Lenovo RackSwitch G8332 Command Reference Manual Download Page 364 | Manualshive

Page: 364 / 776

background image

364

G8332 Command Reference for ENOS 8.4

ldap

server

security

starttls

Configures

LDAP

to

encrypt

LDAP

credentials

(DN

and

password)

using

Start

Transport

Layer

Security

(StartTLS)

when

sending

a

bind

request

to

the

LDAP

server.

This

requires

the

LDAP

client

to

present

a

Certificate

Authority

(CA)

root

certificate.

The

CA

root

certificate

can

be

downloaded

from

the

LDAP

server.

For

more

details,

see

The

LDAP

client

and

LDAP

server

do

not

need

to

initiate

a

separate

TLS

session

before

any

LDAP

messages

are

exchanged.

StartTLS

encrypts

a

non

‐

encrypted

LDAP

connection

by

wrapping

it

with

TLS

at

any

time

during

or

after

the

connection

has

been

established.

Thus,

there

is

no

need

to

use

a

separate

port

for

encrypted

LDAP

communication.

Note

:

This

option

is

available

only

in

LDAP

enhanced

mode.

Command

mode

:

Global

configuration

[no]

ldap

server

security

mutual

Enables

or

disables

LDAP

to

request

the

LDAP

server

to

also

provide

its

own

Certificate

Authority

(CA)

root

certificate

for

authentication

by

the

LDAP

client.

The

LDAP

server

and

the

LDAP

client

both

compare

the

other’s

CA

root

certificate

against

their

own.

If

both

certificates

match,

the

authentication

succeeds.

If

either

certificate

does

not

match,

the

authentication

fails.

Note

:

This

option

is

available

only

in

LDAP

enhanced

mode.

Command

mode

:

Global

configuration

[no]

ldap

server

srv

Enables

or

disables

the

switch

to

look

up

LDAP

server

information

by

retrieving

a

Service

(SRV)

record

associated

with

LDAP

from

the

configured

Domain

Name

System

(DNS).

For

more

details

on

DNS,

see

Configuration”

.

Note

:

This

option

is

available

only

in

LDAP

enhanced

mode.

Command

mode

:

Global

configuration

ldap

server

secondary

host

<IPv4

address>

[data

port|mgt

port]

Configures

the

secondary

LDAP

server

with

an

IPv4

address.

Note

:

This

option

is

available

only

in

LDAP

legacy

mode.

Command

mode:

Global

configuration

no

ldap

server

secondary

host

Deletes

the

secondary

LDAP

server.

Command

mode:

Global

configuration

ldap

server

ipv6

secondary

host

<IPv6

address>

[data

port|

|mgt

port]

Configures

the

secondary

LDAP

server

with

an

IPv6

address.

Note

:

This

option

is

available

only

in

LDAP

legacy

mode.

Command

mode:

Global

configuration

Table 153.

LDAP

Server

Configuration

Options

(continued)

Command Syntax and Usage

«
...
362
363
364
365
366
...
»

Summary of Contents for RackSwitch G8332

Page 1: ...Lenovo RackSwitch G8332 ISCLI Industry Standard CLI Command Reference for Lenovo Enterprise Network Operating System 8 4 ...

Page 2: ... that comes with the product First Edition September 2016 Copyright Lenovo 2016 Portions Copyright IBM Corporation 2014 LIMITED AND RESTRICTED RIGHTS NOTICE If data or software is delivered pursuant a General Services Administration GSA contract use reproduction or disclosure is subject to restrictions set forth in Contract No GS 35F 05925 Lenovo and the Lenovo logo are trademarks of Lenovo in the...

Page 3: ...ess Table Information 41 SNMPv3 Group Table Information 42 SNMPv3 Community Table Information 42 SNMPv3 Target Address Table Information 43 SNMPv3 Target Parameters Table Information 44 SNMPv3 Notify Table Information 44 SNMPv3 Dump Information 45 General System Information 46 Show Specific System Information 47 Show Recent Syslog Messages 48 User Status 49 LDAP Information 50 Layer 2 Information ...

Page 4: ... Address List Information 91 Show All ARP Entry Information 91 Dynamic ARP Inspection Information 93 BGP Information 94 BGP Peer Information 95 BGP Group Information 96 BGP Summary Information 97 Dump BGP Information 97 OSPF Information 98 OSPF General Information 100 OSPF Interface Information 100 OSPF Loopback Information 101 OSPF Port Information 101 OSPF Information Route Codes 101 OSPF Databa...

Page 5: ...uality of Service Information 140 802 1p Information 141 WRED and ECN Information 142 Access Control List Information 143 Access Control List Information 144 Access Control List VxLAN Information 146 Access Control IPv6 List Information 146 NAT Information 148 NAT Status Information 148 NAT Translations Information 149 OpenFlow Information 150 OpenFlow Global Configuration Information 151 OpenFlow...

Page 6: ... Ethernet Information 187 DCBX Information 188 DCBX Control Information 189 DCBX Feature Information 190 DCBX ETS Information 192 DCBX PFC Information 194 DCBX Application Protocol Information 195 ETS Information 197 PFC Information 198 FCoE Initialization Protocol Snooping Information 199 FIP Snooping FCoE Forwarder Information 200 FCoE Forwarder Information 201 Fabric Login Database Information ...

Page 7: ...P Statistics 258 TCP Statistics 260 UDP Statistics 262 IGMP Statistics 263 MLD Statistics 265 MLD Global Statistics 266 OSPF Statistics 268 OSPF Global Statistics 269 OSPFv3 Statistics 273 OSPFv3 Global Statistics 274 VRRP Statistics 278 PIM Statistics 279 Routing Information Protocol Statistics 280 DHCP Statistics 281 DHCP Snooping Statistics 281 OpenFlow Statistics 282 Management Processor Stati...

Page 8: ...Server Configuration 366 System SNMP Configuration 369 SNMPv3 Configuration 372 User Security Model Configuration 374 SNMPv3 View Configuration 375 View based Access Control Model Configuration 376 SNMPv3 Group Configuration 377 SNMPv3 Community Table Configuration 378 SNMPv3 Target Address Table Configuration 379 SNMPv3 Target Parameters Table Configuration 380 SNMPv3 Notify Table Configuration 3...

Page 9: ...ion 424 ACL Re Mark Configuration 425 ACL VxLAN Configuration 426 ACL IPv6 Configuration 427 IPv6 Filtering Configuration 428 IPv6 TCP UDP Filtering Configuration 429 IPv6 Re Mark Configuration 431 IPv6 Metering Configuration 433 ACL Log Configuration 434 ACL Group Configuration 435 Management ACL Configuration 436 MACL IPv4 Filtering Configuration 436 MACL TCP UDP Filtering Configuration 438 VMAP...

Page 10: ...on 498 IP Interface Configuration 500 IPv6 Neighbor Discovery Configuration 503 Default Gateway Configuration 506 IPv4 Static Route Configuration 507 IP Multicast Route Configuration 509 ARP Configuration 510 ARP Local Proxy Configuration 510 ARP Static Configuration 511 Dynamic ARP Inspection Configuration 512 IP Forwarding Configuration 513 Network Address Translation Configuration 514 Network F...

Page 11: ... IGMP Advanced Configuration 580 IGMP Querier Configuration 581 IKEv2 Configuration 584 IKEv2 Preshare Key Configuration 584 IKEv2 Proposal Configuration 585 IKEv2 Identification Configuration 586 IPsec Configuration 587 IPsec Transform Set Configuration 587 IPsec Traffic Selector Configuration 588 IPsec Dynamic Policy Configuration 589 IPsec Manual Policy Configuration 590 Domain Name System Conf...

Page 12: ...tion 633 RMON Event Configuration 634 RMON Alarm Configuration 635 VMReady Configuration 637 VM Policy Bandwidth Management 637 VM Group Configuration 639 VM Check Configuration 642 VM Profile Configuration 643 VMWare Configuration 645 Miscellaneous VMReady Configuration 646 Edge Virtual Bridge Configuration 647 Edge Virtual Bridge VSI Type Database Configuration 648 Edge Virtual Bridge VSI Type P...

Page 13: ... Setting an Entitlement Serial Number 698 Rebooting the Switch 699 Changing the Switch Profile 700 Using the Boot Management Menu 701 Boot Recovery Mode 702 Recover from a Failed Image Upgrade using TFTP 703 Recovering from a Failed Image Upgrade using XModem Download 705 Physical Presence 707 Chapter 7 Maintenance Commands 709 Forwarding Database Maintenance 711 Debugging Commands 712 SSH Debuggi...

Page 14: ...C Statement 760 Industry Canada Class A Emission Compliance Statement 760 Avis de Conformité à la Réglementation dʹIndustrie Canada 760 Australia and New Zealand Class A Statement 760 European Union Compliance to the Electromagnetic Compatibility Directive 760 Germany Class A Compliance Statement 761 Japan VCCI Class A Statement 762 Japan Electronics and Information Technology Industries Associati...

Page 15: ...eferred to as G8332 throughout this document This guide lists each command together with the complete syntax and a functional description from the IS Command Line Interface ISCLI For documentation on installing the switches physically see the Lenovo Installation Guide for your RackSwitch G8332 For details about configuration and operation of your G8332 see the Lenovo RackSwitch G8332 Application G...

Page 16: ...is Book This book is intended for network installers and system administrators engaged in configuring and maintaining a network The administrator should be familiar with Ethernet concepts IP addressing Spanning Tree Protocol and SNMP configuration parameters ...

Page 17: ...hich affect switch performance immediately but do not alter permanent switch configurations such as temporarily disabling ports The commands describe how to activate or deactivate optional software features Chapter 6 Boot Options describes the use of the primary and alternate switch images how to load a new software image and how to reset the software to factory defaults Chapter 7 Maintenance Comm...

