMON variable Both rising and falling thresholds are supported and thresholds can be on the absolute value of a variable or its delta value In addition alarm thresholds may be auto calibrated or s...

Page 697: ...and The show management command displays information about the switch including the enable disable state for RMON polling Example The following command enables the collection of RMON statistics on the...

Page 698: ...ts or variables Default Disabled Usage Guidelines This command enables sFlow globally on the switch Sflow must be enabled globally before a per data source sFlow can be enabled through the following c...

Page 699: ...set by using the following command configure sflow backoff threshold If the number of packets sent to the collector exceeds the limit set by the configure sflow backoff threshold command the sampling...

Page 700: ...in order to gather statistics and send the data to the collector Traffic is sampled on enabled ports only Once sFlow is enabled globally and on the ports of interest sampling and polling will begin Us...

Page 701: ...y also send a trap and or shut down the system The system health checker will continue to periodically forward test packets to failed components If auto recovery is configured the system will attempt...

Page 702: ...702 ExtremeWare Software 7 3 0 Command Reference Guide Commands for Status Monitoring and Statistics Platform Availability This command is available on BlackDiamond switches only...

Page 703: ...slog host to accept and log messages Enable remote logging by using the enable syslog command Configure remote logging by using the configure syslog command When you use the enable syslog command the...

Page 704: ...03 17 50 59 00 Info ELRP Current temperature reading 195 is 48C To clear all of the log statistics including the system temperature output use the clear log command Since the temperature is recorded b...

Page 705: ...ExtremeWare Software 7 3 0 Command Reference Guide 705 The command was supported and the syntax changed from enable log temperature in ExtremeWare 7 1 0 Platform Availability This command is availabl...

Page 706: ...he transceiver test statistics use the show diagnostics sys health check command The following is sample output Transceiver system health diag result Pass Fail Counters Are in HEX Slot Cardtype Cardst...

Page 707: ...a switch with ExtremeWare 6 2 2b134 or ExtremeWare 7 1 0 or later the transceiver test is enabled You must manually disable the transceiver test if you want the feature disabled Example The following...

Page 708: ...figuration of flow collector devices NetFlow Server Config NetFlow Timeout configurations Whether NetFlow Filters are enable or disabled NetFlow filter specifications NetFlow ping check configuration...

Page 709: ...Filter proto timeout group OverflowPkts flags 1 1 IP 5 3 N A EIA DestIP 10 203 0 1 255 255 255 255 DestPort any SrcIP any SrcPort any 40 8 5 1 N A EIA Dest Src Info match all flows 43 3 TCP 5 32 N A E...

Page 710: ...ether the flowstats feature is enabled or disabled The configuration of flow collector devices for the export group NetFlow Server Config NetFlow ping check configuration Example The following command...

Page 711: ...rs are enable or disabled for the port NetFlow filter specifications for the port Example The following command displays statistics for ports 1 40 and 48 Summit48i show flowstats 1 40 48 Flowstats ena...

Page 712: ...re Software 7 3 0 Command Reference Guide Commands for Status Monitoring and Statistics History This command was first available in ExtremeWare 6 2 Platform Availability This command is available on a...

Page 713: ...lowing information Timestamp records the month and day of the event along with the time hours minutes seconds and hundredths messages Specifies the target location from which to display the log messag...

Page 714: ...specified ending time will be shown if they also pass the severity requirements and match expression if specified If the format phrase is specified this format overrides the format already configured...

Page 715: ...valent level is critical Level Description Critical A serious problem has been detected which is compromising the operation of the system and that the system can not function as expected unless the si...

Page 716: ...command displays messages containing the string slot 2 show log match slot 2 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 2 2 to include the...

Page 717: ...Route Flap Dampening Error Event BGP Finite State Machine Error Keepalive BGP Keepalive Messages Error Message BGP Messages Open Update Notification Error Misc BGP Miscellaneous Import Aggregate NextH...

Page 718: ...Forwarding Error Log Event Management System EMS Error OSPF Open Shortest Path First Error Event OSPF Events Error Hello OSPF Hello Error LSA OSPF Link State Advertisement Error Neighbor OSPF Neighbor...

Page 719: ...so displayed Example The following command displays the configuration of all the log targets show log configuration The output produced by the command is similar to the following Severities Critical E...

Page 720: ...e Software 7 3 0 Command Reference Guide Commands for Status Monitoring and Statistics The additional EMS information was added in ExtremeWare 7 1 0 Platform Availability This command is available on...

Page 721: ...lude I Include E Exclude Component Unreg Component Subcomponent is not currently registered Severity Values C Critical E Error W Warning N Notice I Info Debug Severity S Debug Summary V Debug Verbose...

Page 722: ...item includes the remaining events from the STP component The severity value is show as indicating that the component s default severity threshold controls which messages are passed History This comm...

Page 723: ...rity match expression and format is displayed Example The following command displays the log configuration show log configuration target History This command was first available in ExtremeWare 7 1 0 P...

Page 724: ...ers command regardless of whether it was filtered or not This command also displays a reference count the column titled Rf in the output The reference count is the number of enabled targets receiving...

Page 725: ...0 PDUTrace Info 0 0 0 The following command displays the event counters for the event condition PDUDrop in the component STP InBPDU show log counters STP InBPDU PDUDrop The output produced by the abo...

Page 726: ...conditions specified The message format parameters are replaced by the value of the parameters when the message is generated To get a listing of the components present in the system use the following...

Page 727: ...he details of the event condition PDUTrace in the component STP InBPDU show log events stp inbpdu pdutrace detail The output produced by the above command is similar to the following Comp SubComp Cond...

Page 728: ...tem Current memory both free and allocated memory used by the system and the users Cumulative memory both free and allocated memory used by the users Software packet memory statistics including the ty...

Page 729: ...show memory ExtremeWare Software 7 3 0 Command Reference Guide 729 History This command was first available in ExtremeWare 2 0 Platform Availability This command is available on all platforms...

Page 730: ...memory scanning enabled Example The following command displays the settings for each slot that has packet memory scanning enabled show packet mem scan recovery mode The following is sample output fro...

Page 731: ...ed packet data to help in troubleshooting problems using the following command show packet miscompare slot number verbose Example The following command captures corrupted packet data for the module in...

Page 732: ...cept a link Active A The link is present at this port Disabled D The link is disabled at this port Not Present NP The link is not present at this port Receive Bad CRC Frames RX CRC The total number of...

Page 733: ...he switch For version 2 0 and 4 0 Disabled and Not Present are not available as link status indicators Example The following command displays receive error statistics for ports 1 through 3 on a stand...

Page 734: ...sabled at this port Not Present NP The link is not present at this port Transmitted Packet Count Tx Pkt Count The number of packets that have been successfully transmitted by the port Transmitted Byte...

Page 735: ...ats The following command displays port statistics for all ports show ports stats The output produced by the show ports stats command is similar to the following Port Statistics Thu Jul 8 09 50 50 200...

Page 736: ...ExtremeWare 2 0 This command was modified in ExtremeWare 4 0 to support modular switches This command was modified in Extreme 4 1 to discontinue support for the chassis link status indicator This com...

Page 737: ...to accept a link Active A The link is present at this port Disabled D The link is disabled at this port Not Present NP The link is not present at this port Transmit Collisions TX Coll The total numbe...

Page 738: ...txerrors The output produced by the show ports txerrors command is similar to the following Port Tx Error Monitor Thu Dec 27 19 19 07 2001 Port Link Tx Tx Tx Tx Tx Tx Status Coll Late Coll Deferred E...

Page 739: ...disabled Used to limit the number of packets sent to the collector in a second BackOff Threshold No of Samples Configured threshold used to limit the number of packets sent to the collector in a secon...

Page 740: ...250 Port 6343 Collector IP 123 124 125 111 port 6344 SFLOW Port Configuration Port Status 3 9 enabled 3 10 enabled 3 11 enabled 3 12 enabled 5 33 enabled 5 34 enabled 5 35 enabled 5 36 enabled Histor...

Page 741: ...s Sampled Frames Number of frames scheduled for sending to collector s Transmitted Frames Number of UDP packets sent to remote collector s Broadcast Frames Number of broadcast frames received on sFlow...

Page 742: ...ware 7 3 0 Command Reference Guide Commands for Status Monitoring and Statistics History This command was first available in an ExtremeWare 7 3 0 Platform Availability This command is available on all...

Page 743: ...er A collection of numbers and letters that make up the serial number of the CPU running in the switch A rev number may also be listed Image The ExtremeWare software version currently running on the s...

Page 744: ...08 0023F25758 SLOT 1 701026 03 0003Y00043 SLOT 2 701024 04 9949Y00055 SLOT 3 701005 09 9946F25172 SLOT 4 SLOT 5 SLOT 6 701028 01 0004Y00038 SLOT 7 SLOT 8 Image Extremeware Version 6 2 0 Build 60 by Re...

Page 745: ...show version ExtremeWare Software 7 3 0 Command Reference Guide 745 Platform Availability This command is available on all platforms...

Page 746: ...on this effectively disables this filter on all ports for which it was configured Example The following command resets the values for filter 4 on slot 1 port s 2 and 3 unconfigure flowstats filter 4 p...

Page 747: ...oes it affect the configured export destinations Example The following command resets the flow statistics configuration parameters for port 1 of slot 8 to their default values unconfigure flowstats po...

Page 748: ...ettings If the filter name specified is not DefaultFilter this command sets the filter to have no events configured and therefore no incidents will pass This is the configuration of a newly created fi...

Page 749: ...tion host name off priority off tag id off tag name off sequence number off process name off process id off source function off source line off The following defaults apply to syslog targets per RFC 3...

Page 750: ...e off process id off source function off source line off Usage Guidelines Use this command to reset the target format to the default format Example The following command sets the log format for the ta...

Page 751: ...mory scanning is ignored Example The following command disables packet memory scanning on a module installed in slot 1 unconfigure packet mem scan recovery mode slot 1 The following command disables p...

Page 752: ...his command has no arguments or variables Default The default IP address is 0 0 0 0 Usage Guidelines This command resets the sFlow agent IP address to its default value Example The following command r...

Page 753: ...it the number of packets sent to the sFlow collector in a second The backoff threshold is set by using the following command configure sflow backoff threshold If the number of packets sent to the coll...

Page 754: ...e Guidelines This command removes the IP address of one or all configured sFlow collectors No counters or flow samples will be sent to these collectors Example The following command removes IP address...

Page 755: ...t eight 20 second windows and sends messages to the syslog To configure the number of windows the switch waits to check for errors use the configure transceiver test window command To modify how the s...

Page 756: ...ught off line Configuring the transceiver test period to 11 seconds or less can affect system performance therefore Extreme Networks does not recommend changing the default transceiver test period The...

Page 757: ...lines Use this feature when the switch can be brought off line Extreme Networks does not recommend changing the default transceiver test period The default is adequate for most networks Example The fo...

Page 758: ...guration provides a sliding window When you return to the default window the switch checks for errors within the last eight 20 second windows Extreme Networks does not recommend changing the default t...

Page 759: ...to a file on the TFTP server you specify For more details on host name ip Specifies the TFTP server filename Specifies the file name for the log stored on the TFTP server messages Specifies the locat...

Page 760: ...ch4critical log critical The following command uploads messages with warning error or critical severity to the filename switch4warn log on TFTP server at 10 31 8 25 upload log 10 31 8 25 switch4warn l...

Page 761: ...rules and are used to perform packet filtering and forwarding decisions on incoming traffic Each packet arriving on an ingress port is compared to the access list in sequential order and is either fo...

Page 762: ...tation allows authentication for Telnet Vista or console access to the switch Extreme switches are also capable of sending RADIUS accounting information You can configure RADIUS accounting servers to...

Page 763: ...ccess Security The Extreme Unified Access Security architecture provides secure access for all wired and wireless stations within the unified network You can maintain the network with a single unified...

Page 764: ...port and put the port back to unauthenticated state The port will be moved to its original VLAN if configured in Campus mode Example The following example clears the Network Login state of port 9 in...

Page 765: ...ging out The MAC address will be cleared from the FDB the port is put back to its original VLAN for Campus mode and the port state is set to unauthenticated if this was the last authenticated MAC on t...

Page 766: ...profile mode is none Otherwise the overall access profile type takes precedence ip address mask Specifies an IP address and mask as an entry in the profile list exact Specifies that an exact match wi...

Page 767: ...e The following command adds an IP subnet address to access profile nosales as the next available entry configure access profile nosales add ipaddress 10 1 33 0 24 The following command configures the...

Page 768: ...y This form of the command was available in ExtremeWare 6 1 Support for IPX NetID and IPX SAP matching was first available in ExtremeWare 6 2 A limited version of this command was first available in E...

Page 769: ...letes the entry with sequence number 15 from the access profile AS1 configure access profile AS1 delete 15 History This command was first available in ExtremeWare 6 1 Platform Availability This comman...

Page 770: ...33 to deny access configure access profile no_subnet_33 mode deny The following command specifies that the access profile no_subnet_33 uses per entry access control configure access profile no_subnet_...

Page 771: ...Description Default N A Usage Guidelines The RADIUS server must be configured before this command is used The command will fail if the given primary and secondary RADIUS servers are not configured Exa...

Page 772: ...ines The RADIUS server must be configured before this command is used The command will fail if the given primary and secondary RADIUS servers are not configured or if RADIUS authentication is not conf...

Page 773: ...Description Default N A Usage Guidelines The TACACS server must be configured before this command is used The command will fail if the given primary and secondary TACACS servers are not configured Exa...

Page 774: ...ines The TACACS server must be configured before this command is used The command will fail if the given primary and secondary TACACS servers are not configured or if TACACS authentication is not conf...

Page 775: ...hrough RADIUS servers Syntax Description Default N A Usage Guidelines This command will fail if the given primary and secondary RADIUS servers are not configured Example configure auth netlogin radius...

Page 776: ...The RADIUS accounting servers should be configured before this command This command returns an error if the given primary and secondary RADIUS servers are not configured or if RADIUS authentication i...

Page 777: ...hrough TACACS servers Syntax Description Default N A Usage Guidelines This command will fail if the given primary and secondary TACACS servers are not configured Example configure auth netlogin tacacs...

Page 778: ...lines The TACACS accounting servers should be configured before this command This command returns an error if the given primary and secondary TACACS servers are not configured or if TACACS authenticat...

Page 779: ...filter precedence to 0 the ACLs created by DoS protection will be overwritten by the default VLAN QoS profile alert threshold Configures the number of packets per second that the switch needs to recei...

Page 780: ...nfigures logging to occur when the number of packets per second that the switch receives is 2000 the timeout is 15 seconds and messages are on configure cpu dos protect alert threshold 3000 notice thr...

Page 781: ...denial of service protection to only a few of the ports on a switch Use the all parameter then use the command configure cpu dos protect trusted ports delete port number to set ports that should not b...

Page 782: ...ew data in the Aging column Example The following command configures the aging time on port 2 to 100 seconds configure enhanced dos protect ipfdb agingtime 100 ports 2 History This command was first a...

Page 783: ...number of IPFDB entries according to the cache size limit Use this command to set the cache size to some value other than the default value of 256K Use the following command to reset the cache size t...

Page 784: ...e following command unconfigure enhanced dos protect ipfdb learn limit Example The following command configures the learn limit on port 3 at 75 packets within the learning window before the IPFDB entr...

Page 785: ...use the show enhanced dos protect ipfdb ports portlist command Example The following command configures the learn window on port 2 at 80 seconds configure enhanced dos protect ipfdb learn window 80 p...

Page 786: ...e status of each port by using the show enhanced dos protect rate limit ipfdb ports portlist command Example The following command configures a range of ports as trusted so that enhanced denial of ser...

Page 787: ...llowing command sets the rate limiting drop probability on port 4 to 60 percent configure enhanced dos protect rate limit drop probability 50 ports 4 The following command sets the rate limiting learn...

Page 788: ...lowing command sets the rate limiting protocol to all packet types on ports 1 through 3 configure enhanced dos protect rate limit protocol all ports 1 3 History This command was first available in Ext...

Page 789: ...Syntax Description Default N A Usage Guidelines For a new setting to be effective system rebooting is needed Example The following example changes the length of the IPDA subnet lookup mask to 18 bits...

Page 790: ...ser you are redirected to the specified base URL which is the DNS name for the switch You must configure a DNS name of the type www xx xx xxx or xx xx xxx This command applies only to the web based au...

Page 791: ...command If a RADIUS server is used for authentication then base page redirection configured on the RADIUS server takes priority over this configuration You must configure a complete URL starting from...

Page 792: ...radius1 using the default UDP port 1645 for use by the RADIUS client on switch 10 10 20 30 configure radius primary server radius1 client ip 10 10 20 30 History This command was first available in Ex...

Page 793: ...The RADIUS server must first be configured for use with the switch as a RADIUS client Example The following command configures the shared secret as purplegreen on the primary RADIUS server configure r...

Page 794: ...ade After three failed attempts to authenticate the alternate server will be used After five failed attempts local user authentication will be used Example This example configures the timeout interval...

Page 795: ...l be made After three failed attempts to authenticate the alternate server will be used After five failed attempts local user authentication will be used Example This example configures the timeout in...

Page 796: ...nd configures RADIUS accounting on host radius1 using the default UDP port 1646 for use by the RADIUS client on switch 10 10 20 30 configure radius accounting primary server radius1 client ip 10 10 20...

Page 797: ...ient switch and the RADIUS accounting server Example The following command configures the shared secret as purpleaccount on the primary RADIUS accounting server configure radius primary shared secret...

Page 798: ...equests When the timeout has expired another authentication attempt will be made After three failed attempts to authenticate the alternate server will be used Example This example configures the timeo...

Page 799: ...rimary and secondary servers When the timeout has expired another authentication attempt will be made After three failed attempts to authenticate the alternate server will be used Example This example...

Page 800: ...operty is added to a route map packets are forwarded to the IP prefixes next hop by the ARM MPLS module using LPM routing If the iphost routing property is added to a route map packets are forwarded t...

Page 801: ...d adds an entry to the route map named bgp out that will be evaluated after the previous entry and that permits all matching routes configure route map bgp out add 20 permit History This command was f...

Page 802: ...have been evaluated Example The following command adds a goto statement to entry 25 in route map map1 that causes evaluation control to transfer to route map map2 configure route map map1 25 add goto...

Page 803: ...unity access profile Specifies a BGP community access profile against which the community attribute should be matched as_number number Specifies a BGP community number specified in as_number number fo...

Page 804: ...e required for success If an entry has no match statements the entry is always considered a successful match Example The following command adds a statement to entry 10 in route map bgp out that matche...

Page 805: ...ty number specified as an unsigned 32 bit integer in decimal format no export Sets the community in path attribute to the no export attribute no advertise Sets the community in path attribute to the n...

Page 806: ...information for a route that matches a statement in entry 15 of route table bgp out include a MED value of 200 configure bgp out 15 add set med 200 History This command was first available in Extreme...

Page 807: ...The following command removes the entry with sequence number 20 from the route map named bgp out configure route map bgp out delete 20 History This command was first available in ExtremeWare 6 1 Plat...

Page 808: ...deletes the goto statement from entry 25 in route map map1 that specifies transfer to route map map2 configure route map map1 25 delete goto map2 History This command was first available in ExtremeWa...

Page 809: ...route map The name of the route map from which this statement should be deleted seq number The sequence number of the entry in the route map from which this statement should be deleted nrli_access_pr...

Page 810: ...810 ExtremeWare Software 7 3 0 Command Reference Guide Security Commands History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms...

Page 811: ...nteger in decimal format no export Specifies the no export attribute no advertise Specifies the no advertise attribute no export subconfed Specifies the no export subconfed attribute remove Specifies...

Page 812: ...0 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms origin igp egp incomplete Specifies the origin tag tag_number Specifies t...

Page 813: ...in default user vlan after authentication Users who do not have a VSA VLAN assignment on the RADIUS server are placed in this VLAN Example The following example sets the security profile open auth to...

Page 814: ...ntication network authentication and encryption type Syntax Description Default N A Usage Guidelines The following table lists the valid combinations of authentication and encryption name Specifies th...

Page 815: ...ty profile secure1 dot11 auth open network auth wpa encryption aes History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability This command is...

Page 816: ...se this command to change WPA and dot1x key update time values Change timers only when you do not want the keys to be updated frequently Example The following example sets the interval for updating ke...

Page 817: ...nutes Usage Guidelines Use this command to change WPA and dot1x key update time values Change timers only when you do not want the keys to be updated frequently Example The following example sets the...

Page 818: ...ate interval time values for a security profile Change timers only when you do not want the client to be re authenticated frequently Example The following example sets the re authentication interval f...

Page 819: ...ription Default N A Usage Guidelines ESS names can be shared across wireless ports and interfaces Example The following example assigns the name shared_ess to the security profile shared auth config s...

Page 820: ...ate Sniffing on the beacon shows an empty SSID Configuration changes take effect immediately and are propagated to all ports sharing the named profile If the command fails none of the changes is propa...

Page 821: ...The user will be placed in the VLAN indicated by the VSA after authentication If the variable is set to N no then the user will be placed in the VLAN indicated by default user vlan regardless of any V...

Page 822: ...diately and are propagated to all ports sharing the named profile If the command fails none of the changes is propagated to any of the ports The index value is used when a user sets the WEP key in the...

Page 823: ...n the specified key for example A 35 and so on Plaintext does not mean passphrase Configuration changes take effect immediately and are propagated to all ports sharing the named profile If the command...

Page 824: ...N A if no WEP keys have been specified Configuration changes take effect immediately and are propagated to all ports sharing the named profile If the command fails none of the changes is propagated t...

Page 825: ...following example configures the WPA pre shared key abcdefgh for the security profile sec_prof1 as passphrase configure security profile sec_prof1 wpa psk passphrase abcdefgh History This command was...

Page 826: ...thentication key must be generated before the switch can accept incoming SSH2 sessions This can be done automatically by the switch or you can enter a previously generated key If you elect to have the...

Page 827: ...Enter some random characters End with a newline Type in a series of random characters and then press the Enter or Return key The key generation process will then proceed To configure an SSH2 session u...

Page 828: ...file should not be modified because it is signed using the issuer s private key The certificate and private key file should be in PEM format and generated using RSA as the cryptography algorithm Examp...

Page 829: ...the certificate generated depends on the RSA Key length privkeylen and the length of the other parameters country organization name etc supplied by the user If the RSA key length is 1024 then the cer...

Page 830: ...830 ExtremeWare Software 7 3 0 Command Reference Guide Security Commands Platform Availability This command is available on Alpine 3800 series only...

Page 831: ...mat using a hard coded passphrase Hence the private key information in the configuration file should not be modified The certificate and private key file should be in PEM format and generated using RS...

Page 832: ...es server tacacs1 as the primary TACACS server for client switch 10 10 20 35 configure tacacs primary server tacacs1 client ip 10 10 20 35 History This command was first available in ExtremeWare 6 1 P...

Page 833: ...witch and the TACACS server Example The following command configures the shared secret as purplegreen on the primary TACACS server configure tacacs accounting primary shared secret purplegreen History...

Page 834: ...interval for TACACS authentication requests When the timeout has expired another authentication attempt will be made to the next alternative authentication method Example The following command configu...

Page 835: ...terval for TACACS authentication requests When the timeout has expired another authentication attempt will be made to the next alternative authentication method Example The following command configure...

Page 836: ...ry TACACS accounting server for client switch 10 10 20 35 configure tacacs accounting primary server tacacs1 client ip 10 10 20 35 History This command was first available in ExtremeWare 6 1 Platform...

Page 837: ...he TACACS server Example The following command configures the shared secret as tacacsaccount on the primary TACACS accounting server configure tacacs accounting primary shared secret tacacsaccount His...

Page 838: ...nterval for TACACS accounting authentication requests When the timeout has expired another authentication attempt will be made to the next alternative TACACS accounting server Example The following co...

Page 839: ...interval for TACACS accounting authentication requests When the timeout has expired another authentication attempt will be made to the next alternative TACACS accounting server Example The following...

Page 840: ...e The VLAN must already exist The access profile must be of type VLAN supported only in ExtremeWare releases 4 0 and earlier Example Given an access profile created and configured as follows create ac...

Page 841: ...vided You can configure a maximum of 64 local and remote address ranges Example You can allocate IP addresses for a remote subnet non local subnet using the DHCP server The following command gives an...

Page 842: ...842 ExtremeWare Software 7 3 0 Command Reference Guide Security Commands Platform Availability This command is available on all platforms...

Page 843: ...es The timer value is specified in seconds The DHCP server should be used with Network Login and not as a stand alone DHCP server Example The following command configures the DHCP lease timer value fo...

Page 844: ...address range is identified as the one whose starting IP address is the same as start addr If start addr is not provided then the DHCP option will be applied for the primary DHCP address range To cle...

Page 845: ...ge is configured ranging from 50 0 0 5 50 0 0 40 To configure the DNS server as 40 0 0 90 for the primary subnet issue the following command configure vlan test dhcp options dns server 40 0 0 90 To co...

Page 846: ...e command applies If the last option is not specified the command is applied for the primary subnet History This command was first available in ExtremeWare 6 2 This command was modified so that remote...

Page 847: ...cription Default 10 seconds Usage Guidelines The timer value is specified in seconds This command applies only to the web based authentication mode of Network Login Example The following command sets...

Page 848: ...tremeWare 6 0 and replaced the configure ipqos command name Specifies the access list name The access list name can be between 1 and 31 characters dest_ipaddress mask Specifies an IP destination addre...

Page 849: ...create access list icmp destination source ExtremeWare Software 7 3 0 Command Reference Guide 849 Platform Availability This command is available on all platforms...

Page 850: ...denyall ip dest 0 0 0 0 0 source 0 0 0 0 0 deny ports any History This command was first available in ExtremeWare 6 0 and replaced the configure ipqos command name Specifies the access list name The a...

Page 851: ...create access list ip destination source ports ExtremeWare Software 7 3 0 Command Reference Guide 851 Platform Availability This command is available on all platforms...

Page 852: ...x Specifies the end of a TCP layer 4 port range src_ipaddress src_mask Specifies a source IP address and subnet mask any specifies that any address will match src_port Specifies a TCP layer 4 port any...

Page 853: ...amed allow10_23 with precedence 30 that permits TCP port 23 traffic destined for other 10 x x x networks and assigns QoS profile Qp4 create access list allow10_23 tcp dest 10 0 0 0 8 ip port 23 source...

Page 854: ...ort any specifies that all UDP ports will match dst_port_min Specifies the beginning of a UDP layer 4 port range dst_port_max Specifies the end of a UDP layer 4 port range src_ipaddress src_mask Speci...

Page 855: ...0 that permits udp port 35 traffic destined for other 10 X X X networks and assigns QoS profile Qp2 create access list allow10_35 udp dest 10 0 0 0 8 ip port 35 source any ip port any permit qosprofil...

Page 856: ...es will be a list of VLANs Example The following command creates an access profile named nosales that will contain IP address mask pairs create access profile nosales type ipaddress The following comm...

Page 857: ...This form of the command was available in ExtremeWare 6 1 Support for the IPX node NetID and SAP advertisement types was added in ExtremeWare 6 2 A limited version of this command was first available...

Page 858: ...s are used in conjunction with the match and set operations A match operation specifies a criteria that must be matched A set operation specifies a change that is made to the route when the match oper...

Page 859: ...to copy an existing profile using a new name Example The following example creates a new security profile called wep secure using an existing profile called unsecure create security profile wep secur...

Page 860: ...are allowed to bypass network login using a specified protocol Use the following command to delete a trusted MAC address delete trusted mac address mac address xx yy zz aa bb cc mask dd ee ff gg hh kk...

Page 861: ...create trusted mac address ExtremeWare Software 7 3 0 Command Reference Guide 861 Platform Availability This command is available on all platforms...

Page 862: ...s None Example The following command deletes access list allow102 delete access list allow102 History This command was first available in ExtremeWare 6 0 The command was modified in ExtremeWare 6 2 1...

Page 863: ...letes an access profile Syntax Description Default N A Usage Guidelines None Example The following command deletes an access profile named nosales delete access profile nosales History This command wa...

Page 864: ...ute map statement from the route map Syntax Description Default N A Usage Guidelines None Example The following command deletes a route map named bgp out delete route map bgp out History This command...

Page 865: ...to any active ports To verify your configuration use the show security profile command The show security profile output displays the configured parameters of the security profile Example The following...

Page 866: ...zz aa bb cc mask dd ee ff gg hh kk vlan vlan name all port portlist protocol DHCP ARP Example The following command deletes a trusted MAC address of 00 e0 18 01 32 1f for all ports in the VLAN named...

Page 867: ...ple The following command disables statistics collection for access list allow102 disable access list allow102 counter History This command was first available in ExtremeWare 6 0 Platform Availability...

Page 868: ...ription Disables the ARP learning feature on the switch Syntax Description This command has no arguments or variables Default By default arp learning is enabled Usage Guidelines None Example N A Histo...

Page 869: ...ning feature on a port or ports Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first available in ExtremeWare 7 3 Platform Ava...

Page 870: ...e Description Disables the ARP learning feature on a vlan Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first available in Ex...

Page 871: ...es the ARP learning feature on a port in the given vlan Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first available in Extr...

Page 872: ...ice protection Syntax Description There are no arguments or variables for this command Default Default is disabled Usage Guidelines None Example The following command disables denial of service protec...

Page 873: ...ription Default N A Usage Guidelines The DHCP server should be used with Network Login and not as a stand alone DHCP server Example The following command disables DHCP for port 9 in VLAN corp disable...

Page 874: ...isabled status by using the show enhanced dos protect ipfdb command To globally disable the IPFDB learning qualifier omit the ports keyword and qualifier Example The following command disables enhance...

Page 875: ...witch Syntax Description There are no arguments or variables for this command Default Default is disabled Usage Guidelines For a new setting to be effective system rebooting is needed Example The foll...

Page 876: ...original command was subsequently deprecated when the 802 1x mode of Network Login was introduced in ExtremeWare 7 1 0 The deprecated version of the command is temporarily supported in configurations...

Page 877: ...ult Enabled Usage Guidelines This command controls the logout window pop up on the web based network client This command applies only to the web based authentication mode of Network Login When disable...

Page 878: ...h the web based and 802 1x mode of Network Login To control which authentication mode is used by Network Login use the following commands enable netlogin web based dot1x disable netlogin web based dot...

Page 879: ...lly a logout window opens which can be used to close the connection by clicking on the LogOut link Any abnormal closing of this window is detected on the switch and the user is logged out after a time...

Page 880: ...x Description This command has no arguments or variables Default RADIUS authentication is disabled by default Usage Guidelines None Example The following command disables RADIUS authentication for the...

Page 881: ...Disables RADIUS accounting Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables RADIUS accounting for the switch disab...

Page 882: ...not saved when SSH2 is disabled To view the status of SSH2 Telnet sessions on the switch use the show management command The show management command displays information about the switch including th...

Page 883: ...authentication Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables TACACS authentication for the switch disable taca...

Page 884: ...on Disables TACACS accounting Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables TACACS accounting disable tacacs ac...

Page 885: ...x Description This command has no arguments or variables Default N A Usage Guidelines This disable CLI command authorization but leaves user authentication enabled Example The following command disabl...

Page 886: ...UI or MAC addresses for port specific configurations Disabling this feature will not remove the previous port specific configurations The system default is disable trusted mac address Use the followin...

Page 887: ...nes Use this command to disallow users from connecting with HTTP Disabling HTTP access forces users to use a secured HTTPS connection if web HTTPS is enabled Use the following command to enable web HT...

Page 888: ...ion This command has no parameters or variables Default Enabled Usage Guidelines Use this command to disable HTTPS before changing the certificate or private key Example The following command disables...

Page 889: ...keys do not match warning message will be displayed Warning The Private Key does not match with the Public Key in the certificate This warning will act as a reminder to the user to download the priva...

Page 890: ...performed to find out whether the private key downloaded matches with the public key stored in the certificate If they do not match a warning message is displayed Warning The Private Key does not mat...

Page 891: ...t allow102 enable access list allow102 counter The following command enables logging of packets for access list allow102 enable access list allow102 log History This command was first available in Ext...

Page 892: ...iption Enables the ARP learning feature on the switch Syntax Description This command has no arguments or variables Default By default arp learning is enabled Usage Guidelines None Example N A History...

Page 893: ...ng feature on a port or ports Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first available in ExtremeWare 7 3 Platform Avail...

Page 894: ...Description Enables the ARP learning feature on a vlan Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first available in Extr...

Page 895: ...the ARP learning feature on a port in the given vlan Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first available in Extrem...

Page 896: ...ice protection Syntax Description There are no arguments or variables for this command Default Default is disabled Usage Guidelines None Example The following command enables denial of service protect...

Page 897: ...Usage Guidelines When simulated denial of service protection is enabled no ACLs are created This mode is useful to gather information about normal traffic levels on a switch This will assist in config...

Page 898: ...ing the show enhanced dos protect ipfdb command Example The following command enables enhanced denial of service protection rate limiting for all ports enable enhanced dos protect rate limit ports all...

Page 899: ...0 Example enable ip subnet lookup To be effective system rebooting is needed show ipc IP Routing Enabled MPLS Disabled IP SUBNET Lookup Run Time Disabled 0 Config Enabled 24 In default status IPDA SU...

Page 900: ...riginal command was subsequently deprecated when the 802 1x mode of Network Login was introduced in ExtremeWare 7 1 0 The deprecated version of the command is temporarily supported in configurations D...

Page 901: ...o arguments or variables Default Enabled Usage Guidelines This command controls the logout window pop up on the web based network client This command applies only to the web based authentication mode...

Page 902: ...RADIUS client and the RADIUS server must be configured to enable the Extreme Network Login capability For ISP mode login no special conditions are required A RADIUS server must be used for authenticat...

Page 903: ...nterval as configured for session refresh The session refresh is enabled and set to three minutes by default The value can range from 1 to 255 minutes When you configure the Network Login session refr...

Page 904: ...nabled all web and CLI logins are sent to the RADIUS servers for authentication When used with a RADIUS server that supports ExtremeWare CLI authorization each CLI command is sent to the RADIUS server...

Page 905: ...nting Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines The RADIUS client must also be enabled Example The following command enables RADIUS accounting for...

Page 906: ...owed IP addresses To create an access profile use the create access profile command To configure an access profile use the configure access profile command Use the none option to cancel a previously c...

Page 907: ...r variables Default Disabled Usage Guidelines After they have been enabled all web and CLI logins are sent to one of the two TACACS servers for login name authentication and accounting Example The fol...

Page 908: ...escription This command has no arguments or variables Default Disabled Usage Guidelines If accounting is used the TACACS client must also be enabled Example The following command enables TACACS accoun...

Page 909: ...has no arguments or variables Default Disabled Usage Guidelines When enabled each command is transmitted to the remote TACACS server for authorization before the command is executed Example The follow...

Page 910: ...ng this feature will not remove the previous port specific configurations The system default is disable trusted mac address The global trusted MAC feature should be enabled globally and also with a VL...

Page 911: ...on This command has no parameters or variables Default Enabled Usage Guidelines Use this command to enable HTTP access to the switch web pages Example The following command enables HTTP on the default...

Page 912: ...er to restrict HTTP usage Example The following example enables HTTP access using the access profile named open_web on port 120 enable web http access profile open_web port 120 History This command wa...

Page 913: ...umber to restrict HTTPS usage Example The following example enables HTTPS access using the access profile named secure_web on port 120 enable web https access profile secure_web port 120 History This...

Page 914: ...on This command has no parameters or variables Default Enabled Usage Guidelines Use this command to allow users to connect using a more secure HTTPS connection Example The following command enables HT...

Page 915: ...blowfish Specifies that the blowfish cipher should be used for encryption portnum Specifies the TCP port number to be used for communicating with the SSH2 client Default is port 22 debug_level Specif...

Page 916: ...this configuration and reboot the switch the configuration will be corrupted Example The following command copies a configuration file from the file configpart1 save on host system1 to the switch as a...

Page 917: ...te host as user and creates the file remote_file Example The following command copies the switch configuration and saves it as file config1 save on host system1 scp2 configuration admin system1 config...

Page 918: ...e access lists show access list It produces output similar to the following Rule Dest mask L4DP Src mask L4SP Flags Hits test1 0 0 0 0 0 0 0 0 0 0 0 0 I P X 1531 Flags I IP T TCP U UDP E Established M...

Page 919: ...output similar to the following test1 Protocol ip Action permit qp1 Destination 0 0 0 0 0 any Source any any Precedence 0 Rule Number 0 Hit Count 4566 Flags ac Ports any History This command was first...

Page 920: ...access control list mapping Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the hardware access control list mapp...

Page 921: ...ll discontinue the display Example The following command initiates the access list information display show access list monitor The command displays output similar to the following Access List Proto D...

Page 922: ...Syntax Description Default Shows all access profile information for the switch Usage Guidelines None Example The following command displays access profile related information for access profile nosal...

Page 923: ...ion Displays the ARP learning feature on a port in the given vlan Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first availab...

Page 924: ...arning configuration for a port in the given vlan Syntax Description Default By default arp learning is enabled Usage Guidelines None Example N A History This command was first available in ExtremeWar...

Page 925: ...or mgmt access netlogin type of sessions Syntax Description There are no arguments or variables for this command Default Shows all authentication server information for the switch Usage Guidelines Non...

Page 926: ...tection show cpu dos protect Following is the output from this command Denial of service protection to CPU is ENABLED Notice level 4000 new packets second level for logging Alert level 4000 new packet...

Page 927: ...untrusted ports Rate limiting configuration Packet filtering statistics Example The following command shows global enhanced denial of service protection rate limit information show enhanced dos prote...

Page 928: ...lookup Dest IP Addr TblIdx MacIdx Flag Flow MAC Address VLAN Port 20 2 0 0 11402 0 CCFA 0 00000 0000 00 00 00 00 00 04 4091 4 3 20 3 0 0 11403 0 CCFA 0 00000 0000 00 00 00 00 00 04 4091 4 3 20 4 0 0...

Page 929: ...e of authentication 802 1x or HTTP web based Example The following command shows the summary Network Login information show netlogin Following is the output from this command Netlogin Authentication M...

Page 930: ...rom this command before authentication Port 1 13 Vlan Default Port State Unauthenticated DHCP Not Enabled MAC IP address Auth Type ReAuth Timer User 00 B0 D0 90 2F 72 0 0 0 0 No 802 1x 30 Unknown Quie...

Page 931: ...s Accounting enabled Radius Server Connect Timeout sec 3 Primary radius server Server name 172 17 1 123 IP address 172 17 1 123 Server IP Port 1645 Client address 172 17 1 221 Shared secret Access Req...

Page 932: ...erver name 172 17 1 104 Client address 172 17 1 221 Shared secret lf nki Secondary radius accounting server Server name 172 17 1 123 Client address 172 17 1 221 Shared secret lf nki History This comma...

Page 933: ...tput from this command Radius Accounting enabled Radius Acct Server Connect Timeout sec 3 Primary radius accounting server Server name 172 17 1 104 IP address 172 17 1 104 Server IP Port 1646 Client a...

Page 934: ...Default N A Usage Guidelines If you do not specify a route map name information for all the route maps will be displayed Example The following command displays the route map named bgp out show route...

Page 935: ...how security profile The output of the command is similar to Profile Name Unsecure ESS Name fz unsecure Dot11 Authentication open Network Authentication none Encryption none User VLAN Default Use Dyna...

Page 936: ...1 2 23 2 2 23 2 2 24 1 2 24 2 2 24 2 2 25 1 2 25 2 2 25 2 2 26 1 2 26 2 2 26 2 2 27 1 2 27 2 2 27 2 2 28 1 2 28 2 2 28 2 2 29 1 2 29 2 2 29 2 2 30 1 2 30 2 2 30 2 2 31 1 2 31 2 2 31 2 2 32 1 2 32 2 2...

Page 937: ...8wep ESS Name fz shared wep 128 Dot11 Authentication shared Network Authentication none Encryption wep128 User VLAN VSA DKSP Use Dynamic VLAN yes WEP Key 0 3 75 50 6343 2 9 44 Default WEP Key 0 SSID i...

Page 938: ...the stored certificate The optional keyword detail provides the same output as the show ssl command plus the complete certificate Private key in PEM format will be displayed for users with administra...

Page 939: ...d6 4b Exponent 65537 0x10001 X509v3 extensions X509v3 Basic Constraints critical CA TRUE Signature Algorithm md5WithRSAEncryption 00 8b 4a 53 5b 13 59 3b fc f4 7a 17 58 92 3f df 9c 4b f3 f0 f7 9f b2 f...

Page 940: ...wjSJVnTNN5FaytnJ 6OndxHIE4Umj6kWHnjuSoQJBAJO53Wz8PztTHl5wkTiQ7Y L7V41jCpDz0W4Kt0k Ywn1pvjSPV9dIbqVhHgDMi5KdAF5ny2f8vgNZp8ZdwCrTCw END RSA PRIVATE KEY History This command was first available in Extrem...

Page 941: ...nabled TACACS Server Connect Timeout sec 3 Primary TACACS Server Server name 172 17 1 104 IP address 172 17 1 104 Server IP Port 49 Client address 172 17 1 220 Shared secret lf nki Secondary TACACS Se...

Page 942: ...meWare Software 7 3 0 Command Reference Guide Security Commands Shared secret lf nki History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all...

Page 943: ...owing is the output from this command TACACS Accounting enabled TACACS Acct Server Connect Timeout sec 3 Primary TACACS Accounting Server Server name 172 17 1 104 IP address 172 17 1 104 Server IP Por...

Page 944: ...following command displays the status of the enable disable keywords and then displays all of the configured trusted MAC addresses for all VLANs show trusted mac address History This command was first...

Page 945: ...ollowing example shows the clients on port 1 8 on interface 1 show wireless ports 1 8 interface 1 clients It produces output similar to the following Wireless Client Statistics MAC ADDR Port STATE ENC...

Page 946: ...nostics for ports 1 11 on interface 2 show wireless ports 1 11 interface 2 pae diagnostics The output of the command is similar to PAE Diagnostic Statistics CLIENT MAC Port Intf Failures Timeouts Succ...

Page 947: ...following example lists the output of the PAE statistics for ports 1 11 on interface 2 show wireless ports 1 11 interface 2 pae statistics The output of the command is similar to PAE Statistics CLIEN...

Page 948: ...n cannot be used with Extreme Networks switches If you include a remote command you will receive an error message 3des Specifies that the 3des cipher should be used for encryption This is the default...

Page 949: ...ngineering1 ssh2 admin engineering1 The following command establishes an SSH2 session with the switch summit48i over TCP port 2050 with compression enabled ssh2 port 2050 compression on admin summit48...

Page 950: ...s Description Disables the remote authentication for management sessions Syntax Description This command has no arguments or variables Default N A Usage Guidelines N A Example unconfigure auth mgmt ac...

Page 951: ...ogin Description Disables the remote authentication for netlogin sessions Syntax Description This command has no arguments or variables Default N A Usage Guidelines N A Example unconfigure auth netlog...

Page 952: ...isable denial of service protection use the following commands enable cpu dos protect disable cpu dos protect The default values for the denial of service protection parameters are as follows alert th...

Page 953: ...time to default values for selected untrusted ports To verify configuration use the show enhanced dos protect ipfdb ports portlist command and view data in the Aging column Example The following comma...

Page 954: ...kilobytes Usage Guidelines Enhanced DoS Protection maintains the number of IPFDB entries according to the cache size limit Use this command to reset the cache size to the default of 256K Use the foll...

Page 955: ...the hardware To configure the learning limit on untrusted ports for enhanced denial of service protection use the following command configure enhanced dos protect ipfdb learn limit Usage Guidelines Us...

Page 956: ...he IPFDB learning window values for selected untrusted ports to the default value of 10 seconds To verify configuration use the show enhanced dos protect ipfdb ports portlist command Example The follo...

Page 957: ...anced dos protect ports command A trusted port behaves as a normal port An untrusted port behaves according to the configuration parameter used in IPFDB thrashing Verify the status of each port by usi...

Page 958: ...packets unconfigure enhanced dos protect rate limit threshold ports 3 The following command resets the rate limiting drop probability on port 4 to the default value 50 percent unconfigure enhanced do...

Page 959: ...learn window ports 2 3 The following command resets the rate limiting protocol to the default value ICMP packet types on ports 1 through 3 unconfigure enhanced dos protect rate limit protocol ports 1...

Page 960: ...lt Unconfigures both primary and secondary servers Usage Guidelines None Example The following command unconfigures the secondary RADIUS server for the client unconfigure radius server secondary Histo...

Page 961: ...nfigures both the primary and secondary accounting servers Usage Guidelines None Example The following command unconfigures the secondary RADIUS accounting server for the client unconfigure radius acc...

Page 962: ...n Default Unconfigures both the primary and secondary TACACS servers Usage Guidelines None Example The following command unconfigures all TACACS servers for the client unconfigure tacacs History This...

Page 963: ...ault Unconfigures both the primary and secondary TACACS accounting servers Usage Guidelines None Example The following command unconfigures all TACACS accounting servers for the client unconfigure tac...

Page 964: ...0 0 x 24 Assume that for the primary subnet a DHCP address range is configured ranging from 40 0 0 5 40 0 0 40 Similarly for the secondary subnet the DHCP address range is configured ranging from 50 0...

Page 965: ...65 History This command has been modified so that clearing of the secondary or remote address ranges is possible through the addition of the parameter start addr This enhanced command was made availab...

Page 966: ...hcp options Examples Consider a VLAN named test with a primary subnet 40 0 0 x 24 and a secondary subnet 50 0 0 x 24 Assume that for the primary subnet a DHCP address range is configured ranging from...

Page 967: ...ct DHCP address range for which the command applies If the last option is not specified the command is applied for the primary subnet History This command has been modified so that clearing the DHCP o...

Page 968: ...968 ExtremeWare Software 7 3 0 Command Reference Guide Security Commands...

Page 969: ...master node s primary port P to the ring another port is designated as the master node s secondary port S to the ring In normal operation the master node blocks the secondary port for all non control...

Page 970: ...s may be added as members of the control VLAN The ring ports of the control VLAN must be tagged This ensures that EAPS control VLAN traffic is serviced before any other traffic and that control VLAN m...

Page 971: ...en you configure the VLAN that will act as a protected VLAN the ring ports of the protected VLAN must be tagged except in the case of the default VLAN As long as the ring is complete the master node b...

Page 972: ...PS domain Syntax Description Default N A Usage Guidelines None Example The following command deletes the control VLAN keys from the EAPS domain eaps_1 configure eaps eaps_1 delete control vlan keys Hi...

Page 973: ...fied EAPS domain Syntax Description Default N A Usage Guidelines None Example The following command deletes the protected VLAN orchid from the EAPS domain eaps_1 configure eaps eaps_1 delete protect v...

Page 974: ...vious versions of ExtremeWare the secondary port on the Master node would open when the failtimer expired In ExtremeWare 7 1 the default behavior has been modified to not open the secondary port You c...

Page 975: ...n when the failtimer expires By default the action is to send an alert if the failtimer expires Instead of going into a Failed state the master node remains in a Complete or Init state maintains the s...

Page 976: ...following command configures the failtimer expiry action for EAPS domain eaps_1 configure eaps eaps_1 failtime expiry action open secondary port History This command was first available in ExtremeWar...

Page 977: ...abled Yes EAPS Fast Convergence On Number of EAPS instances 2 EAPSD Bridge links 4 NOTE If fast convergence is turned on the link filters on all EAPS ring ports are turned off This could result in a p...

Page 978: ...e value should not affect the network convergence time because transit nodes are already sending link down notifications This command applies only to the master node If you configure the polling timer...

Page 979: ...as the master node for the domain named eaps_1 configure eaps eaps_1 mode master The following command identifies this switch as a transit node for the domain named eaps_1 configure eaps eaps_1 mode...

Page 980: ...cription Default N A Usage Guidelines None Example The following command renames EAPS domain eaps 1 to eaps 5 configure eaps eaps 1 name eaps 5 History This command was first available in ExtremeWare...

Page 981: ...the other must be configured as the secondary port Example The following command adds port 1 of the module installed in slot 8 of a BlackDiamond switch to the EAPS domain eaps_1 as the primary port co...

Page 982: ...he controller and partner shared ports belonging to the same common link must have matching link IDs No other instance in the network should have that link ID Example The following command configures...

Page 983: ...f the common link must be configured to be the partner This end does not participate in any form of blocking It is responsible for only sending and receiving health check messages Example The followin...

Page 984: ...ies the EAPS domain to be created EAPS domain names and VLAN names must be unique Do not use the same name string to identify both an EAPS domain and a VLAN Example The following command creates EAPS...

Page 985: ...efault N A Usage Guidelines To configure a common link you must create a shared port on each switch of the common link Example The following command creates a shared port on the EAPS domain create eap...

Page 986: ...N A Usage Guidelines An EAPS domain must be disabled first before it can be deleted See the disable eaps name command Example The following command deletes EAPS domain eaps_1 delete eaps eaps 1 Histo...

Page 987: ...EAPS shared port on a switch Syntax Description Default N A Usage Guidelines None Example The following command deletes shared port 1 1 delete eaps shared port 1 1 History This command was first avai...

Page 988: ...Disabled for the entire switch Usage Guidelines None Example The following command disables the EAPS function for entire switch disable eaps The following command disables the EAPS function for the d...

Page 989: ...the entire switch Usage Guidelines EDP must be enabled on the switch and EAPS ring ports Example The following command disables the EAPS function for entire switch enable eaps The following command di...

Page 990: ...for a master node Also some state values are different on a transit node than on a master node The fields displayed are as follows name Specifies the name of an EAPS domain detail Specifies all avail...

Page 991: ...secondary port blocking Running Yes This EAPS domain is running No This EAPS domain is not running Enabled Indicates whether EAPS is enabled on this domain Y EAPS is enabled on this domain N EAPS is n...

Page 992: ...S instances 1 EAPSD Bridge links 2 Name eaps1 instance 0 State Links Up Running Yes Enabled Yes Mode Transit Failtimer expiry action Displays the action taken when the failtimer expires Send alert Sen...

Page 993: ...nsit Primary port 3 Port status Down Tag status Tagged Secondary port 2 Port status Up Tag status Tagged Hello Timer interval 1 sec Fail Timer interval 3 sec Preforwarding Timer interval 6 sec Last up...

Page 994: ...994 ExtremeWare Software 7 3 0 Command Reference Guide EAPS Commands Platform Availability This command is available on the i series platforms...

Page 995: ...ates whether the switch on either end of the common link is a controller or partner The mode is configured by the user Link ID The link ID configured by the user Up Displays one of the following Yes i...

Page 996: ...nd must be configured as a partner Err Indicates that the EAPS instance on the other end of the common link is configured with a matching link ID but the modes are configured the same For example both...

Page 997: ...helpful when viewing the status info for large numbers of EAPS domains quickly Example The following command displays summary EAPS information on a transit node show eaps summary The results for this...

Page 998: ...ands History This command was first available in ExtremeWare 6 2 The summary option was added in ExtremeWare 6 2 2 This command was modified in ExtremeWare 7 1 to show shared port statistics Platform...

Page 999: ...APS link ID on a shared port on the switch Syntax Description Default N A Usage Guidelines None Example The following command unconfigures the link ID on shared port 1 1 unconfigure eaps shared port 1...

Page 1000: ...S shared port mode Syntax Description Default N A Usage Guidelines None Example The following command unconfigures the shared port mode on port 1 1 unconfigure eaps shared port 1 1 mode History This c...

Page 1001: ...in the Idle state with a port status of Unknown when you use the show eaps detail command to display the status information about the port Example The following command unconfigures this node s EAPS...

Page 1002: ...1002 ExtremeWare Software 7 3 0 Command Reference Guide EAPS Commands...

Page 1003: ...rgence speed of bridged networks RSTP takes advantage of point to point links in the network and actively confirms that a port can safely transition to the forwarding state without relying on any time...

Page 1004: ...a single STPD called s0 Default VLAN is a member of STPD s0 All STP parameters default to the IEEE 802 1d values as appropriate Port Modes An STP port has three modes of operation 802 1d mode This mo...

Page 1005: ...sure that ports in overlapping domains do not interfere with the orderly working of each domain s protocol You must create a VLAN to add a VLAN to the STPD To create a VLAN use the create vlan vlan na...

Page 1006: ...TPDs it is associated with multiple STP ports It is possible for the physical port to run in different modes for different domains for which it belongs When the switch boots it automatically creates a...

Page 1007: ...from an STPD Syntax Description Default N A Usage Guidelines None Example The following command deletes a VLAN named Marketing from the STPD STPD1 configure stpd stpd1 delete vlan marketing History Th...

Page 1008: ...d not configure any STP parameters unless you have considerable knowledge and experience with STP The default STP parameters are adequate for most networks The range for the seconds parameter is 4 thr...

Page 1009: ...s You should not configure any STP parameters unless you have considerable knowledge and experience with STP The default STP parameters are adequate for most networks The range for the seconds paramet...

Page 1010: ...h STP The default STP parameters are adequate for most networks The range for the seconds parameter is 6 through 40 seconds Note that the time must be greater than or equal to 2 Hello Time 1 and less...

Page 1011: ...bled If you configure the STP domain in 802 1w mode the rapid reconfiguration mechanism is enabled Example The following command configures STPD s1 to enable the rapid reconfiguration mechanism and op...

Page 1012: ...f port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 The range for the cost parameter is 1 through 65 535 The switch automatically assigns a def...

Page 1013: ...configure stpd ports cost ExtremeWare Software 7 3 0 Command Reference Guide 1013 Platform Availability This command is available on all platforms...

Page 1014: ...may negotiate full duplex even though the broadcast domain extends over several STP devices In this situation an 802 1w port may advance to the forwarding state more quickly than desired If the switc...

Page 1015: ...D s1 on a stand alone switch configure stpd s1 ports link type point to point 1 4 The following command configures slot 2 ports 1 through 4 to be point to point links in STPD s1 on a modular switch co...

Page 1016: ...wing command configures STPD s1 with PVST packet formatting for slot 2 port 1 on a modular switch configure stpd s1 ports mode pvst plus 2 1 History This command was first available in ExtremeWare 6 2...

Page 1017: ...ts and ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Range...

Page 1018: ...tory This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 1 to update the priority parameter This command was modified in ExtremeWare 4 0 to support modular s...

Page 1019: ...arameters are adequate for most networks By changing the priority of the STPD you can make it more or less likely to become the root bridge The range for the priority parameter is 0 through 65 535 A s...

Page 1020: ...belong to another STPD Unless all ports are running in 802 1d mode an STPD must be configured with an StpdID You must create and configure the VLAN along with the tag before you can configure the STPD...

Page 1021: ...ckward compatibility with previous STP versions emistp This mode sends BPDUs with an 802 1Q tag having an STPD instance Identifier StpdID in the VLANid field This is an Extreme proprietary mode and ca...

Page 1022: ...dds ports 2 and 3 members of a VLAN named Marketing to the STPD named STPD1 and specifies that they be in EMISTP mode configure vlan marketing add ports 2 3 stpd stpd1 emistp History This command was...

Page 1023: ...user created STPDs are in emistp mode Usage Guidelines Each STPD name must be unique and cannot duplicate any other named elements on the switch such as VLANs QoS profiles Access profiles or route map...

Page 1024: ...1024 ExtremeWare Software 7 3 0 Command Reference Guide STP Commands Platform Availability This command is available on all platforms...

Page 1025: ...he VLANs that were members of that STPD are also deleted An STPD can only be removed if all VLANs have been deleted from it The default STPD s0 cannot be deleted Example The following command deletes...

Page 1026: ...ame command to allow a BPDU to traverse a VLAN without being processed by STP even if STP is enabled on the port If you have a known topology and have switches outside of your network within your STPD...

Page 1027: ...TP port information Syntax Description Default Disabled Usage Guidelines The vlan keyword is optional Example The following command disables the ignore stp option on the VLAN accounting disable ignore...

Page 1028: ...o not want to run STP on a VLAN you must add the VLAN to an STPD that is disabled The spanning tree name keyword is optional You do not need to indicate an STPD name if you disable the STP protocol fo...

Page 1029: ...e Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 You must create one or more STP domains configure and enable an STPD before you can use the disable stpd ports com...

Page 1030: ...t failover on the switch use the show stpd command The show stpd command displays information about the STPD configuration on the switch including the enable disable state for rapid root failover Exam...

Page 1031: ...ology and have switches outside of your network within your STPD use this feature to keep the root bridge within your network This command is useful when you have a known topology with switches outsid...

Page 1032: ...ription Default Disabled Usage Guidelines This command is useful when multiple VLANs share the same physical ports but only some of the VLANs require STP protection Example The following command enabl...

Page 1033: ...re you can use the enable stpd command Use the create stpd name command to create an STPD The spanning tree name keyword is optional You do not need to indicate an STPD name if you enable the STP prot...

Page 1034: ...root failover on the switch use the show stpd command The show stpd command displays information about the STPD configuration on the switch including the enable disable state for rapid root failover E...

Page 1035: ...h portlist can be a list of slots and ports On a stand alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges or Sta...

Page 1036: ...stpd command to display STP configurations Use the create stpd name command to create an STP domain Use the enable stpd spanning tree name command to enable an STPD If you have considerable knowledge...

Page 1037: ...0 Root Port MaxAge 20s HelloTime 2s ForwardDelay 15s CfgBrMaxAge 20s CfgBrHelloTime 2s CfgBrForwardDelay 15s Topology Change Time 35s Hold time 1s Topology Change Detected FALSE Topology Change FALSE...

Page 1038: ...alone switch portlist can be one or more port numbers For a detailed explanation of port specification see Modular Switch Numerical Ranges or Stand alone Switch Numerical Ranges in Chapter 1 For vers...

Page 1039: ...00 00 00 00 Total Ports 14 Flags 1 e Enable d Disable 2 L Loopback port 3 Port role R Root D Designated A Alternate B Backup 4 Config type b broadcast p point to point e edge a auto 5 Oper type b bro...

Page 1040: ...etc STPD port state forwarding blocking and so on Configured port link type Operational port link type Example The following command displays the spanning tree configurations for the vlan Default show...

Page 1041: ...00 00 00 00 Flags 1 e Enable d Disable 2 L Loopback port 3 Port role R Root D Designated A Alternate B Backup 4 Config type b broadcast p point to point e edge a auto 5 Oper type b broadcast p point t...

Page 1042: ...you want to restore default STP values on all STPDs do not specify a spanning tree name For version 2 0 You can use the all parameter to specify all STPDs Example The following command restores defau...

Page 1043: ...otocol STP or Virtual Router Redundancy Protocol VRRP Extreme switches that are not running ESRP but are connected on a network that has other Extreme switches running ESRP are ESRP aware This means t...

Page 1044: ...and prevention Once a loop is detected the loop recovery agent is notified of the event and takes the necessary actions to recover from the loop ELRP operates only on the sending switch therefore ELR...

Page 1045: ...and the global counters If you specify the optional vlan name parameter you clear the counters for a specific VLAN Example The following command clears the ELRP system counters clear elrp stats The f...

Page 1046: ...you reboot the switch it goes through the process twice After it is done with the cycle or cycles the port enters the Down Stuck state To enable automatic restart use the following command enable els...

Page 1047: ...clear elsm auto restart ports ExtremeWare Software 7 3 0 Command Reference Guide 1047 Platform Availability This command is available on all platforms...

Page 1048: ...thered by ELSM use the following command clear elsm counters ports portlist Example The following command clears the statistics gathered by Extreme Link Status Monitoring ELSM for ports 1 6 on the swi...

Page 1049: ...t used To disable debug tracing set the level to 0 To configure ELSM debug tracing for the entire system use the following command configure debug elsm system level Example The following command confi...

Page 1050: ...1050 ExtremeWare Software 7 3 0 Command Reference Guide ESRP Commands Platform Availability This command is available on all platforms...

Page 1051: ...ce and is used to trace the path of code execution Levels 3 and above are not used To disable debug tracing set the level to 0 To configure debug tracing for ELSM ports use the following command confi...

Page 1052: ...k on any VLANs Use the enable elrp client command to globally enable the ELRP client The ELRP client can be disabled globally so that none of the ELRP VLAN configurations take effect Use the disable e...

Page 1053: ...re elrp client one shot ExtremeWare Software 7 3 0 Command Reference Guide 1053 History This command was first available in ExtremeWare 7 3 0 Platform Availability This command is available on all pla...

Page 1054: ...ient command to globally enable the ELRP client The ELRP client can be disabled globally so that none of the ELRP VLAN configurations take effect Use the disable elrp client command to globally disabl...

Page 1055: ...re elrp client periodic ExtremeWare Software 7 3 0 Command Reference Guide 1055 History This command was first available in ExtremeWare 7 3 0 Platform Availability This command is available on all pla...

Page 1056: ...configure ELSM on the ports that connect to other devices within the network but you must configure ELSM on both sides of the peer connections ELSM ports use hello packets to communicate information...

Page 1057: ...or device and no problem is detected Hello The device does not receive a hello from the neighbor device or the device has experienced a critical event Example The following command specifies 5 seconds...

Page 1058: ...s that connect to other devices within the network but you must configure ELSM on both sides of the peer connections ELSM ports use hello packets to communicate information about the health of the net...

Page 1059: ...ss than the threshold the port returns to the Down state and begins the process again Up Beginning state port is up If ELSM is enabled and the port enters the Up state the Up timer begins Each time th...

Page 1060: ...lloRx state During the HelloRx state the port waits to receive neighbor hello messages Depending on what happens to the port the following occurs Hello packet received The port actively receives hello...

Page 1061: ...e elsm hold threshold ExtremeWare Software 7 3 0 Command Reference Guide 1061 History This command was first available in ExtremeWare 6 2 2b134 Platform Availability This command is available on all p...

Page 1062: ...d sharing with the host attach feature configure all ports in the same load sharing groups as host attach ports don t count has the effect of not counting the host ports and normal ports as active por...

Page 1063: ...configure esrp port mode ports ExtremeWare Software 7 3 0 Command Reference Guide 1063 Platform Availability This command is available on all platforms...

Page 1064: ...VLAN assumes the behavior of the rapid reelection option none Specifies that ESRP does not participate in hitless failover The master switch blocks its ports during a failover and performs a full ini...

Page 1065: ...re Software User Guide Example The following command configures the switch to send a notification that the standby nodes should elect a new master as soon as possible configure msm failover esrp failo...

Page 1066: ...rd or blocked states The domain master does not need to have all the ports as the domain members Domain master VLANs can have their own set of ports and the members can have different ports Example Th...

Page 1067: ...such as ports that connect to master slave or ESRP aware switches to receive ELRP packets You do not need to send ELRP packets to host ports Example The following command enables ELRP packet transmiss...

Page 1068: ...then add them again with the no restart option or directly add the ports with the no restart option Example The following command disables port restart for ports 7 9 on VLAN esrp1 configure vlan esrp1...

Page 1069: ...ese ports causes downstream devices to remove the ports from their FDB tables After 3 seconds the ports re establish connection with the ESRP enabled device This feature allows you to use ESRP in netw...

Page 1070: ...o 254 Setting the priority to 255 configures the switch to slave mode and makes it ineligible to become the master The switch will remain in slave mode even when the VLAN fails over from the current m...

Page 1071: ...of the priority value is 0 to 254 Setting the priority to 255 configures the switch to slave mode and makes it ineligible to become the master The switch will remain in slave mode even when the VLAN...

Page 1072: ...to standby The range of the priority value is 0 to 254 Setting the priority to 255 configures the switch to slave mode and to be ineligible to become the master The switch will remain in slave mode ev...

Page 1073: ...achable the device automatically relinquishes master status and remains in slave mode for ESRP or backup mode for VRRP This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The...

Page 1074: ...The range of the priority value is 0 to 254 Setting the priority to 255 configures the switch to slave mode and to be ineligible to become the master The switch will remain in slave mode even when the...

Page 1075: ...ckup mode for VRRP This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command enables ping tracking for the external gateway at 10 207 29 17 pinging every 10 se...

Page 1076: ...igible to become the master The switch will remain in slave mode even when the VLAN fails over from the current master To make effective use of this feature the following should be true The priority f...

Page 1077: ...tomatically relinquishes master status and remains in slave mode for ESRP or backup mode for VRRP An ESRP or VRRP VLAN can track one VLAN This command can be used with both ESRP enabled VLANs and VRRP...

Page 1078: ...rts as the domain members Domain master VLANs can have their own set of ports and the members can have different ports Example The following command deletes the domain member VLAN sub_esrp1 from ESRP...

Page 1079: ...nge your network configuration and a port no longer connects to a master slave or ESRP aware switch you can disable ELRP transmission on that port Example The following command disables ELRP packet tr...

Page 1080: ...oute tracking for an ESRP enabled VLAN Syntax Description Default N A Usage Guidelines None Example The following command disables BGP tracking for VLAN esrp 1 configure vlan esrp 1 delete track bgp H...

Page 1081: ...bles diagnostics failure tracking for an ESRP enabled VLAN Syntax Description Default N A Usage Guidelines None Example The following command disables diagnostic failure tracking for VLAN esrp 1 confi...

Page 1082: ...es environmental failure tracking Syntax Description Default N A Usage Guidelines None Example The following command disables environmental failure tracking for VLAN esrp 1 configure vlan esrp 1 delet...

Page 1083: ...Default N A Usage Guidelines This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command disables tacking of routes to the specified subnet for VLAN esrp 1 conf...

Page 1084: ...te tracking for an ESRP enabled VLAN Syntax Description Default N A Usage Guidelines None Example The following command disables OSPF route tracking for VLAN esrp 1 configure vlan esrp 1 delete track...

Page 1085: ...A Usage Guidelines This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command disables ping tracking for the external gateway at 10 207 29 17 configure vlan esr...

Page 1086: ...r an ESRP enabled VLAN Syntax Description Default No RIP route tracking Usage Guidelines None Example The following command disables RIP route failure tracking for VLAN esrp 1 configure vlan esrp 1 de...

Page 1087: ...n Default N A Usage Guidelines This command can be used with both ESRP enabled VLANs and VRRP VLANs Example The following command disables the tracking of port connectivity to VLAN engineering configu...

Page 1088: ...e master state When you disable ELRP the ESRP master switch no longer transmits ELRP PDUs to detect network loops Example The following command disables the use of ELRP in the master state on the ESRP...

Page 1089: ...RP master switch then transitions to the slave state to break the network loop Specify the interval parameter to configure how often successive ELRP PDUs are sent while in the master state If you do n...

Page 1090: ...le ELRP in the pre master state the ESRP pre master switch no longer transmits ELRP PDUs to detect network loops prior to changing to the master state Example The following command disables the use of...

Page 1091: ...at the configure level for a specified number of times If there is a loop in the network the transmitted PDUs are received by the switch If this happens the ESRP pre master switch does not transition...

Page 1092: ...1092 ExtremeWare Software 7 3 0 Command Reference Guide ESRP Commands Platform Availability This command is available on all platforms...