Page 18: ...jects such as window names dialog box names and icons as well as user interface objects such as buttons and tabs italicized body text This italicized type indicates book titles special terms or words to be emphasized angle brackets Indicate a variable to enter based on the description inside the brackets Do not type the brackets when entering the command Example If the command syntax is ping IP ad...

Page 19: ...ace ip or show interface ip 1 128 vertical line Separates choices for command keywords and arguments Enter only one of the choices Do not type the vertical line when entering the command Example If the command syntax is show portchannel 1 208 hash information you must enter show portchannel 1 208 or show portchannel hash or show portchannel information Table 1 Typographic Conventions continued Typ...

Page 20: ...20 G8332 Command Reference for ENOS 8 4 ...

Page 21: ...be used effectively This guide describes the individual ISCLI commands available for the G8332 The ISCLI provides a direct method for collecting switch information and performing switch configuration Using a basic terminal the ISCLI allows you to view information and statistics about the switch and to perform any necessary configuration This chapter explains how to access the Industry Standard Com...

Page 22: ...re terminal Each mode provides a specific set of commands The command set of a higher privilege mode is a superset of a lower privilege mode all lower privilege mode commands are accessible when using a higher privilege mode The following table lists the ISCLI command modes Table 2 ISCLI Command Modes Command Mode Prompt Command used to enter or exit User EXEC RS G8332 Default mode entered automat...

Page 23: ...t to Global Configuration mode end VLAN RS G8332 config vlan Enter VLAN Configuration mode from Global Configuration mode vlan VLAN ID 1 4094 Exit to Global Configuration mode exit Exit to Privileged EXEC mode end Router OSPF RS G8332 config router ospf Enter OSPF Configuration mode from Global Configuration mode router ospf Exit to Global Configuration mode exit Exit to Privileged EXEC mode end R...

Page 24: ...t Configuration mode from Global Configuration mode ip pim component 1 2 Exit to Global Configuration mode exit Exit to Privileged EXEC mode end IKEv2 Proposal RS G8332 config ikev2 prop Enter IKEv2 Proposal Configuration mode from Global Configuration mode ikev2 proposal Exit to Global Configuration mode exit Exit to Privileged EXEC mode end MLD Configuration RS G8332 config router mld Enter Mult...

Page 25: ...N Gateway Configuration mode from Global Configuration mode nwv nsx gw Exit to Global Configuration mode exit Exit to Privileged EXEC mode exit FC Zone Configuration RS G8332 config zone Enter Fibre Channel Zone Configuration mode from Global Configuration mode zone name 1 64 characters vlan VLAN ID 2 4094 Exit to Global Configuration mode exit Exit to Privileged EXEC mode end FC Zoneset Configura...

Page 26: ... from the command line interface and log out copy running config startup config Write configuration changes to non volatile flash memory logout Exit from the command line interface and log out traceroute Use this command to identify the route used for station to station connectivity across the network The format is as follows traceroute hostname IP address max hops 1 32 msec delay 1 4294967295 dat...

Page 27: ...s optional msec delay Sets the number of milliseconds between attempts optional length Sets the ping request payload size optional source IP address Sets the IP source address for the IP packet optional ttl Sets the Time to live in the IP header tos Sets the Type of Service bits in the IP header dont fragment Sets the don t fragment bit in the IP header only for IPv4 addresses By default the manag...

Page 28: ...logical Telnet port or service number By default the management port is used To use a specific port use the following options data port data port management port mgt port Note The DNS parameters must be configured if specifying hostnames show history This command displays the last ten issued commands show who Displays a list of users who are currently logged in show line Displays a list of users w...

Page 29: ...h distinguish the command from the others in the same mode For example consider the following full command and a valid abbreviation or Tab Completion By entering the first letter of a command at any prompt and pressing Tab the ISCLI displays all available commands or options that begin with that letter Entering additional letters further refines the list of commands or options displayed If only on...

Page 30: ...strators can also make temporary operator level changes as well they must be aware of the interactions between temporary and permanent changes Access to switch functions is controlled through the use of unique surnames and passwords Once you are connected to the switch via local Telnet remote Telnet or SSH you are prompted to enter a password The default user names password for each access level a...

Page 31: ...ut By default the switch will disconnect your Telnet session after ten minutes of inactivity This function is controlled by the following command which can be set from 1 to 60 minutes or disabled when set to 0 system idle 0 60 Command mode Global Configuration ...

Page 32: ...32 G8332 Command Reference for ENOS 8 4 ...

Page 33: ...or disabled Port description For details see page 164 Command mode All show interface trunk port alias or number Displays port status information including Port alias and number Whether the port uses VLAN Tagging or not Port VLAN ID PVID Port description VLAN membership FDB Learning status Flooding status For details see page 165 Command mode All show interface transceiver Displays the status of t...

Page 34: ...lude exclude section begin head 1 2000 last 1 2000 Displays the current syslog configuration followed by the most recent 2000 syslog messages messages displays the most recent 2000 syslog messages only severity displays syslog messages of the specified severity level reverse displays syslog messages starting with the most recent message displays syslog messages that match one of the following filt...

Page 35: ... address of management interface Hardware version and part number Software image file and version number Configuration name Log in banner if one is configured Internal temperatures Fan status Power supply status For details see page 46 Command mode All images total 18528 rw r r 1 root root 10038789 Jan 8 14 16 image1 rw r r 1 root root 8932087 Jan 7 20 16 image2 rw r r 1 root root 16 Jan 8 14 18 u...

Page 36: ...mber of lines per screen displayed in the CLI for the current session A value of 0 means paging is disabled Command mode All show line console length Displays the number of lines per screen displayed in the CLI by default for console sessions A value of 0 means paging is disabled Command mode All show line vty length Displays the number of lines per screen displayed in the CLI by default for Telne...

Page 37: ...Options Command Syntax and Usage show errdisable information Displays all Error Disable and Recovery information Command mode All show errdisable link flap information Displays ports that have been disabled due to excessive link flaps Command mode All show errdisable recovery Displays a list ports with their Error Recovery status Command mode All show errdisable timers Displays a list of active re...

Page 38: ...isplays View based Access Control information To view a sample see page 41 Command mode All show snmp server v3 community Displays information about the community table information To view a sample see page 42 Command mode All show snmp server v3 group Displays information about the group including the security model user name and group name To view a sample see page 42 Command mode All show snmp ...

Page 39: ...ivacy protocol show snmp server v3 user Displays User Security Model USM table information To view the table see page 39 Command mode All show snmp server v3 view Displays information about view subtrees mask and type of view To view a sample see page 40 Command mode All Table 9 SNMPv3 Information Options continued Command Syntax and Usage Engine ID 80 00 4F 4D 03 08 17 F4 8C E8 00 usmUser Table U...

Page 40: ...how snmp server v3 view Command mode All View Name Subtree Mask Type iso 1 3 included v1v2only 1 3 included v1v2only 1 3 6 1 6 3 15 excluded v1v2only 1 3 6 1 6 3 16 excluded v1v2only 1 3 6 1 6 3 18 excluded Table 11 SNMPv3 View Table Information Parameters Field Description View Name Displays the name of the view Subtree Displays the MIB subtree as an OID string A view subtree is the set of all MI...

Page 41: ...zed for the group when writing objects The notify view represents the set of object instances authorized for the group when sending a notification The following command displays SNMPv3 access information show snmp server v3 access Command mode All Group Name Model Level ReadV WriteV NotifyV v1v2grp snmpv1 noAuthNoPriv iso iso v1v2only admingrp usm authPriv iso iso iso Table 12 SNMPv3 Access Table ...

Page 42: ...inmd5 admingrp usm adminsha admingrp usm adminshaaes admingrp Table 13 SNMPv3 Group Table Information Parameters Field Description Sec Model Displays the security model used which is any one of USM SNMPv1 SNMPv2 and SNMPv3 User Name Displays the name for the group Group Name Displays the access name of the group Index Name User Name Tag trap1 public v1v2only v1v2trap Table 14 SNMPv3 Community Tabl...

Page 43: ...Table Information Parameters Field Description Name Displays the locally arbitrary but unique identifier associated with this snmpTargetAddrEntry Transport Addr Displays the transport addresses Port Displays the SNMP UDP port number Taglist This column contains a list of tag values which are used to select target addresses for a particular SNMP message Params The value of this object identifies an...

Page 44: ...isplays the securityName which identifies the entry on whose behalf SNMP messages will be generated using this entry Sec Model Displays the security model used when generating SNMP messages using this entry The system may choose to return an inconsistentValue error if an attempt is made to set this variable to a value for a security model the system does not support Sec Level Displays the level of...

Page 45: ...ViewTreeFamily Table View Name Subtree Mask Type iso 1 included v1v2only 1 included v1v2only 1 3 6 1 6 3 15 excluded v1v2only 1 3 6 1 6 3 16 excluded v1v2only 1 3 6 1 6 3 18 excluded vacmSecurityToGroup Table All active SNMPv3 groups are listed below Sec Model User Name Group Name snmpv1 v1v2only v1v2grp usm adminmd5 admingrp usm adminsha admingrp usm adminshaaes admingrp snmpCommunity Table Index...

Page 46: ...1 active configuration Boot kernel version 8 4 1 0 USB Boot disabled Temperature CPU Local 32 C Temperature Rear In Ex 28 C Temperature Front In Ex 25 C Temperature Hot Spot 32 C Temperature Asic Max 36 C Temperature MDA 30 C System Warning at 85 C Shutdown at 95 C Set Point is 70 C Fan 1 Module 1 7021rpm 60pwm 23 Front To Back Fan 2 Module 1 7447rpm 60pwm 23 Front To Back Fan 3 Module 2 6733rpm 6...

Page 47: ...t number Log in banner if one is configured Internal temperatures Fan status Power supply status Show Specific System Information The following table lists commands used for displaying specific entries from the general system information screen Sample output for command show version brief Displays the software version number image file and configuration name Table 18 Specific System Information Op...