Page 1093: ...become the master MAC address mac the switch MAC address A higher number address has priority The election algorithm must be the same on all switches for a particular VLAN vlan name Specifies a VLAN...

Page 1094: ...that are in slave mode If a switch is in slave mode it exchanges ESRP packets with other switches on that same VLAN When a switch is in slave mode it does not perform layer 3 routing or layer 2 switch...

Page 1095: ...e show esrp vlan command CAUTION Configure the pre master state timeout only with guidance from Extreme Networks personnel Misconfiguration can severely degrade the performance of ESRP and your switch...

Page 1096: ...switch You can configure a maximum of 32 ESRP groups in a network The most typical application for multiple ESRP groups is when two or more sets of ESRP switches are providing fast failover protectio...

Page 1097: ...are VLAN and that portlist is used for forwarding ESRP PDUs on the relevant ports only The ESRP group number must be the same as the ESRP aware VLAN number If you specify the all or portlist options t...

Page 1098: ...nfiguring selective forwarding on an ESRP aware VLAN By configuring selective forwarding you create a portlist for the ESRP groups associated with an ESRP aware VLAN and that portlist is used for forw...

Page 1099: ...orithm the highest priority value determines which switch will act as master for a particular VLAN Setting the priority to 255 configures the switch to slave mode and to be ineligible to become the ma...

Page 1100: ...that ESRP waits before considering the neighbor down The timeout value must be at least 3 times but not more than 30 times the timervalue Entering a value outside of that range generates an error mess...

Page 1101: ...7 3 0 Command Reference Guide 1101 History This command was first available in ExtremeWare 4 0 This command was modified to include the esrp nbr timeout option in ExtremeWare 6 2 2 Platform Availabil...

Page 1102: ...bled Usage Guidelines This command disables the ELRP globally so that none of the ELRP VLAN configurations take effect The ELRP client must be enabled globally in order for it to work on any VLANs Use...

Page 1103: ...s twice After it is done with the cycle or cycles the port enters the Down Stuck state To enable automatic restart use the following command enable elsm auto restart ports portlist To disable automati...

Page 1104: ...s neighbor it brings down the connection to the neighbor ELSM operates on a point to point basis you only configure ELSM on the ports that connect to other devices within the network but you must conf...

Page 1105: ...able elsm ports ExtremeWare Software 7 3 0 Command Reference Guide 1105 History This command was first available in ExtremeWare 6 2 2b134 Platform Availability This command is available on all platfor...

Page 1106: ...SRP on a VLAN Syntax Description Default Disabled Usage Guidelines None Example The following command disables ESRP on the VLAN accounting disable esrp vlan accounting History This command was first a...

Page 1107: ...bled Usage Guidelines The ELRP client must be enabled globally in order for it to work on any VLANs The ELRP client can be disabled globally so that none of the ELRP VLAN configurations take effect Us...

Page 1108: ...fter it is done with the cycle or cycles the port enters the Down Stuck state To enable automatic restart use the following command enable elsm auto restart ports portlist To disable automatic restart...

Page 1109: ...ts neighbor it brings down the connection to the neighbor ELSM operates on a point to point basis you only configure ELSM on the ports that connect to other devices within the network but you must con...

Page 1110: ...1110 ExtremeWare Software 7 3 0 Command Reference Guide ESRP Commands History This command was first available in ExtremeWare 6 2 2b134 Platform Availability This command is available on all platforms...

Page 1111: ...fault Disabled Usage Guidelines EDP must be enabled on all ports participating in ESRP ESRP cannot be enabled on the VLAN default Example The following command enables ESRP on the VLAN esrp 1 enable e...

Page 1112: ...ESRP VLAN Client name Displays the name of the ELRP client VLAN Displays the name of the VLAN with ELRP enabled Interval Displays the configured interval An interval of 3 indicates that ELRP PDUs are...

Page 1113: ...rpTask uj mas62 3 0 Yes 1095 0 tEsrpTask uj mas61 3 0 Yes 1095 0 tEsrpTask uj mas60 3 0 Yes 1095 0 tEsrpTask uj mas59 3 0 Yes 1095 0 tEsrpTask uj mas58 3 0 Yes 1095 0 tEsrpTask uj mas57 3 0 Yes 1095 0...

Page 1114: ...1114 ExtremeWare Software 7 3 0 Command Reference Guide ESRP Commands Platform Availability This command is available on all platforms...

Page 1115: ...uck for each listed port Hello time for each listed port Use the following command to display ELSM data for selected ports on the switch show elsm ports portlist To clear the statistics gathered by EL...

Page 1116: ...ent Init Hello time Hold threshold Auto restart Receive Hello and Transmit Hello packet counters ELSM up down count Use the following command to display ELSM data for all ports on the switch show elsm...

Page 1117: ...r Link Status Down Rx State Down Tx State HelloRx Hello Time 1 second Hold Threshold 2 Auto Restart Enabled Rx Hello 0 Rx Hello 0 Tx Hello 0 Tx Hello 0 ELSM Up Down Count Up 0 Down 0 History This comm...

Page 1118: ...displayed Layer 3 tracking in use and the failover mode is remain esrp master in l2 domain Information about rapid reelection and layer 3 tracking is displayed Layer 3 tracking is not in use and the...

Page 1119: ...Hello Timer 2 Esrp Nbr Timeout 6 Premaster Timeout 6 State Enabled Slave on Mon Jun 2 10 09 48 2003 State Trans Counters ToMaster 1 ToPremaster 1 ToSlave 2 Host Direct Attach ports None No count ports...

Page 1120: ...1120 ExtremeWare Software 7 3 0 Command Reference Guide ESRP Commands Platform Availability This command is available on all platforms...

Page 1121: ...figuring selective forwarding you create a portlist of the ESRP groups associated with an ESRP aware VLAN and that portlist is used for forwarding ESRP PDUs on the relevant ports only Use the show esr...

Page 1122: ...following command displays ESRP aware status information for ESRP aware VLAN demo esrp aware show esrp aware vlan demo esrp aware On an ESRP aware switch it produces output similar to the following S...

Page 1123: ...the following VLAN Interface Layer 2 demo_esrp Priority 0 Priority In Use 0 Active Ports 2 Internal Ports 0 Tracked Rt Ping LSP 0 Tracked Ports 0 Tracked Diag Tracked Env Tracked RIP Tracked OSPF Trac...

Page 1124: ...following command displays the ESRP counters for ESRP enabled VLAN demo esrp show esrp vlan demo esrp counters It produces output similar to the following VLAN demo_esrp Current time Mon Jun 2 08 40...

Page 1125: ...the configure elrp client periodic command to configure periodic transmission of ELRP packets The ELRP client must be enabled globally in order for it to work on any VLANs Use the enable elrp client...

Page 1126: ...1126 ExtremeWare Software 7 3 0 Command Reference Guide ESRP Commands...

Page 1127: ...Networks VRRP implementation is compliant with RFC 2338 Virtual Router Redundancy Protocol The following points pertain to VRRP VRRP packets are encapsulated IP packets The VRRP multicast address is 2...

Page 1128: ...ween master and backup router s The master router sends periodic advertisements to the backup routers to indicate that it is alive VRRP also supports the following tracking options VRRP VLAN tracking...

Page 1129: ...Description Enables VRRP on a particular VLAN Syntax Description Default N A Usage Guidelines None Example The following enables VRRP on VLAN vrrp 1 configure vrrp add vlan vrrp 1 History This comman...

Page 1130: ...ption Default N A Usage Guidelines None Example The following command disables VRRP on VLAN vrrp 1 configure vrrp delete vlan vrrp 1 History This command was first available in ExtremeWare 6 2 Platfor...

Page 1131: ...s the master router as long as it remains functional Example The following command sets up this device as the master router for VLAN vrrp 1 using IP address 192 168 1 3 as the virtual router IP addres...

Page 1132: ...le The following command configures authentication for VRRP VLAN vrrp 1 with the password newvrrp configure vrrp vlan vrrp 1 authentication simple password newvrrp History This command was first avail...

Page 1133: ...None Example The following command deletes the virtual router identified by VRID 2 configure vrrp vlan vrrp 1 delete vrid 2 History This command was first available in ExtremeWare 6 2 Platform Availa...

Page 1134: ...tremely busy CPU a short dual master situation can occur To avoid this increase the advertisement interval The preempt mode controls whether a higher priority backup router preempts a lower priority m...

Page 1135: ...and Reference Guide 1135 configure vrrp vlan vrrp 1 vrid 2 advertisement interval 15 configure vrrp vlan vrrp 1 vrid 2 dont_preempt History This command was first available in ExtremeWare 6 2 Platform...

Page 1136: ...command has no arguments or variables Default N A Usage Guidelines This disables VRRP on the device All virtual routers defined on this device will also be disabled Example The following command disab...

Page 1137: ...ments or variables Default N A Usage Guidelines IGMP snooping must be enabled for VRRP to operate correctly Use the following command to enable IGMP snooping enable igmp snooping Example The following...

Page 1138: ...0 0 Y Y 1 En Enabled Ds Disabled Pri Priority T Advert Timer M Preempt Prt Active Ports TR Tracked Routes Pings TPr Tracked Ports W TrackWinner The following command displays detail status information...

Page 1139: ...0 Command Reference Guide 1139 Transition Counters ToMaster 1 ToBackup 1 Skew 0 609375 Master Dn Int 3 60938 History This command was first available in ExtremeWare 6 2 Platform Availability This com...

Page 1140: ...statistics for a particular VLAN Syntax Description Default N A Usage Guidelines None Example The following command displays statistics for VLAN vrrp 1 show vrrp vlan vrrp 1 stats History This command...

Page 1141: ...t configure the same IP subnet on different VLANs The Extreme Networks switch maintains an IP routing table for network routes and host routes The table is populated from the following sources Dynamic...

Page 1142: ...on subnets being service by the switch and going to hosts on different subnets This feature can be used in various applications including DHCP services between Windows NT servers and clients running W...

Page 1143: ...ditions are satisfied The valid IP ARP Request is received on a router interface The target IP address matches the IP address configured in the proxy ARP table The proxy ARP table entry indicates that...

Page 1144: ...ntax Description Default N A Usage Guidelines Permanent IP ARP entries are not affected Example The following command removes a dynamically created entry from the IPARP table clear iparp 10 1 1 5 24 H...

Page 1145: ...lt N A Usage Guidelines If no options are specified all IP FDB entries are removed Example The following command removes dynamically created entries in the IP forwarding database clear ipfdb 10 1 2 1...

Page 1146: ...d by the switch and going to hosts on different subnets To configure the relay function follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using the...

Page 1147: ...iced by the switch and going to hosts on different subnets To configure the relay function follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using t...

Page 1148: ...cking in the DHCP reply packet follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using the following command enable bootprelay 3 Configure the addre...

Page 1149: ...configure bootprelay dhcp agent information check ExtremeWare Software 7 3 0 Command Reference Guide 1149 Platform Availability This command is available on all platforms...

Page 1150: ...ay function follow these steps 1 Configure VLANs and IP unicast routing 2 Enable the DHCP or BOOTP relay function using the following command enable bootprelay 3 Configure the addresses to which DHCP...

Page 1151: ...r BOOTP requests should be directed using the following command configure bootprelay add ip address 4 Configure the DHCP relay agent option option 82 using the following command configure bootprelay d...

Page 1152: ...1152 ExtremeWare Software 7 3 0 Command Reference Guide IP Unicast Commands History This command was available in ExtremeWare 7 2 Platform Availability This command is available on all platforms...

Page 1153: ...e Guidelines Add a permanent IP ARP entry to the system The ip address is used to match the IP interface address to locate a suitable interface Example The following command adds a permanent IP ARP en...

Page 1154: ...he system responds to ARP Requests on behalf of the device as long as the following conditions are satisfied The valid IP ARP Request is received on a router interface The target IP address matches th...

Page 1155: ...configure iparp add proxy ExtremeWare Software 7 3 0 Command Reference Guide 1155 Platform Availability This command is available on all platforms...

Page 1156: ...fault N A Usage Guidelines Removes any IP ARP entry dynamic or permanent from the table The ip address is used to match the IP interface address to locate a suitable interface Example The following co...

Page 1157: ...hen the host sends ARP Request for another host on another subnet the switch answers the ARP Request and all subsequent traffic will be sent directly to the router You can configure up to 64 proxy ARP...

Page 1158: ...n Default 4096 Usage Guidelines Range 1 20480 The maximum IP ARP entries include dynamic static and incomplete IP ARP entries Example The following command sets the maximum IP ARP entries to 2000 entr...

Page 1159: ...entries Syntax Description Default 256 Usage Guidelines Range 1 20480 but cannot be greater than the configured IP ARP max entries value Example The following command sets the maximum IP ARP entries...

Page 1160: ...timeout period Syntax Description Default 20 minutes Usage Guidelines A setting of 0 disables ARP aging Example The following command sets the IP ARP timeout period to 10 minutes configure iparp timeo...

Page 1161: ...nterfaces Syntax Description Default N A Usage Guidelines None Example The following command configures the forwarding functionality destined to nonworking IP interfaces configure ip down vlan action...

Page 1162: ...s To see the current setting use the show ipconfig command Example The following command clears only the IPFDB entries associated with the new route s subnet configure ipfdb route add clear subnet His...

Page 1163: ...Guidelines Use a value of 255 255 255 255 for mask to indicate a host entry Example The following command adds a static address to the routing table configure iproute add 10 1 1 1 24 123 45 67 1 5 Hi...

Page 1164: ...to be discarded Blackhole entries are useful as a security measure or in special circumstances where a specific destination address must be discarded Blackhole entries are treated like permanent entr...

Page 1165: ...ffic destined to a specified IP destination a default blackhole route is for discarding traffic to the unknown IP destination Using this command all traffic with an unknown destination is discarded If...

Page 1166: ...requested destination A default gateway must be located on a configured IP interface Use the unicast only or multicast only options to specify a particular traffic type If not specified both unicast...

Page 1167: ...on Default N A Usage Guidelines Use a value of 255 255 255 255 for mask to indicate a host entry Example The following command deletes an address from the gateway configure iproute delete 10 101 0 250...

Page 1168: ...ddress from the routing table Syntax Description Default N A Usage Guidelines None Example The following command removes a blackhole address from the routing table configure iproute delete blackhole 1...

Page 1169: ...s a default blackhole route from the routing table Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command deletes a blackhole def...

Page 1170: ...A Usage Guidelines Default routes are used when the router has no other dynamic or static route to the requested destination A default gateway must be located on a configured IP interface Example The...

Page 1171: ...ese priorities can be changed do not attempt any manipulation unless you are expertly familiar with the possible consequences rip Specifies RIP bootp Specifies BOOTP icmp Specifies ICMP static Specifi...

Page 1172: ...nicast Commands Example The following command sets IP route priority for static routing to 1200 configure iproute priority static 1200 History This command was first available in ExtremeWare 4 0 Platf...

Page 1173: ...routing can be dynamically changed In the case of direct and static route origins the changes are reflected immediately In the case of routes that are sourced from other origin the changes are reflect...

Page 1174: ...Commands History This command was first available in ExtremeWare 6 1 5 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS module...

Page 1175: ...essages Syntax Description Default Multicast 224 0 0 1 Usage Guidelines None Example The following command sets the address of the router advertiser messages to multicast configure irdp multicast Hist...

Page 1176: ...ourage the use of this router The default setting is 0 Example The following command configures the router advertisement message timers configure irdp 30 40 300 1 History This command was first availa...

Page 1177: ...defining the UDP port and destination IP address or VLAN A VLAN can make use of a single UDP forwarding profile UDP packets directed toward a VLAN use an all ones broadcast on that VLAN Example The fo...

Page 1178: ...Description Default N A Usage Guidelines None Example The following command removes port 34 from UDP profile port_34_to_server configure udp profile port_34_to_server delete 34 ip address 10 1 1 1 Hi...

Page 1179: ...configuration of overlapping sub VLAN address ranges between multiple sub VLANs Doing so can result in unexpected behavior of ARP within the super VLAN and associated sub VLANs Example The following c...

Page 1180: ...adcast UDP packets that match the user configured UDP port number and forwards those packets to the user defined destination If the UDP port is the DHCP BOOTP port number appropriate BOOTP DHCP proxy...

Page 1181: ...default router set to the IP address or the super VLAN All traffic IP unicast and IP multicast between sub VLANs is routed through the super VLAN For example no ICMP redirects are generated for traff...

Page 1182: ...1182 ExtremeWare Software 7 3 0 Command Reference Guide IP Unicast Commands Platform Availability This command is available on all platforms...

Page 1183: ...the super VLAN All traffic IP unicast and IP multicast between sub VLANs is routed through the super VLAN For example no ICMP redirects are generated for traffic between sub VLANs because the super VL...

Page 1184: ...rded Syntax Description Default N A Usage Guidelines You must give the profile a unique name in the same manner as a VLAN protocol filter or Spanning Tree Domain STD A maximum of 10 UDP forwarding pro...

Page 1185: ...es a UDP forwarding profile Syntax Description Default N A Usage Guidelines None Example The following command deletes a UPD profile named backbone delete udp profile backbone History This command was...

Page 1186: ...ess for the VLAN from a BOOTP server Syntax Description Default Enabled for all VLANs Usage Guidelines None Example The following command disables the generation and processing of BOOTP packets on a V...

Page 1187: ...different subnets This feature can be used in various applications including DHCP services between Windows NT servers and clients running Windows 95 To configure the relay function follow these steps...

Page 1188: ...st is received The default setting is enabled If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP pac...

Page 1189: ...roperly process the IP header or IP option information If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of...

Page 1190: ...tch and no application is waiting for the request or access policy denies the request If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of ce...

Page 1191: ...his option only applies to the switch when the switch is not in routing mode Example The following command disables ICMP redirects from VLAN accounting disable icmp redirects vlan accounting History T...

Page 1192: ...VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controlled...

Page 1193: ...imestamp request is received If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forw...

Page 1194: ...on Default Enabled Usage Guidelines None Example The following command disables the generation of ICMP unreachable messages on all VLANs disable icmp unreachables History This command was available in...

Page 1195: ...message is received Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines This option only applies to the switch when the switch is not in routing mode Examp...

Page 1196: ...ce IP address is within the range of the local interface or VLAN domain Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following comman...

Page 1197: ...rguments or variables Default Enabled Usage Guidelines IP ARP refresh can only be disabled if IP forwarding is disabled The purpose of disabling ARP refresh is to reduce ARP traffic in a high node cou...

Page 1198: ...are added IP forwarding and IP broadcast forwarding is disabled by default Other IP related configuration is not affected Example The following command disables forwarding of IP broadcast traffic for...

Page 1199: ...VLAN Syntax Description Default Disabled Usage Guidelines Disabling LPM routing does not disable IP forwarding Example The following command disables LPM routing for all configured VLANs disable ipfor...

Page 1200: ...s the loose source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the loose source route IP...

Page 1201: ...n Disables the record route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the record route IP opt...

Page 1202: ...es the record timestamp IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the record timestamp IP opt...

Page 1203: ...n Disables the strict source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables the strict sourc...

Page 1204: ...ation of the router alert IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command disables generation of the router...

Page 1205: ...h OSPF routes In OSPF this capability is referred to as equal cost multipath ECMP routing Configure static routes and or OSPF as you would normally ExtremeWare supports unlimited route sharing across...

Page 1206: ...s on one or all VLANs Syntax Description Default Enabled Usage Guidelines If no optional argument is specified all the IP interfaces are affected Example The following command disables IRDP on VLAN ac...

Page 1207: ...t N A Usage Guidelines Use this command to specify a stable interface as a source interface for routing protocols This decreases the possibility of route flapping which can disrupt connectivity Exampl...

Page 1208: ...ommand disables standard multinetting in the switch disable multinetting standard History This command was first available in ExtremeWare 2 0 The proprietary and standard options were made available f...

Page 1209: ...oxy ARP function This allows clients on one sub VLAN to communicate with clients on another sub VLAN In certain circumstances intra sub VLAN communication may not be desired for isolation reasons NOTE...

Page 1210: ...his command has no arguments or variables Default Disabled Usage Guidelines UDP Echo packets are used to measure the transit time for data between the transmitting and receiving end Example The follow...

Page 1211: ...ss for the VLAN from a BOOTP server Syntax Description Default Enabled for all VLANs Usage Guidelines None Example The following command enables the generation and processing of BOOTP packets on a VLA...

Page 1212: ...different subnets This feature can be used in various applications including DHCP services between Windows NT servers and clients running Windows 95 To configure the relay function follow these steps...

Page 1213: ...uest is received The default setting is enabled If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP p...

Page 1214: ...y process the IP header or IP option information If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP...

Page 1215: ...switch and no application is waiting for the request or access policy denies the request If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation o...

Page 1216: ...option only applies to the switch when the switch is not in routing mode Example The following command enables the generation of ICMP redirect messages on all VLANs enable icmp redirects History This...

Page 1217: ...a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwarded by the switch is controll...

Page 1218: ...estamp request is received If a VLAN is not specified the command applies to all IP interfaces This command only affects the generation of certain ICMP packets Filtering of ICMP packets usually forwar...

Page 1219: ...tion Default Enabled Usage Guidelines None Example The following command enables the generation of ICMP unreachable messages on all VLANs enable icmp unreachables History This command was available in...

Page 1220: ...age is received Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines This option only applies to the switch when the switch is not in routing mode Example Th...

Page 1221: ...rce IP address is within the range of the local interface or VLAN domain Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following comma...

Page 1222: ...has no arguments or variables Default Enabled Usage Guidelines IP ARP refresh can only be disabled if IP forwarding is disabled The purpose of disabling ARP refresh is to reduce ARP traffic in a high...

Page 1223: ...is disabled by default Other IP related configuration is not affected Example The following command enables forwarding of IP traffic for all VLANs with IP addresses enable ipforwarding The following...

Page 1224: ...n either an ARM or MPLS module is installed in a BlackDiamond switch the module can be configured to forward IP packets for specified VLANs using LPM routing If no VLAN is specified LPM routing is ena...

Page 1225: ...n Enables the loose source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the loose source ro...

Page 1226: ...bles the record route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the record route IP option ena...

Page 1227: ...n Enables the record timestamp IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the record timestamp...

Page 1228: ...the strict source route IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables the strict source route IP...

Page 1229: ...e generation of the router alert IP option Syntax Description This command has no arguments or variables Default Enabled Usage Guidelines None Example The following command enables generation of the r...

Page 1230: ...OSPF routes In OSPF this capability is referred to as equal cost multipath ECMP routing Configure static routes and or OSPF as you would normally ExtremeWare supports unlimited route sharing across st...

Page 1231: ...one or all VLANs Syntax Description Default Enabled Usage Guidelines If no optional argument is specified all the IP interfaces are affected Example The following command enables IRDP on VLAN account...

Page 1232: ...A Usage Guidelines Use this command to specify a stable interface as a source interface for routing protocols This decreases the possibility of route flapping which can disrupt connectivity Example Th...

Page 1233: ...disable multinetting Example The following command enables proprietary multinetting in the switch enable multinetting proprietary History This command was first available in ExtremeWare 2 0 The propri...

Page 1234: ...function This allows clients on one sub VLAN to communicate with clients on another sub VLAN In certain circumstances intra sub VLAN communication may not be desired for isolation reasons NOTE The is...

Page 1235: ...This command has no arguments or variables Default Disabled Usage Guidelines UDP Echo packets are used to measure the transit time for data between the transmitting and receiving end Example The follo...

Page 1236: ...dded to the rtlookup command When the mpls keyword is specified the information displayed is modified some of the information normally displayed is omitted and the LSP endpoint and outgoing MPLS label...

Page 1237: ...for IP address 10 20 30 55 run ipfdb check 10 20 30 55 History This command was first available in ExtremeWare 6 1 9 Platform Availability This command is available on all platforms The extended optio...

Page 1238: ...delines Displays the IP ARP table including IP address MAC address Aging timer value VLAN name VLAN ID and port number Flags Example The following command displays the IP ARP table show iparp 10 1 1 5...

Page 1239: ...iption Default N A Usage Guidelines If no argument is specified then all proxy ARP entries are displayed Example The following command displays the proxy ARP table show iparp proxy 10 1 1 5 24 History...

Page 1240: ...g information BOOTP configuration VLAN name and VLANID ICMP configuration global IGMP configuration global IRDP configuration global Using the detail option of his command displays secondary IP addres...

Page 1241: ...Fwd Bcast NO IGMP YES IGMP Ver V2 IgnoreBcast NO IP Fwding NO IPmc Fwd NO IRDP Advert NO ISIS NO ISQ NO LDP NO LPM routing NO MPLS NO NAT Inside NO NAT Outside NO OSPF NO PIM NO RIP NO RSVP NO SendPa...

Page 1242: ...05 4 201 00C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 200 01C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 203 02C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 202 03C3 0 9C32 0 0000 0...

Page 1243: ...2 07C7 0 4646 0 0000 00 10 E3 1D 00 1E 4000 1 10 205 4 193 08C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 10 205 4 192 09C3 0 9C32 0 0000 00 E0 2B 04 DA 00 4000 1 History This command was available in Ex...

Page 1244: ...iproute command has been enhanced to include information about MPLS LSPs associated with the routes The flags field displayed by this command has been enhanced to indicate the presence of MPLS next ho...

Page 1245: ...ly the software is making route decisions and should be investigated further Example The following command displays detailed information about all IP routing show iproute detail Following is the outpu...

Page 1246: ...of packets with an IP Header Error forwarded to the CPU Bad vers Total number of packets with a version other than IP v4 in the IP version field Bad chksum Total number of packets with a bad IP checks...

Page 1247: ...en Incoming ICMP packets with length errors echo reply In Out ICMP echo reply packets that are received and transmitted destination unreachable In Out ICMP packets with destination unreachable that ar...

Page 1248: ...DHCP Decline responses DHCP Ack Number of DHCP Ack responses DHCP NAck Number of DHCP NAck responses DHCP Release Number of DHCP Release instances DHCP Inform Not used Table 26 Router Interface Statis...

Page 1249: ...following information Profile names Input rules of UDP port destination IP address or VLAN Source VLANs to which the profile is applied Example The following command displays the UDP profile informati...

Page 1250: ...ault Disabled Usage Guidelines The following command configures DHCP relay agent option check configure bootprelay dhcp agent information check To disable the DHCP relay agent information check in the...

Page 1251: ...o arguments or variables Default Disabled Usage Guidelines The following command configures the DHCP relay agent option configure bootprelay dhcp agent information option To disable the DHCP relay age...

Page 1252: ...e relay agent information with its own information Usage Guidelines The following command configures the DHCP relay agent reforwarding policy configure bootprelay dhcp agent information policy policy...

Page 1253: ...no arguments or variables Default N A Usage Guidelines None Example The following command resets all ICMP settings to the default values unconfigure icmp History This command was available in ExtremeW...

Page 1254: ...RP max pending entries to their default values Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets all IP ARP related s...

Page 1255: ...ttings to the default values Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets all router advertisement settings to t...

Page 1256: ...tion for one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command removes the UDP profile configuration from the VLAN accounting unconfigure udp profile vlan...

Page 1257: ...r into areas The topology within an area is hidden from the rest of the autonomous system Hiding this information enables a significant reduction in LSA traffic and reduces the computations needed to...

Page 1258: ...ter that data must traverse is considered to be one hop The routing table in a router using RIP contains an entry for every known destination network Each routing table entry contains the following in...

Page 1259: ...are specified all adjacencies for all VLANs are cleared Example The following command clears the level 1 adjacencies for VLAN v1 clear isis adjacency level 1 vlan v1 History This command was first ava...

Page 1260: ...o parameters are specified all entries are cleared Example The following command clears all non pseudonode LSDB clear isis lsdb type non pseudonode History This command was first available in ExtremeW...

Page 1261: ...rily useful when multiple areas are merged or when one area is split into multiple areas Multiple area addresses enable you to remember an area individually as needed If no area address is configured...

Page 1262: ...the level 1 area in which the interface is present is specified with this option level 1 2 Both level 1 and level 2 adjacency is established if the neighbor s interface is also configured as level 1 2...

Page 1263: ...LSP The noadvert option filters out the summary Example The following command adds the domain summary address 10 0 0 0 8 to the level 1 area a1 advertises the address and sets the cost to 15 configure...

Page 1264: ...ines When the summary address is deleted the summarized IP reachability information must not be included in the level 2 LSP Example The following command deletes one summary address 10 0 0 0 8 from th...

Page 1265: ...an access profile is not configured none of the information is filtered By default no access profile is present on a level 1 area Example The following command configures access profile ap1 as the dom...

Page 1266: ...h function HMAC on the data present in the packet The no check option prevents the system from dropping received packets that cannot be authenticated Example The following command configures authentic...

Page 1267: ...temporarily useful when multiple areas are merged or when one area is split into multiple areas Multiple area addresses enable you to remember an area individually as needed If no area address is conf...

Page 1268: ...By default IS IS is not enabled on an interface Usage Guidelines None Example The following command disables IS IS on all VLANs configure isis delete vlan all History This command was first available...

Page 1269: ...Guidelines The filter is applied on the routes from all the non IS IS origins When an access profile is not configured none of the routes are filtered Example The following command configures an exte...

Page 1270: ...yntax Description Default 10 seconds Usage Guidelines The LSP hold down interval range is from 3 to 120 seconds Example The following command configures the LSP hold down interval configure isis lsp h...

Page 1271: ...You can only use this command when IS IS is disabled The LSP lifetime range is from 400 to 65 535 seconds Example The following command sets the LSP lifetime to 1000 configure isis lsp lifetime 1000 H...

Page 1272: ...ly use this command when IS IS is disabled The LSP refresh interval range is from 100 to 65 235 seconds Example The following command configures the LSP refresh interval configure isis lsp refresh int...

Page 1273: ...the basic specifications The wide option indicates that the metric can have a maximum value of 4 261 412 864 as specified in the traffic engineering draft The both option indicates that the metric sh...

Page 1274: ...s Usage Guidelines The SPF hold time range is from 1 to 300 seconds Example The following command configures the IS IS shortest path first hold time configure isis spf hold time 7 History This command...

Page 1275: ...overrides that default Usage Guidelines The system identifier can only be configured when IS IS processing is disabled Example The following command sets the system identifier configure isis system id...

Page 1276: ...ve the corresponding Hello packets are not sent or received on that interface Any packet that is received is ignored As result of this no adjacency is established Example The following command configu...

Page 1277: ...he packet The no check option prevents the system from dropping received packets that cannot be authenticated The level 1 level 2 and level 1 2 options specify the levels on which the authentication i...

Page 1278: ...215 where 16 777 215 is the maximum value allowed with wide metrics If cost is greater than 63 a value of 63 is advertised as the regular metric of the interface The default is 10 The level 1 level 2...

Page 1279: ...rtised hold time in the IS IS hellos is the hello multiplier times the hello interval The hello multiplier range is 3 to 1000 and the default is 3 The level 1 level 2 and level 1 2 options specify the...

Page 1280: ...s the designated IS for that level on that interface The range of priority is 0 to 127 and the default is 64 The level 1 level 2 and level 1 2 options specify the levels for which the priority is appl...

Page 1281: ...and the default is 10 The hellotime interval is the time in seconds between transmission of Hello PDUS on the interface The range is 3 to 3600 and the default is 10 The level 1 level 2 and level 1 2...

Page 1282: ...1282 ExtremeWare Software 7 3 0 Command Reference Guide IGP Commands Platform Availability This command is available on all platforms...

Page 1283: ...ion Default The default cost is automatic Usage Guidelines None Example The following command configures the cost metric of the VLAN accounting configure ospf vlan accounting cost 10 History This comm...

Page 1284: ...lines The range is 0 through 255 and the default setting is 1 Setting the value to 0 ensures that the router is never selected as the designated router or backup designated router Example The followin...

Page 1285: ...is a numeric value with the range 0 to 65 536 or alphanumeric When the OSPF area is specified authentication information is applied to all OSPF interfaces within the area Example The following command...

Page 1286: ...Example The following command sets the timers on the virtual link in area 0 0 0 2 configure ospf virtual link 6 6 6 6 0 0 0 2 timer 10 1 20 200 History This command was available in ExtremeWare 2 0 vl...

Page 1287: ...configure ospf timer ExtremeWare Software 7 3 0 Command Reference Guide 1287 The syntax was modified in ExtremeWare 6 2 2 Platform Availability This command is available on all platforms...

Page 1288: ...BRs that have a common area with one ABR connected to the backbone Specify the following routerid Far end router identifier number area identifier Transit area used for connecting the two end points T...

Page 1289: ...export option should be used when the tunnel LSP needs to cross OSPF area boundaries or when the Extreme Standby Routing Protocol ESRP is enabled on the VLAN to which the IP address is assigned In ei...

Page 1290: ...Commands History This command was available in ExtremeWare 2 0 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Platfo...

Page 1291: ...igures the OSPF link type as automatic on a VLAN named accounting configure ospf add vlan accounting area 0 0 0 1 link type auto History This command was first available in ExtremeWare 6 2 Platform Av...

Page 1292: ...ed into that area NOTE If any of the external routes specified in the filter have already been advertised those routes will remain until the associated LSAs in that area time out Using the none mode s...

Page 1293: ...ABR function an access profile can be applied to an OSPF area that filters a set of OSPF inter area routes from being sourced from any other areas Example The following command configures an inter ar...

Page 1294: ...d is used to summarize a certain range of IP addresses within an area and export them out as a single address configure ospf area 1 2 3 4 add range 10 1 2 0 24 advertise type 3 History This command wa...

Page 1295: ...d IP addresses in an OSPF area Syntax Description Default N A Usage Guidelines None Example The following command deletes an aggregated IP address range configure ospf area 1 2 3 4 delete range 10 1 2...

Page 1296: ...A normal area is an area that is not any of the following Stub area NSSA Virtual links can be configured through normal areas External routes can be distributed into normal areas Example The following...

Page 1297: ...SSA the translate option should only be used on NSSA border routers where translation is to be enforced If translate is not used on any NSSA border router in a NSSA one of the ABRs for that NSSA is el...

Page 1298: ...area External route information is not distributed into stub areas Stub areas are used to reduce memory and computation requirements on OSPF routers Example The following command configures an OSPF a...

Page 1299: ...IS IS and static route re distribution into OSPF an access profile can be used to limit the routes that are advertised into OSPF for the switch as a whole Example The following command configures a ro...

Page 1300: ...he router goes into overflow state it stays there until OSPF is disabled and then re enabled Usage Guidelines None Example The following command configures the AS external LSA limit and overflow durat...

Page 1301: ...Default N A Usage Guidelines This command is only valid on an ASBR Example The following command summarizes AS external routes configure ospf ase summary add 175 1 0 0 16 cost 10 History This command...

Page 1302: ...route Syntax Description Default N A Usage Guidelines This command is only valid on an ASBR Example The following command deletes the aggregated AS external route configure ospf ase summary delete 17...

Page 1303: ...iption Removes a virtual link Syntax Description Default N A Usage Guidelines None Example The following command deletes a virtual link configure ospf delete virtual link 10 1 2 1 10 1 0 0 History Thi...

Page 1304: ...one or all VLANs router interfaces Syntax Description Default N A Usage Guidelines None Example The following command disables OSPF on VLAN accounting configure ospf delete vlan accounting History Th...

Page 1305: ...d enable ospf export rip Using ExtremeWare 6 0 and above you must configure ExtremeWare to export these direct routes to OSPF You can use an access profile to filter unnecessary direct routes For swit...

Page 1306: ...delines The range is between 0 disabled and 600 seconds using multiples of 5 seconds The LSAs added to the LSDB during the interval are batched together for refresh or timeout Example The following co...

Page 1307: ...efault 10 Mbps The default cost is 10 100 Mbps The default cost is 5 1 Gbps The default cost is 4 10 Gbps The default cost is 2 Usage Guidelines None Example The following command configures the autom...

Page 1308: ...state database remaining in use NOTE Do not set the router ID to 0 0 0 0 The implementation of the configure ospf routerid command has been augmented to support automatic advertisement of a label map...

Page 1309: ...configure ospf routerid ExtremeWare Software 7 3 0 Command Reference Guide 1309 Platform Availability This command is available on all platforms...

Page 1310: ...st Path First SPF recalculations Syntax Description Default 3 seconds Usage Guidelines None Example The following command configures the minimum number of seconds between Shortest Path First SPF recal...

Page 1311: ...start with area 0 and then expand into other areas The backbone allows summary information to be exchanged between ABRs Every ABR hears the area summaries from all other ABRs The ABR then forms a pict...

Page 1312: ...t to point neighbor Syntax Description Default N A Usage Guidelines None Example The following command configures the IP address of a point to point neighbor configure ospf vlan accounting neighbor ad...

Page 1313: ...ess of a point to point neighbor Syntax Description Default N A Usage Guidelines None Example The following command deletes the IP address of a point to point neighbor configure ospf vlan accounting n...

Page 1314: ...ual to the router dead interval Under some circumstances setting the wait interval to smaller values can help OSPF routers on a broadcast network to synchronize more quickly at the expense of possibly...

Page 1315: ...ExtremeWare Software 7 3 0 Command Reference Guide 1315 History This command was first available in ExtremeWare 6 2 This command was modified in ExtremeWare 6 22 Platform Availability This command is...

Page 1316: ...Guidelines When an IP interface is created RIP configuration is disabled on the interface by default When the RIP interface is disabled the parameters are not reset to default automatically Example Th...

Page 1317: ...Usage Guidelines When an IP interface is created RIP configuration is disabled on the interface by default When the RIP interface is disabled the parameters are not reset to default automatically Exa...

Page 1318: ...he RIP garbage time Syntax Description Default 120 seconds Usage Guidelines None Example The following command configures the RIP garbage time to have a 60 second delay configure rip garbagetime 60 Hi...

Page 1319: ...ter does not receive an update message from its neighbor within the route timeout period 180 seconds by default the router assumes the connection between it and its neighbor is no longer available Exa...

Page 1320: ...ures the receive mode for the VLAN finance to accept only RIP version 1 format packets configure rip rxmode v1only finance History This command was available in ExtremeWare 2 0 Platform Availability T...

Page 1321: ...ce to transmit version 2 format packets to the broadcast address configure rip txmode v1comp finance History This command was available in ExtremeWare 2 0 Platform Availability This command is availab...

Page 1322: ...lines The router exchanges an update message with each neighbor every 30 seconds default value or if there is a change to the overall routed topology also called triggered updates The timer granularit...

Page 1323: ...yntax Description Default The default setting is 1 Usage Guidelines None Example The following command configures the cost for the VLAN finance to a metric of 3 configure rip vlan finance cost 3 Histo...

Page 1324: ...t or deny attribute The operation is compared with each entry in the list When a match is found the operation is either permitted or denied depending on the configuration of the matched entry If no ma...

Page 1325: ...e can contain a combination of permit and deny entries Each entry must have a permit or deny attribute The operation is compared with each entry in the list When a match is found the operation is eith...

Page 1326: ...mpared with each entry in the list When a match is found the operation is either permitted or denied depending on the configuration of the matched entry If no match is found the operation is implicitl...

Page 1327: ...for an area identifier is 32 characters The identifier must begin with one alphabetic character followed by up to 31 alphabetic or numeric characters Example The following command creates an IS IS lev...

Page 1328: ...Syntax Description Default Area 0 0 0 0 Usage Guidelines Area 0 0 0 0 does not need to be created It exists by default Example The following command creates an OSPF area create ospf area 1 2 3 4 Histo...

Page 1329: ...n with one alphabetic character followed by up to 31 alphabetic or numeric characters The all option deletes all of the level 1 areas simultaneously The level 1 area can only be deleted when no interf...

Page 1330: ...Description Default N A Usage Guidelines An OSPF area cannot be deleted if it has an associated interface Example The following command deletes an OSPF area delete ospf area 1 2 3 4 History This comma...

Page 1331: ...s or variables Default Disabled Usage Guidelines To enable IS IS routing use the following command enable isis Example The following command disables IS IS routing disable isis History This command wa...

Page 1332: ...e The following command disables redistribution of OSPF routes for a level 2 subdomain disable isis level 2 export ospf History This command was first available in ExtremeWare v6 1 8 IS IS tech releas...

Page 1333: ...disable isis export ExtremeWare Software 7 3 0 Command Reference Guide 1333 Platform Availability This command is available on all platforms...

Page 1334: ...ed bit ATT bit from level 1 2 switches This command has the effect of enabling the feature described in the ExtremeWare Software User Guide Software Version 7 0 0 in the chapter Interior Gateway Proto...

Page 1335: ...escription Default The default setting is disabled Usage Guidelines None Example The following command disables the origination of an IS IS default route for the level 2 subdomain disable isis level 2...

Page 1336: ...nes The at startup option disables setting the overload bit at system startup time Example The following command disables setting the overload bit for the level 1 area a1 disable isis area a1 overload...

Page 1337: ...F process for the router Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command disables the OSPF process for the router disable...

Page 1338: ...OSPF network should support opaque LSAs Routers that do not support opaque LSAs do not store or flood them At minimum a well interconnected subsection of your OSPF network needs to support opaque LSAs...

Page 1339: ...ng command disables OSPF to export BGP related routes to other OSPF routers disable ospf export bgp History This command was first available in ExtremeWare 6 1 Platform Availability This command is av...

Page 1340: ...includes a link with the router ID IP address and a mask of 255 255 255 255 in the router LSA The link type is stub and the metric is 0 When disabled OSPF does not include a link with the router ID I...

Page 1341: ...etworks including A limit of 15 hops between the source and destination networks A large amount of bandwidth taken up by periodic broadcasts of the entire routing table Slow convergence Routing decisi...

Page 1342: ...the RIP aggregation of subnet information on a switch configured to send RIPv2 compatible traffic The switch summarizes subnet routes to the nearest class network route The following rules apply when...

Page 1343: ...rned from OSPF disable rip export ospf History This command was first available in ExtremeWare 4 0 Platform Availability This command is available on all platforms direct Specifies interface routes on...

Page 1344: ...be used for security reasons to control which routes you want advertised by the router You can decide if you want all static routes to be advertised Static routes are never aged out of the routing ta...

Page 1345: ...lt route Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command unconfigures a default route to be advertised by RIP if no o...

Page 1346: ...on poison reverse is a scheme for eliminating the possibility of loops in the routed topology In this case a router advertises a route over the same interface that supplied the route but the route use...

Page 1347: ...led Usage Guidelines Split horizon is a scheme for avoiding problems caused by including routes in updates sent to the router from which the route was learned Split horizon omits routes learned from a...

Page 1348: ...ments or variables Default Enabled Usage Guidelines Triggered updates occur whenever a router changes the metric for a route and it is required to send an update message immediately even if it is not...

Page 1349: ...or variables Default Disabled Usage Guidelines To enable IS IS routing use the following command enable isis Example The following command enables IS IS routing enable isis History This command was f...

Page 1350: ...specified If a route map is specified routes can be assigned different metric and metric types Routes maps can also filter out routes level 2 Specifies a level 2 subdomain isis area identifier Specif...

Page 1351: ...redistribution of direct routes to the level 1 area a1 with the route map rm enable isis area a1 export direct rm History This command was first available in ExtremeWare v6 1 8 IS IS tech release and...

Page 1352: ...bit ATT bit from level 1 2 switches This command has the effect of disabling the feature described in the ExtremeWare Software User Guide Software Version 7 0 0 in the chapter Interior Gateway Protoco...

Page 1353: ...herwise the default route will be originated only if the default route is available in the kernel route table Example The following command enables the origination of an IS IS default route that uses...

Page 1354: ...uration of the overload bit If the duration is not specified the bit is set until it is disabled The range is 1 to 186 400 seconds Example The following command enables IS IS overload for the level 1...

Page 1355: ...process for the router Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command enables the OSPF process for the router enable osp...

Page 1356: ...SPF network should support opaque LSAs Routers that do not support opaque LSAs do not store or flood them At minimum a well interconnected subsection of your OSPF network needs to support opaque LSAs...

Page 1357: ...fy the independent operation of each Then you can configure the routes to export from OSPF to RIP and the routes to export from RIP to OSPF The cost metric is inserted for all BGP VIP RIP learned stat...

Page 1358: ...routes or route maps can be used for selective insertion When a route map is associated with the export command the route map is applied on every exported route The exported routes can also be filter...

Page 1359: ...m OSPF to RIP and the routes to export from RIP to OSPF The cost metric is inserted for all BGP VIP RIP learned static and direct routes injected into OSPF If the cost metric is set to 0 the cost is i...

Page 1360: ...mmands History This command was first available in ExtremeWare 6 1 This command was modified in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 to support MPLS modules Pla...

Page 1361: ...tag The tag value in this instance has no relationship with 802 1Q VLAN tagging When re distributing RIP routes you should turn off RIP aggregation unless you are expertly familiar with the possible...

Page 1362: ...The cost metric is inserted for all BGP VIP RIP learned static and direct routes injected into OSPF The tag value is used only by special routing applications Use 0 if you do not have specific require...

Page 1363: ...e 2 routes The default setting is disabled The cost metric is inserted for all BGP VIP RIP learned static and direct routes injected into OSPF If the cost metric is set to 0 the cost is inserted from...

Page 1364: ...1364 ExtremeWare Software 7 3 0 Command Reference Guide IGP Commands Platform Availability This command is available on all platforms...

Page 1365: ...specified OSPF always advertises the default route If always is not specified OSPF adds the default LSA if a reachable default route is in the route table Example The following command generates a def...

Page 1366: ...ludes a link with the router ID IP address and a mask of 255 255 255 255 in the router LSA The link type is stub and the metric is 0 When disabled OSPF does not include a link with the router ID IP ad...

Page 1367: ...tworks including A limit of 15 hops between the source and destination networks A large amount of bandwidth taken up by periodic broadcasts of the entire routing table Slow convergence Routing decisio...

Page 1368: ...compatible traffic The switch summarizes subnet routes to the nearest class network route The following rules apply when using RIP aggregation Subnet routes are aggregated to the nearest class network...

Page 1369: ...inserted from the route The tag value is used only by special routing applications Use 0 if you do not have specific requirements for using a tag Example The following command enables RIP to redistri...

Page 1370: ...are 7 3 0 Command Reference Guide IGP Commands History This command was first available in ExtremeWare 4 0 The keyword metric was changed to the keyword cost Platform Availability This command is avai...

Page 1371: ...ol which routes you want advertised by the router You can decide if you want all static routes to be advertised Static routes are never aged out of the routing table A static route must be associated...

Page 1372: ...be used for security reasons to control which routes you want advertised by the router You can decide if you want all static routes to be advertised Static routes are never aged out of the routing ta...

Page 1373: ...in the route table The cost metric is inserted for all RIP learned static and direct routes injected into OSPF If the cost metric is set to 0 the cost is inserted from the route The tag value is used...

Page 1374: ...n poison reverse is a scheme for eliminating the possibility of loops in the routed topology In this case a router advertises a route over the same interface that supplied the route but the route uses...

Page 1375: ...ed Usage Guidelines Split horizon is a scheme for avoiding problems caused by including routes in updates sent to the router from which the route was learned Split horizon omits routes learned from a...

Page 1376: ...ents or variables Default Enabled Usage Guidelines Triggered updates occur whenever a router changes the metric for a route and it is required to send an update message immediately even if it is not y...

Page 1377: ...obal OSPF information Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays global OSPF information show ospf History T...

Page 1378: ...tion about a particular OSPF area Syntax Description Default N A Usage Guidelines None Example The following command displays information about OSPF area 1 2 3 4 show ospf area 1 2 3 4 History This co...

Page 1379: ...about all OSPF areas Syntax Description Default N A Usage Guidelines None Example The following command displays information about all OSPF areas show ospf area detail History This command was first a...

Page 1380: ...aggregation configuration Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command displays the OSPF external route aggregation con...

Page 1381: ...tion about all OSPF interfaces Syntax Description Default N A Usage Guidelines None Example The following command displays information about all OSPF interfaces show ospf interfaces detail History Thi...

Page 1382: ...on Default If no argument is specified all OSPF interfaces are displayed Usage Guidelines None Example The following command displays information about one or all OSPF interfaces on the VLAN accountin...

Page 1383: ...of this command is to omit all optional parameters resulting in the following shortened form show ospf lsdb The shortened form displays all areas and all types in a summary format You can filter the...

Page 1384: ...1384 ExtremeWare Software 7 3 0 Command Reference Guide IGP Commands History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms...

Page 1385: ...sage Guidelines area identifier Transit area used for connecting the two end points The transit area cannot have the IP address 0 0 0 0 Example The following command displays virtual link information...

Page 1386: ...s for all VLANs Syntax Description Default N A Usage Guidelines None Example The following command displays RIP specific configuration and statistics for all VLANs show rip History This command was av...

Page 1387: ...include the following per interface Packets transmitted Packets received Bad packets received Bad routes received Number of RIP peers Peer information Example The following command displays RIP speci...

Page 1388: ...ific statistics for a VLAN Syntax Description Default N A Usage Guidelines None Example The following command displays RIP specific statistics for the VLAN accounting show rip stat accounting History...

Page 1389: ...tatistics for a VLAN Syntax Description Default All Usage Guidelines None Example The following command displays RIP configuration and statistics for the VLAN accounting show rip vlan accounting Histo...

Page 1390: ...fault settings Syntax Description Default N A Usage Guidelines None Example The following command resets the OSPF interface to the default settings on the VLAN accounting unconfigure ospf accounting H...

Page 1391: ...lt VLAN Syntax Description Default All Usage Guidelines Does not change the enable disable state of the RIP settings Example The following command deletes RIP configuration from the VLAN finance uncon...

Page 1392: ...1392 ExtremeWare Software 7 3 0 Command Reference Guide IGP Commands...

Page 1393: ...ocol I BGP BGP Attributes The following well known BGP attributes are supported by the switch Origin Defines the origin of the route Possible values are IGP EGP and incomplete AS_Path The list of ASs...

Page 1394: ...following well known BGP community attributes no export no advertise no export subconfed BGP Features This section lists BGP features supported by ExtremeWare Route Reflectors Route Confederations Rou...

Page 1395: ...l msgs Out total msgs In updates Out updates Last error FsmTransitions Example The following command resets the counters for the BGP neighbor at 10 20 30 55 clear bgp neighbor 10 20 30 55 counters His...

Page 1396: ...ears the flap statistics for a specified neighbor clear bgp neighbor 10 10 10 10 flap statistics History This command was introduced in ExtremeWare 7 0 0 ip address Specifies an IP address that identi...

Page 1397: ...clear bgp neighbor flap statistics ExtremeWare Software 7 3 0 Command Reference Guide 1397 Platform Availability This command is available on all platforms...

Page 1398: ...teps 1 Enable aggregation using the following command enable bgp aggregation 2 Create an aggregate route using the following commands configure bgp add aggregate address ip address mask length as set...

Page 1399: ...does not scale well especially when BGP is used as an interior gateway protocol One way to reduce the size of a fully meshed AS is to divide the AS into multiple sub autonomous systems and group them...

Page 1400: ...adds the route to BGP only if the route is present in the routing table The enable bgp export command redistributes an individual route from the routing table to BGP If you use both commands to redis...

Page 1401: ...sed by BGP Syntax Description Default N A Usage Guidelines BGP must be disabled before the as number can be changed Example The following command changes the local AS number used by BGP configure bgp...

Page 1402: ...same cluster of clients Extreme Networks recommends disabling BGP before configuring the cluster ID Example The following command appends a BGP route reflector cluster ID to the cluster list of a rou...

Page 1403: ...ay to reduce the size of a fully meshed AS is to divide the AS into multiple sub autonomous systems and group them into a routing confederation Within the confederation each sub AS must be fully meshe...

Page 1404: ...vertised as a single route Aggregation reduces the amount of information that a BGP speaker must store and exchange with other BGP speakers Reducing the information that is stored and exchanged also r...

Page 1405: ...s not scale well especially when BGP is used as an interior gateway protocol One way to reduce the size of a fully meshed AS is to divide the AS into multiple sub autonomous systems and group them int...

Page 1406: ...is router Syntax Description Default N A Usage Guidelines None Example The following command deletes a network to be originated from this router configure bgp delete network 192 1 1 12 30 History This...

Page 1407: ...ce from highest to lowest higher weight higher local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost to Next Hop lowest routerID Example...

Page 1408: ...ects routes based on the following precedence from highest to lowest higher weight higher local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowes...

Page 1409: ...on the input side and or the output side of the router Example The following command configures the AS path filter for a neighbor based on the access profile nosales configure bgp neighbor 192 1 1 22...

Page 1410: ...value above which a route will be suppressed The range is 1 20 000 and the default is 2 000 The maximum hold down time is the maximum time a route can be suppressed no matter how unstable it has been...

Page 1411: ...configure bgp neighbor dampening ExtremeWare Software 7 3 0 Command Reference Guide 1411 Platform Availability This command is available on all platforms...

Page 1412: ...e threshold for warning messages to 60 and specifies SNMP traps configure bgp neighbor all maximum prefix 5000 threshold 60 send traps History This command was introduced in ExtremeWare 6 2 2 ip addre...

Page 1413: ...configure bgp neighbor maximum prefix ExtremeWare Software 7 3 0 Command Reference Guide 1413 Platform Availability This command is available on all platforms...

Page 1414: ...lowing command configures the next hop address used in the updates to be the address of the BGP connection originating it configure bgp neighbor 172 16 5 25 next hop self History This command was avai...

Page 1415: ...ut side and or the output side of the router Example The following command configures the NLRI filter for a neighbor based on the access profile nosales configure bgp neighbor 192 1 1 22 nlri filter i...

Page 1416: ...uidelines Use the following command to enable route flap dampening for BGP neighbors configure bgp neighbor ip address all dampening half life reuse suppress max suppress route map route map Example T...

Page 1417: ...ssword Changing a route reflector client will automatically disable and enable the peer session NOTE Do not select the encrypted option in the CLI The encrypted option is used by the switch when gener...

Page 1418: ...re 7 3 0 Command Reference Guide BGP Commands configure bgp neighbor 192 168 1 5 password extreme History This command was first available in ExtremeWare 6 2 Platform Availability This command is avai...

Page 1419: ...not reset to those the neighbor had before it inherited the peer group values To create a new neighbor and add it to a BGP peer group use the following command create bgp neighbor ip address peer grou...

Page 1420: ...and the path attributes associated with it when exchanging updates with the neighbor Example The following command configures the route map filter filter for a neighbor based on the access profile no...

Page 1421: ...s the router When changing the route reflector status of a peer the peer will automatically be disabled and re enabled and a warning message will appear on the console and in the log A cluster is form...

Page 1422: ...common handling ExtremeWare supports the following well known BGP community attributes no export no advertise no export subconfed Example The following command includes the community path attribute as...

Page 1423: ...filter and the route map configured for the neighbor on the input and or output side of the router This command does not affect the switch configuration Example The following command applies the curre...

Page 1424: ...ault Any Usage Guidelines None Example The following command changes the BGP source interface on the VLAN accounting configure bgp neighbor 192 168 1 5 source interface vlan accounting History This co...

Page 1425: ...econds Usage Guidelines None Example The following command configures the BGP neighbor timers configure bgp neighbor 192 168 1 5 timer keep alive 120 hold time 360 History This command was first avail...

Page 1426: ...the same network The range is 0 to 4294967295 BGP selects routes based on the following precedence from highest to lowest higher weight higher local preference shortest length shortest AS path lowest...

Page 1427: ...idelines None Example The following command configures the as path filters for the peer group outer and its neighbors using the access profile nosales configure bgp peer group outer as path filter in...

Page 1428: ...limit is the penalty value above which a route will be suppressed The range is 1 20 000 and the default is 2 000 The maximum hold down time is the maximum time a route can be suppressed no matter how...

Page 1429: ...configure bgp peer group dampening ExtremeWare Software 7 3 0 Command Reference Guide 1429 Platform Availability This command is available on all platforms...

Page 1430: ...er group outer to 5000 sets the threshold for warning messages to 60 and specifies SNMP traps configure bgp peer group outer maximum prefix 5000 threshold 60 send traps History This command was introd...

Page 1431: ...configure bgp peer group maximum prefix ExtremeWare Software 7 3 0 Command Reference Guide 1431 Platform Availability This command is available on all platforms...

Page 1432: ...of the peer group Example The following command configures the next hop address used in the updates to be the address of the BGP connection originating it configure bgp peer group outer next hop self...

Page 1433: ...delines None Example The following command configures the NLRI filter for the peer group outer and its neighbors using the access profile nosales configure bgp peer group outer nlri filter in nosales...

Page 1434: ...abled by default Usage Guidelines Use the following command to enable route flap dampening for a BGP peer group configure bgp peer group name dampening half life reuse suppress max suppress route map...

Page 1435: ...this router to be a route reflector The peer group must be in the same AS of this router Example The following command configures the peer group outer as a route reflector client configure bgp peer g...

Page 1436: ...to the peer group and all neighbors of the peer group Example The following command configures communities to be sent to neighbors as part of route updates configure bgp peer group outer send communi...

Page 1437: ...hbors in the peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset password Example T...

Page 1438: ...p are applied to all neighbors in the peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in...

Page 1439: ...Guidelines None Example The following command configures the route map filter for the peer group outer and its neighbors using the access profile nosales configure bgp peer group outer route map filt...

Page 1440: ...t affect configuration of the switch Changes made to the parameters of a peer group are applied to all neighbors in the peer group Modifying the following parameters automatically disables and enables...

Page 1441: ...pplied to all neighbors in the peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset...

Page 1442: ...peer group Modifying the following parameters automatically disables and enables the neighbors before changes take effect remote as timer source interface soft in reset password Example The following...

Page 1443: ...following precedence from highest to lowest higher weight higher local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost to Next Hop lowes...

Page 1444: ...utes based on the following precedence from highest to lowest higher weight higher local preference shortest length shortest AS path lowest origin code lowest MED route from external peer lowest cost...

Page 1445: ...ation and redistribution Syntax Description This command has no arguments or variables Default N A Usage Guidelines This command does not affect the switch configuration Example The following command...

Page 1446: ...all peer group peer group acquire all If you do not specify acquire all only the mandatory parameters are inherited from the peer group If you specify acquire all all of the parameters of the peer gro...

Page 1447: ...hen the peer is consider an IBGP peer otherwise the neighbor is an EBGP peer The BGP session to a newly created peer is not started until the enable bgp neighbor command is issued Example The followin...

Page 1448: ...s of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send community next ho...

Page 1449: ...ault N A Usage Guidelines Use this command to delete one or all BGP neighbors Example The following command deletes the specified BGP neighbor delete bgp neighbor 192 168 1 17 History This command was...

Page 1450: ...up Syntax Description Default N A Usage Guidelines Use this command to delete a specific BGP peer group Example The following command deletes the peer group named external delete bgp peer group outer...

Page 1451: ...ntax Description This command has no arguments or variables Default Disabled Usage Guidelines Use this command to disable BGP on the router Example The following command disables BGP disable bgp Histo...

Page 1452: ...eral routes so that they are advertised as a single route Aggregation reduces the amount of information that a BGP speaker must store and exchange with other BGP speakers Reducing the information that...

Page 1453: ...ption This command has no arguments or variables Default Disabled Usage Guidelines MED is only used when comparing paths from the same AS Use this command to disable the MED from being used when selec...

Page 1454: ...pload commands Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines Using this command communities are displayed as a single decimal value Example The follow...

Page 1455: ...D Origin and Local Preference with the routes Route maps can also be used to filter out exported routes Using the export command to redistribute routes complements the redistribution of routes using t...

Page 1456: ...lowing command disables BGP from exporting routes from the OSPF protocol to BGP peers disable bgp export ospf History This command was first available in ExtremeWare 6 1 The IS IS options were added i...

Page 1457: ...sage Guidelines After the session has been disabled all the information in the route information base RIB for the neighbor is flushed Example The following command disables the BGP session disable bgp...

Page 1458: ...does not have officially allocated AS numbers You want to conserve AS numbers if you are multi homed to the local AS Private AS numbers should not be advertised on the Internet Private AS numbers can...

Page 1459: ...Default Disabled Usage Guidelines Disabling the soft input reset feature can potentially limit the amount of system memory consumed by the RIB in Example The following command disables the soft input...

Page 1460: ...the parameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send comm...

Page 1461: ...variables Default Enabled Usage Guidelines When enabled BGP waits for IGP to provide the exact same IP route before installing the route into the local forwarding database and advertising the route to...

Page 1462: ...ables Default Disabled Usage Guidelines This command enables the Border Gateway Protocol BGP on the router Before invoking this command the local AS number and BGP router ID must be configured Example...

Page 1463: ...e and exchange with other BGP speakers Reducing the information that is stored and exchanged also reduces the size of the routing table To use BGP route aggregation follow these steps 1 Enable aggrega...

Page 1464: ...arguments or variables Default Disabled Usage Guidelines MED is only used when comparing paths from the same AS A MED value of zero is treated as the lowest MED and therefore the most preferred route...

Page 1465: ...how and upload commands Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines If not enabled the communities are displayed as a single decimal value Example T...

Page 1466: ...Preference with the routes Route maps can also be used to filter out exported routes Using the export command to redistribute routes complements the redistribution of routes using the configure bgp a...

Page 1467: ...he following command enables BGP to export routes from the OSPF protocol to BGP peers enable bgp export ospf History This command was first available in ExtremeWare 6 1 The IS IS options were added in...

Page 1468: ...efault Disabled Usage Guidelines To create a new neighbor and add it to a BGP peer group use the following command create bgp neighbor ip address peer group peer group multi hop Example The following...

Page 1469: ...nclude The remote AS does not have officially allocated AS numbers You want to conserve AS numbers if you are multi homed to the local AS Private AS numbers should not be advertised on the Internet Pr...

Page 1470: ...abled Usage Guidelines Disabling the soft input reset feature can potentially limit the amount of system memory consumed by the RIB in Example The following command enables the soft recognition featur...

Page 1471: ...it the parameters of the BGP peer group The following mandatory parameters are shared by all neighbors in a peer group remote AS source interface out nlri filter out aspath filter out route map send c...

Page 1472: ...has no arguments or variables Default Enabled Usage Guidelines When enabled BGP waits for IGP to provide the exact same route before advertising the BGP route to an external neighbor Example The foll...

Page 1473: ...iables Default N A Usage Guidelines Displays information such as AS number router ID local preference sync flag route reflection cluster ID confederation ID and AS redistributed networks Example The f...

Page 1474: ...t only flap statistics should be displayed for route flap dampening enabled routes received routes Specifies that only received routes should be displayed rejected routes Specifies that only rejected...

Page 1475: ...r None IN AS Path Filter None OUT AS Path Filter None IN ROUTE MAP None OUT ROUTE MAP None State IDLE Reached maximum prefix limit RemoteAddr 10 10 10 10 179 LocalAddr 10 10 10 51 1024 PeerRtrId 0 0 0...

Page 1476: ...nt from the ones that are configured in the peer group will be displayed If no peer group name is specified all the peer group information will be displayed Example The following command displays the...

Page 1477: ...ing command displays the BGP route information base RIB show bgp routes all History This command was available in ExtremeWare 6 1 Platform Availability This command is available on all platforms all S...

Page 1478: ...1478 ExtremeWare Software 7 3 0 Command Reference Guide BGP Commands...

Page 1479: ...ries the multicast group to see if the group is still in use If the group is still active a single IP host responds to the query and group registration is maintained IGMP is enabled by default on the...

Page 1480: ...using the following command configure pim crp static rp address none access profile priority 0 254 When a router has a multicast packet to distribute it encapsulates the packet in a unicast message an...

Page 1481: ...ns to manually remove IGMP group entries instantly It deletes the layer 3 IGMP group entries while leaving IGMP entries at layer 2 unaffected that is IGMP snooping entries will still be present in the...

Page 1482: ...g entries instantly However removing an IGMP snooping entry can disrupt the normal forwarding of multicast traffic The static IGMP snooping entry will not be removed The dynamic IGMP snooping entry wi...

Page 1483: ...y remove IPMC hardware forwarding cache entries instantly If the source is available caches will be re created otherwise caches are removed permanently This command can disrupt the normal forwarding o...

Page 1484: ...multicast forwarding database entries are cleared This command has an effect similar to the command clear ipmc cache except that the targets are the forwarding database entries Example The following...

Page 1485: ...t Disabled Usage Guidelines If all is specified DVMRP is enabled on all IP interfaces When an IP interface is created DVMRP is disabled by default Example The following command enables DVMRP on the VL...

Page 1486: ...aces Syntax Description Default Disabled Usage Guidelines If all is specified DVMRP is disabled on all IP interfaces Example The following command disables DVMRP on the VLAN accounting configure dvmrp...

Page 1487: ...the expiration of the route report interval route replacement time The route expiration time commonly called route timeout Initially it is 2 x route report interval 20 2 x 60 20 140 It is the time fo...

Page 1488: ...ption Default The default setting is 1 Usage Guidelines The cost range is 1 32 Example The following command configures the cost metric of the interface on the VLAN accounting configure dvmrp vlan acc...

Page 1489: ...mand to filter out certain routes when performing the route advertisement The filtered routes are specified in an access profile Example The following command configures DVMRP to filter out routes acc...

Page 1490: ...elines Use this command to filter out certain routes when accepting routes from its neighbors The filtered routes are specified in an access profile Example The following command configures DVMRP to u...

Page 1491: ...es Using this command to specify trusted versus non trusted neighbors Example The following command configures DVMRP to use the nosales access policy to determine which DVMRP neighbor is trusted and t...

Page 1492: ...e is 1 to 2 147 483 647 seconds 68 years The default setting is 10 seconds neighbor timeout The amount of time before a DVMRP neighbor router is declared to be down The range is 1 to 2 147 483 647 sec...

Page 1493: ...429 496 729 seconds query response interval The maximum response time inserted into the periodic general queries The range is 1 to 25 seconds last member query interval The maximum response time inse...

Page 1494: ...s If the VLAN has no IP address assigned the proxy IGMP message will use 0 0 0 0 as the source IP address The multicast group should be in the class D multicast address space but should not be in the...

Page 1495: ...configure igmp snooping add static group ExtremeWare Software 7 3 0 Command Reference Guide 1495 Platform Availability This command is available on all platforms...

Page 1496: ...ame ports portlist add static group group address Example The following command removes a static IGMP entry that forwards the multicast group 224 34 15 37 to the VLAN marketing on ports 2 1 2 4 config...

Page 1497: ...outer attached to those ports As long as the ports are configured with the static entry all available multicast traffic will be forwarded to those ports Example The following command configures a stat...

Page 1498: ...the following command configure igmp snooping vlan vlan name ports portlist add static router Example The following command removes the static IGMP entry that caused all multicast groups to be forwar...

Page 1499: ...d not be in the multicast control subnet range 224 0 0 x 24 To remove IGMP snooping filtering from a port use the none keyword version of the command Example The following command configures the acces...

Page 1500: ...into the access profile a 32 bit host address is recommended This feature is meant to solve the multicast connectivity problem for unknown destination addresses within system reserved ranges Specific...