Page 48: ...to the oldest Current syslog configuration host 0 0 0 0 via MGT port severity 7 facility 0 host2 0 0 0 0 via MGT port severity2 7 facility2 0 console enabled severity level of console output 6 severity level of write to flash 7 syslogging all features Syslog source loopback interface not set Nov 2 5 49 53 172 25 254 19 INFO console System log cleared by user admin Nov 2 5 51 23 172 25 254 19 CRIT ...

Page 49: ...ccess user Command mode All except User EXEC This command displays the status of the configured usernames Usernames user enabled offline oper disabled offline admin Always Enabled online 1 session Current User ID table 1 name paul dis cos user password valid offline Current strong password settings strong password status disabled ...

Page 50: ...MGT port Current LDAP server null LDAP port 389 Retries 3 Timeout 5 LDAP server OFF Backdoor access disabled LDAP domain name LDAP user attribute uid Current LDAP settings LDAP server 1 10 10 43 55 389 via MGT port LDAP server 2 LDAPserver109 389 via DATA port LDAP server 3 null LDAP server 4 null LDAP Bind Mode Login Credentials LDAP Bind DN null Retries 3 Timeout 5 LDAP server OFF Backdoor acces...

Page 51: ...Displays Hot Links information For details see page 63 Command mode All show layer2 information Dumps all Layer 2 switch information available 10K lines or more depending on your configuration If you want to capture dump data to a file set your communication software on your workstation to capture session data prior to issuing the dump commands Command mode All show lldp information Displays Link ...

Page 52: ... page 71 Command mode All show spanning tree blockedports Lists the ports blocked by each STP instance Command mode All show spanning tree mst configuration Displays the current MSTP settings Command mode All show spanning tree mst 0 32 information Displays Spanning Tree information for the specified instance 0 is used for CIST CIST bridge information includes Priority Hello interval Maximum age v...

Page 53: ... information Displays information about a specific Spanning Tree Group For details see page 72 Command mode All show vlag Displays vLAG Information For details see page 69 Command mode All show vlan Displays VLAN configuration information for all configured VLANs including VLAN Number VLAN Name Status Port membership of the VLAN For details see page 81 Command mode All Table 19 Layer 2 Information...

Page 54: ...one 2 force auth unauthorized initialize initialize none 3 force auth unauthorized initialize initialize none Table 20 802 1X Parameter Descriptions Parameter Description Port Displays each port s alias Auth Mode Displays the Access Control authorization mode for the port The Authorization mode can be one of the following force unauth auto force auth Auth Status Displays the current authorization ...

Page 55: ...s the Backend Authorization State The Backend Authorization state can be one of the following initialize request response success fail timeout idle Assigned VLAN Displays corresponding VLAN associated with the port Table 20 802 1X Parameter Descriptions continued Parameter Description ...

Page 56: ...ddress Displays a single database entry by its MAC address You are prompted to enter the MAC address of the device Enter the MAC address using the format xx xx xx xx xx xx For example 08 00 20 12 34 56 You can also enter the MAC address using the format xxxxxxxxxxxx For example 080020123456 Command mode All show mac address table configured static Displays all configured static MAC entries in the ...

Page 57: ...formation Options Command Syntax and Usage show mac address table multicast Displays all Multicast MAC entries in the FDB Command mode All show mac address table multicast address MAC address Displays a single multicast entry by its MAC address You are prompted to enter the MAC address of the device Enter the MAC address using the format xx xx xx xx xx xx For example 08 00 20 12 34 56 You can also...

Page 58: ...ess has not yet been learned by the switch but has only been seen as a destination address When an address is in the unknown state no outbound port is indicated although ports which reference the address as a destination are listed under Reference ports Clearing Entries from the Forwarding Database To clear the entire FDB refer to Forwarding Database Maintenance on page 711 Mac address Aging Time ...

Page 59: ...on Command mode All show lacp aggregator aggregator ID Displays detailed information about the LACP aggregator Command mode All show lacp information Displays a summary of LACP information For details see page 60 Command mode All show lacp information state down off up Displays a summary of LACP information for the interfaces that are down off or up Command mode All show interface port port alias ...

Page 60: ...ith each port trunk This value represents the LACP Link Aggregation Group LAG number status Displays the status of LACP on the port up or down minlinks Displays the minimum number of active links in the LACP Link Aggregation Group LAG port mode adminkey operkey selected prio aggr trunk status minlinks 1 active 65535 65535 yes 32768 1 65 up 1 2 active 65535 65535 yes 32768 1 65 up 1 3 active 65535 ...

Page 61: ...er trigger information Displays a summary of Layer 2 Failover information For details see page 61 Command mode All show failover trigger trigger number information Displays detailed information about the selected Layer 2 Failover trigger Command mode All Failover On Trigger 1 Manual Monitor Enabled Trigger 1 limit 0 Monitor State Up Member Status 17 Operational Control State Auto Controlled Member...

Page 62: ...p LAG the port is aggregated If any of these conditions are not true the monitor port is considered to be failed A control port is considered to be operational if the monitor trigger state is Up Even if a port s link status is Down Spanning Tree status is Blocking and the LACP status is Not Aggregated from a teaming perspective the port status is Operational since the trigger is Up A control port ...

Page 63: ...ng Hot Links status on or off Status of BPDU flood option Status of FDB send option Status and configuration of each Hot Links trigger Hot Links Info Trigger Current global Hot Links setting ON Hot Links BPDU flood disabled Hot Links FDB update disabled FDB update rate pps 200 Current Trigger 1 setting enabled name Trigger 1 preempt enabled fdelay 1 sec Active state None Master settings port 1 Bac...

Page 64: ...ber tlv evb Displays Edge Virtual Bridge EVB type length value TLV information for the specified port Command mode All show lldp receive Displays information about the LLDP receive state machine Command mode All show lldp remote device 1 256 detail Displays information received from LLDP capable devices For more information see page 65 Command mode All show lldp remote device port port alias or nu...

Page 65: ...rt Index Remote Chassis ID Remote Port Remote System Name DMAC 1 1 00 00 c9 e5 47 e3 00 00 c9 e5 47 e3 NB 1 2 00 00 c9 e5 47 e3 00 00 c9 e5 47 e3 NnTB 2 3 00 90 fa 75 0e c5 00 90 fa 75 0e c5 NB 14 4 a8 97 dc d1 f8 00 60 NB 14 5 a8 97 dc d1 f8 00 60 NnTB 15 6 a8 97 dc d1 f8 00 80 NB 15 7 a8 97 dc d1 f8 00 80 NnTB 18 8 00 90 fa 3d 48 49 00 90 fa 3d 48 49 NB MGT 9 74 99 75 c5 08 00 6 G8052 54 NB Loca...

Page 66: ...irectional TX RX loop neighbor mismatch Table 26 UDLD Information Options Command Syntax and Usage show udld Displays all UDLD information Command mode All show interface port port alias or number udld Displays UDLD information about the selected port Command mode All UDLD information on port 1 Port enable administrative configuration setting Enabled Port administrative mode normal Port enable ope...

Page 67: ...e link is connected Table 27 802 1x Discovery Information Options Command Syntax and Usage show interface port port alias or number dot1x Displays 802 1x information about the selected port Command mode All show dot1x Displays all 802 1x information Command mode All show dot1x port alias or number Displays 802 1x information for specified port Command mode All Quiet Tx Max Supp Server ReAuth ReAut...

Page 68: ...on about the selected port and the peer to which the link is connected Table 28 OAM Discovery Information Options Command Syntax and Usage show interface port port alias or number oam Displays OAM information about the selected port Command mode All show oam Displays all OAM information Command mode All OAM information on port 1 State enabled Mode active Link up Satisfied Yes Evaluating No Remote ...

Page 69: ...minkey 1 65535 information Displays all vLAG LACP information Command mode All show vlag information Displays all vLAG information Command mode All show vlag isl Displays vLAG Inter Switch Link ISL information Command mode All show vlag peer gateway Displays the current state of the vLAG peer gateway For details see page 70 Command mode All show vlag portchannel 1 104 Displays vLAG static Link Agg...

Page 70: ...is enabled on trunk 13 Protocol Static Current settings enabled ports 13 Current L2 trunk hash settings smac dmac Current L3 trunk hash settings sip dip Current ingress port hash disabled Current L4 port hash disabled Current FCoE trunk hash settings sid did Current peer gateway state disabled vLAG VRRP mode Active vLAG related VRRP information 1 vrid 1 local role master peer role backup 10 vrid 1...

Page 71: ...urrent Root Path Cost Port Hello MaxAge FwdDel 8001 a8 97 dc 8a 86 00 0 0 2 20 15 Prev Root Port Replaced at 8001 74 99 75 be 26 00 24 10 01 50 7 16 2016 Parameters Priority Hello MaxAge FwdDel Aging Topology Change Counts 32769 2 20 15 300 5 Port Prio Cost State Role Designated Bridge Des Port Type 2 128 500 DISC DSB 8051 00 00 00 00 00 00 8002 P2P 4 128 500 DISC DSB 8051 00 00 00 00 00 00 800a P...

Page 72: ... FWD DESG 8000 00 25 03 49 29 00 8026 P2P MGT 0 0 FWD STP turned off for this port Automatic path cost Portchannel cost not the individual port cost Table 30 PVRST RSTP MSTP Port Parameter Descriptions Parameter Description Priority port The Port Priority parameter helps determine which bridge port becomes the designated port In a network topology that has multiple bridge ports connected to a sing...

Page 73: ...he priority in hexadecimal notation and MAC address of the Designated Bridge Designated Port The Designated Port field shows the port on the Designated Bridge to which this port is connected Type Type of link connected to the port and whether the port is an edge port Link type values are AUTO P2P or SHARED Table 30 PVRST RSTP MSTP Port Parameter Descriptions continued Parameter Description ...

Page 74: ...8042 P2P 4 pc1 128 490 FWD ROOT 8001 a8 97 dc 03 d5 00 8042 P2P 11 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 800b P2P 13 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 800d P2P 14 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 800e P2P 16 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 8010 P2P Automatic path cost Portchannel cost not the individual port cost Table 31 RSTP MSTP PVRST Port Parameter Descriptions Param...