Page 1501: ...224 1 0 1 32 The following command configures the multicast data stream specified in access1 for slow path flooding configure igmp snooping flood list access1 The following command specifies that no a...

Page 1502: ...to a multiple of 100 ms For values of more than one second you must set the leave timeout to a multiple of 1000 ms one second The specified time is the maximum leave timeout value The switch could lea...

Page 1503: ...f network bandwidth and prevents multicast traffic from being flooded to parts of the network that do not need it The switch does not reduce any IP multicast traffic in the local multicast domain 224...

Page 1504: ...1504 ExtremeWare Software 7 3 0 Command Reference Guide IP Multicast Commands History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms...

Page 1505: ...multicast source or RP mask Specifies the mask of the IP address of the multicast source or RP protocol Optional Specifies the unicast routing protocol that will be used The source address will be co...

Page 1506: ...ast source or RP mask Specifies the mask of the IP address of the multicast source or RP protocol Optional Specifies the unicast routing protocol that will be used The source address will be compared...

Page 1507: ...de and sparse mode operation You can configure dense mode or sparse mode on a per interface basis After they are enabled some interfaces can run dense mode while others run sparse mode Example The fol...

Page 1508: ...dicates the lowest priority Usage Guidelines The VLAN specified for CBSR must have IPMC forwarding enabled for PIM sparse mode Example The following command configures a candidate bootstrap router on...

Page 1509: ...g and distributing multicast packets If you use a static RP all switches in your network must be configured with the same RP address for the same group range The access profile contains a list of mult...

Page 1510: ...e operation Syntax Description Default The default is 60 seconds Usage Guidelines None Example The following command configures the candidate rendezvous point advertising interval to 120 seconds confi...

Page 1511: ...es serviced by this RP To delete a CRP use the keyword none as the access policy The VLAN specified for CRP must have IPMC forwarding enabled for PIM sparse mode Example The following command configur...

Page 1512: ...bles PIM on an interface Syntax Description Default N A Usage Guidelines None Example The following command disables PIM DM on VLAN accounting configure pim delete vlan accounting History This command...

Page 1513: ...a non zero value is configured the first hop switch would send register messages only at time second intervals The default value is zero which sends continuos register messages This command takes effe...

Page 1514: ...interval A response to the null register is expected within register probe interval By specifying a larger interval a CPU peak load can be avoided because the null registers are generated less freque...

Page 1515: ...or to exclude data for RFC compliant operation in the register message Syntax Description Default Include data Usage Guidelines None Example The following command configures the checksum mode to inclu...

Page 1516: ...tting is 0 Usage Guidelines For the best performance leveraged by hardware forwarding use default value 0 0 or small values below 16 From release 6 2 2 onwards since the RP learns the source address f...

Page 1517: ...e Guidelines None Example The following command configures the global PIM timers on the VLAN accounting configure pim timer 150 300 vlan accounting History This command was first available in ExtremeW...

Page 1518: ...nature different When the PIM protocol is used for routing IP multicast traffic the switch can be configured to use an access profile to determine trusted PIM router neighbors for the VLAN on the swi...

Page 1519: ...es DVMRP on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables DVMRP on the system disable dvmrp His...

Page 1520: ...ckets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command disables the receive capability of DVMRP packets on the VLAN accounting disable dvmrp rxmod...

Page 1521: ...RP packets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command disables the transmit capability of DVMRP packets on the VLAN accounting disable dvmrp...

Page 1522: ...roup is still in use If the group is still active hosts respond to the query and group registration is maintained IGMP is enabled by default on the switch However the switch can be configured to disab...

Page 1523: ...only changes the mode so that all multicast traffic is forwarded to any IP router If not in the forward mcrouter mode the command disable igmp snooping forward mcrouter only has no effect To change t...

Page 1524: ...ubleshooting purpose It should be enabled for normal network operation Enabling the proxy allows the switch to suppress the duplicate join requests on a group to forward to the connected layer 3 switc...

Page 1525: ...icast forwarding is disabled by default IP forwarding must be enabled before enabling IP multicast forwarding and IP multicast forwarding must be disabled before disabling IP forwarding Disabling IP m...

Page 1526: ...bles PIM on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command disables PIM on the system disable pim History...

Page 1527: ...o disable PIM snooping on a single VLAN specify the VLAN name If no VLAN name is specified PIM snooping is disabled on all VLANs Example The following command disables PIM snooping on the VLAN demo pi...

Page 1528: ...nables DVMRP on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables DVMRP on the system enable dvmrp H...

Page 1529: ...ackets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command enables the receive capability of DVMRP packets on the VLAN accounting enable dvmrp rxmode...

Page 1530: ...packets on one or all VLANs Syntax Description Default N A Usage Guidelines None Example The following command enables the transmit capability of DVMRP packets on the VLAN accounting enable dvmrp txmo...

Page 1531: ...roup to see if the group is still in use If the group is still active IP hosts respond to the query and group registration is maintained IGMP is enabled by default on the switch However the switch can...

Page 1532: ...the snooping mode you must disable IP multicast forwarding To disable IP multicast forwarding use the command disable ipmcforwarding To change the IGMP snooping mode from the forward mcrouter only mo...

Page 1533: ...enable igmp snooping ExtremeWare Software 7 3 0 Command Reference Guide 1533 History This command was available in ExtremeWare 2 0 Platform Availability This command is available on all platforms...

Page 1534: ...operation The command does not alter the snooping setting IP multicast forwarding should be disabled globally for this command Enabling the proxy allows the switch to suppress the duplicate join reque...

Page 1535: ...IP interfaces are affected When new IP interfaces are added IPMC forwarding is disabled by default IP forwarding must be enabled before enabling IPMC forwarding and IPMC forwarding must be disabled b...

Page 1536: ...bles PIM on the system Syntax Description This command has no arguments or variables Default Disabled Usage Guidelines None Example The following command enables PIM on the system enable pim History T...

Page 1537: ...o enable PIM snooping on a single VLAN specify the VLAN name If no VLAN name is specified PIM snooping is enabled on all VLANs Example The following command enables PIM snooping on the VLAN demo pim e...

Page 1538: ...tion interface IP address interface multicast capabilities metric configured on the interface threshold configured on the interface count and IP address of the neighbors discovered on the interface Ex...

Page 1539: ...in turn adds its own report to the trace response When the request reaches the first hop router the filled in request is sent back to the system requesting the trace The request will also be returned...

Page 1540: ...intain packet forwarded statistics for each source group combination S G and cannot return that information Example The following command traces the multicast group 221 160 14 23 originating at 10 10...

Page 1541: ...group 168 192 2 4 run ipmcfdb check 168 192 2 4 195 1 1 100 vlan lab1 extended detail History This command was first available in ExtremeWare 6 1 9 Platform Availability This command is available on a...

Page 1542: ...ntax Description Default All Usage Guidelines None Example The following command displays the DVMRP configuration and statistics for the VLAN accounting show dvmrp vlan accounting History This command...

Page 1543: ...s are displayed You can also filter the display by group address and by multicast stream sender address Example The following command lists the IGMP group membership for the VLAN accounting show igmp...

Page 1544: ...entry are sender entry and subscribed entry The following information is displayed in a per interface format Group membership information Router entry Timeout information Example The following command...

Page 1545: ...fied VLAN When no VLAN is specified all the filters will be displayed Example To display the IGMP snooping filter configured on VLAN vlan101 use the following command show igmp snooping vlan101 filter...

Page 1546: ...filters will be displayed Example To display the IGMP snooping static groups configured on VLAN vlan101 use the following command show igmp snooping vlan101 static group The output of the command wil...

Page 1547: ...N port to upstream neighbor Cache expiry time Routing protocol When the detail option is specified the switch displays the egress VLAN list and the pruned VLAN list Example The following command displ...

Page 1548: ...ult N A Usage Guidelines If the group address is specified only the IP multicast FDB entries corresponding to the group address are displayed Example The following command displays the IP multicast fo...

Page 1549: ...ched and snooped Syntax Description Default N A Usage Guidelines None Example The following command displays the counters for the number of packets bridged switched and snooped for the VLAN accounting...

Page 1550: ...has no arguments or variables Default N A Usage Guidelines This command displays the static multicast table entries in the order defined with the configure mroute add command Example The following co...

Page 1551: ...ll groups are displayed Usage Guidelines The detail version of this command displays the global statistics for PIM register and register stop packets Example The following command displays the PIM con...

Page 1552: ...r a selected VLAN To display PIM snooping for a single VLAN specify the VLAN name If no VLAN name is specified PIM snooping information is displayed for all VLANs Example The following command display...

Page 1553: ...efault settings Syntax Description Default If no VLAN is specified all interfaces are reset Usage Guidelines None Example The following command resets all DVMRP timers on VLAN accounting unconfigure d...

Page 1554: ...nd clears the IGMP group table Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets all IGMP settings to their default v...

Page 1555: ...lues Syntax Description Default If no VLAN is specified the configuration is reset for all PIM interfaces Usage Guidelines None Example The following command resets all PIM settings on the VLAN accoun...

Page 1556: ...1556 ExtremeWare Software 7 3 0 Command Reference Guide IP Multicast Commands...

Page 1557: ...traffic between IPX router interfaces A router interface is simply a VLAN that has an IPX network identifier NetID and IPX encapsulation type assigned to it As you create VLANs with different IPX NetI...

Page 1558: ...fault The default setting is 16 Usage Guidelines Change the default number only if NetWare Link Services Protocol NLSP is running in the IPX network Example The following command configures a maximum...

Page 1559: ...IP is enabled by default when you configure the IPX VLAN Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command configures IPX VLAN backbo...

Page 1560: ...Description Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command disables IPX RIP on VLAN backbone configure ipxrip delete...

Page 1561: ...t The default setting is 55 milliseconds Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command configures a delay of 80 milliseconds conf...

Page 1562: ...the export filter will be added to the IPX route table Example The following command assigns an export route filter to ingress VLAN accounting configure ipxrip vlan accounting export filter my profile...

Page 1563: ...ID matching the import filter will be added to the IPX route table Example The following command assigns an import route filter to ingress VLAN accounting configure ipxrip vlan accounting import filte...

Page 1564: ...ult setting is 432 bytes Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command configures an MTU size of 128 for the IPX RIP packet confi...

Page 1565: ...ervices matching the trusted gateway are advertised on the egress VLAN Example The following command assigns export route filter smith to VLAN accounting configure ipxrip vlan accounting trusted gatew...

Page 1566: ...and the aging interval of learned routes The aging period is calculated using the formula update interval multiplier Example The following command configures the IPX RIP updates for an update interva...

Page 1567: ...tatic routes are never aged out of the routing table Static routes are advertised to the network using IPX RIP Example The following command adds a static IPX route entry to the IPX route table config...

Page 1568: ...f whether the VLAN or VLAN IP address that used them remains You should manually delete the routes if no VLAN IP address is capable of using them Example The following command deletes a static IPX rou...

Page 1569: ...If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command configures the IPX VLAN acco...

Page 1570: ...If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command disables IPX SAP on VLAN acc...

Page 1571: ...nes If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command sets the time between ea...

Page 1572: ...ng the export filter will be added to the IPX route table Example The following command assigns an export route filter to ingress VLAN accounting configure ipxsap vlan accounting export filter none Hi...

Page 1573: ...rk ID matching the import filter will be added to the IPX route table Example The following command assigns an import route filter to ingress VLAN accounting configure ipxsap vlan accounting import fi...

Page 1574: ...VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The following command configures an MTU size of 356 bytes for the IPX SAP pac...

Page 1575: ...services matching the trusted gateway are advertised on the egress VLAN Example The following command assigns an export SAP service filter named smith to VLAN accounting configure ipxsap vlan account...

Page 1576: ...aging period is calculated using the formula update interval multiplier The default multiplier is 3 Triggered update is always enabled therefore new information is processed and propagated immediatel...

Page 1577: ...as possible 0 milliseconds Usage Guidelines If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The f...

Page 1578: ...sing server chalk to the IPX service table with 0004 as SAP for a file server 00 AO C9 17 22 F5 as the MAC address 0451 as the socket number for a connection request and 3 as the number of hops to the...

Page 1579: ...icular function on the server Example The following command deletes non advertising server chalk from the IPX service table with 0004 as SAP for a file server 00 AO C9 17 22 F5 as the MAC address 0451...

Page 1580: ...series systems vlan name Specifies a VLAN name netid Specifies the IPX network identifier of the server enet_ii Specifies an Ethernet 2 header enet_8023 Specifies the IEEE 802 3 length field enet_802...

Page 1581: ...escription This command has no arguments or variables Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following disables IPX RIP on the r...

Page 1582: ...nts or variables Default N A Usage Guidelines If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The...

Page 1583: ...switch the GNS reply service is automatically enabled When a station requests a particular service on the network for example locating a print server the station sends a GNS request and the switch re...

Page 1584: ...Syntax Description Default Enabled Usage Guidelines Type 20 packets are NetBIOS inside IPX Example The following command disables the forwarding of IPX type 20 packets for VLAN accounting disable typ...

Page 1585: ...ption This command has no arguments or variables Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command enables IPX RIP on the...

Page 1586: ...or variables Default N A Usage Guidelines If no VLAN is specified all VLANs are configured to run IPX SAP routing IPX SAP routing is enabled by default when the IPX VLAN is configured Example The foll...

Page 1587: ...Description Default The default setting is enabled Usage Guidelines If no VLAN is specified GNS reply is enabled on all IPX interfaces Example The following command enables GNS reply for IPX VLAN acco...

Page 1588: ...Syntax Description Default Enabled Usage Guidelines Type 20 packets are NetBIOS inside IPX Example The following command enables the forwarding of IPX type 20 packets for VLAN accounting enable type2...

Page 1589: ...IP protocol It displays summary global IPX configuration information followed by per VLAN information Information includes enable disable status for IPX RIP IPX SAP IPX route sharing IPX service shari...

Page 1590: ...cess control MAC addresses received on all of its ports It uses the information in the FDB to decide whether a frame should be forwarded or filtered Example The following command displays the hardware...

Page 1591: ...displayed includes operational and administrative status It also lists any identified IPX RIP neighbors RIP packet statistics and several other timer settings Example The following command displays t...

Page 1592: ...add command IPX RIP is automatically enabled when a NetID is assigned to the VLAN To remove the advertisement of an IPX VLAN use the configure ipxroute delete command Example The following command di...

Page 1593: ...tional and administrative status including the GNS reply service It also lists any identified IPX SAP neighbors SAP packet statistics and several other timer settings Syntax Description Default N A Us...

Page 1594: ...ation is entered into the IPX Service Table in one of the following two ways Dynamically by way of SAP Statically using the configure ipxservice add command Example The following command displays IPX...

Page 1595: ...r all VLANs Syntax Description Default All VLANs Usage Guidelines Displays both RIP and SAP packet statistics Example The following command displays IPX packet statistics for VLAN accounting show ipxs...

Page 1596: ...the default Syntax Description Default N A Usage Guidelines Removes import and export filters and resets the MTU size update interval and inter packet delay Example The following command unconfigure...

Page 1597: ...tion Default N A Usage Guidelines Removes import and export filters and resets the MTU size update interval and inter packet delay Example The following command resets the IPX SAP settings on VLAN bac...

Page 1598: ...escription Default N A Usage Guidelines IPX RIP is automatically enabled when a NetID is assigned to the VLAN Example The following command removes the IPX NetID of VLAN accounting unconfigure vlan ac...

Page 1599: ...e default ping packet size is 256 data bytes The size range is between 1 and 1 484 bytes Example The following command pings IPX node 0010460 with a node address of 00 2b 2a 00 1c 0a xping 0010460 00...

Page 1600: ...1600 ExtremeWare Software 7 3 0 Command Reference Guide IPX Commands...

Page 1601: ...e routes and the ARM s longest prefix match for others This feature is called Selective LPM The second feature destination sensitive accounting collects statistics that are maintained for forwarded IP...

Page 1602: ...sensitive accounting configuration process as a general context for the detailed command description sections that follow In the most basic terms to enable the accounting function you must enable the...

Page 1603: ...d has no arguments or variables Default N A Usage Guidelines None Example The following command clears zeroes out all of the accounting statistics clear accounting counters History This command was fi...

Page 1604: ...eter is an accounting bin number The bin_number parameter is an integer between 0 7 and allows you to define the accounting bin number Example The following command configures the accounting bin numbe...

Page 1605: ...ccounting index 1 value ExtremeWare Software 7 3 0 Command Reference Guide 1605 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the...

Page 1606: ...e iphost routing property is added to a route map packets are forwarded to the IP prefixes next hop using the hardware host based IP FDB The iphost routing keyword is only significant for routes learn...

Page 1607: ...xes If the lpm routing property is added to a route map packets are forwarded to the IP prefixes next hop by the ARM MPLS module using LPM routing The lpm routing keyword is only significant for route...

Page 1608: ...traffic to support billing on a destination basis To configure destination sensitive accounting a bin number can be assigned to one or more IP route entries using the ExtremeWare route map command Exa...

Page 1609: ...d for all configured VLANs except the management VLAN Specifying the lpm routing keyword for the disable command only disables LPM routing it does not disable IP forwarding By default lpm routing is n...

Page 1610: ...les Default Default is disabled Usage Guidelines None Example The following command disables the Selective LPM feature disable lpm History This command was first available in an ExtremeWare IP Technol...

Page 1611: ...figure destination sensitive accounting a bin number can be assigned to one or more IP route entries using the ExtremeWare route map command Destination sensitive accounting LPM and SLB are mutually e...

Page 1612: ...the vlan name parameter is omitted lpm routing is enabled for all configured VLANs except the management VLAN By default lpm routing is not enabled on the VLAN when IP forwarding is enabled for examp...

Page 1613: ...MSM CPU is used for slow path traffic When LPM is enabled slow path traffic is forwarded by the MPLS ARM module at a faster rate Also if LPM is enabled fast path traffic to specified vlans or route m...

Page 1614: ...unting vlan name command The show accounting vlan name command lists the packet and octet counts for each bin number per VLAN Omitting the VLAN name displays the accounting statistics for all the VLAN...

Page 1615: ...ription This command has no arguments or variables Default N A Usage Guidelines Example History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 Thi...

Page 1616: ...1616 ExtremeWare Software 7 3 0 Command Reference Guide ARM Commands...

Page 1617: ...cities then use ATM modules in a BlackDiamond 6800 series switch to connect those cities to a carrier s ATM infrastructure In the second application operators of server co location networks can use A...

Page 1618: ...defined in RFC 2648 1483 The encap parameter indicates the type of encapsulation that is to be used on the PVC for traffic from the associated VLAN The l2 keyword is an abbreviation for Layer 2 and in...

Page 1619: ...Guide 1619 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Avai...

Page 1620: ...the PVC identified via the vpi and vci parameters for all PVCs defined for the specified VLAN s or port s The all keyword may be used as either a portlist parameter to indicate that the command shoul...

Page 1621: ...e Guide 1621 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Ava...

Page 1622: ...ling is enabled by default Example The following command example turns off the scrambling function for port 1 of the ATM module installed in slot 8 of a BlackDiamond switch configure atm scrambling of...

Page 1623: ...istics Table 29 describes the ATM receive statistics and Table 30 describes the ATM transmit statistics portlist Specifies list of ports or slots and ports May be in the form 1 2 3 5 2 5 2 6 2 8 Table...

Page 1624: ...available on the BlackDiamond switch only PDUs Dropped Oversized Number of PDUs discarded because they were too large PDUs Dropped Other PDUs dropped due to an invalid VLAN ID Spanning Tree Protocol S...

Page 1625: ...rrow the range of status information the command displays otherwise the command displays the status information for all PVCs associated with all ATM ports By default the command displays a summary of...

Page 1626: ...on for a PVC configured on an ATM port in a BlackDiamond switch show atm pvc 5 101 port 1 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12...

Page 1627: ...ructure and interconnecting server co location network sites directly using SONET links In the first application the metropolitan area network service provider can build service network sites in vario...

Page 1628: ...ne service is restored only if no errors are detected on the working line during the WTR period The minutes parameter is an integer in the range 0 12 Conversely in nonrevertive mode traffic will remai...

Page 1629: ...impact of network outages on APS functionality It is important that the network connecting working and protection switches always has sufficient bandwidth to support APS control transfers In routing c...

Page 1630: ...0 Command Reference Guide PoS Commands History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 Platform Availability This command is available on...

Page 1631: ...e for an APS group reside in different BlackDiamond switches then the same string must be configured at both BlackDiamond switches for authentication to work properly The authentication string is used...

Page 1632: ...from the APS group If you delete the working line from a group it causes a switch to the protection line however if you delete an active protection line from a group it does not initiate a switch to t...

Page 1633: ...e a forced switch request 1 a force off command 2 a lockout on command that was either in effect before the force command or issued after the force command or 3 a signal fail condition on the protecti...

Page 1634: ...out off This command is only applicable to SONET ports performing the protection line function Additionally the effects of this command are not preserved across a switch reboot Example The following c...

Page 1635: ...o restore period to elapse A manual switch is a lower priority request than a forced switch events that can override a manual switch include 1 a manual off command 2 a force working or a force protect...

Page 1636: ...isses parameter is an integer in the range 1 100 that controls the time interval the protection switch will wait before assuming that the working switch has failed If the working switch does not respo...

Page 1637: ...t DSCP of a packet received from the SONET link is replaced with an output DSCP before the packet is forwarded The replacement is straightforward the input DSCP is used as an index into a 64 entry tab...

Page 1638: ...o apply to the egress direction and a symmetrical mapping with the input_codepoint and output_codepoint reversed is automatically configured in the ingress direction Example The following command exam...

Page 1639: ...dicates that the mapping is to be applied to input frames received from the PoS link The mappings are applied following classification to a QoS profile Frames containing the specified input_vlanid are...

Page 1640: ...D 30 and output VLAN ID 130 for port 1 of the module installed in slot 8 for the input frames from the PPP link configure dot1q tagmapping 30 130 port 8 1 ingress History This command was first availa...

Page 1641: ...ing the specified vlanid or one of the VLAN IDs in the specified vlanid_range The syntax of the vlanid_range parameter is start_vlanid end_vlanid Omission of the vlanid vlanid_range parameter indicate...

Page 1642: ...n a VLAN tag The tag nesting operations are applied after classification to a QoS profile The default PPP MRU is sufficient for a single level of tag nesting where the frame contains two VLAN tags bet...

Page 1643: ...xported NetFlow datagrams are distributed across the available destinations This NetFlow distribution feature enables a scalable collection architecture that is able to accommodate high volumes of exp...

Page 1644: ...1644 ExtremeWare Software 7 3 0 Command Reference Guide PoS Commands Platform Availability This command is available on the BlackDiamond switch only...

Page 1645: ...w datagrams are distributed across the available destinations This NetFlow distribution feature enables a scalable collection architecture that is able to accommodate high volumes of exported data The...

Page 1646: ...1646 ExtremeWare Software 7 3 0 Command Reference Guide PoS Commands Platform Availability This command is available on the BlackDiamond switch only...

Page 1647: ...ess Use this keyword to specify that the filter being defined in the command is one of the eight filters to be applied to ingress flows egress Use this keyword to specify that the filter being defined...

Page 1648: ...mponents can be configured with a single command The filterspec parameter also supports the match all flows and match no flows keywords The match all flows keyword adjusts the settings such that the f...

Page 1649: ...NetFlow datagrams to identify the switch that sent the information It is recommended that the configured ip address be associated with a VLAN that has loopback mode enabled Example The following comma...

Page 1650: ...configured on the port BCP and IPCP should be off Furthermore the port should be the only port in a VLAN and a MPLS TLS tunnel should be configured for this VLAN The payload inside HDLC could be PPP o...

Page 1651: ...P IP address configuration option for example Juniper routers If the peer router does advertise an IP address via IPCP the configured peer ipaddress is ignored BCP enables Ethernet MAC frames to be tr...

Page 1652: ...owing command example configures BCP on the PPP port and applies to a PoS module installed in slot 1 of a BlackDiamond switch configure ppp bcp off port 1 4 History This command was first available in...

Page 1653: ...hap pap indicates that either CHAP or PAP may be used to authenticate the peer Example The following command example turns on CHAP authentication for port 1 of the PoS module installed in slot 8 of th...

Page 1654: ...le to recover from the link failure fast enough that there is no need to perturb the logical connection with the peer PPP entity which minimizes network down time A non zero value is desirable when AP...

Page 1655: ...ge 1 100 that controls the amount of time that PPP waits for a reply If an echo reply is not received within an interval of duration consecutive_misses seconds seconds the link is brought down The lin...

Page 1656: ...2 bit FCS or a 16 bit FCS RFC 2615 recommends that a 32 bit FCS be used Example The following command example sets the FCS to 16 for port 1 of the PoS module installed in slot 8 of the BlackDiamond sw...

Page 1657: ...obsoleted PoS standard specified in RFC 1619 Scrambling was introduced in RFC 2615 to alleviate potential security problems where malicious users might generate packets with bit patterns that create S...

Page 1658: ...is an integer in the range 1 300 that determines how often quality reports are to be received from the peer LQM entity that is the reporting interval Specifying the seconds parameter is optional It ca...

Page 1659: ...ximum length of 32 characters If no password is provided on the command line then you are prompted to enter the password twice with the second time serving as a confirmation You should not enter the e...

Page 1660: ...m percentage of the bandwidth that must be available for transmissions from the profile The sum of the minbw parameters across all eight profiles cannot exceed 90 The maxbw parameter is also an intege...

Page 1661: ...gures the QoS profile in the egress direction with a minimum bandwidth of 10 percent and a maximum of 20 percent config qosprofile qp8 minbw 10 maxbw 20 2 1 2 2 egress History This command was modifie...

Page 1662: ...is active WRED is only applied to IP packets and the configure diffserv examination code point command supports complete flexibility in assigning DSCPs to the two different drop probability levels Th...

Page 1663: ...3 0 Command Reference Guide 1663 History This command was modified in an ExtremeWare IP Technology Services Release based on v6 1 5b20 to support PoS modules Platform Availability This command is avai...

Page 1664: ...r in the range 1 100 For PoS ports the minimum threshold is a percentage of 1000 packet buffers and the maximum threshold is set to minimum 3 minimum threshold buffers maximum available buffers The se...

Page 1665: ...eceived bitstream when line clocking is configured Example The following command example selects line clocking for port 1 of the PoS module installed in slot 8 of the BlackDiamond switch config sonet...

Page 1666: ...standard or the SDH standard SONET is primarily an American standard SDH is the international version Example The following command example selects SDH framing for port 1 of the PoS module installed i...

Page 1667: ...itted signal is looped back onto the receive interface When line loopback is configured the received signal is looped back onto the transmit interface Example The following command configures loopback...

Page 1668: ...y be overridden by specifying a particular hex octet that is to be used instead where hex octet is a hexadecimal integer in the range 0 xFF It may be necessary to specify a particular hex octet in ord...

Page 1669: ...t a SD event will initiate a line switch The error_rate parameter is an integer in the range 5 9 where the SD BER is 10 error_rate The default value of the error_rate parameter is 6 which equates to a...

Page 1670: ...a SF event will initiate a line switch The error_rate parameter is an integer in the range 3 5 where the SF BER is 10 error_rate The default value of the error_rate parameter is 5 which equates to a S...

Page 1671: ...otted decimal notation If no IP address is assigned to the port s VLAN id_string defaults to a string of 64 NULL characters When SONET framing is configured a 64 character string is repetitively trans...

Page 1672: ...only applicable when SONET framing is configured In this case the configured id_byte value is transmitted in each SONET frame Analogously the id_string parameter is only applicable when SDH framing i...

Page 1673: ...string with a maximum length of 32 characters If no password is provided on the command line then you are prompted to enter the password twice with the second time serving as a confirmation You should...

Page 1674: ...up numbers must also be used in a consistent manner across BlackDiamond switches For example if the working line is assigned to group 1 on BlackDiamond 1 and the associated protection line resides on...

Page 1675: ...Existing links already authenticated are not affected by this command Example The following command example removes the entry for stretch from the authentication database delete account pppuser stret...

Page 1676: ...eter which is an integer in the range 1 65535 The group identifies the APS group to delete Example The following command example deletes APS group 1001 delete aps 1001 History This command was first a...

Page 1677: ...t APS is disabled by default Usage Guidelines If APS is disabled interfaces configured as protection lines will not carry any traffic Example To disable the APS function for the entire switch use the...

Page 1678: ...itted then the command applies to all egress queue numbers for the PoS port s RED is not supported on the ingress queues Example The following command disables RED for all PHBs except the EF PHB disab...

Page 1679: ...fault APS is disabled by default Usage Guidelines If APS is enabled interfaces configured as protection lines can carry traffic Example To enable the APS function for the entire switch use the followi...

Page 1680: ...r is an integer in the range 0 7 If the queue keyword is omitted then the command applies to all egress queue numbers for the PoS port s RED is not supported on the ingress queues Example The followin...

Page 1681: ...ies in the PPP user accounts database used for authentication when a link is initiated from a remote peer Example The following command displays the PPP accounts database show accounts pppuser History...

Page 1682: ...ignal fail SF or signal degrade SD event due to an excessive bit error rate BER currently exists on the line associated with each configured port along with a timestamp indicating when the last such e...

Page 1683: ...d protection line failures occurs when a signal fail request code is received on the protection line Additional detailed status information reported for each protection line port includes Current cont...

Page 1684: ...information Values of all flow statistics configuration parameters Count of flow records that have been exported Counts of the number of packets bytes for which flow statistics were not maintained due...

Page 1685: ...following command displays status information for the flow statistics function show flowstats History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b...

Page 1686: ...specifying the detail parameter Summary status includes the following information for each PPP port Values of all PPP configuration parameters Physical link status operational down LCP state IPCP BCP...

Page 1687: ...received LQR Link Quality Report time since last received LQR LQR packet counters number of link down events due to LQM MPLSCP OSINLCP Example The following command displays status information for the...

Page 1688: ...ore detailed status information can be obtained for the port s by specifying the detail parameter Summary status includes the following information for each port Values of all port configuration param...

Page 1689: ...command applies to The command does not affect the ports that have been added to the APS group The command does cancel any outstanding lockout force or manual switch requests Example The following com...

Page 1690: ...raightforward the input DSCP is used as an index into a 64 entry table that contains the output DSCPs associated with each of the input DSCP values The operation is similar in the egress direction wit...

Page 1691: ...unconfigure diffserv dscp mapping ports ExtremeWare Software 7 3 0 Command Reference Guide 1691 Platform Availability This command is available on the BlackDiamond switch only...

Page 1692: ...c modules are not members of any VLANs by default all other ports are members of the default VLAN by default Example The following command resets the PPP configuration parameters for port 1 slot 8 of...

Page 1693: ...port 1 slot 8 of a BlackDiamond switch to the default values unconfigure sonet ports 8 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 5b20 P...

Page 1694: ...1694 ExtremeWare Software 7 3 0 Command Reference Guide PoS Commands...

Page 1695: ...works WAN modules allow you to pass Ethernet traffic over technologies originally developed for telecommunications T1 E1 and T3 links have all been used to pass voice traffic over telecommunications n...

Page 1696: ...ill inherit the configuration of the first port Any other ports added to the link will be configured to match the multilink configuration Only T1 or E1 ports can be added to multilink groups Example T...

Page 1697: ...eviously created multilink group Example The following command deletes a port from the multilink group example_1 configure example_1 delete ports 2 3 History This command was first available in Extrem...

Page 1698: ...source is configured as line but the clock cannot be recovered from the signal on the line the hardware will use the internal clock instead Example The following command sets the clock source to inte...

Page 1699: ...to determine when each packet starts and ends The two choices for E1 framing are CRC4 and No CRC4 Example The following command sets framing to CRC4 for the E1 ports configure ports 3 1 3 4 e1 framin...

Page 1700: ...educe crosstalk Receiver gain is only configurable for E1 links For T1 links see configure multilink add on page 1696 and for T3 links see configure ports t1 framing on page 1705 Example The following...

Page 1701: ...ll not need to configure which timeslots are used For installations that do not use the total E1 bandwidth your E1 provider will tell you which timeslots to use A timeslot list uses a dash to represen...

Page 1702: ...NMP trap receivers that have been configured To configure SNMP trap receivers and for more information about configuring SNMP in ExtremeWare see the ExtremeWare Software User Guide The module can also...

Page 1703: ...to 6000 feet T1 equipment uses more sensitive receivers and crosstalk is more likely to occur Under these conditions the transmitter level is set by selecting a transmitter attenuation level in dB fr...

Page 1704: ...settings are ignored when a port is configured for SF framing The two T1 standards supported for FDL are ATT described by the ATT 54016 specification and ANSI described by the T1 403 standard Example...

Page 1705: ...is enabled by default To choose the T1 framing scheme use the following command If you choose to use SF framing you should disable yellow alarm detection for the T1 line SF framing may generate false...

Page 1706: ...ck mode and send any received signal back to the remote end Inband loopback detection is only possible if facility data link FDL is enabled and configured as ATT See the command configure ports t1 fdl...

Page 1707: ...andards are bipolar eight zero suppression B8ZS or alternate mark inversion AMI Example The following command sets the linecoding to AMI configure ports 2 3 2 4 t1 linecoding ami History This command...

Page 1708: ...ion of yellow alarms for a T1 port When SF framing is used yellow alarm detection and generation should be set to off because detection of yellow alarms is not reliable when data traffic is transmitte...

Page 1709: ...rvice provider does not match one of these values For example choose 349 for a 50 foot cable and 900 for a 450 foot cable The default value is 349 which corresponds to cables in the range of 0 349 fee...

Page 1710: ...ardware to determine when each packet starts and ends The two choices for T3 framing are C Bit and M13 Example The following command sets framing to M13 for the T3 port configure ports 3 1 t3 framing...

Page 1711: ...ernet headers so cannot preserve VLAN tags However the WAN ports still must be added as tagged ports to the VLAN that contains them The module uses the tags internally and strips them off before the p...

Page 1712: ...CP specific configuration and the display for the command show ppp info is identical for BCP and Legacy BCP To determine if the link is using Legacy BCP use the following command show log warning and...

Page 1713: ...hen PAP if CHAP fails to authenticate the peer Example The following command example turns on CHAP authentication for the multilink group m1_remote configure ppp authentication chap multilink m1_remot...

Page 1714: ...vided on the command line then you are prompted to enter the password twice with the second time serving as a confirmation You should not enter the encrypted parameter option it is used by the switch...

Page 1715: ...imum bandwidth is ignored for this queue Throughput is policed based on the maximum bandwidth value Policing prevents packets from entering a queue that is receiving traffic from the backplane too fas...

Page 1716: ...mand configures the QoS profile parameters of QoS profile qp5 for specific ports on a T1 or E1 module configure qosprofile qp5 min bps 64 k max bps 512 k priority high ports 2 1 2 3 History This comma...

Page 1717: ...of 1900 bytes The buffers are shared among the eight queues Use a small number for low latency Use a large number for best effort on bursty traffic Example The following command configures the QoS ma...

Page 1718: ...can transport more than one VLAN s traffic see configure ppp user on page 1714 for details Example The following command adds the multilink group marmots to the VLAN corporate configure corporate add...

Page 1719: ...that VLAN s traffic across the link Example The following command deletes the multilink group ml_remote from the VLAN corporate configure corporate delete ml_remote History This command was first ava...

Page 1720: ...simplify configuration two to three classes of service instead of eight and improve egress burst tolerance because each queue can have a larger number of buffers Set the maximum buffer size to one fo...

Page 1721: ...ion it is used by the switch when generating an ASCII configuration Example The following command example adds an entry to the authentication database A username stretch with password baserunner is ad...

Page 1722: ...oup is created ExtremeWare recognizes the group name as a multilink group so the multilink keyword is not needed in other commands that manipulate multilink groups Example The following command create...

Page 1723: ...not affected by this command Example The following command example removes the entry for stretch from the authentication database delete account pppuser stretch History This command was first availabl...

Page 1724: ...o delete a multilink group Example The following command deletes the multilink group ml_remote delete multilink ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technol...

Page 1725: ...link group will stop transporting traffic across the link Example The following command disables the multilink group ml_remote disable multilink ml_remote History This command was first available in E...

Page 1726: ...o normal mode from loopback mode enable ports portlist t1 t3 loopback remote loopdown If you add a 10 100 port as a loopback port and delete it autonegotiation is set to off Example The following comm...

Page 1727: ...Usage Guidelines This command disables WAN QoS for T1 and E1 links There is no equivalent command for T3 links Example The following command disables WAN QoS on ports 1 1 and 1 3 disable wanqos ports...

Page 1728: ...o enable a multilink group Example The following command enables the multilink group ml_remote enable multilink ml_remote History This command was first available in ExtremeWare v6 1 5w2 01WAN technol...

Page 1729: ...payload For remote loopback modes use the command enable ports portlist t1 t3 loopback remote line payload loopdown Example The following command enables network line loopback mode on all the ports of...

Page 1730: ...equivalent command for E1 links The loopdown keyword is used to disable loopback at the remote end Example The following command causes the remote end of a T3 link to enter payload loopback mode enab...

Page 1731: ...rt additional modes local and network line loopback Use the following command for these modes enable ports portlist t1 e1 t3 loopback local network line For remote loopback modes use the command enabl...

Page 1732: ...by default Usage Guidelines This command enables VMAN termination for T1 and E1 links There is no equivalent command for T3 links Example The following command enables VMAN termination on ports 1 1 an...

Page 1733: ...and E1 links There is no equivalent command for T3 links When WAN QoS is enabled egress traffic is sorted into eight software egress queues for each T1 or E1 port Example The following command enables...

Page 1734: ...e changed any configuration parameters of the MLPPP group The changed configuration does not take effect until you disable then enable the link or until you restart the link Example The following comm...

Page 1735: ...to examine the entries in the PPP user accounts database used for authentication when a link is initiated from a remote peer Example The following command displays the PPP accounts database show accou...

Page 1736: ...roup and the PPP configuration of the group Example The following command displays the configuration for the multilink group m_remote1 show multilink m_remote1 History This command was first available...

Page 1737: ...ink use the command show ports portlist t3 alarms Example The following command displays the alarms for T1 ports in the multilink group ml_example show multilink ml_example t1 alarms History This comm...

Page 1738: ...rent interval For T1 multilink group errors use the following command show multilink groupname t1 errors near end far end totals intervals current Example The following command displays the E1 multili...

Page 1739: ...oup Example The following command displays the detailed statistics for the multilink group m_remote1 show multilink m_remote1 stats detail History This command was first available in ExtremeWare v6 1...

Page 1740: ...e current interval For errors on E1 multilink groups use the following command show multilink groupname e1 errors near end totals intervals current Example The following command displays the T1 errors...

Page 1741: ...v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology release This command wa...

Page 1742: ...d was first available in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WA...

Page 1743: ...list e1 errors near end totals intervals current Example The following command displays the T1 errors detected on the near end during the current interval show ports t1 errors near end current History...

Page 1744: ...mand show ports portlist t1 t3 errors near end far end totals intervals current Example The following command displays the E1 errors detected on the near end during the current interval show ports e1...

Page 1745: ...emeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology release This com...

Page 1746: ...in ExtremeWare v6 1 5w2 01WAN technology release E1 support was added in ExtremeWare v6 1 8w3 0 1b56 WAN technology release T3 support was added in ExtremeWare v6 1 8w3 0 1b61 WAN technology release T...

Page 1747: ...PP ports Example The following command displays status information for all PPP ports show ppp History This command was first available in ExtremeWare v6 1 5w2 01WAN technology release This command was...

Page 1748: ...obtain PPP connection status for all WAN ports Example The following command displays PPP connection status for all WAN ports show ppp info History This command was first available in ExtremeWare v6 1...

Page 1749: ...Example The following command example resets the PPP parameters of all the ports in the multilink group m_remote1 to BCP and no authentication unconfigure ppp m_remote1 History This command was first...

Page 1750: ...1750 ExtremeWare Software 7 3 0 Command Reference Guide T1 E1 and T3 WAN Commands...

Page 1751: ...taining the forwarding database Forwarding database entries indicate the outgoing port and any label s to be applied to forwarded frames Thus forwarding may consist of a simple lookup and replacement...

Page 1752: ...remeWare Software 7 3 0 Command Reference Guide MPLS Commands This chapter documents the MPLS command set Some commands are new for the MPLS module other commands have been enhanced to support the MPL...

Page 1753: ...ls counters Description Resets all VPLS counters and statistics Syntax Description N A Default N A Usage Guidelines This command resets all VPLS counters and statistics Example N A History This comman...

Page 1754: ...ring LSR within the specified hello hold_time the hello adjacency is not maintained with that neighboring LSR The session keep alive hold_time interval_time parameter specifies the time in seconds dur...

Page 1755: ...me interval_time are 6 and 65 534 respectively This command can only be executed when MPLS is disabled Example The following command configures LDP session hello hold time to 30 seconds and the interv...

Page 1756: ...PLS peer prior to exchanging vpn parameters the VPLS peer must be capable of accepting LDP Hello messages By default the local_endpoint_ipaddress is the configured OSPF ISIS Router ID The from keyword...

Page 1757: ...configure mpls add vpls ExtremeWare Software 7 3 0 Command Reference Guide 1757 Platform Availability This command is available on the BlackDiamond switch...

Page 1758: ...r 2 traffic is transported across a MPLS LSP using a two level label stack The ipaddress parameter identifies the peer LSR that is the endpoint of the tunnel This ipaddress should be configured with a...

Page 1759: ...and groupid match is found the TLS tunnel is bound to the local_vlan_name by correlating the advertised egress TLS tunnel label with the local VLAN ID Once the TLS tunnel label and the local VLAN ID a...

Page 1760: ...e tunnel_name parameter is a character string that is to be used to identify the TLS tunnel within the switch It must begin with an alphabetic character and can contain up to 31 additional alphanumeri...

Page 1761: ...also be enabled on the switch If all VLANs are selected MPLS is enabled on all VLANs that have an IP address and IP forwarding enabled If you have enabled MPLS on an OSPF interface that is used to rea...

Page 1762: ...1762 ExtremeWare Software 7 3 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch only...

Page 1763: ...mmand deletes the VPLS with the specified vpls_name All VC LSPs established to VPLS peers are terminated The all keyword may be used to indicate that all VPLS instances are to be deleted Example confi...

Page 1764: ...group Specify the groupid if you want to delete all TLS tunnels belonging to a specific group Use the all keyword to delete all TLS tunnels Example The following command deletes the TLS tunnel rt40 c...

Page 1765: ...s If not specified both are disabled for the specified VLAN Example The following command disables RSVP TE on vlan1 configure mpls delete vlan vlan1 rsvp te History This command was first available in...

Page 1766: ...deletes the VPLS with the specified vpls_name All VC LSPs established to VPLS peers are terminated The all keyword may be used to indicate that all VPLS instances are to be deleted Example config mpls...

Page 1767: ...ge service mode is vlan Ports configured in different modes cannot send traffic between them without the use of the MPLS module That is traffic received on a port that is configured in vlan mode canno...

Page 1768: ...1768 ExtremeWare Software 7 3 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch...

Page 1769: ...nterval time Ping packets may be dropped due to spurious network conditions In order to minimize service disconnect false alerts when an echo request has not been received within trap send holdtime 3...

Page 1770: ...eWare Software 7 3 0 Command Reference Guide MPLS Commands Example Needed History This command was first available in an ExtremeWare 7 3 Platform Availability This command is available on the BlackDia...

Page 1771: ...P health check as specified by the ipaddress or host_name parameter or the prefix or lsp keyword terminates and deletes the configured mplsping If the all keyword is specified all mplsping health chec...

Page 1772: ...be dropped due to spurious network conditions In order to minimize service disconnect false alerts when an echo request has not been received within trap send holdtime 3 seconds echo requests are sen...

Page 1773: ...ck add vplsping ExtremeWare Software 7 3 0 Command Reference Guide 1773 Example Needed History This command was first available in an ExtremeWare 7 3 Platform Availability This command is available on...

Page 1774: ...a VC LSP health check as specified by the peer or mac address keyword terminates and deletes the configured vplsping If the all keyword is specified all vplsping health checks for the specified vpls_n...

Page 1775: ...check Deleting a VC LSP health check as specified by the peer or mac address keyword terminates and deletes the configured vplsping If the all keyword is specified all vplsping health checks for the s...

Page 1776: ...least one LDP ACL peer has been configured The disabled keyword specifies that the ACL be disabled No authentication procedures are enforced LDP ACLs must be disabled before all LDP ACL peers can be d...

Page 1777: ...dress parameter identifies the peer from which targeted and non targeted LDP sessions are accepted If the peer is specified using the host_name parameter the DNS client must be configured so that the...

Page 1778: ...peer from the ACL The ipaddress and host_name parameter identify the peer to be deleted from the ACL When the keyword all is specified all configured LDP peers are removed Example Needed History This...

Page 1779: ...filter is applied to the FECs associated with static routes You can configure the advertisement filter as follows all All unsolicited label mappings are originated for all routes of the specified typ...

Page 1780: ...el and direct routes are advertised with an MPLS label unless PHP is enabled Advertising labels for a large number of routes may increase the required number of labels that must be allocated by LSRs T...

Page 1781: ...N The LDP label origination configuration for directly attached routing interfaces can also be set using the configure mpls ldp advertise direct command Example The following command configures LDP to...

Page 1782: ...LER PHP is requested by assigning the Implicit Null Label in an advertised mapping PHP is always performed when requested by an egress LSR for example when the switch is acting as an intermediate LSR...

Page 1783: ...dvertently introduced When propagate ip ttl is disabled the LSP is viewed as a point to point link between the ingress LSR and the egress LSR Intermediate LSRs in the MPLS network are not viewed as ro...

Page 1784: ...remeWare Software 7 3 0 Command Reference Guide MPLS Commands This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiamond swit...

Page 1785: ...ed ExtremeWare QoS policies There is a one to one mapping between the hardware queue and the 802 1p priority values that are inserted into frames forwarded to the MPLS module For example the 802 1p pr...

Page 1786: ...classifying MPLS encapsulated packets received from the SONET link When a PoS port receives an MPLS encapsulated packet from the SONET link the packet is classified based on the EXP value in the MPLS...

Page 1787: ...rofile is applied to the LSP If no explicitly specified the path_name defaults to the primary path The LSP is immediately signaled as soon as it is configured The maximum number of configurable LSPs i...

Page 1788: ...tion may be configured by adding additional path_names and specifying the same ipaddress or host_name as the path endpoint The RSVP TE path is not signaled until an LSP is added with the specified pat...

Page 1789: ...configure mpls rsvp te add path ExtremeWare Software 7 3 0 Command Reference Guide 1789 Platform Availability This command is available on the BlackDiamond switch only...

Page 1790: ...ult bandwidth bps value is zero which indicates that the QoS for the LSP is best effort ExtremeWare does not support bandwidth reservation The setup priority and hold priority are optional parameters...

Page 1791: ...ata when the TLS tunnel is configured by specifying the tunnel LSP endpoint IP address Traffic is distributed across up to four equal cost LSPs The valid metric values range from 1 to 65535 Specifying...

Page 1792: ...ommands History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availabi...

Page 1793: ...deleted LSPs cannot be deleted if the specified lsp_name has been configured as the LSP for a TLS tunnel If you specify the all keyword all LSPs not associated with a TLS tunnel are deleted Example T...

Page 1794: ...path_name is deleted A path cannot be deleted as long as the path_name is associated with an LSP If the all keyword is specified all paths not associated with an LSP are deleted Example The following...

Page 1795: ...f a profile is associated with a configured LSP the profile cannot be deleted If you specify the all keyword all profiles not associated with an LSP are deleted except for the default profile Example...

Page 1796: ...the network to the same LSP endpoint Adding a secondary path_name designates a path as a hot standby redundant path used in the event that the primary or secondary path cannot be established or fails...

Page 1797: ...ference Guide 1797 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was subsequently incorporated into ExtremeWare 7 0 0 Platfo...

Page 1798: ...path_name is deleted A path cannot be deleted as long as the path_name is associated with an LSP If the all keyword is specified all paths not associated with an LSP are deleted Example The following...

Page 1799: ...ect matches a direct router interface or a directly attached subnet the switch verifies that the path message is received on the matching router interface If the LSR specified matches the OSPF router...

Page 1800: ...object must be deleted and re added using a different order If a subobject is added to or deleted from the ERO while the associated LSP is established the path is torn down and is resignaled using the...

Page 1801: ...is no longer required to take an explicit routed path The path is then signaled along the best routed path and no ERO is included in the path message Example The following command deletes all configu...

Page 1802: ...d peer nodes All VPLS peer nodes must be configured with the same mtu value If the mtu values do not match VC LSPs cannot be established between VPLS peers By default the VPLS mtu is set to 1500 The c...

Page 1803: ...es for the specified profile configure mpls rsvp te profile customer1 ping interval 2 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This...

Page 1804: ...ger active RSVP sessions are torn down if an RSVP refresh message is not received from a neighbor within keep multiplier 0 5 1 5 refresh time seconds The default refresh time is 30 seconds and the def...

Page 1805: ...t to RSVP TE peers supporting RSVP refresh reduction Example The following command configures the rsvp te interface parameters for VLAN vlan1 configure mpls rsvp te vlan vlan1 hello interval 2 refresh...

Page 1806: ...Ps LSP traffic aggregation is described in Equal cost Multipath LSP Support on page 3 The delete keyword will remove the LSP specified by the lsp_name parameter from the VC LSP aggregation list If all...

Page 1807: ...he packet the packet is fragmented before it is forwarded onto an MPLS LSP If the DF bit is set in the packet header Path MTU Discovery starts Fragmentation is based on either the minimum value of the...

Page 1808: ...1808 ExtremeWare Software 7 3 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch only...

Page 1809: ...ngs of this command apply to all MPLS enabled VLANs Example The following command configures a filter to be used by LDP when propagating unsolicited label mappings to vlan1 configure mpls vlan vlan1 l...

Page 1810: ...n for which there is one non TLS VLAN configured to track the state of the LSP When ESRP detects that the LSP has failed all of the VLANs in the configured ESRP domain transition to neutral state and...

Page 1811: ...add track lsp ExtremeWare Software 7 3 0 Command Reference Guide 1811 This command was subsequently incorporated into ExtremeWare 7 0 0 Platform Availability This command is available on the BlackDiam...

Page 1812: ...all configured LSPs are removed from ESRP tracking for the specified VLAN Example The following command disables diagnostic failure tracking for VLAN esrp 1 configure vlan esrp 1 delete track lsp Hist...

Page 1813: ...mtu keyword optionally specifies the MTU value of the VPLS transport payload packet customer packet The mtu value is exchanged with vpls configured peer nodes All VPLS peer nodes must be configured w...

Page 1814: ...1814 ExtremeWare Software 7 3 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch...

Page 1815: ...been configured for a VPLS the VLAN is added to the VPLS as specified by the vpls_name The VLAN ID is locally significant to each VPLS Thus each VLAN VPLS interface within the H VPLS network may have...

Page 1816: ...1816 ExtremeWare Software 7 3 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch...

Page 1817: ...onship for each VPLS must be configured The peer relationships are defined as either a core to core core to spoke or spoke to core This relationship implicitly defines the packet flooding behavior for...

Page 1818: ...to a tls configured spoke are signaled using the martini draft VLAN FEC Martini tls VC LSPs carry traffic for a single VLAN Thus tls core to spoke VC LSPs are incompatible with local egress VPLS port...

Page 1819: ...7 3 0 Command Reference Guide 1819 History This command was first available in an ExtremeWare 7 3 Platform Availability This command is available on the BlackDiamond switch Platform Availability This...

Page 1820: ...ated The optional vcid keyword may be specified to fully qualify a specific core to spoke Martini VC LSP The all keyword may be used to indicate that all VPLS peers be deleted Example Need example His...

Page 1821: ...VPLS peer is terminated The optional vcid keyword may be specified to fully qualify a specific core to spoke Martini VC LSP The all keyword may be used to indicate that all VPLS peers be deleted Examp...

Page 1822: ...SP specified by the lsp_name parameter from the VC LSP aggregation list If all the LSPs are deleted the VC LSP will attempt to use the best routed path LSP if one exists If no LSPs exist to the VPLS p...

Page 1823: ...s Disabling MPLS causes all LSPs to be released and all LDP neighbor sessions to be terminated Example The following command globally disables MPLS on the switch disable mpls History This command was...

Page 1824: ...s Disabling MPLS causes all LSPs to be released and all LDP neighbor sessions to be terminated Example The following command globally enables MPLS on the switch enable mpls History This command was fi...

Page 1825: ...each LSP in round robin fashion For RSVP TE LSPs the FEC is implied from the LSP configuration The lsp keyword may be used to specify the tunnel LSP on which to send the MPLS echo request The tunnel L...

Page 1826: ...acket cannot exceed the configured jumbo packet size if jumbo frames are enabled or 1518 if jumbo frames are disabled If the end_size parameter is specified the size of the packet will increment by on...

Page 1827: ...address The resolved host name IP address is assumed to be a 32 prefix The lsp keyword may be used to specify the LSP to trace The selected LSP is specified by the lsp_name parameter The from keyword...

Page 1828: ...lue reaches zero the packet is not forwarded but is redirected to the control plane for additional processing When the TTL value specified by the max_ttl_value parameter is exceeded the mplstrace comm...

Page 1829: ...egress VLAN if applicable VC LSP peer Age and Port List Optionally specifying the vpls_name displays FDB information for the specified vpls only If a VPLS peer qualifies the command only FDB informat...

Page 1830: ...isplayed in a comprehensive detail format The detail format includes total state transition count from up to down and down to up time of last failure total up time and total down time and error code i...

Page 1831: ...on parameters If the optional detail keyword is specified the health check information is displayed in a comprehensive detail format The detail format includes total state transition count from up to...

Page 1832: ...s command displays the list of configured LDP ACL entries Optionally a specific LDP ACL can be displayed by specifying the ipaddress or host_name for the configured ACL Example Needed History This com...

Page 1833: ...When the vlan parameter is specified this command displays the current values of the MPLS configuration parameters that are specific to the VLAN If the optional detail keyword is specified additional...

Page 1834: ...hop IP address Outgoing label Interface number of the outgoing VLAN If the detail keyword is specified the following additional information is displayed Outgoing port number Counts of packets and byt...

Page 1835: ...on from the FEC to NHLFE database show mpls forwarding prefix 10 1 1 1 History This command was first available in an ExtremeWare IP Technology Services Release based on v6 1 8b12 This command was sub...

Page 1836: ...the keyword ldp targeted ldp or rsvp te limits the information displayed to only those interface types Example The following command displays interface information for RSVP TE interfaces show mpls in...

Page 1837: ...nformation is displayed for the label Use the fec keyword to display the label associated with an FEC You can specify both host and prefix FEC types The summary keyword displays the number of labels a...

Page 1838: ...coming Label Map ILM for RSVP TE LSPs Example The following command displays the summary information from the Incoming Label Map show mpls label summary History This command was first available in an...

Page 1839: ...displayed To display additional information in the comprehensive detailed format use the detail keyword Displayed summary information includes Peer type targeted or not targeted Peer status Peer sess...

Page 1840: ...1840 ExtremeWare Software 7 3 0 Command Reference Guide MPLS Commands Platform Availability This command is available on the BlackDiamond switch only...

Page 1841: ...variables Default N A Usage Guidelines Configured mappings for both dot1p to exp and exp to dot1p are displayed Example The following command displays MPLS QoS mapping information show mpls qos mappin...

Page 1842: ...ayed Additional information is displayed in the detailed format if you specify the optional detail keyword The more detailed RSVP TE information includes the number and type of RSVP messages transmitt...

Page 1843: ...he optional detail keyword additional information is displayed for each LSP The detailed information includes a list of all configured paths including the path state error codes for the LSP associated...

Page 1844: ...isplayed If a specific path name is specified only information for the specified path is displayed If you specify the optional detail keyword the list of subobjects specified for the explicit route ob...

Page 1845: ...If the profile name is omitted the profile parameter values for all configured LSP profiles are displayed Example The following command displays the profile parameter values for all configured LSP pro...

Page 1846: ...LS tunnel information is displayed using the comprehensive detail format If the optional summary keyword is specified summary TLS tunnel counts are displayed The summary counters displayed include the...

Page 1847: ...additionally displays transmit and receive packet and byte counts Optionally specifying the peer keyword qualified by the ipaddress or host_name displays VPLS information for the specified peer in de...

Page 1848: ...that are members of the VPN as specified by vpls_name are displayed If vpls_name is omitted information pertaining to all VPLS nodes is displayed Information displayed includes IP address of each node...

Page 1849: ...n filter settings on all VLANs LDP advertisement filter settings LDP session timers RSVP TE interface parameters RSVP TE profile parameters Settings for propagate ip ttl QoS mapping tables Example The...

Page 1850: ...t the LDP peer has failed or no longer wishes to label switch using the previously advertised label space The session keep alive time specifies the minimum amount of time in seconds that an LSR must r...

Page 1851: ...input value of n to an output value of n Example The following command restores the default values for the dot1p to exp QoS mapping table unconfigure mpls qos mapping dot1p to exp History This comman...

Page 1852: ...d using the ipaddress parameter When the ipaddress parameter is specified the IP address is used to look up the corresponding VPLS node s MAC address If the MAC address has not been learned the vplspi...

Page 1853: ...cannot exceed the configured jumbo packet size if jumbo frames are enabled or 1518 if jumbo frames are disabled If the end_size parameter is specified the size of the packet will increment by one byte...

Page 1854: ...specified the IP address is used to look up the corresponding VPLS node s MAC address If the MAC address has not been learned the vplstrace command will fail with a No MAC address learned for IP addre...

Page 1855: ...ply mode is used The ttl keyword optionally specifies the maximum TTL value in the VPLS echo request packet The TTL value in the VC FEC label is decremented along the path at each VPLS node When the T...

Page 1856: ...1856 ExtremeWare Software 7 3 0 Command Reference Guide MPLS Commands...

Page 1857: ...one individual network port The 3 series modules are designed for metro service providers and enterprise environments In a service provider environment service providers can control the flow of data...

Page 1858: ...collection for selected ports use the enable diagnostics cable command To disable auto diagnostics collection for selected ports use the disable diagnostics cable command To set the starting time for...

Page 1859: ...through 2 8 configure application examination TCP20 add ports 2 6 2 8 The following command also adds an application examination rule to ports 2 6 through 2 8 The keywords application examination are...

Page 1860: ...running diagnostics will be left disabled after the diagnostics run has completed As a result the status LED associated with the failed port will continue to blink To stop the blinking of the status L...

Page 1861: ...configure diagnostics cable ExtremeWare Software 7 3 0 Command Reference Guide 1861 Platform Availability This command is available on 3 series I O modules only...

Page 1862: ...are IPX LLC or SNAP encapsulated are passed through with no DiffServ code point alterations You must enable low priority and high priority DiffServ ingress replacement on the specified ports before yo...

Page 1863: ...ures the low priority to 5 and the high priority to 10 on all ports for all ingress QoS profiles configure diffserv ingress replacement low priority code point 5 high priority code point 10 ports all...

Page 1864: ...h and is applied to the aggregate bandwidth after the i series per queue egress rate limiting Example The following command sets the maximum egress rate limit on slot 1 port 1 to 100 mbps configure po...

Page 1865: ...hrough IQP8 minbw Specifies the minimum bandwidth percentage for this queue The default setting is 0 The range is 0 to 100 maxbw Specifies the maximum bandwidth percentage for this queue The default s...

Page 1866: ...res the ingress QoS profile parameters of ingress QoS profile IQP1 for slot 1 port 1 configure qosprofile ingress iqp1 committed rate 250 m peak rate 1000 m red threshold 100 maxbuf 100 ports 1 1 Hist...

Page 1867: ...ed on oversubscribed 3 series I O modules Ingress QoS allows received traffic with different VLAN priority values different DiffServ code points IP TOS or from different VLANS to be classified to up t...

Page 1868: ...qostype priority for dot1p above any other classification method will effectively disable that classification Untagged packets get their dot1p vlan priority bits set to the value configured by config...

Page 1869: ...ot get discarded during ingress port congestion All VLANs are set to the default ingress QoS profile none To display the ingress QoS profile mapping for a VLAN use the command show vlan The 3 series I...

Page 1870: ...can be created application name Specifies the name string to associate with this rule ip protocol Specifies that a match will be attempted on the IP protocol number in the received packets tcp port S...

Page 1871: ...0 which will assign ingress TCP traffic with a destination port number of 20 to the ingress qosprofile IQP3 with a precedence value of 100 create application examination TCP20 tcp port 20 match dest o...

Page 1872: ...rule Syntax Description Default N A Usage Guidelines This command deletes a previously configured application examination rule Example The following command deletes the application examination rule de...

Page 1873: ...abled Usage Guidelines This command disables application examination rules on specified ports Example The following command disables application examination rules on ports 2 6 through 2 8 disable appl...

Page 1874: ...he enable diagnostics cable command To set the starting time for auto diagnostics collection for selected ports use the configure diagnostics cable command To manually run cable diagnostics use the ru...

Page 1875: ...ample The following command disables low priority DiffServ replacement for all 3 series ports in all ingress QoS profiles disable diffserv ingress replacement low priority ports all History This comma...

Page 1876: ...word to specify all 3 series ports If you disable flow control on a 3 series port the port does not advertise flow control support during auto negotiation Flow control is auto negotiated and is disabl...

Page 1877: ...bled Usage Guidelines This command enables application examination rules on specified ports Example The following command enables application examination rules on ports 2 6 through 2 8 enable applicat...

Page 1878: ...nd To disable auto diagnostics collection for selected ports use the disable diagnostics cable command To manually run cable diagnostics use the run diagnostics cable command To abort cable diagnostic...

Page 1879: ...gress QoS profile on the specified ports Either high priority or low priority traffic for all ingress QoS profiles on the specified ports or a selected ingress QoS profile on the specified ports The 3...

Page 1880: ...1880 ExtremeWare Software 7 3 0 Command Reference Guide High Density Gigabit Ethernet Commands Platform Availability This command is available on 3 series I O modules only...

Page 1881: ...ld for a specific queue The PAUSE frame is sent before the queue overflows so throughput is slightly reduced when flow control is enabled Flow control is auto negotiated and is disabled if both ports...

Page 1882: ...tics collection for selected ports use the enable diagnostics cable command To set the starting time for auto diagnostics collection for selected ports use the configure diagnostics cable command To d...

Page 1883: ...run diagnostics cable ExtremeWare Software 7 3 0 Command Reference Guide 1883 Platform Availability This command is available on 3 series I O modules only...

Page 1884: ...le is not specified all created rules will be displayed Example The following command displays all configured application examination rules show application examination TCP20 Following is sample outpu...

Page 1885: ...larity Speed Mbps You can configure the CDM to obtain diagnostics information automatically through the configure diagnostics cable command or you can manually obtain cable diagnostics at any time by...

Page 1886: ...ort Speed Avg Len Pair Fault Loc Skew Polarity Cable Pair Swap Diagnostic Mode Mbps meters meters ns Status Chan AB Chan CD 6 1 1000 10 1 2 No Fault 8 ns Unknown Ok No Swap Unknown Manual 3 6 No Fault...

Page 1887: ...show diagnostics cable ExtremeWare Software 7 3 0 Command Reference Guide 1887 Platform Availability This command is available on 3 series I O modules only...

Page 1888: ...age rate This command applies only to 3 series I O modules the rate you configure is applicable to the aggregate of all outgoing traffic on a port This display is independent of any i series egress ra...

Page 1889: ...egress rate limit ExtremeWare Software 7 3 0 Command Reference Guide 1889 History This command was first available in ExtremeWare 7 1 Platform Availability This command is available on 3 series I O mo...

Page 1890: ...Present NP The link is not present at this port High Priority Bytes Sum per port of the bytes forwarded for received high priority packets traffic received below the committed rate configured for the...

Page 1891: ...queue Dropped Percentage Percentage of receive bytes dropped by this queue relative to the total number of bytes input to this queue Example The following command displays real time ingress statistics...

Page 1892: ...Software 7 3 0 Command Reference Guide High Density Gigabit Ethernet Commands History This command was first available in ExtremeWare 7 0 1 Platform Availability This command is available on 3 series...

Page 1893: ...ngress QoS profile information for all ingress QoS profiles on slot 1 show qosprofile ingress 1 Following is sample output from this command MinBw MaxBw Port Queue Committed Rate Peak Rate RED MaxBuf...

Page 1894: ...1894 ExtremeWare Software 7 3 0 Command Reference Guide High Density Gigabit Ethernet Commands Platform Availability This command is available on 3 series I O modules only...

Page 1895: ...ines None Example The following command displays the ingress QoS traffic grouping priority settings for this switch show qostype ingress priority Following is sample output from this command Ingress Q...

Page 1896: ...cription Default N A Usage Guidelines Use this command to reset the low priority and high priority code point values to 0 and to disable DiffServ ingress replacement Example The following command rese...

Page 1897: ...ax or values Default N A Usage Guidelines Resets the ingress traffic groupings to the following application 5 diffserv 3 dot1p 1 vlan 2 Example The following command resets the Ingress QoS traffic gro...

Page 1898: ...1898 ExtremeWare Software 7 3 0 Command Reference Guide High Density Gigabit Ethernet Commands...

Page 1899: ...distribution for PoE at the system slot level Configuration and control of the power distribution for PoE at the port level Real time detection of powered devices on the line Monitor and control of Po...

Page 1900: ...story for the specified slot Syntax Description Default N A Usage Guidelines None Example The following command clears the port connection history for slot 2 clear inline power connection history slot...

Page 1901: ...elines None Example The following command clears the fault condition for port 3 clear inline power fault ports 3 History This command was first available in ExtremeWare 7 2 Platform Availability This...

Page 1902: ...power configuration information for ports 1 8 in slot 1 show inline power stats ports 1 1 1 8 Following is sample output from this command Port State Class Absent InvSig Denied OverCurrent Short 1 1...

Page 1903: ...ught up if the external 48V loses power In that case the ports will not be able to provide power Example The following command sets the internal power supply as the backup power supply to the external...

Page 1904: ...command forces automatic power discovery operations and specifies that power will be supplied to detected PDs for ports 4 6 on slot 3 config inline power detection auto ports 3 4 3 6 History This com...

Page 1905: ...Config Detect Rsvd Pwr Oper Lmt Viol Prec Label 1 1 enabled auto 0 0 15 4 max class operator 1 2 enabled auto 10 0 15 4 advertised limit test_port2 1 3 enabled auto 0 0 15 4 max class operator 1 4 en...

Page 1906: ...s used in conjunction with the violation precedence and has no effect if either none or advertised class is selected for violation precedence using the following command config inline power violation...

Page 1907: ...or 3000 20000 mW The default reserved power range value is 0 mW Total power reserved may be up to but not greater than the total power for the card If all of the power available to the card is reserve...

Page 1908: ...list command to display the inline power type for a selected port Example The following command specifies the type of PD connected to port 3 on slot 4 as a wireless device config inline power type wir...