Page 75: ...d Bridge shows information about the bridge connected to each port if applicable Information includes the priority in hexadecimal notation and MAC address of the Designated Bridge Designated Port The port ID of the port on the Designated Bridge to which this port is connected Type Type of link connected to the port and whether the port is an edge port Link type values are AUTO P2P or SHARED Table ...

Page 76: ...parameter controls which bridge on the network will become the STP root bridge The lower the value the higher the priority Hello The hello time parameter specifies in seconds how often the bridge transmits a configuration bridge protocol data unit BPDU Any bridge that is not the root bridge uses the root bridge hello value MaxAge The maximum age parameter specifies in seconds the maximum time the ...

Page 77: ...bridge priority and MAC address Path Cost The port path cost is used to help determine the designated port for a segment Hello The hello time parameter specifies in seconds how often the bridge transmits a configuration bridge protocol data unit BPDU Any bridge that is not the root bridge uses the root bridge hello value MaxAge The maximum age parameter specifies in seconds the maximum time the br...

Page 78: ...000 a8 97 dc 88 c9 00 80e8 P2P Automatic path cost Portchannel cost not the individual port cost Table 34 CIST Parameter Descriptions Parameter Description CIST Root The CIST Root shows information about the root bridge for the Common Internal Spanning Tree CIST Values on this row of information refer to the CIST root CIST Regional Root The CIST Regional Root shows information about the root bridg...

Page 79: ... port for a segment Generally speaking the faster the port the lower the path cost A setting of 0 indicates that the cost will be set to the appropriate default after the link speed has been auto negotiated State The state field shows the current state of the port The state field can be either Discarding DISC Learning LRN or Forwarding FWD Role The Role field shows the current role of this port in...

Page 80: ...show portchannel information Command mode All When LAGs are configured you can view the state of each port in the various LAGs Note If Spanning Tree Protocol on any port in the LAG is set to forwarding the remaining ports in the LAG will also be set to forwarding Trunk group 1 Enabled Protocol Static Port state 1 STG 1 forwarding 2 STG 1 forwarding ...

Page 81: ...e VLAN information type lists only the VLAN type for each private VLAN community isolated or primary Command mode All show vlan information Displays information about all VLANs including VLAN number and name VLAN statistics Port membership VLAN status enabled or disabled Protocol VLAN status Spanning Tree membership Private VLAN information Flooding settings VMAP configuration Command mode All sho...

Page 82: ...mbership is represented in slot port format VLAN information includes VLAN Number VLAN Name Status Port membership of the VLAN Protocol VLAN information if available Private VLAN information if available VLAN Name Status Ports 1 Default VLAN ena 1 20 2 VLAN 2 dis 21 22 100 VLAN 100 ena empty 200 VLAN 200 ena empty 300 VLAN 300 ena empty 4095 Mgmt VLAN ena MGT Primary Secondary Type Ports 100 200 i...

Page 83: ...90 Command mode All show ip bgp Displays Border Gateway Protocol BGP information For details see page 97 Command mode All show ip bootp relay Displays the current parameters for the BOOTP Relay broadcast domain Command mode All show ip dhcp snooping Displays DHCP Snooping information For details see page 134 Command mode All show ip dns Displays the current Domain Name System settings Command mode...

Page 84: ...etwork filter settings route map settings Command mode All show ipv6 interface interface number Displays IPv6 interface information For details see page 126 Command mode All show ip match address 1 256 Displays the current the Network Filter configuration Command mode All show ip mroute Displays the current IP multicast routes Command mode All show ip nat Displays NAT status information For detail...

Page 85: ...see page 127 Command mode All show ip policy Displays the current routing policy information Command mode All show ip prefix policy Displays the current Prefix Policy Table configuration Command mode All show ipv6 prefix Displays IPv6 Neighbor Discovery prefix information For details see page 114 Command mode All show ip rip Displays the current Routing Information Protocol RIP configuration For d...

Page 86: ...ipsec manual policy Displays information about manual key management policy for IP security For more information options see page 132 Command mode All show layer3 Dumps all Layer 3 switch information available 10K or more depending on your configuration If you want to capture dump data to a file set your communication software on your workstation to capture session data before issuing the dump com...

Page 87: ...m Command mode All show ip route gateway IP address Displays routes to a single gateway Command mode All show ip route interface interface number Displays routes on a single interface Command mode All show ip route port port alias or number Displays routes on a single port Command mode All show ip route static Displays static routes configured on the switch Command mode All show ip route tag addre...

Page 88: ...0 0 0 0 0 0 0 0 multicast addr 255 255 255 255 255 255 255 255 255 255 255 255 broadcast broadcast Table 39 IP Routing Type Parameters Parameter Description indirect The next hop to the host or subnet destination will be forwarded through a router at the Gateway address direct Packets will be delivered to a destination host or subnet attached to the switch local Indicates a route to one of the swi...

Page 89: ... RIP ospf The address was learned by Open Shortest Path First OSPF bgp The address was learned via Border Gateway Protocol BGP broadcast Indicates a broadcast address martian The address belongs to a filtered group multicast Indicates a multicast address Table 40 IP Routing Tag Parameters continued Parameter Description ...

Page 90: ...onds since the ARP entry was learned For more information see page 91 Command mode All show ip arp data Displays all data ARP entries Command mode All show ip arp find IP address Displays a single ARP entry by IP address Command mode All show ip arp inspection Displays the current Dynamic ARP Inspection DAI configuration settings For details see page 93 Command mode All show ip arp interface port ...

Page 91: ... Up 1 1 1 1 255 255 255 255 08 17 f4 62 64 00 1 2 2 2 2 255 255 255 255 08 17 f4 62 64 00 1 46 0 0 1 255 255 255 255 08 17 f4 62 64 00 4094 3 3 3 20 255 255 255 255 08 17 f4 62 64 00 3 Mgmt ARP entries Total number of Mgmt ARP entries 6 IP address Flags MAC address VLAN Age Port 9 228 143 1 74 99 75 d1 c4 00 4095 0 MGT 9 228 143 11 P 74 99 75 be 20 fe 4095 MGT 9 228 143 62 00 50 56 81 e3 d3 4095 1...

Page 92: ...hows the target port of the ARP entry The Flags field is interpreted as follows Table 42 ARP Flag Parameters Flag Description P Permanent entry created for switch IP interface R Indirect route entry U Unresolved ARP entry The MAC address has not been learned ...

Page 93: ...Inspection Information Options Command Syntax and Usage show ip arp inspection Displays the current DAI configuration settings Command mode All show ip arp inspection interfaces port alias or number Displays the current DAI configuration settings for the selected interfaces Command mode All show ip arp inspection vlan VLAN ID 1 4094 Displays the current DAI configuration settings for the selected ...

Page 94: ... mode All show ip bgp neighbor advertised routes Displays all BGP advertised routes to all neighbors Command mode All show ip bgp neighbor 1 192 advertised routes Displays all BGP advertised routes to a specific peer Command mode All show ip bgp neighbor group Displays BGP group information See page 96 for a sample output Command mode All show ip bgp neighbor information Displays BGP peer informat...

Page 95: ...e See page 97 for a sample output Command mode All Table 44 BGP Peer Information Options continued Command Syntax and Usage BGP Peer Information Static Peers 1 3 5 0 3 version 4 TTL 255 TTL Security hops 0 Remote AS 10000 Local AS 10000 Link type IBGP Remote router ID 3 3 3 3 Local router ID 5 5 5 5 next hop self disabled RR client disabled BGP status established Old status established Total recei...

Page 96: ... this group 97 192 168 128 4 Group 1 toG82642007 TTL 1 Remote AS 200 Local AS 100 Link type EBGP Remote router ID 2 2 1 2 Local router ID 1 1 1 2 Configured Version 4 Negotiated Version 4 Total path attribute out 0 In Total Messages 74 Out Total Messages 74 In Updates 0 Out Updates 0 Established Time 01 12 36 MinAdvTime 00 01 00 Configured holdtime 00 03 00 Negotiated holdtime 00 03 00 Configured ...

Page 97: ...rk IPv4 mask longer_prefix Command mode All The IPv4 network and mask options restrict the output to a specific network in the BGP routing table BGP Peer Summary Information Peer V AS MsgRcvd MsgSent Up Down State 1 205 178 23 142 4 142 113 121 00 00 28 established 2 205 178 15 148 0 148 0 0 never connect Status codes valid best multipath i internal Origin codes i IGP e EGP incomplete Network Mask...

Page 98: ...e All show ip ospf area range 1 16 Displays the current OSPF summary range settings Command mode All show ip ospf area virtual link 1 3 Displays the current OSPF virtual link settings Command mode All show ip ospf area virtual link information Displays information about all the configured virtual links Command mode All show ip ospf general information Displays general OSPF information See page 100...

Page 99: ... information for all ports or a particular port For details see page 101 Command mode All show ip ospf neighbor Displays the status of all the current neighbors Command mode All show ip ospf redistribute Displays the current OSPF redistribute settings Command mode All show ip ospf routes Displays OSPF routing table See page 101 for a sample output Command mode All show ip ospf summary range 0 19 D...

Page 100: ...is 1 16 new lsa received and 34 lsa originated from this router Total number of entries in the LSDB 10 Database checksum sum 0x0 Total neighbors are 1 of which 2 are INIT state 2 are EXCH state 2 are FULL state Number of areas is 2 of which 3 transit 0 nssa Area Id 0 0 0 0 Authentication none Import ASExtern yes Number of times SPF ran 8 Area Border Router count 2 AS Boundary Router count 0 LSA co...

Page 101: ...nated Router ID 0 0 0 0 Ip Address 0 0 0 0 Timer intervals Hello 10 Dead 40 Wait 40 Retransmit 5 Transit delay 1 Neighbor count is 0 If Events 1 Authentication type none Ip Address 10 241 39 82 Area 0 0 0 0 Admin Status UP Router ID 1 1 1 1 State Waiting Priority 1 Designated Router ID 0 0 0 0 Ip Address 0 0 0 0 Backup Designated Router ID 0 0 0 0 Ip Address 0 0 0 0 Timer intervals Hello 10 Dead 4...

Page 102: ...SAs The usage of this command is as follows asbr summary advertising router 20 1 1 1 displays ASBR summary LSAs having the advertising router 20 1 1 1 asbr summary link state id 10 1 1 1 displays ASBR summary LSAs having the link state ID 10 1 1 1 asbr summary self displays the self advertised ASBR summary LSAs asbr summary with no parameters displays all the ASBR summary LSAs Command mode All sho...

Page 103: ... of the LSAs Command mode All show ip ospf database router advertising router router ID IP address link state id link state ID IP address self Displays the router type 1 LSAs with detailed information of each field of the LSAs Command mode All show ip ospf database self Displays all the self advertised LSAs No parameters are required Command mode All show ip ospf database summary advertising route...

Page 104: ...ation Displays OSPFv3 summary ranges Command mode All show ipv6 ospf area virtual link 1 3 Displays the current OSPFv3 virtual link settings Command mode All show ipv6 ospf area virtual link information Displays information about all the configured virtual links Command mode All show ipv6 ospf border routers Displays OSPFv3 routes to an ABR or ASBR Command mode All show ipv6 ospf host 1 128 Displa...

Page 105: ...3 redistribution information to be applied to routes learned from the route table Command mode All show ipv6 ospf request list nbr router ID IP address Displays the OSPFv3 request list If no router ID is supplied it displays the information about all the current neighbors Command mode All show ipv6 ospf retrans list nbr router ID IP address Displays the OSPFv3 retransmission list If no router ID i...

Page 106: ...ary Router Redistributing External Routes from connected metric 10 metric type asExtType1 no tag set Number of Areas in this router 1 Area 0 0 0 0 Number of interfaces in this area is 1 Number of Area Scope Lsa 7 Checksum Sum 0x28512 Number of Indication Lsa 0 SPF algorithm executed 2 times Ospfv3 Interface Information Interface Id 1 Instance Id 0 Area Id 0 0 0 0 Local Address fe80 222 ff fe7d 5d0...

Page 107: ... information If no parameter is supplied it displays condensed information Command mode All show ipv6 ospf database intra prefix detail hex Displays Intra Area Prefix LSAs database information If no parameter is supplied it displays condensed information Command mode All show ipv6 ospf database link detail hex Displays Link LSAs database information If no parameter is supplied it displays condense...

Page 108: ...ipv6 ospf routes Command mode All Dest NextHp Cost Rt Type Area Prefix Length IfIndex 3ffe 10 0 0 0 fe80 290 69ff 30 interArea 0 0 0 0 80 fe90 b4bf vlan1 3ffe 20 0 0 0 fe80 290 69ff 20 interArea 0 0 0 0 80 fe90 b4bf vlan1 3ffe 30 0 0 0 vlan2 10 intraArea 0 0 0 0 80 3ffe 60 0 0 6 fe80 211 22ff 10 interArea 0 0 0 0 128 fe33 4426 vlan2 ...

Page 109: ... Displays the current RIP configuration Command mode All show ip rip interface IP interface number port port alias or number Displays the current RIP interface configuration For more information see page 110 Command mode All show ip rip redistribute Displays the current RIP route redistribute configuration Command mode All show ip rip routes Displays RIP routes For more information see page 110 Co...

Page 110: ...routes RIP Interface Information The following command displays RIP user information show ip rip interface interface number Command mode All IP Routing 30 1 1 0 24 directly connected 3 0 0 0 8 via 30 1 1 11 metric 4 4 0 0 0 16 via 30 1 1 11 metric 16 10 0 0 0 8 via 30 1 1 2 metric 3 20 0 0 0 8 via 30 1 1 2 metric 2 RIP USER CONFIGURATION RIP ON update 30 RIP on Interface 49 101 1 1 10 enabled vers...

Page 111: ...tination IPv6 address Command mode All show ipv6 route gateway IPv6 gateway address Displays routes to a single gateway Command mode All show ipv6 route interface interface number Displays routes on a single interface Command mode All show ipv6 route static Displays the current static route configuration Command mode All show ipv6 route summary Displays a summary of IPv6 routing information includ...

Page 112: ...ow ipv6 route Command mode All Note that the first number inside the brackets represents the metric and the second number represents the preference for the route IPv6 Routing Table 3 entries Codes C Connected S Static O OSPF S 0 1 20 via 2001 2 3 4 1 Interface 2 C 2001 2 3 4 64 1 1 via Interface 2 C fe80 20f 6aff feec f701 128 1 1 ...

Page 113: ...re information see page 113 Command mode All show ipv6 neighbors find IPv6 address Displays a single IPv6 Neighbor Cache entry by IP address Command mode All show ipv6 neighbors interface port port alias or number Displays IPv6 Neighbor Cache entries on a single port Command mode All show ipv6 neighbors static Displays static IPv6 Neighbor Cache entries Command mode All show ipv6 neighbors vlan VL...

Page 114: ...rmation includes information about all configured prefixes The following command displays IPv6 Neighbor Discovery prefix information for an interface show ipv6 prefix interface interface number Command mode All Codes A Address P Prefix Advertisement D Default N Not Advertised L On link Flag is set A Autonomous Flag is set AD 10 64 LA Valid lifetime 2592000 Preferred lifetime 604800 P 20 64 LA Vali...

Page 115: ...ation shows the status of each ECMP route configured on the switch Current ecmp static routes Destination Mask Gateway If GW Status 10 10 1 1 255 255 255 255 100 10 1 1 1 up 200 20 2 2 1 down 10 20 2 2 255 255 255 255 10 233 3 3 1 up 10 20 2 2 255 255 255 255 10 234 4 4 1 up 10 20 2 2 255 255 255 255 10 235 5 5 1 up ECMP health check ping interval 1 ECMP health check retries number 3 ECMP Hash Mec...

Page 116: ...ddress Displays a single IGMP multicast group by its IP address Command mode All show ip igmp groups detail IP address Displays details about an IGMP multicast group including source and timer information Command mode All show ip igmp groups interface port port alias or number Displays all IGMP multicast groups on a single port Command mode All show ip igmp groups portchannel 1 208 Displays all IG...

Page 117: ... for the specified VLAN Command mode All show ip igmp profile 1 16 Displays information about the current IGMP filter Command mode All show ip igmp querier port port alias or number Displays IGMP Querier information for a particular port Command mode All show ip igmp querier vlan VLAN ID 1 4094 Displays IGMP Querier information for a particular VLAN For details see page 118 Command mode All show i...

Page 118: ...nds Querier election type IPv4 or MAC and address Query interval Querier startup interval Maximum query response interval Querier robustness value IGMP version number Current IGMP Querier information IGMP Querier information for vlan 1 Other IGMP querier none Switch querier enabled current state Querier Switch querier type Ipv4 address 1 1 1 1 Switch querier general query interval 125 secs Switch ...

Page 119: ...er is connected IGMP version Mrouter expiration Maximum query response time Querier s Robustness Variable QRV Querier s Query Interval Code QQIC Total entries 5 Total IGMP groups 2 Note The Total IGMP groups number is computed as the number of unique Group Vlan entries Note Local groups 224 0 0 x are not snooped and will not appear Source Group VLAN Port Version Mode Expires Fwd 10 1 1 1 232 1 1 1...

Page 120: ... source address IGMP group address VLAN and port Type of IPMC group Expiration timer value Total number of displayed ipmc groups 4 Legend possible values in Type column SH static host DR dynamic registered SP static primary DU dynamic unregistered SB static backup M mrouter O other Source Group Vlan Port Type Timeleft 232 0 0 1 1 DU 6 sec 232 0 0 2 1 DU 6 sec 232 0 0 3 1 DU 6 sec 232 0 0 4 1 DU 6 ...

Page 121: ...cified IPv6 address Command mode All show ipv6 mld groups interface port port alias or number Displays MLD groups on a single interface port Command mode All show ipv6 mld groups portchannel 1 208 Displays groups on a single port channel Command mode All show ipv6 mld groups vlan VLAN ID 1 4094 Displays groups on a single VLAN Command mode All show ipv6 mld interface 1 126 Displays information for...

Page 122: ... Source Displays the link local address of the reporter Port Vlan Displays the port vlan on which the general query is received Interface Displays the interface number on which the general query is received QRV Displays the Querier s robustness variable value QQIC Displays the Querier s query interval code MaximumResponse Delay Displays the configured maximum query response time Version Displays t...

Page 123: ...x and Usage show ip vrrp Displays the current VRRP parameters Command mode All show ip vrrp group Displays the current configuration information for the virtual router group Command mode All show ip vrrp group track Displays the current configuration for priority tracking for the virtual router Command mode All show ip vrrp information Displays VRRP information For details see page 124 Command mod...

Page 124: ...er identifies virtual routers which are not owned by this device Priority value During the election process the virtual router with the highest priority becomes master Activity status master identifies the elected master virtual router backup identifies that the virtual router is in backup mode init identifies that the virtual router is waiting for a startup event For example once it receives a st...

Page 125: ...own or disabled Note If routing is enabled using the no switchport command in Interface Port mode this command also displays IP interfaces configured on physical ports as well as LACP and LAGs Interface information 1 IP4 192 168 49 50 255 255 255 0 192 168 49 255 vlan 1 DOWN 2 IP6 3003 0 0 0 0 0 0 5 64 vlan 2 up fe80 213 aff fe4f 7c02 128 IP4 192 168 50 50 255 255 255 0 192 168 50 255 vlan 4095 up...