Page 1909: ...The alarm threshold is shared between the system level utilization and the allocated power budget per slot If either measurement exceeds the threshold level an alarm will be initiated Example The foll...

Page 1910: ...red with the following command config inline power operator limit milliwatts ports portlist Example The following command sets the violation precedence for port 3 on slot 5 to the configured operator...

Page 1911: ...er is provided to the system by using the disable inline power command and the enable inline power command Using the disable inline power command shuts down power currently provided on all ports on al...

Page 1912: ...ovided by all system ports or specified ports The system defaults to enabling power on all 10 100 ports To power any port the following conditions must be met The system must be enabled for power The...

Page 1913: ...power currently provided to the selected slot The system defaults to enabling power on all slots To power any port the following conditions must be met The system must be enabled for power The slot mu...

Page 1914: ...lean copy can be retrieved ExtremeWare will log a message in syslog prompting for a firmware upgrade This command is used to download the firmware This command is available only if the board is presen...

Page 1915: ...sable inline power command and the enable inline power command Using the enable inline power command makes power available on all ports on all slots Using the disable inline power command shuts down p...

Page 1916: ...ower ports all portlist command shuts down power currently provided by all system ports or specified ports The system defaults to enabling power on all 10 100 ports To power any port the following con...

Page 1917: ...disable inline power slots slot_id command shuts down power currently provided to the selected slot The system defaults to enabling power on all slots To power any port the following conditions must b...

Page 1918: ...ower cycles the specified ports Ports are immediately de powered and re powered maintaining current power allocations Example The following command resets power for port 4 reset inline power ports 4 H...

Page 1919: ...erational status of the main power supply unit The status conditions are ON Power is being provided to the PoE controller OFF Power is not being provided to the PoE controller FAULT An error has occur...

Page 1920: ...firmware download Example The following command displays inline power status for the system show inline power Following is sample output from this command Inline Power System Information System maximu...

Page 1921: ...configured reserved power in watts Oper Lmt Displays the configured operator limit in watts The operator limit is used only with violation precedence Viol Prec Displays the violation precedence settin...

Page 1922: ...2 enabled auto 10 0 15 4 advertised limit test_port2 1 3 enabled auto 0 0 15 4 max class operator 1 4 enabled auto 0 0 15 4 max class operator 1 5 enabled auto 0 0 15 4 max class operator 1 6 enabled...

Page 1923: ...ide power Cfg PSU Backup Indicates the current setting of power source precedence Internal None PSU Active Indicates the power source currently supplying power Internal External Usage Threshold Displa...

Page 1924: ...1924 ExtremeWare Software 7 3 0 Command Reference Guide Power Over Ethernet Commands Platform Availability This command is available on Alpine series I O modules only...

Page 1925: ...Disabled Searching Discovered Delivering Faulted Disconnected Other Denied Class Displays the class type disabled or searching class0 class 0 device class1 class 1 device class2 class 2 device class3...

Page 1926: ...current 4 Overload 8 Discovery resistance failed 9 Class violation 10 Disconnect 11 Discovery resistance A2D fail 12 Classify A2D fail 13 Sample A2D fail 14 Device fault A2D fail The detail command l...

Page 1927: ...info detail port 1 1 Following is sample output from this command Configured Admin State Enabled Inline Power State searching MIB Detect SStatus searching Lable Violation Precedence max class operato...

Page 1928: ...ed power Allocated Displays in watts the amount of common power allocated Reserved Power Configured Displays in watts the amount of power configured as reserved Allocated Displays in watts the amount...

Page 1929: ...ivering Faulted Disconnected Other Denied Class Displays the class type disabled or searching class0 class 0 device class1 class 1 device class2 class 2 device class3 class 3 device class4 class 4 dev...

Page 1930: ...sample output from this command Port State Class Absent InvSig Denied OverCurrent Short 1 1 searching 0 0 0 0 0 1 2 delivering class0 0 0 0 0 0 1 3 searching 0 0 0 0 0 1 4 searching 0 0 0 0 0 1 5 sear...

Page 1931: ...iting for power for the selected slots Example The following command displays inline power statistics information for slot 1 show inline power stats slot 1 Following is sample output from this command...

Page 1932: ...source configured with the following command config inline power backup source internal none slot slot_number Resetting the backup power source to its default for the specified slot will not take eff...

Page 1933: ...s command resets the power detection scheme configured with the following command config inline power detection auto discovery test only ports portlist Example The following command resets the power d...

Page 1934: ...00 mW Usage Guidelines This command resets the operator limit configured with the following command config inline power operator limit milliwatts ports portlist Example The following command resets th...

Page 1935: ...Guidelines This command resets to default the reserved power budget configured with the following command config inline power reserved budget milliwatts ports portlist Example The following command re...

Page 1936: ...The default value for the inline power usage threshold is 70 percent Usage Guidelines This command resets to default the inline power usage threshold configured with the following command config inlin...

Page 1937: ...ge Guidelines This command resets the violation precedence configured with the following command config inline power violation precedence advertised class operator limit max class operator none ports...

Page 1938: ...1938 ExtremeWare Software 7 3 0 Command Reference Guide Power Over Ethernet Commands...

Page 1939: ...service provider MPLS network Unlike VPLS which requires a full mesh of Virtual Circuits VCs H VPLS specifies a hierarchical architecture to extend spoke VCs to the service provider s network edge The...

Page 1940: ...unters Description Resets all VPLS counters and statistics Syntax Description N A Default N A Usage Guidelines This command resets all VPLS counters and statistics Example N A History This command was...

Page 1941: ...DP session to the targeted LDP peer VPLS peer prior to exchanging vpn parameters the VPLS peer must be capable of accepting LDP Hello messages By default the local_endpoint_ipaddress is the configured...

Page 1942: ...xtremeWare Software 7 3 0 Command Reference Guide H VPLS Commands History This command was first available in an ExtremeWare 7 3 0 Platform Availability This command is available on the BlackDiamond s...

Page 1943: ...mand deletes the VPLS with the specified vpls_name All VC LSPs established to VPLS peers are terminated The all keyword may be used to indicate that all VPLS instances are to be deleted Example config...

Page 1944: ...ferent modes cannot send traffic between them without the use of the MPLS module That is traffic received on a port that is configured in vlan mode cannot switch traffic directly to a port on a module...

Page 1945: ...s at least one LDP ACL peer has been configured The disabled keyword specifies that the ACL be disabled No authentication procedures are enforced LDP ACLs must be disabled before all LDP ACL peers can...

Page 1946: ...rameter identifies the peer from which targeted and non targeted LDP sessions are accepted If the peer is specified using the host_name parameter the DNS client must be configured so that the host_nam...

Page 1947: ...igured LDP peer from the ACL The ipaddress and host_name parameter identify the peer to be deleted from the ACL When the keyword all is specified all configured LDP peers are removed Example None Hist...

Page 1948: ...configured for a VPLS the VLAN is added to the VPLS as specified by the vpls_name The VLAN ID is locally significant to each VPLS Thus each VLAN VPLS interface within the H VPLS network may have a di...

Page 1949: ...configure mpls vpls add ExtremeWare Software 7 3 0 Command Reference Guide 1949 Platform Availability This command is available on the BlackDiamond switch...

Page 1950: ...t be configured The peer relationships are defined as either a core to core core to spoke or spoke to core This relationship implicitly defines the packet flooding behavior for the VC LSP set up to th...

Page 1951: ...stablished to a tls configured spoke are signaled using the martini draft VLAN FEC Martini tls VC LSPs carry traffic for a single VLAN Thus tls core to spoke VC LSPs are incompatible with local egress...

Page 1952: ...erence Guide H VPLS Commands History This command was first available in an ExtremeWare 7 3 0 Platform Availability This command is available on the BlackDiamond switch Platform Availability This comm...

Page 1953: ...mand deletes the VPLS with the specified vpls_name All VC LSPs established to VPLS peers are terminated The all keyword may be used to indicate that all VPLS instances are to be deleted Example config...

Page 1954: ...Ping packets may be dropped due to spurious network conditions In order to minimize service disconnect false alerts when an echo request has not been received within trap send holdtime 3 seconds echo...

Page 1955: ...ck add mplsping ExtremeWare Software 7 3 0 Command Reference Guide 1955 Example None History This command was first available in an ExtremeWare 7 3 0 Platform Availability This command is available on...

Page 1956: ...as specified by the ipaddress or host_name parameter or the prefix or lsp keyword terminates and deletes the configured mplsping If the all keyword is specified all mplsping health checks are deleted...

Page 1957: ...ng packets may be dropped due to spurious network conditions In order to minimize service disconnect false alerts when an echo request has not been received within trap send holdtime 3 seconds echo re...

Page 1958: ...Ware Software 7 3 0 Command Reference Guide H VPLS Commands Example None History This command was first available in an ExtremeWare 7 3 0 Platform Availability This command is available on the BlackDi...

Page 1959: ...check Deleting a VC LSP health check as specified by the peer or mac address keyword terminates and deletes the configured vplsping If the all keyword is specified all vplsping health checks for the s...

Page 1960: ...a VC LSP health check as specified by the peer or mac address keyword terminates and deletes the configured vplsping If the all keyword is specified all vplsping health checks for the specified vpls_...

Page 1961: ...configured with the same mtu value If the mtu values do not match VC LSPs cannot be established between VPLS peers By default the VPLS mtu is set to 1500 The configurable mtu range is 1492 through 92...

Page 1962: ...gured with the same mtu value If the mtu values do not match VC LSPs cannot be established between VPLS peers By default the VPLS mtu is set to 1500 The configurable mtu range is 1492 through 9216 Cha...

Page 1963: ...gured LSPs LSP traffic aggregation is described in Equal cost Multipath LSP Support on page 3 The delete keyword will remove the LSP specified by the lsp_name parameter from the VC LSP aggregation lis...

Page 1964: ...tu keyword optionally specifies the MTU value of the VPLS transport payload packet customer packet The mtu value is exchanged with vpls configured peer nodes All VPLS peer nodes must be configured wit...

Page 1965: ...configure mpls vpls ExtremeWare Software 7 3 0 Command Reference Guide 1965 Platform Availability This command is available on the BlackDiamond switch...

Page 1966: ...any other configured VLAN ID The mtu keyword optionally specifies the MTU value of the VPLS transport payload packet customer packet The mtu value is exchanged with vpls configured peer nodes All VPLS...

Page 1967: ...configure mpls vpls add ExtremeWare Software 7 3 0 Command Reference Guide 1967 Platform Availability This command is available on the BlackDiamond switch...

Page 1968: ...are defined as either a core to core core to spoke or spoke to core This relationship implicitly defines the packet flooding behavior for the VC LSP set up to the configured peer A VPLS peer relation...

Page 1969: ...ng the martini draft VLAN FEC Martini tls VC LSPs carry traffic for a single VLAN Thus tls core to spoke VC LSPs are incompatible with local egress VPLS port interfaces i e tls VC LSPs and local egres...

Page 1970: ...xtremeWare Software 7 3 0 Command Reference Guide H VPLS Commands History This command was first available in an ExtremeWare 7 3 0 Platform Availability This command is available on the BlackDiamond s...

Page 1971: ...is terminated The optional vcid keyword may be specified to fully qualify a specific core to spoke Martini VC LSP The all keyword may be used to indicate that all VPLS peers be deleted Example None H...

Page 1972: ...peer is terminated The optional vcid keyword may be specified to fully qualify a specific core to spoke Martini VC LSP The all keyword may be used to indicate that all VPLS peers be deleted Example No...

Page 1973: ...ve the LSP specified by the lsp_name parameter from the VC LSP aggregation list If all the LSPs are deleted the VC LSP will attempt to use the best routed path LSP if one exists If no LSPs exist to th...

Page 1974: ...on each LSP in round robin fashion For RSVP TE LSPs the FEC is implied from the LSP configuration The lsp keyword may be used to specify the tunnel LSP on which to send the MPLS echo request The tunne...

Page 1975: ...et cannot exceed the configured jumbo packet size if jumbo frames are enabled or 1518 if jumbo frames are disabled If the end_size parameter is specified the size of the packet will increment by one b...

Page 1976: ...IP address The resolved host name IP address is assumed to be a 32 prefix The lsp keyword may be used to specify the LSP to trace The selected LSP is specified by the lsp_name parameter The from keywo...

Page 1977: ...e reaches zero the packet is not forwarded but is redirected to the control plane for additional processing When the TTL value specified by the max_ttl_value parameter is exceeded the mplstrace comman...

Page 1978: ...e egress VLAN if applicable VC LSP peer Age and Port List Optionally specifying the vpls_name displays FDB information for the specified vpls only If a VPLS peer qualifies the command only FDB informa...

Page 1979: ...tion is displayed in a comprehensive detail format The detail format includes total state transition count from up to down and down to up time of last failure total up time and total down time and err...

Page 1980: ...eters If the optional detail keyword is specified the health check information is displayed in a comprehensive detail format The detail format includes total state transition count from up to down and...

Page 1981: ...his command displays the list of configured LDP ACL entries Optionally a specific LDP ACL can be displayed by specifying the ipaddress or host_name for the configured ACL Example None History This com...

Page 1982: ...additionally displays transmit and receive packet and byte counts Optionally specifying the peer keyword qualified by the ipaddress or host_name displays VPLS information for the specified peer in de...

Page 1983: ...des that are members of the VPN as specified by vpls_name are displayed If vpls_name is omitted information pertaining to all VPLS nodes is displayed Information displayed includes IP address of each...

Page 1984: ...ed using the ipaddress parameter When the ipaddress parameter is specified the IP address is used to look up the corresponding VPLS node s MAC address If the MAC address has not been learned the vplsp...

Page 1985: ...cannot exceed the configured jumbo packet size if jumbo frames are enabled or 1518 if jumbo frames are disabled If the end_size parameter is specified the size of the packet will increment by one byte...

Page 1986: ...ipaddress parameter When the ipaddress parameter is specified the IP address is used to look up the corresponding VPLS node s MAC address If the MAC address has not been learned the vplstrace command...

Page 1987: ...path If the reply mode is not specified the vpls reply mode is used The ttl keyword optionally specifies the maximum TTL value in the VPLS echo request packet The TTL value in the VC FEC label is decr...

Page 1988: ...1988 ExtremeWare Software 7 3 0 Command Reference Guide H VPLS Commands...

Page 1989: ...uthentication Protocol Transport Layer Security EAP TLS Wi Fi Protected Access WPA using Temporal Key Integrity Protocol TKIP and Advanced Encryption Standard AES Per user VLAN classification AccessAd...

Page 1990: ...tware 7 3 0 Command Reference Guide Wireless Commands In addition to traditional wired devices the switch supports the Altitude 300 wireless port third party access points and devices that rely on Pow...

Page 1991: ...face 1 or 2 Examples The following command clears the AP scan result table for port 1 18 on interface 1 clear wireless port 1 18 interface 1 ap scan results History This command was first available in...

Page 1992: ...lient information database Example The following example clears the client history counters on all ports and interface 1 clear wireless ports all interface 1 client history all History This command wa...

Page 1993: ...ace 1 of all client scan statistics clear wireless ports 15 interface 1 client scan counters all History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platfor...

Page 1994: ...of all client scan results clear wireless ports 15 interface 1 client scan results all History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availabi...

Page 1995: ...UDP request packet on the local subnet that contains the AP s MAC address which contains the needed IP address All APs on the subnet receive this message The AP with the matching MAC address sends a...

Page 1996: ...port to synchronize the wireless network The beacon interval is the time in milliseconds between beacons Examples The following command sets the beacon interval to 100 ms configure rf profile rfprof1...

Page 1997: ...interval value Its clients hear the beacons and awaken to receive the broadcast and multicast messages Clients achieve greater power savings with larger DTM intervals However a larger DTM interval wil...

Page 1998: ...ate you may slightly increase the fragmentation threshold Setting the fragmentation threshold too low may result in poor network performance Only minor modifications of this value are recommended Exam...

Page 1999: ...frame Long retry applies to frames longer than the RTS threshold and it is set to 7 by default A frame requiring RTS CTS clearing is retransmitted seven times before being discarded To specify a the n...

Page 2000: ...ng the long packet preamble Configure the RF profile for 802 11a and 802 11g using the short packet preamble Examples The following command sets the packet preamble to long configure rf profile rfprof...

Page 2001: ...not enabled The wireless port sends RTS frames to a particular receiving station and negotiates the sending of a data frame After receiving an RTS the wireless station responds with a CTS frame to ack...

Page 2002: ...smit a frame Short retry applies to frames shorter than the RTS threshold and it is set to 4 by default A frame requiring RTS CTS clearing is retransmitted four times before being discarded To specify...

Page 2003: ...programmed then the extreme_default country code is used You must program the country code on the Alpine 3800 to enable the remaining channels for the desired country The Altitude 300 wireless port is...

Page 2004: ...e The following example configures the switch level property for Spain configure wireless country code spain History This command was first available in ExtremeWare 6 2a and added to the i series in 7...

Page 2005: ...s management VLAN address This address is used by all wireless client traffic whose destination is upstream switches Example The following example configures the switch level property for the default...

Page 2006: ...d before wireless features can work This VLAN can be the default VLAN and it can either have a public or private IP address This VLAN is an untagged VLAN on which all the Altitude 300 devices are conn...

Page 2007: ...comply with regulatory requirements Example The following example configures all ports on the Altitude 300 for indoor use configure wireless ports all antenna location indoor History This command was...

Page 2008: ...s client station failures station idle timeouts or a client abruptly leaving the wireless network without notifying the associated Altitude 300 The timeout value is configured for each port and affect...

Page 2009: ...ow user authentication based on time of day Example The following command configures ports 1 18 to force disassociate all clients every day at noon configure wireless ports 1 18 force disassociation a...

Page 2010: ...heck facility configure wireless ports 1 18 health check on History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability This command is availa...

Page 2011: ...scan to send an SNMP trap when new stations are added to the results table configure wireless ports 18 interface 2 ap scan added trap on History This command was first available in ExtremeWare 6 2a a...

Page 2012: ...nt channel History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability This command is available on Alpine 3800 series only portlist Specifies...

Page 2013: ...ait on a particular channel Example The following command sets the wait time at 5 milliseconds configure wireless ports 1 5 interface 2 ap scan off channel max wait 5 History This command was first av...

Page 2014: ...el Example The following command sets the wait time at 5 milliseconds configure wireless ports 1 5 interface 2 ap scan off channel min wait 5 History This command was first available in ExtremeWare 6...

Page 2015: ...ple The following example configures the interval between probe request packets to be 10 ms for port 1 9 on interface 2 configure wireless ports 1 9 interface 2 ap scan probe interval 10 History This...

Page 2016: ...en new stations are removed from the results table configure wireless ports 18 interface 2 ap scan removed trap on History This command was first available in ExtremeWare 6 2a and added to the i serie...

Page 2017: ...figures port 1 7 and interface 1 to store 100 elements configure wireless ports 1 7 interface 1 ap scan results size 100 History This command was first available in ExtremeWare 6 2a and added to the i...

Page 2018: ...s port 1 7 and interface 1 to have a timeout threshold of 5 seconds configure wireless ports 1 7 interface 1 ap scan results timeout 5 History This command was first available in ExtremeWare 6 2a and...

Page 2019: ...assive scanning Example The following example enables the port range 1 15 1 24 using interface 1 to enable probes configure wireless ports 1 15 1 24 interface 1 ap scan send probe on History This comm...

Page 2020: ...to send an SNMP trap when an AP has changed configure wireless ports 20 interface 1 ap scan updated trap on History This command was first available in ExtremeWare 6 2a and added to the i series in 7...

Page 2021: ...are shown in Table 31 Example The following command configures a channel for interface 2 on port 5 configure wireless port 5 interface 2 channel auto History This command was first available in Extre...

Page 2022: ...2022 ExtremeWare Software 7 3 0 Command Reference Guide Wireless Commands Platform Availability This command is available on Alpine 3800 series only...

Page 2023: ...ace 2 to 100 entries configure wireless ports 1 1 1 30 interface 2 client history size 100 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Avai...

Page 2024: ...the client history table for ports 1 1 1 20 and interface 2 to 100 seconds configure wireless ports 1 1 1 20 interface 2 client history timeout 100 History This command was first available in ExtremeW...

Page 2025: ...pulated Example The following command enables traps for port 1 5 and interface 2 configure wireless port 1 5 interface 2 client scan added trap on History This command was first available in ExtremeWa...

Page 2026: ...owing command disables traps for port 1 9 and interface 1 configure wireless port 1 9 interface 1 client scan removed trap off History This command was first available in ExtremeWare 6 2a and added to...

Page 2027: ...lient scan table as 1000 for port 1 5 and interface 2 configure wireless port 1 5 interface 2 client scan results size 1000 History This command was first available in ExtremeWare 6 2a and added to th...

Page 2028: ...ies in the client scan information table configure wireless ports 1 5 1 20 interface 2 client scan results timeout 150 History This command was first available in ExtremeWare 6 2a and added to the i s...

Page 2029: ...ts the maximum client level to 72 for port 15 and interface 1 configure wireless ports 15 interface 1 max clients 72 History This command was first available in ExtremeWare 6 2a and added to the i ser...

Page 2030: ...is radio interference from other devices then you can adjust the power level to an appropriate level below full power Example The following command configures the power level to half power for interfa...

Page 2031: ...llows you to configure one of the two individual interfaces 1 2 on a port or ports All ports in the port list must have the same wireless port version Example The following command attaches the RF pro...

Page 2032: ...of the two individual interfaces 1 2 on a port or ports All ports in the port list must have the same wireless port version Example The following command attaches the security profile secure wep to in...

Page 2033: ...are shown in Table 32 Example The following command configures the port 14 to transmit at 54 Mbps for both interface 1 and 2 A and G configure wireless port 14 interface 1 transmit rate 54 configure...

Page 2034: ...2034 ExtremeWare Software 7 3 0 Command Reference Guide Wireless Commands Platform Availability This command is available on Alpine 3800 series only...

Page 2035: ...en wired and wireless MAC addresses in the same VLAN or between remote wireless stations associated with a remote Altitude 300 wireless port Example The following command disables bridging interface 2...

Page 2036: ...ess can be public or private IP addresses in class A through class C Example The following command configures the default IP address for port 1 18 configure wireless ports 1 18 192 168 0 100 18 Histor...

Page 2037: ...could designate a physical location as follows bldg 1 pole 14 cube 7 Funk Radius can use this attribute for authentication Example The following command configures the location cube_a7 on port 18 con...

Page 2038: ...al values Example The following command creates a new RF profile called rfprof_alpha from an existing profile called wireless_prof create rf profile rfprof_alpha copy wireless_prof The following comma...

Page 2039: ...terface mode G create rf profile rfprof_alpha mode g The following command can be used to validate that you created the new RF profile as entered show rf profile rfprof_alpha or show rf profile The la...

Page 2040: ...tion Example The following example deletes the RF profile named rfprof_alpha delete rf profile rfprof_alpha The following command can be used to validate that you deleted the RF profile as entered sho...

Page 2041: ...ne Example The following command disables port 1 17 disable wireless ports 1 17 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability Th...

Page 2042: ...ion scheduler to cancel a force disassociation schedule Example The following command cancels all scheduled enable or disable commands disable wireless ports all cancel scheduler History This command...

Page 2043: ...cted port or ports will be disabled each day on the specified hour Example The following command disables port 1 17 every day at 7 a m disable wireless ports every 1 17 7 History This command was firs...

Page 2044: ...ng the command disable wireless ports x x Example The following command disables port 1 35 and interface 1 disable wireless ports 1 35 interface 1 History This command was first available in ExtremeWa...

Page 2045: ...table until it is empty If the scan is restarted the table values from the previous scan will be kept Example The following command disables interface 2 on ports 1 18 to 1 28 disable wireless ports 1...

Page 2046: ...sing interface 1 disable wireless ports 23 interface 1 ap scan off channel at 18 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability T...

Page 2047: ...owing example sets port 1 23 and interface 1 to disable logging of historical information disable wireless ports 1 23 interface 1 client history History This command was first available in ExtremeWare...

Page 2048: ...an improve performance if the network is heavily populated and beginning to show degradation Example The following command disables port 1 31 and interface 2 disable wireless ports 1 31 interface 2 cl...

Page 2049: ...ource address The switch looks up the UDP request packet on the local subnet that contains the AP s MAC address which contains the needed IP address All APs on the subnet receive this message The AP w...

Page 2050: ...n data Although voice traffic can tolerate some degree of error recovery it can be noticeable to users This command allows you to enable QoS for VoIP on the port and interface level Example The follow...

Page 2051: ...on June 29 2005 at 3 p m disable wireless ports 1 18 time 6 29 2005 15 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability This comma...

Page 2052: ...le wireless ports Example The following command enables port 1 17 enable wireless ports 1 17 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Av...

Page 2053: ...d port or ports will be enabled each day on the specified hour Example The following command enables port 1 17 every day at 7 a m enable wireless ports every 1 17 7 History This command was first avai...

Page 2054: ...he following command enables port 1 35 and interface 1 enable wireless ports 1 35 interface 1 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform A...

Page 2055: ...e Altitude 300 The Altitude 300 continues to carry user traffic during scans operating on the current channel on channel scans Example The following command enables interface 2 on ports 1 18 to 1 28 e...

Page 2056: ...e The following command enables port 23 using interface 1 enable wireless ports 23 interface 1 ap scan off channel at 18 History This command was first available in ExtremeWare 6 2a and added to the i...

Page 2057: ...sociated client Example The following example sets port 1 23 and interface 1 to keep historical information enable wireless ports 1 23 interface 1 client history History This command was first availab...

Page 2058: ...wing command enables port 1 31 and interface 2 enable wireless ports 1 31 interface 2 client scan History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platfo...

Page 2059: ...rce address The switch looks up the UDP request packet on the local subnet that contains the AP s MAC address which contains the needed IP address All APs on the subnet receive this message The AP wit...

Page 2060: ...n data Although voice traffic can tolerate some degree of error recovery it can be noticeable to users This command allows you to enable QoS for VoIP on the port and interface level Example The follow...

Page 2061: ...llowing command enables port 1 18 on June 29 2005 at 3 p m enable wireless ports 1 18 time 6 29 2005 15 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0...

Page 2062: ...dress 192 168 0 100 port number Location Unknown Location Example The following example resets all the wireless ports to the default values reset wireless ports History This command was first availabl...

Page 2063: ...ower level full Transmit rate 54 Mbps Example The following example resets all of interface 1 ports to the default values reset wireless ports interface 1 History This command was first available in E...

Page 2064: ...RF profile named rfprof_alpha show rf profile rfprof_alpha The output from this command is similar to Profile Name rfprof_alpha Mode G Beacon Interval 1000 DTIM 100 Fragmentation Length 2345 RTS Thre...

Page 2065: ...rofile Name DEFAULT_BG Mode B_G Beacon Interval 40 DTIM 2 Fragmentation Length 2345 RTS Threshold 2330 Preamble Long Short Retry 4 Long Retry 7 Interfaces 63 1 1 2 1 2 2 1 3 2 1 4 2 1 5 2 1 6 2 1 7 2...

Page 2066: ...hort Short Retry 1 Long Retry 1 No interfaces bound to this RF profile Profile Name MinSetting_B Mode B Beacon Interval 20 DTIM 1 Fragmentation Length 256 RTS Threshold 0 Preamble Long Short Retry 1 L...

Page 2067: ...00 Fragmentation Length 2345 RTS Threshold 2330 Preamble Long Short Retry 255 Long Retry 255 No interfaces bound to this RF profile Profile Name MaxSetting_BG Mode B_G Beacon Interval 1000 DTIM 100 Fr...

Page 2068: ...d to this RF profile Profile Name MaxBeacon_G Mode G Beacon Interval 1000 DTIM 100 Fragmentation Length 2345 RTS Threshold 2330 Preamble Long Short Retry 4 Long Retry 7 No interfaces bound to this RF...

Page 2069: ...etized Data Value Description APMAC MAC address of the discovered AP Capability Capability field from a received information packet in detail output only Channel The channel on which this AP was disco...

Page 2070: ...8 00 04 96 0C 1E F0 5 2 DEFAULT_ESS 3 bss 3 N 01 36 18 00 04 96 0C 23 60 5 2 DEFAULT_ESS 3 bss 11 N 01 36 18 00 04 96 0C 23 B0 5 2 TFZ 0 bss 7 Y 01 36 18 00 04 96 0C 30 A0 5 2 DEFAULT_ESS 0 bss 4 N 01...

Page 2071: ...that is entered Syntax Description Default N A Usage Guidelines None Example The following command displays information about the AP MAC address entered show wireless ap scan results 00 00 00 00 00 a...

Page 2072: ...is command to check the basic wireless configuration on a switch Examples The following example displays information about the wireless configuration show wireless configuration The output of the comm...

Page 2073: ...Add Rem Update Probe ProbeInt OCS Cont Size Timeout Channels 1 5 1 N off off off off 100 N N 128 300 The following example shows the extra details shown when the keyword detail is added to the command...

Page 2074: ...OCS Schedule 1 Currently disabled Schedule 2 Currently disabled Schedule 3 Currently disabled Schedule 4 Currently disabled Schedule 5 Currently disabled Schedule 6 Currently disabled Schedule 7 Curre...

Page 2075: ...e Specifies an interface 1 or 2 detail Optional Specifies to display the information in detailed format Table 34 AP Scan Results Alphabetized Data Value Description APMAC MAC address of the discovered...

Page 2076: ...5 34 1 2 1 00 04 96 0C 23 B0 fz web unsecure 24 bss 64 N 19 05 34 1 2 1 00 04 96 0C 3C 70 fz web unsecure 2 bss 64 N 19 05 34 1 2 1 00 04 96 0C 5F F0 md 5 9 bss 161 Y Y 19 05 34 1 2 1 00 D0 4D 96 D0 C...

Page 2077: ...n 21 23 04 Last Change 21 23 04 Rate Set 6 9 12 18 24 36 48 54 Ext Rate Set Number of Beacons 1 Number of Probes 0 RSS Min 14 Max 14 Avg 7 WPA Information Version 1 Unicast Ciphers TKIP Multicast Ciph...

Page 2078: ...scan for the port and interface show wireless port 1 5 interface 1 ap scan status The output of the command is similar to the following Intf Enabled Num Probes Num APs WaterMark TimeOuts Overflows OC...

Page 2079: ...detail Optional Specifies to display the information in detailed format Fields Description Client MAC MAC address of the client adapter Current State DETECTED AUTHED ASSOC or FORWARD Indicates which...

Page 2080: ...09 5B A1 1F 8F Wireless Port 1 1 Current State FORWARD Last State Change 4 42 39 Authentication Type PSK Encryption Type AES ESS ID fz wpa psk aes Client VLAN SKSPVlan Client Priority 0 Received Signa...

Page 2081: ...tory and diagnostic features on port 1 25 and interface 1 show wireless ports 1 25 interface 1 client history configuration The output of the command is similar to Intf Enabled TableSize Timeout 1 25...

Page 2082: ...1 25 and interface 1 based on the MAC address of the client show wireless ports 1 25 interface 1 client history diagnostics 00 0D 54 98 AC 35 The output of the command is similar to Interface 1 25 1...

Page 2083: ...Guide 2083 Events In Associated Enters 1 Errors 0 MGMT Action 0 Time Outs 0 Events In Forwarding Enters 1 MGMT Action 0 Time Outs 1 History This command was first available in ExtremeWare 6 2a and add...

Page 2084: ...ace 1 client history mac layer 00 0D 54 98 AC 35 The output of the command is similar to Intf 1 25 1 AP Mac address 00 0D 54 98 AC 35 Authentication Information Authenticated Y Total AUTH REQ 1 Total...

Page 2085: ...1 Total ASSOC OK 1 Total ASSOC Fail 0 Association Error Information Last Error Time 00 00 00 Last Error Type NONE Errors by Type Rate Mismatch 0 Capability 0 Counter Measure 0 Cipher Suite 0 Max Asso...

Page 2086: ...pecifies one or more ports or slots and ports On a modular switch can be a list of slots and ports On a stand alone switch can be one or more port numbers May be in the form 1 2 1 2 3 5 all Specifies...

Page 2087: ...story status ExtremeWare Software 7 3 0 Command Reference Guide 2087 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability This command...

Page 2088: ...ved on off Timeout Parameter specified for scan timeouts Max Size Parameter specified for the number of entries for the table Examples The following example displays the current configuration of the c...

Page 2089: ...configuration ExtremeWare Software 7 3 0 Command Reference Guide 2089 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability This comman...

Page 2090: ...9 37 36 N 1 25 2 00 09 5B 92 43 63 262 34 1 19 37 37 N 1 25 2 00 09 5B 68 27 A6 482 43 1 19 37 37 N 1 25 2 00 09 5B 66 ED F3 390 47 1 19 37 35 N 1 25 2 00 09 5B 66 E4 C9 314 12 1 19 37 30 N 1 25 2 00...

Page 2091: ...FA 30 24 1 19 37 13 N 1 25 2 00 0D 88 65 75 E0 196 21 1 19 37 35 N 1 25 2 00 0D 54 99 16 C3 89 12 1 19 37 36 N 1 25 2 00 09 5B A2 75 37 251 24 1 19 37 32 N 1 25 2 00 0D 54 98 AC 35 126 30 1 19 37 36 N...

Page 2092: ...ddress 00 03 7F BE FE 9D show wireless port 5 interface 1 client scan results 00 03 7F BE FE 9D It produces output similar to the following Intf Source Probe REQs Last RSS Channel Last SeenClient 5 1...

Page 2093: ...imeouts LastElement Total Probes 5 1 0 0 0 0 0 0 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 portlist Specifies one or more ports or slots and ports...