Page 126: ...tatus of ICMP redirects Status of Neighbor Discovery ND Duplicate Address Detection DAD Status of Neighbor Discovery router advertisements Interface information 2 IP6 2001 0 0 0 225 3ff febb bb15 64 vlan 1 up fe80 225 3ff febb bb15 Link local address fe80 225 3ff febb bb15 Global unicast address es 2001 225 3ff febb bb15 64 Anycast address es Not Configured Joined group address es ff02 1 ff02 2 ff...

Page 127: ...tries in the Path MTU cache The PMTU field indicates the maximum packet size in octets that can successfully traverse the path from the switch to the destination node It is equal to the minimum link MTU of all the links in the path to the destination node Path MTU Discovery info Max Cache Entry Number 10 Current Cache Entry Number 2 Cache Timeout Interval 10 minutes Destination Address Since PMTU ...

Page 128: ...ver 3 address 0 0 0 0 Server 4 address 0 0 0 0 Server 5 address 0 0 0 0 Current BOOTP relay option 82 settings OFF Current BOOTP relay option 82 policy Replace Current DHCP Snooping settings Off DHCP Snooping is configured on the following VLANs empty Insertion of option 82 information is Disable Interface Trusted Rate limit pps 1 No none 2 No none 3 1 No none 3 2 No none 3 3 No none 3 4 No none 4...

Page 129: ...s VLAN number and operational status Default gateway information Metric for selecting which configured gateway to use gateway number IP address and health status BootP relay settings IP forwarding settings including the forwarding status of directed broadcasts and the status of ICMP re directs Network filter settings if applicable Route map settings if applicable ...

Page 130: ... show ikev2 ca cert Displays the CA certificate Command mode All show ikev2 host cert Displays the host certificate Command mode All show ikev2 identity Displays IKEv2 identity information Command mode All show ikev2 preshare key Displays the IKEv2 preshare key Command mode All show ikev2 proposal Displays the IKEv2 proposal Command mode All show ikev2 retransmit interval Displays the IKEv2 retran...

Page 131: ... the authentication algorithm type and the Diffie Hellman DH group which determines the strength of the key used in the key exchange process Higher DH group numbers are more secure but require additional time to compute the key The local preshare key Whether IKEv2 is using IPv4 or IPv6 addresses as the ID type IKEv2 retransmit time 20 IKEv2 cookie notification disable IKEv2 authentication method P...

Page 132: ...nformation Command mode All show ipsec manual policy 1 10 Displays manual policy information See page 133 for sample output Command mode All show ipsec sa Displays all security association information Command mode All show ipsec spd Displays all security policy information Command mode All show ipsec traffic selector 1 10 Displays IPsec traffic selector information Command mode All show ipsec tran...

Page 133: ...nd SPI ESP inbound encryption key ESP inbound authentication key ESP outbound SPI ESP outbound encryption key ESP outbound authentication key The interface to which this manual policy has been applied IPsec manual policy 1 IP Address 2002 0 0 0 0 0 0 151 Associated transform ID 1 Associated traffic selector ID 1 IN ESP SPI 9900 IN ESP encryption KEY 3456789abcdef012 IN ESP authentication KEY 23456...

Page 134: ...nooping is configured on the following VLANs empty Insertion of option 82 information is Disable Interface Trusted Rate limit pps 1 No none 5 No none 6 No none 7 No none 8 No none 9 No none 10 No none 11 No none 12 No none 13 No none 14 No none 15 No none Mac Address IP Address Lease seconds Type VLAN Interface 00 00 01 00 02 01 10 0 0 1 1600 dynamic 100 port 1 02 1c 5f d1 18 9c 210 38 197 63 8633...

Page 135: ...rface information To view sample output see page 136 Command mode All show ip pim mroute Displays information about PIM multicast routes For more information about displaying PIM multicast route information see page 138 Command mode All show ip pim neighbor interface number port port alias or number Displays PIM neighbor information To view sample output see page 137 Command mode All show ip pim n...

Page 136: ...M Interface Information The following command displays information about PIM interfaces show ip pim interface Command mode All PIM interface information includes the following for each PIM interface IP address Name and ID Version and mode Neighbor count Query interval Designated Router address Designated Router priority value PIM Component Information Component Id 1 PIM Mode sparse PIM Version 2 E...

Page 137: ...me and ID of interface used to reach the PIM neighbor Up time the time since this neighbor became the neighbor of the local router Expiry Time the minimum time remaining before this PIM neighbor expires Version number Designated Router priority and mode Component ID Override interval LAN delay interval Neighbour IfName Idx Uptime Expiry Ver DRPri Mode CompId Override Lan Address Interval Delay 40 ...

Page 138: ...utes of each type Command mode All show ip pim mroute flags s r w Displays PIM multicast routes based on the selected entry flags Enter flags in any combination s Shortest Path Tree SPT bit r Rendezvous Point Tree RPT bit w Wildcard bit Command mode All show ip pim mroute group multicast group IP address Displays PIM multicast routes for the selected multicast group Command mode All show ip pim mr...

Page 139: ... Flags S SPT Bit W Wild Card Bit R RPT Bit Timers Uptime Expires 8 8 8 111 224 2 2 100 00 42 03 00 01 11 Incoming Interface net44 RPF nbr 44 44 44 1 Route Flags S Outgoing InterfaceList net17 Forwarding Sparse 00 42 03 224 2 2 100 00 45 15 RP 88 88 88 2 Incoming Interface net5 RPF nbr 5 5 5 2 Route Flags WR Outgoing InterfaceList net17 Forwarding Sparse 00 45 15 Total number of G entries 1 Total n...

Page 140: ...gured for each reserved packet queue Command mode All show qos protocol packet control information protocol Displays of mapping of protocol packet types to each packet queue number The status indicates whether the protocol is running or not running Command mode All show qos random detect Displays WRED and ECN information For details see page 142 Command mode All show qos transmit queue Displays th...

Page 141: ... 4 5 5 5 7 6 6 15 7 7 0 Current port priority information Port Priority COSq Weight 1 0 0 1 2 1 0 0 1 2 2 0 0 1 2 3 0 0 1 2 4 0 0 1 3 1 0 0 1 3 2 0 0 1 3 3 0 0 1 3 4 0 0 1 Table 61 802 1p Priority to COS Queue Parameter Descriptions Parameter Description Priority Displays the 802 1p Priority level COSq Displays the Class of Service queue Weight Displays the scheduling weight of the COS queue Table...

Page 142: ...ndom detect Command mode All Current wred and ecn configuration Global ECN Disable Global WRED Disable WRED TcpMinThr TcpMaxThr TcpDrate NonTcpMinThr NonTcpMaxThr NonTcpDrate TQ0 Dis 0 0 0 0 0 0 TQ1 Dis 0 0 0 0 0 0 TQ2 Dis 0 0 0 0 0 0 TQ3 Dis 0 0 0 0 0 0 TQ4 Dis 0 0 0 0 0 0 TQ5 Dis 0 0 0 0 0 0 TQ6 Dis 0 0 0 0 0 0 TQ7 Dis 0 0 0 0 0 0 ...

Page 143: ...ation Command mode All show access control list 1 256 Displays ACL list information For details see page 144 Command mode All show access control list6 1 128 Displays IPv6 ACL list information For details see page 146 Command mode All show access control log Displays the current ACL log parameters Command mode All show access control macl 1 256 Displays the current MACL parameters Command mode All...

Page 144: ...urrent IPv4 ACL log state Command mode All show access control list 1 256 meter Displays the current metering parameters for the specified ACL Command mode All show access control list 1 256 mirror Displays the current port mirroring parameters for the specified ACL Command mode All show access control list 1 256 packet format Displays the current Packet Format parameters for the specified ACL Com...

Page 145: ...ID 100 Meter Set to disabled Set committed rate 64 Set max burst size 32 Re Mark Set use of TOS precedence to disabled Packet Format Ethernet format None Tagging format Any IP format None Actions Deny Statistics enabled Mirror Target Configuration Mirror target destination port Egress port for mirror target 4 Filter 1 profile route map 16 IPv4 Protocol 17 Actions Permit dscp 22 Statistics enabled ...

Page 146: ...ays status of ACL statistics enabled or disabled Mirror Target Configuration Displays ACL port mirroring parameters Filter x profile Indicates the ACL number Table 65 ACL List Parameter Descriptions Parameter Description VXLAN VNID 100 Table 66 IPv6 Access Control List Information Commands Command Syntax and Usage show access control list6 1 128 Displays the current ACL parameters Command mode All...

Page 147: ...re mark Displays current re mark parameters for the specified ACL Command mode All show access control list6 1 128 tcp udp Displays the current TCP UDP Filtering parameters for the specified ACL Command mode All Table 66 IPv6 Access Control List Information Commands Command Syntax and Usage ...

Page 148: ...st For more information see page page 149 Command mode Privileged EXEC show ip nat translations full Displays configured translation entries list with counters for both directions For more information see page page 149 Command mode Privileged EXEC Network address translation status ENABLED Dynamic timeout expiry time is 300 seconds There are 5 entries in the NAT table out of which 3 installed in h...

Page 149: ... 1 OI any 95 1 1 1 149 1 1 1 ID any 95 4 1 1 95 3 1 1 any 51 3 1 1 104 1 1 1 I tcp 172 9 9 142 777 12 2 2 42 444 tcp 23 1 1 133 333 210 3 3 33 555 udp 96 1 1 1 80 149 2 1 1 1080 Flags O one way I installed D dynamic inside outside Pro Inside global Inside local packet count any 0x6 any 95 1 1 1 149 1 1 1 0x8 any 0x0 any 0x131 tcp 172 9 9 142 777 12 2 2 42 444 0x0 tcp 0x0 udp 96 1 1 1 80 149 2 1 1 ...

Page 150: ...tion see page 153 group displays group information for all OpenFlow 1 3 instances For more information see page 155 information displays the configuration for all OpenFlow instances For more information see page 156 table displays the basic and emergency flow tables for all OpenFlow instances For more information see page 158 Command mode All show openflow instance 1 2 group information table Disp...

Page 151: ... FDB timeout Disabled Openflow instance 1 is currently disabled Openflow Instance ID 2 state enabled buffering disabled retry 4 emergency time out 30 echo req interval 30 echo reply time out 15 min flow timeout use controller provided values max flows acl Maximum Available max flows unicast fdb Maximum Available max flows multicast fdb Maximum Available emergency feature disabled dpid 0x0002749975...

Page 152: ...000ac01 table miss cookie 0xffffffffffffffff mirror to controller cookie 0xffffffffffffffff send to controller cookie 0xffffffffffffffff ports 18 64 portchannel 65 66 Controller Id 1 Active Controller IP Address 9 228 143 62 port 6633 Mgt Port Openflow Instance ID 2 state disabled buffering disabled table miss drop echo req interval 30 echo reply time out 15 retry 4 min flow timeout use controller...

Page 153: ...unt Configured Maximum Available Maximum Unicast FDB Count Configured Maximum Available Maximum Multicast FDB Count Configured Maximum Available Basic Entries Current ACL Count 0 Current Unicast FDB Count 0 Current Multicast FDB Count 0 Emergency Entries Current ACL Count 0 Current Unicast FDB Count 0 Current Multicast FDB Count 0 Maximum Current Availability Maximum Available ACL Count 2000 Maxim...

Page 154: ...OP Count Configured Maximum Available Basic Entries Current ACL Count 0 Current Unicast FDB Count 0 Current Multicast FDB Count 0 Current MPLS PUSH Count 0 Current MPLS POP Count 0 Static Entries Current static ACL Count 0 Current static MPLS PUSH Count 0 Current static MPLS POP Count 0 Maximum Current Availability Maximum Available ACL Count 1500 Maximum Available Unicast FDB Count 123904 Maximum...

Page 155: ...ll instances show openflow group Command mode All Openflow Instance Id 1 Group count 3 Group 1 Type ALL Bucket count 2 Bucket 0 output INGRESS Bucket 1 output 1 Group 2 Type ALL Bucket count 2 Bucket 0 output INGRESS Bucket 1 output PCH104 Group 3 Type ALL Bucket count 2 Bucket 0 output PCH52 Bucket 1 output PCH104 Openflow instance 2 is currently disabled ...

Page 156: ...w timeout 0 use controller provided values Max ACL Flows Maximum Available Max Unicast FDB Flows Maximum Available Max Multicast FDB Flows Maximum Available Buffering Disabled Operational Mode Normal Miss Send Len 65535 Port Alias Status State Config Current Advertised Supported Peer 18 18 e 0x200 0x2 0xc0 0x0 0x0 0x0 19 19 e 0x200 0x2 0xc0 0x0 0x0 0x0 24 24 d 0x201 0x2 0xc0 0x0 0x0 0x0 86 23 1 d ...

Page 157: ...ximum Available Max Unicast FDB Flows Maximum Available Max Multicast FDB Flows Maximum Available Max MPLS Push Flows Maximum Available Max MPLS Pop Flows Maximum Available Buffering Disabled Table Miss Drop Operational Mode Normal Miss Send Len 65535 Port Alias Status State Config Current Advertised Supported Peer 18 18 e 0x0 0x0 0x840 0x0 0x0 0x0 24 24 e 0x0 0x0 0x2820 0x0 0x0 0x0 10065 PCH65 e ...

Page 158: ...cookie 0x0 QUALIFIERS ether type 0x88cc protocol 0 tos 0 src ip 0 0 0 0 32 dst ip 0 0 0 0 32 src port 0 dst port 0 ACTION output CONTROLLER Max Len 65535 bytes C S STATS packets 0 bytes 0 Flow 3 Filter Based priority 2 hard time out 0 idle time out 0 cookie 0x0 QUALIFIERS ACTION output CONTROLLER Max Len 65535 bytes C S STATS packets 0 bytes 0 EMERGENCY FLOW TABLE CONTROLLER ADDED FLOWS Flow 1 Fil...

Page 159: ... priority 2 hard time out 0 idle time out 0 cookie 0x0 QUALIFIERS Instruction write_action ACTION output CONTROLLER Max Len 65535 bytes C S STATS packets 0 bytes 0 Flow 2 Filter Based priority 65535 hard time out 0 idle time out 0 cookie 0x0 QUALIFIERS eth type 0x88cc Instruction write_action ACTION output CONTROLLER Max Len 65535 bytes C S STATS packets 121 bytes 7744 Flow 3 Filter Based priority...

Page 160: ... Command Syntax and Usage show rmon Displays all RMON information Command mode All show rmon alarm 1 65535 Displays RMON Alarm information For details see page 162 Command mode All show rmon event 1 65535 Displays RMON Event information For details see page 163 Command mode All show rmon history 1 65535 Displays RMON History information For details see page 161 Command mode All ...

Page 161: ...6 1 2 1 2 2 1 1 20 30 5 5 4 1 3 6 1 2 1 2 2 1 1 19 30 5 5 5 1 3 6 1 2 1 2 2 1 1 24 1800 5 5 Index Owner 1 dan Table 70 RMON History Parameter Descriptions Parameter Description Index Displays the index number that identifies each history instance IFOID Displays the MIB Object Identifier Interval Displays the time interval for each sampling bucket Rbnum Displays the number of requested buckets whic...

Page 162: ...holds Sample Displays the method of sampling the selected variable and calculating the value to be compared against the thresholds as follows abs absolute value the value of the selected variable is compared directly with the thresholds at the end of the sampling interval delta delta value the value of the selected variable at the last sample is subtracted from the current value and the difference...

Page 163: ...ndex Type Last Sent Description 1 both 0D 0H 1M 20S Event_1 2 none 0D 0H 0M 0S Event_2 3 log 0D 0H 0M 0S Event_3 4 trap 0D 0H 0M 0S Event_4 5 both 0D 0H 0M 0S Log and trap event for Link Down 10 both 0D 0H 0M 0S Log and trap event for Link Up 11 both 0D 0H 0M 0S Send log and trap for icmpInMsg 15 both 0D 0H 0M 0S Send log and trap for icmpInEchos Index Owner 1 dan Table 72 RMON Event Parameter Des...

Page 164: ...ontrol for transmit and receive no yes or both Link status up down or disabled Port Speed Duplex Flow Ctrl Link Description TX RX 1 40000 full no no down 1 2 1 10000 full no no down 2 1 2 2 10000 full no no down 2 2 2 3 10000 full no no up 2 3 2 4 10000 full no no up 2 4 3 1 10000 full no no up 3 1 3 2 10000 full no no up 3 2 3 3 10000 full no no down 3 3 3 4 10000 full no no down 3 4 4 1 10000 fu...

Page 165: ...low Whether the port uses ingress VLAN tagging or not Whether the port uses PVID Native VLAN tagging or not Port VLAN ID PVID Port description VLAN membership Port Tag RMON Lrn Fld Openflow PVID DESCRIPTION VLAN s Trk NVLAN 1 n d e e d 12 12 2 1 n d e e d 12 12 2 2 n d e e d 12 12 2 3 n d e e d 193 193 2 4 n d e e d 1 1 3 1 n d e e d 111 111 3 2 n d e e d 111 111 3 3 n d e e d 12 12 3 4 n d e e d ...

Page 166: ... Approved BLADE NETWORK Part BN QS SP CBL 3M Date 110727 S N 3547Y350VT17C0HC Q10G 2 2 N A Down N A N A N A N A N A PasQDBO B 3m Approved BLADE NETWORK Part BN QS SP CBL 3M Date 110727 S N 3547Y350VT17C0HC Q10G 2 3 N A LINK N A N A N A N A N A PasQDBO C 3m Approved BLADE NETWORK Part BN QS SP CBL 3M Date 110727 S N 3547Y350VT17C0HC Q10G 2 4 N A LINK N A N A N A N A N A PasQDBO D 3m Approved BLADE ...

Page 167: ...extended transceiver information show interface port port alias or number transceiver details Command mode All Port TX Link TXFlt Volts DegsC TXuW RXuW Transceiver Approve QSFP 27 Ena LINK N A N A N A N A N A PasQD 1 0m Approved BLADE NETWORK Part BN QS QS CBL 1M Date 110925 S N 3548Y350VT19P8EM ...

Page 168: ... Machine information for the selected port For a sample output see page 171 Note The selected port must be a server port Command mode All show virt portchannel 1 208 Displays Virtual Machine information for the selected portchannel For a sample output see page 171 Command mode All show virt vm v r Displays all Virtual Machine information v displays verbose information r rescans data center For mor...

Page 169: ...ilters include displays parameters matching the specified expression exclude displays parameters not matching the specified expression section displays parameters matching the specified section begin displays parameters beginning from the first parameter that matches the specified expression For a sample output see page 173 Command mode All show virt vmprofile profile name Displays the current VM ...

Page 170: ... VMware specific settings ESX ESXi to vCenter heartbeat UDP port number 902 Current VM profiles None VM group 1 current configuration Current VM group s secure mode Disabled Current Group Ports 13 17 Current Group vPorts empty VLAN 2 VLAN Tagging Disabled Current GROUP VMAP Config is empty VM group 2 current configuration empty VM MAC OUI Vendor Name 00 50 56 VMware 00 0c 29 VMware 00 05 69 VMware...

Page 171: ... a specific portchannel show virt portchannel 1 208 Command mode All IP Address VMAC Address Index Port VM Group Profile Check status 3 3 3 2 00 50 56 a5 32 f7 0 23 40 40 31 1 00 50 56 a5 4e 9f 1 23 30 test30 Number of entries 2 IP Address VMAC Address Index Port VM Group Profile Check status 5 5 5 2 00 50 56 a5 17 07 2 ST 5 0 0 0 0 00 50 56 a5 4b 03 4 ST 5 5 5 5 3 00 50 56 af 20 6f 3 ST 5 Number ...

Page 172: ...plays VM Check information show virt vmcheck Command mode All IP Address VMAC Address Index Port VM Group Profile Check Status 127 31 46 50 00 50 56 4e 62 f5 4 3 127 31 46 10 00 50 56 4f f2 85 2 4 127 31 46 51 00 50 56 72 ec 86 1 3 127 31 46 11 00 50 56 7c 1c ca 3 4 127 31 46 25 00 50 56 9c 00 c8 5 4 127 31 46 15 00 50 56 9c 21 2f 0 4 127 31 46 35 00 50 56 9c 29 29 6 3 Number of entries 7 indicate...

Page 173: ...width Command mode All VM Profile Information The following command displays VM Profile parameters show virt vmprofile Command mode All VM group 1 current configuration Current VM group s secure mode Disabled Current Group Ports 13 17 Current Group vPorts empty VLAN 2 Tagging Trunk mode Disabled Current GROUP VMAP Config is empty Bandwidth Profile for VM 00 50 56 a5 32 f7 is enabled TX Rate 1024 B...

Page 174: ...VMware hosts For a sample output see page 175 Command mode All show virt vmware showhost host UUID host IP address host name Displays detailed information about a specific VMware host For a sample output see page 176 Command mode All show virt vmware showvm VM UUID VM IP address VM name Displays detailed information about a specific Virtual Machine VM For a sample output see page 177 Command mode ...

Page 175: ...cludes the following UUID associated with the VMware host Name or IP address of the VMware host Current Settings Hello Disabled Hello timer 23 seconds Hello ports 13 Hello address 10 36 30 1 UUID Name s IP Address 80a42681 d0e5 5910 a0bf bd23bd3f7803 127 12 41 30 3c2e063c 153c dd11 8b32 a78dd1909a69 127 12 46 10 64f1fe30 143c dd11 84f2 a8ba2cd7ae40 127 12 44 50 c818938e 143c dd11 9f7a d8defa4b83bf...

Page 176: ...c3 vSwitch1 00 00 c9 da f5 dc vusb0 None 5e f3 fc 4f f0 e7 Port Groups and their vSwitches on the host Lenovo_test vSwitch0 VM Network vSwitch0 Management Network vSwitch0 Lenovo_Default vSwitch1 Lenovo_test30 vSwitch1 Lenovo_test40 vSwitch1 VM Network 2 vSwitch1 Lenovo_test50 vSwitch1 Lenovo_unu vSwitch1 Detailed information about host and VM interfaces on this hypervisor MAC Address 5c f3 fc 49 ...

Page 177: ...tname Not Available VM IP Address 3 3 3 2 VM UUID 422547ad 0ef7 5992 1184 63aa9030377e Current VM Host 10 241 32 131 vSwitch vSwitch1 Port Group Lenovo_Default VLAN ID 0 Rescanning data center Please wait UUID Name s IP Address 42312c26 2a75 c05b eed2 6d837ac46fdd SNSC 4225801c dfdb 061d 65e4 4e4860d6fbcf arch2_06 42253440 6de7 7416 8a29 fb462114ead0 arch2_05 422f49df bf88 e4d5 6cee 047a626029aa a...

Page 178: ...profile ports Displays all EVB profile parameters including ports Command mode All show virt evb vdp tlv Displays all active Virtual Station Interface VSI Discovery and Configuration Protocol VDP type length values TLVs Command mode All show virt evb vdp vm Displays all associated Virtual Machines VMs For a sample output see page 180 Command mode All show virt evb vsidb VSI database number 1 Displ...

Page 179: ...000 TxBurst 64 RxRate 10000000 RxBurst 64 ACL Index 1 SRC MAC 00 00 00 00 00 00 SRC MAC MASK 00 00 00 00 00 00 DST MAC ff ff ff ff ff ff DST MAC MASK ff ff ff ff ff ff VLAN 0 0x000 Ether Type 0x0800 IPv4 SRC IP 0 0 0 0 SRC IP MASK 0 0 0 0 DST IP 0 0 0 0 DST IP MASK 0 0 0 0 TOS 0 0x00 ACL Action deny ACL Index 2 SRC MAC 00 00 00 00 00 00 SRC MAC MASK 00 00 00 00 00 00 DST MAC ff ff ff ff ff ff DST ...

Page 180: ...ther Type 0x0800 IPv4 SRC IP 0 0 0 0 SRC IP MASK 0 0 0 0 DST IP 0 0 0 0 DST IP MASK 0 0 0 0 TOS 0 0x00 ACL Action deny ACL Index 2 SRC MAC 00 00 00 00 00 00 SRC MAC MASK 00 00 00 00 00 00 DST MAC ff ff ff ff ff ff DST MAC MASK ff ff ff ff ff ff VLAN 0 0x000 Ether Type 0x0000 ACL Action permit Total number of VM Association entries 2 TypeId MAC Vlan Port TxACL RxEntry ACLs 9 00 50 56 95 30 ec 50 13...

Page 181: ...s information for local multicast MAC addresses mcast remote displays information for remote multicast MAC addresses ucast local displays information for local unicast MAC addresses ucast remote displays information for remote unicast MAC addresses To view a sample output see page 183 Command mode All show nwv nsx gw tunnels Displays VXLAN Gateway tunnels information To view a sample output see pa...

Page 182: ... 168 200 30 BFD Status Enabled Controller Connections Idx Type Peer State Inact ms Backoff ms Latest Method 1 SSL Active 10 241 43 60 6640 ACTIVE 30000 8000 transact comment 2 SSL Active 10 241 43 61 6640 ACTIVE 30000 8000 monitor 3 SSL Active 10 241 43 62 6640 ACTIVE 30000 8000 transact comment Physical Port Count 4 VNI VLAN Mappings Count 254 Name VNI VLAN Status 7 1 5001 1 Up 5002 2 Up 5003 3 U...

Page 183: ... 81 39 d7 192 168 200 30 22 1 1301 Remote MAC Count 4 VNI MAC Tunnel 5001 52 54 00 0e 90 d0 192 168 200 15 5001 52 54 00 e1 f4 44 192 168 200 16 5002 52 54 00 ee 38 88 192 168 200 16 5002 52 54 00 ff 58 6a 192 168 200 15 Local Multicast MAC Count 2 VNI MAC Tunnel 5001 unknown dst 192 168 200 30 5002 unknown dst 192 168 200 30 Remote Multicast MAC Count 2 VNI MAC Tunnel 5001 unknown dst 192 168 200...

Page 184: ...192 168 200 12 6 2 18 Multicast Virtual Ports towards the Overlay Network Local IP Address Remote IP Address Port VLAN 192 168 200 30 192 168 200 11 6 1 18 192 168 200 30 192 168 200 12 6 2 18 VNID 5002 Virtual Ports towards the Underlay Network Local IP Address Port VLAN TAG 192 168 200 30 7 1 329 Y Unicast Virtual Ports towards the Overlay Network Local IP Address Remote IP Address Port VLAN 192...

Page 185: ...y Virtual Port information show nwv nsx gw virtual port Command mode All Tunnel Count 4 Local IP Address Remote IP Address Remote Type Status 192 168 200 30 192 168 200 12 SN backup Up 192 168 200 30 192 168 200 11 SN active Up 192 168 200 30 192 168 200 15 VTEP Up 192 168 200 30 192 168 200 16 VTEP Up Logical Network Count 1025 VNI name 5001 5a0b3c29 c89b 4ba4 98d3 5e490ee7f4d8 5002 db60e4e8 d036...

Page 186: ...HDAaBgNVBAsTE05ldHdvcmsgRW5naW5lZXJpbmcxFTATBgNVBAMT DDEwLjI0MS4zOS4xNDEPMA0GCSqGSIb3DQEJARYAMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAtxm0y5AeoAm Y5ji2rPcOq FJE kARfrrSkJm9eAcraQ 3rsHFIEAyRfgc8fAxgHMarx8bAElQHFWJQb6lYGRsWwJ07ZyNq4mhPIz9PJi943s 1mLhRz47uUEi6VyOdNe19Zplo30A6p04qqZlTYQOWpaAFU8IhStoNzYXfdsBuizj exhhEcyg3lqAAEJ t60hVPUGaUTFynfSU5O BGClCYrn6UDOZ6qV7husnqPO5KMq Pey1yYWWFBln2gvuWDPvj0...

Page 187: ...the current global ETS or PFC parameters information displays global information priority group displays the current global Priority Group parameters Command mode All show cee information Displays all CEE information Command mode All show cee information dcbx port port alias or number Displays all DCBX information for the specified port or range of ports Command mode All show cee information pfc p...

Page 188: ...ow cee information dcbx port port alias or number control Displays information about the DCBX Control state machine for the specified port or range of ports For details see page 189 Command mode All show cee information dcbx port port alias or number ets Displays information about the DCBX ETS state machine for the specified port or range of ports For details see page 192 Command mode All show cee...

Page 189: ...es each time a DCBX parameter in one or more DCB feature TLVs changes Sequence number of the most recent DCB feature TLV that has been acknowledged DCBX Port Control State machine Info Alias Port OperStatus OperVer MaxVer SeqNo AckNo 1 1 enabled 0 0 2 0 2 2 enabled 0 0 0 0 3 1 3 enabled 0 0 0 0 3 2 4 enabled 0 0 2 0 3 3 5 enabled 0 0 0 0 3 4 9 enabled 0 0 0 0 4 13 enabled 0 0 0 0 5 1 14 enabled 0 ...

Page 190: ... 0 0 No 1 No disabled No 4 ETS enabled No Yes 0 0 Yes 2 No enabled Yes 4 PFC enabled No Yes 0 0 Yes 2 No enabled Yes 4 AppProt enabled No Yes 0 0 Yes 2 No enabled Yes 5 ETS enabled No Yes 0 0 No 1 No disabled No 5 PFC enabled No Yes 0 0 No 1 No disabled No 5 AppProt enabled No Yes 0 0 No 1 No disabled No Table 79 DCBX Feature Information Fields Parameter Description Port Displays each port s numbe