Page 2094: ...2094 ExtremeWare Software 7 3 0 Command Reference Guide Wireless Commands Platform Availability This command is available on Alpine 3800 series only...

Page 2095: ...f the command is similar to Port Intf State RF Prof Sec Prof TxRate Power Chan Max Cl Bridging 1 26 1 EN rf_26 Unsecure 54 FULL 0 100 EN 1 27 1 EN rf_27 Unsecure 54 FULL 0 100 EN 1 28 1 EN rf_28 Unsec...

Page 2096: ...Channel 0 Max Clients 100 Wireless Bridging Enabled Wireless Interface 1 28 1 State Enabled RF Profile rf_28 Security Profile Unsecure Transmit Rate 54 Power FULL Channel 0 Max Clients 100 Wireless Br...

Page 2097: ...guration ExtremeWare Software 7 3 0 Command Reference Guide 2097 History This command was first available in ExtremeWare 6 2a and added to the i series in 7 3 0 Platform Availability This command is a...

Page 2098: ...ays rf status of all active ports of the switch show wireless ports all interface 1 rf status The output of the command is similar to Port Intf Tx Rate Channel Noise Floor 1 37 1 54 64 85 1 38 1 54 64...

Page 2099: ...ates 6 9 12 18 24 36 48 54 Supported Modes A Wireless Interface 1 38 1 Transmit Rate 54 Beacon Interval 40 DTIM 2 Preamble Short Long Retry 7 Short Retry 4 Fragmentation Length 2345 RTS Threshold 2330...

Page 2100: ...e following example displays the security setting of all active wireless ports of the switch show wireless ports all interface 2 security status The output of the command is similar to Port Intf Dot11...

Page 2101: ...38 2 Dot11 Authentication open Network Authentication none ESS Name fz open wep 64 Encryption wep64 Specified WEP Keys 0 Default WEP Key 0 SSID in Beacon on User VLAN SKSPVlan Use Dynamic Vlan Yes No...

Page 2102: ...1 show wireless ports 1 5 1 34 interface 1 stats The output of the command is similar to 802 11 Interface Statistics Port Intf Frames TX Frag TX Frag RX MC Frag TX MC Frag RX WEP Error Errors 2 1 927...

Page 2103: ...ample displays the status for wireless ports 3 on interface 1 show wireless ports 3 interface 1 status The output of the command is similar to Intf St Tx Rate Power Ch ESS Max Cl Last State Change 3 1...

Page 2104: ...ying secondary 3 Jul 26 17 40 00 2 DOT1X 00 0C 41 2B E4 27 Exhausted retries on RADIUS servers 3 Jul 26 17 39 54 Failed with primary radius server Trying secondary 3 Jul 26 17 20 41 2 Client 00 0D 88...

Page 2105: ...ted to 7 3 Jan 01 00 00 11 1 Long Retry Limit updated to 7 3 Jan 01 00 00 11 2 Short Retry Limit updated to 4 3 Jan 01 00 00 11 1 Short Retry Limit updated to 4 3 Jan 01 00 00 11 1 Preamble mode set t...

Page 2106: ...2106 ExtremeWare Software 7 3 0 Command Reference Guide Wireless Commands...

Page 2107: ...secondary image You can download a new image into either one of these and you can select which image will load on the next switch reboot The configuration is the customized set of parameters that you...

Page 2108: ...he unconfigure configuration mode command Example The following command sets the default startup configuration for the switch to enhanced mode in which the switch will start up with all ports disabled...

Page 2109: ...done from the server named tftphost from the ASCII file primeconfig txt residing in directory configs archive on the server configure download server primary tftphost configs archive prime_config txt...

Page 2110: ...ng Alpine I O modules Alpine Ethernet I O modules green stripe and Alpine Access I O modules silver stripe The Standard mode LED lights when the switch is in extended mode Auto In auto mode the switch...

Page 2111: ...Guide 2111 Example The following command specifies that the Alpine 3802 operates in standard mode configure switch standard History This command was first available in ExtremeWare 6 1 8 Platform Avai...

Page 2112: ...ough a special BootROM menu see the ExtremeWare Software User Guide Use of the hostname parameter requires that DNS be enabled Example The following command downloads a bootROM image from the tftp ser...

Page 2113: ...the switch has rebooted you should save the configuration to the primary or secondary configuration area to retain it through a power cycle You can include a save command at the end of the configurati...

Page 2114: ...txt incremental History This command was first available in ExtremeWare 2 0 Support for the hostname parameter was introduced in ExtremeWare 4 0 Support for incremental downloads was introduced in Ex...

Page 2115: ...elines This command cancels the scheduled download command completely not just the next scheduled daily download The download configuration every hour command must be issued again to resume automatic...

Page 2116: ...command to specify The TFTP server and the configuration file from which the downloaded configuration will be obtained Whether this TFTP server is the primary server or the secondary backup TFTP serve...

Page 2117: ...e parameter requires that DNS be enabled For ExtremeWare 7 1 0 and higher the following features are available on the Alpine and BlackDiamond chassis You can update the operational images for all inst...

Page 2118: ...The download image process proceeds with each slot starting at slot 1 If the main ExtremeWare image cannot be found the download image process is discontinued If a specific image file is not found fo...

Page 2119: ...b35 mpls Download to slot 3 successful Slot 4 Primary bank Downloading image v710b35 oc3 Download to slot 4 successful Slot 7 Primary bank Downloading image v710b35 atm3 Download to slot 7 successful...

Page 2120: ...to slot 7 successful History This command was available in ExtremeWare 2 0 Support for the hostname parameter was introduced in ExtremeWare 4 0 Support for the slot parameter was introduced in Extrem...

Page 2121: ...configuration to the location used on the last reboot Usage Guidelines The configuration takes effect on the next reboot Example The following command save the current switch configuration in the seco...

Page 2122: ...After using the unconfigure switch all command the show configuration output displays the VLAN default without any ports assigned The ports still belong to the VLAN default as the show vlan output co...

Page 2123: ...guration mismatch will likely cause the switch to operate differently after failover Use the synchronize command to replicate all saved images and configurations from the master to the slave However i...

Page 2124: ...lt configuration mode Usage Guidelines Use this command to remove an enhanced mode configuration and reset the configuration to the default standard configuration mode To configure the default startup...

Page 2125: ...ed the default configuration mode will be reset to the standard mode in which the switch boots with all ports in forwarding mode To configure the default startup configuration for the switch use the c...

Page 2126: ...2126 ExtremeWare Software 7 3 0 Command Reference Guide Configuration and Image Commands Platform Availability This command is available on all platforms...

Page 2127: ...or to one or more different switches Send a copy of the configuration file to Extreme Networks Technical Support for problem solving purposes If every time is specified the switch automatically saves...

Page 2128: ...guration to the file configbackup txt on the TFTP server named tftphost every night at 10 15 p m upload configuration tftphost configbackup txt every 22 15 History This command was available in Extrem...

Page 2129: ...uidelines This command cancels the scheduled upload command completely not just the next scheduled daily upload You must re issue the upload configuration every hour command to resume automatic upload...

Page 2130: ...ommand was available in ExtremeWare 2 0 Support for the slot parameter was introduced in ExtremeWare 7 0 0 The slot parameter is applicable to the Alpine and BlackDiamond chassis Support for the all k...

Page 2131: ...owing command configures the switch to use the primary image on the next reboot use image primary History This command was first available in ExtremeWare 2 0 Support for the slot parameter was introdu...

Page 2132: ...2132 ExtremeWare Software 7 3 0 Command Reference Guide Configuration and Image Commands...

Page 2133: ...s used for EMS are detailed in this document in Chapter 10 Commands for Status Monitoring and Statistics Until all the systems in ExtremeWare are converted you may need to use a mix of EMS and debug t...

Page 2134: ...levels to the factory settings of level 0 Syntax Description This command has no arguments or variables Default N A Usage Guidelines None Example The following command resets the debug trace levels to...

Page 2135: ...SB Accounting DBUG DSA Vlan vlan1 Vlan ID 4091 DBUG DSA processDSBMessage rsp type 2 from slot 6 DBUG DSA npGenPipe sendMsg 0x8093f70c sends to slot 5 len 68 DBUG DSA npGenPipeAllocTCB TCB allocated b...

Page 2136: ...SBMessage rsp type 2 from slot 6 DBUG DSA npGenPipe sendMsg 0x8093f70c sends to slot 5 len 68 DBUG DSA npGenPipeAllocTCB TCB allocated by Accounting DSB Accounting DBUG DSA Vlan Default Vlan ID 1 DBUG...

Page 2137: ...s Higher levels also record the messages recorded at lower levels Example The following command sets the reporting level for BOOTP relay errors to 3 configure debug trace bootprelay 3 History This com...

Page 2138: ...ult The default level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform...

Page 2139: ...corded Example The following command enables debug trace for link detection configure debug trace debug link 1 The following command disables debug trace for link detection configure debug trace debug...

Page 2140: ...this tool if the egress list of a cache is incorrect if there are missing cache entries or if the DVMRP task has been intermittently suspended Example The following command sets the reporting level f...

Page 2141: ...eWare Software 7 3 0 Command Reference Guide 2141 DBUG DVMR dvcareq c 213 Build Cache for 192 168 3 10 224 10 253 4 History This command was first available in ExtremeWare 6 1 Platform Availability Th...

Page 2142: ...nfigure debug trace dvmrp hello 3 vlan v49 Following is the log output at this level INFO SYST serial admin configure debug trace dvmrp hello 4 vlan v49 DBUG DVMR dvrx c 151 Rx Hello from 192 168 200...

Page 2143: ...re debug trace dvmrp hello ExtremeWare Software 7 3 0 Command Reference Guide 2143 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all pl...

Page 2144: ...if a multicast stream cannot be stopped or does not come down to the receiver after the IGMP snooping entry is verified Example The following command sets the reporting level for DVMRP message errors...

Page 2145: ...s on a common VLAN to monitor when a neighbor is added or deleted Example The following command sets the reporting level for DVMRP neighbor errors to 3 configure debug trace dvmrp neighbor 3 vlan v49...

Page 2146: ...59 Rx Report from 192 168 200 2 in VLAN v49 DBUG DVMR dvrx c 298 Rx route 10 1 2 0 24 Metric 0 1 from 192 168 200 2 DBUG DVMR dvrtrx c 330 Replace RT 10 1 2 0 24 Metrix 1 Flag 01 4 DBUG DVMR dvrx c 29...

Page 2147: ...2 168 200 2 DBUG DVMR dvrtrx c 330 Replace RT 192 168 1 3 32 Metrix 1 Flag 00 0 DBUG DVMR dvrttx c 492 Tx periodic report on VLAN v49 Len 49 DBUG DVMR dvrx c 159 Rx Report from 192 168 200 2 in VLAN v...

Page 2148: ...orded at lower levels Example The following command sets the reporting level for DVMRP timer errors to 3 configure debug trace dvmrp timer 3 vlan v49 Following is the log output at this level INFO SYS...

Page 2149: ...EAPS eaps_runtime c 852 pdu Health Pdu DBUG EAPS eaps_runtime c 843 DEBUG vlanId 10 eapsdInst 0 DBUG EAPS eaps c 520 DEBUG Found Control Vlan EapsInst 0 DBUG EAPS eaps c 368 DEBUG Wowie Received EAPS_...

Page 2150: ...EAPS eaps_runtime c 1673 Complete state unchanged EAPS man1 DBUG EAPS eaps_runtime c 931 Pdu Health Pdu EAPS man1 MAC 00 01 30 33 14 00 RcvdSeq 14850 CurrSeq History This command was first available...

Page 2151: ...3 89 148 Nexthop 30 0 0 9 Nfg ffff DBUG SYST i 3 Changing Nexthop fg fffc Source 24 3 89 147 Nexthop 30 0 0 8 Nfg fffe DBUG SYST i 2 Changing Nexthop fg fffc Source 24 3 89 146 Nexthop 30 0 0 7 Nfg f...

Page 2152: ...rListDelEntry Checking server entry 0x866c2efc 1 4 DBUG SYST redirectServerListDelEntry 0x8 66c2f5c 0 4 DBUG SYST redirectServerListDelEntry Checking server entry 0x866c198c 2 4 DBUG SYST redirectServ...

Page 2153: ...stats 3 History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on all platforms debug level Specifies a debug level 0 Records error messages such...

Page 2154: ...es ldap Specifies LDAP messages nntp Specifies NNTP messages pop3 Specifies POP3 messages smtp Specifies SMTP messages socks Specifies SOCKS messages telnet Specifies Telnet messages tftp Specifies TF...

Page 2155: ...If you do not configure a filter debug trace records messages at the debug level you specify for every service on every IP address When you save your configuration you also save your configured filte...

Page 2156: ...2156 ExtremeWare Software 7 3 0 Command Reference Guide Troubleshooting Commands Platform Availability This command is available on all platforms...

Page 2157: ...interface No free new entry Filter out multicast and broadcast source address Header too short ARP Ethernet IP Invalid hw prot length Wrong length 2 Records the following errors Router interface down...

Page 2158: ...168 192 12 DBUG SYS arpresolve Filled entry for 192 168 192 12 00 00 86 54 7f 2a DBUG SYS arpresolve START ac 0x82f3d6e0 m 0x849a6c00 IP 192 168 192 12 DBUG SYS arpresolve Filled entry for 192 168 19...

Page 2159: ...AP Traverse Stuffing entry into packet DBUG XSAP SAP Traverse Ignoring type 0278 DBUG XSAP SAP Traverse Ignoring type 026b DBUG XSAP SAP Traverse Ignoring type 0640 DBUG XSAP SAP Traverse Ignoring typ...

Page 2160: ...2160 ExtremeWare Software 7 3 0 Command Reference Guide Troubleshooting Commands Platform Availability This command is available on all platforms...

Page 2161: ...Log cleared INFO SYST serial admin clear log DBUG KERN 0x0881347d82 00 03 DBUG KERN 0x0881347d72 00 02 00 00 36 12 00 01 00 01 00 00 10 69 00 02 6 i DBUG XRIP Sending Rsp msg to f0001964 ff ff ff ff f...

Page 2162: ...icks 1 to rsp INFO EAPS eaps_runtime c 1449 State Change Complete Failed EAPS man1 INFO EAPS eaps_runtime c 1018 Pdu Link Down Pdu EAPS man1 MAC 00 01 30 32 ef 00 INFO EAPS eaps_runtime c 303 Primary...

Page 2163: ...ecorded at lower levels Example The following command sets the reporting level for IPX RIP route errors to 2 configure debug trace ipxrip route 2 Following is the log output at this level DBUG XRIP Ad...

Page 2164: ...he default level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Avai...

Page 2165: ...rs to 3 configure debug trace ipxsap message 3 Following is the log output at this level INFO USER admin logged in through console DBUG XSAP Generating SAP query opcode 0001 svc type ffff INFO SYST Po...

Page 2166: ...vel range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS tech...

Page 2167: ...he debug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8...

Page 2168: ...Guidelines The debug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in Extrem...

Page 2169: ...Usage Guidelines The debug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in...

Page 2170: ...0 Usage Guidelines The debug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available i...

Page 2171: ...ug level range is 0 to 5 Higher levels record more verbose messages Higher levels also record the messages recorded at lower levels History This command was first available in ExtremeWare v6 1 8 IS IS...

Page 2172: ...eated 3 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP DBUG IPHS last message repeated 2 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP debug level Specifies a debug level...

Page 2173: ...00000003 DBUG MPLS mpls_lsp_endpt c 765 MPLS Initiating SPF caculation for unbinded LSP to 10 3 1 1 DBUG MPLS mpls_lsp_endpt c 759 Cannot unbind LSP to 10 3 1 1 32 Type 1 nhop 10 0 1 2 without route e...

Page 2174: ...100 12 32 nHop 10 0 2 2 DBUG MPLS mpls_rdb c 578 mpls_rdb_callback add route to 192 168 100 12 32 nhop 10 0 2 2 watch 0 orig 33 INFO MPLS mpls_gpp c 1617 Create ILM for FecIp 10 3 1 1 NhlfeIx 1324 End...

Page 2175: ...Skipping FDB refresh for 10 3 1 1 due to LSP DBUG IPHS last message repeated 3 times DBUG IPHS Skipping FDB refresh for 10 3 1 1 due to LSP DBUG IPHS last message repeated 3 times DBUG IPHS Skipping...

Page 2176: ...IG NewSt UPS_RLS_AWT OldSt ESTABLISHED EV RTE_RECOMP_REQ DBUG MSIG NH 10 0 1 2 4 SESS 10 0 2 1 0 Peer 100 100 61 1 0 DBUG MSIG UP_FSM FEC 10 3 1 1 32 DBUG MSIG NH 10 0 1 2 4 NewNH_NoRouteToDestination...

Page 2177: ...g trace npcard 3 History This command was first available in an ExtremeWare IP Technology Services Release based on ExtremeWare v6 1 8b12 Platform Availability This command is available on the MPLS Po...

Page 2178: ...s incorrect if there are missing cache entries or if any multicast stream jitters Example The following command sets the reporting level for PIM cache errors to 3 configure debug trace pim cache 3 Fol...

Page 2179: ...142 168 100 101 235 48 13 0 entry timer starting for 210 DBUG PIM PIM 142 168 100 101 235 48 13 0 fwd extending entry s life DBUG PIM PIM ProcRegister NoBorder rp 15 2 1 1 src 15 1 6 3 DBUG PIM PIM P...

Page 2180: ...s level INFO SYST msm a console admin configure debug trace pim hello 3 vlan all INFO SYST Log cleared INFO SYST msm a console admin clear log static DBUG PIM PIM Receiving Hello pkt of len 18 from sr...

Page 2181: ...en 18 from src 15 1 4 2 thro 15 1 4 1 DBUG PIM PIM Xmitting Hello pkt of len 18 from src 15 2 1 1 to 224 0 0 13 DBUG PIM PIM Xmitting Hello pkt of len 18 from src 15 1 4 1 to 224 0 0 13 DBUG PIM PIM R...

Page 2182: ...orting level for PIM message errors to 3 configure debug trace pim message 3 Following is the log output at this level INFO SYST msm a console admin configure debug trace pim message 3 vlan all DBUG P...

Page 2183: ...prunes 0 DBUG PIM PIM ProcJPG handling 227 37 32 5 255 255 255 255 DBUG PIM PIM ProcJoin src 0 0 0 0 rp 15 1 6 1 type g DBUG PIM PIM ProcJoinPrune joins 1 prunes 0 DBUG PIM PIM ProcJPG handling 227 3...

Page 2184: ...d sets the reporting level for PIM neighbor errors to 3 configure debug trace pim neighbor 3 Following is the log output at this level INFO SYST msm a console admin configure debug trace pim neighbor...

Page 2185: ...e debug trace pim neighbor ExtremeWare Software 7 3 0 Command Reference Guide 2185 History This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all pl...

Page 2186: ...e debug trace pim rp mgmt 3 Following is the log output at this level INFO SYST msm a console admin configure debug trace pim rp mgmt 3 INFO SYST Log cleared INFO SYST msm a console admin clear log st...

Page 2187: ...nger listed DBUG PIM PIM rpDelEntry 15 1 8 2 Bootstrap DBUG PIM PIM ProcBootstrap rp 15 1 8 2 no longer listed DBUG PIM PIM rpDelEntry 15 2 1 1 Bootstrap DBUG PIM PIM ProcBootstrap rp 15 2 1 1 no long...

Page 2188: ...essage errors to 3 configure debug trace rip message 3 Following is the log output at this level DBUG RIP Sending Rsp to 224 0 0 9 at 1012569160 950000 INFO SYST msm a console admin configure debug tr...

Page 2189: ...lt level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availability...

Page 2190: ...llowing command sets the reporting level for RIP triggered update errors to 3 configure debug trace rip triggered update 3 Following is the log output at this level DBUG RIP Suppressing triggered upda...

Page 2191: ...y This command was first available in ExtremeWare 6 1 Platform Availability This command is available on all platforms debug level Specifies a debug level 0 Records serious errors that can cause 3DNS...

Page 2192: ...s command is available on all platforms debug level Specifies a debug level 0 Records critical failures such as insufficient memory unexpected internal state 1 Records unaccepted or dropped connection...

Page 2193: ...levels Example The following command sets the reporting level for SLB failover errors to 3 configure debug trace slb failover 3 History This command was first available in ExtremeWare 6 1 Platform Ava...

Page 2194: ...07 09 2003 15 09 14 02 Info TRXDIAG trxdiag CPU FLASH test on BPLNE returns pass 07 09 2003 15 09 14 02 Info TRXDIAG trxdiag CPU NVRAM test on BPLNE returns pass 07 09 2003 15 09 14 03 Info TRXDIAG t...

Page 2195: ...Info TRXDIAG trxdiag QUAKE test on BPLNE returns pass The following command disables debug trace for transceiver testing configure debug trace transceiver test 0 History This command was first availab...

Page 2196: ...ult level is 0 Usage Guidelines This command is not currently supported Example This command is not currently supported History This command was first available in ExtremeWare 6 1 Platform Availabilit...

Page 2197: ...RRP to 5 configure debug trace vrrp 5 Following is the log output at this level DBUG SYS Vlan Vrid vlan1 1 Putting virtualMac 00 00 5e 00 01 01 into arpcom DBUG SYS Vlan Vrid vlan1 1 Putting systemMac...

Page 2198: ...ansmit vrid 1 pri 255 cnt_ip_addr 1 auth_type 0 advert 1 ipaddr 10 45 208 10 DBUG SYS Sending vrrp pkt 0x8313d630 len 40 to 224 0 0 18 if rif0 mac 00 00 5e 00 01 01 DBUG KERN Start of chain 84859200 D...

Page 2199: ...e debug trace vrrp hello ExtremeWare Software 7 3 0 Command Reference Guide 2199 History This command was first available in ExtremeWare 6 2 1 Platform Availability This command is available on all pl...

Page 2200: ...n ExtremeWare 6 1 9 extended Selects an extended diagnostic routine to run at boot up Takes the switch fabric and ports offline and performs extensive ASIC ASIC memory packet switch and packet loopbac...

Page 2201: ...configure diagnostics ExtremeWare Software 7 3 0 Command Reference Guide 2201 Platform Availability This command is available on i series BlackDiamond switches...

Page 2202: ...e show switch or show configuration commands If you reboot the switch manually or use the run msm failover or run diagnostics commands the time interval and count are both reset to 0 Example The follo...

Page 2203: ...sage Guidelines The IP address specified is also used if no address is provided in the upload system dump command The IP address must be reachable through the VLAN mgmt Example The following command c...

Page 2204: ...ault is 0 Usage Guidelines The minimum non zero value is 120 seconds The minimum recommended value is 480 seconds Example The following command configures the system dump timeout to 600 seconds config...

Page 2205: ...e For typical network device monitoring debug mode should remain disabled the default setting Debug mode should only be enabled when advised by technical support or when advanced diagnosis is required...

Page 2206: ...or typical network device monitoring debug mode should remain disabled the default setting Debug mode should only be enabled when advised by technical support or when advanced diagnosis is required Th...

Page 2207: ...t Syntax Description Default N A Usage Guidelines None Example The following command looks up the IP address of a computer with the name of bigserver xyz_inc com nslookup bigserver xyz_inc com History...

Page 2208: ...r ExtremeWare 6 2 If you specify UDP as the protocol the from source and with record route options are not supported udp Specifies that the ping request should use UDP instead of ICMP continuous Speci...

Page 2209: ...e host ping continuous 123 45 67 8 History This command was first available in ExtremeWare 2 0 This command was modified in ExtremeWare 6 1 to support the hostname from and with record route parameter...

Page 2210: ...al diagnostics are short series of tests that do not test all the internal ASIC functions On a management module the extended diagnostic routine tests all components including the internal ASIC functi...

Page 2211: ...aken offline To prevent this first configure sys health check auto recovery online Are you sure you want to continue yes no y Extended diagnostics can cause the following messages to appear in the log...

Page 2212: ...ir locations are recorded in the blade s EEPROM Up to eight occurrences can be recorded If a defect was found during the scan process the module is reset the defective buffer is mapped out from furthe...

Page 2213: ...acket 00 34 26 49 80 64 50 14 1f 60 54 1d a3 27 ee 5c 44 10 01 fd 1b 2a 15 0c 4e 79 71 c5 3c 19 1e 6b 36 83 20 40 39 35 79 67 2e 25 6c 7e ae 01 06 49 10 61 0e 30 3d da 55 9d 02 67 40 62 2a 2f 3a 64 47...

Page 2214: ...levels Syntax Description accounting Specifies accounting level bootprelay Specifies BOOTP relay level card state change Specifies card state change level debug link Specifies link detection level dv...

Page 2215: ...t Specifies PIM RP level pppauth Specifies PPP authorization level ppphexdump Specifies the level of the PPP hex dump rip message Specifies RIP message level rip route change Specifies RIP route level...

Page 2216: ...o the vlan option is not available with all systems Example The following command displays the debug trace levels configured show debug trace Following is the output from this command OSPF SPF 3 Flows...

Page 2217: ...l slot msm a msm b slot number Depending on the software version running on your switch or the model of your switch additional or different diagnostics information might be displayed Example The follo...

Page 2218: ...f diagnostics run on a stand alone switch show diagnostics The results are similar to the following Diagnostic Test Result run on Thu Sep 14 16 01 15 2000 CPU System Passed Registers Test Passed Memor...

Page 2219: ...ameter is specified the port mapping display is limited to active external I O ports only Used in conjunction with the show diagnostics backplane utilization command these commands are helpful for dia...

Page 2220: ...is specified the port mapping display is limited to active external I O ports only Used in conjunction with the show diagnostics backplane utilization command these commands are helpful for diagnosin...

Page 2221: ...ured backplane links between active modules and MSM modules The number of packets transmitted and received The percentage of bandwidth used on the link Backplane utilization statistics can be reset by...

Page 2222: ...xtremeWare 6 2 1 this applies only to the G8Xi G8Ti G12SXi and F48Ti MSM blades are not supported in this release In ExtremeWare 6 2 2 this apples to all i series modules and switches Example The foll...

Page 2223: ...emeWare Software 7 3 0 Command Reference Guide 2223 recoverable 0 mem ID 9 bit position 0 address 0x18baa History This command was first available in ExtremeWare 6 2 1 Platform Availability This comma...

Page 2224: ...all MAC cache entries learned on the VLAN Specifying the TLS tunnel displays all MAC cache entries learned on the TLS tunnel The MAC address VLAN name and TLS tunnel name are displayed for each MAC ca...

Page 2225: ...ver To specify the timeout use the following command configure system dump timeout Example The following command displays the system dump server IP and dump timeout show system dump Following is the o...

Page 2226: ...Command Reference Guide Troubleshooting Commands Dump timeout 300 seconds History This command was first available in ExtremeWare 6 2 2 Platform Availability This command is available on platforms wi...

Page 2227: ...es To control the output by limiting the output detail use the brief keyword Use the show tech support all form of the command to display all output for the following show commands show version show s...

Page 2228: ...the software version running on your switch additional or different show command output is displayed Example The following command displays all the show command output on the switch show tech support...

Page 2229: ...sistent or periodic high CPU utilization You can change the display by typing a character while the display is active These single character commands are as follows The following table defines the tas...

Page 2230: ...antly checking for packets to be sent up by the hardware ASICs It only releases control of the CPU if packets are sent to the switch or if timer functions signal another task to become active tCardTas...

Page 2231: ...nd switch s redundant MSM CPU modules tOpenPort A server load balancing SLB Layer 4 Layer 7 health check sub task tospfMsgTask The OSPF message processing task tospfMsgTask implements and manages the...

Page 2232: ...over The server load balancing failover task tSlowTimer The slow timer task tSlowTimer maintains a queue of timer events triggering periodic or single event functions Typically these events have a lar...

Page 2233: ...D T 0 0 tbgpTimerT 81eaecd0 80749164 DELAY 0 0 tBgQosMon 81eb6be0 8075ab2c PEND 0 0 tEapsTask 82bd2a00 8075ab2c PEND 0 0 tSwFault 82c75530 8075ab2c PEND 0 0 tFdbAgeTas 82c85530 8075ab2c PEND 0 0 tFdbS...

Page 2234: ...Description This command has no arguments or variables Default N A Usage Guidelines Returns the system dump configuration to the defaults Example The following command unconfigures the system dump unc...

Page 2235: ...Guidelines If you do not specify an IP address the configured system dump server IP address is used Example The following command transfers a system dump to 10 10 10 1 upload system dump 10 10 10 1 3...

Page 2236: ...2236 ExtremeWare Software 7 3 0 Command Reference Guide Troubleshooting Commands...

Page 2237: ...story 1992 clear wireless ports interface client scan counters 1993 clear wireless ports interface client scan results 1994 config inline power backup source 1903 1932 config inline power detection 19...

Page 2238: ...configure bgp peer group maximum prefix 1430 configure bgp peer group next hop self 1432 configure bgp peer group nlri filter 1433 configure bgp peer group no dampening 1434 configure bgp peer group...

Page 2239: ...ellotime 1056 configure elsm hold threshold 1058 configure enhanced dos protect ipfdb agingtime 782 configure enhanced dos protect ipfdb cache size 783 configure enhanced dos protect ipfdb learn windo...

Page 2240: ...275 configure isis vlan authentication 1277 configure isis vlan cost 1278 configure isis vlan hello multiplier 1279 configure isis vlan non passive 1276 configure isis vlan passive 1276 configure isis...

Page 2241: ...e ports auto off 238 configure ports auto on 240 configure ports auto polarity 242 configure ports clock source 1698 configure ports display string 243 configure ports e1 clock source 1698 configure p...

Page 2242: ...sflow backoff threshold 644 configure sflow collector 645 configure sflow poll interval 646 configure sflow sample rate 647 configure sharing address based 249 configure slb esrp 453 configure slb fai...

Page 2243: ...sl privkey pregenerated 831 configure stpd add vlan 1005 configure stpd delete vlan 1007 configure stpd forwarddelay 1008 configure stpd hellotime 1009 configure stpd maxage 1010 configure stpd mode 1...

Page 2244: ...timeout 160 configure wireless country code 2003 configure wireless default gateway 2005 configure wireless management vlan 2006 configure wireless port interface ap scan added trap 2011 configure wi...

Page 2245: ...ueue management 161 disable application examination ports 1873 disable aps 1677 disable arp learning 868 disable arp learning ports 869 disable arp learning vlan 870 871 disable bgp 1451 disable bgp a...

Page 2246: ...netlogin logout privilege 877 disable netlogin ports 878 disable netlogin ports vlan 878 disable netlogin session refresh 879 disable ospf 1337 disable ospf capability opaque lsa 1338 disable ospf ex...

Page 2247: ...891 enable access list log 891 enable accounting 1611 enable alt queue management 172 enable application examination ports 1877 enable aps 1679 enable arp learning 892 893 enable arp learning vlan 89...

Page 2248: ...7 enable ospf export direct 1359 enable ospf export rip 1361 enable ospf export static 1362 enable ospf export vip 1363 enable ospf originate default 1365 enable ospf originate router id 1366 enable p...

Page 2249: ...rface ap scan off channel 2056 enable wireless ports interface client history 2057 enable wireless ports interface client scan 2058 enable wireless ports interface iapp 2059 enable wireless ports inte...

Page 2250: ...pstats 1246 show ipxconfig 1589 show ipxfdb 1590 show ipxrip 1591 show ipxroute 1592 show ipxsap 1593 show ipxservice 1594 show ipxstats 1595 show l2stats 1549 show log 713 show log components 717 sho...

Page 2251: ...show sflow statistics 741 show sharing address based 303 show slb 3dns members 579 show slb connections 580 show slb esrp 582 show slb failover 583 show slb global 585 show slb gogo mode 587 show slb...

Page 2252: ...os protect ipfdb learn limit 955 unconfigure enhanced dos protect learn window 956 958 unconfigure enhanced dos protect ports 957 unconfigure fdb scan failure action 376 unconfigure fdb scan period 37...

Page 2253: ...ExtremeWare Software 7 3 0 Command Reference Guide 2253 Index of Commands upload log 759 upload system dump 2235 use configuration 2130 use image 2131 V vplstrace 1854 1986 X xping 1599...

Page 2254: ...2254 ExtremeWare Software 7 3 0 Command Reference Guide Index of Commands...

Reviews:

No comments

Related manuals for ExtremeWare 7.3.0

NETWORK AND SECURITY MANAGER 2010.4 - REV1

Brand: Juniper Pages: 244

Caplio Utility for Macintosh

Brand: Ricoh Pages: 19

BREEZE-MANAGING EXTERNAL BREEZE REPORTS

Brand: MACROMEDIA Pages: 18

JBoss Developer Studio 3.0

Brand: Red Hat Pages: 78

BlackArmor WS 110

Brand: Seagate Pages: 2

Brand: Steinberg Pages: 1

Web SmartDeviceMonitor Standard

Brand: Ricoh Pages: 1

Brand: Better Light Pages: 99

Xbox360 MotoGP08

Brand: Capcom Pages: 28

MOBILE ANTI-VIRUS FOR SERIES 60

Brand: F-SECURE Pages: 90

Brand: Unibrain Pages: 77

Brand: Oracle Pages: 130

507B1-90A211-1301 - NavisWorks Manage 2010

Brand: Autodesk Pages: 472

15606-011408-9300 - MAP R6.3 UPG

Brand: Autodesk Pages: 208

VCLOUD REQUEST MANAGER

Brand: VMware Pages: 2

Brand: Bai cells Pages: 24

Brand: Ableton Pages: 535

Gatekeeper/Border Controller API D14172.01

Brand: TANDBERG Pages: 84

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands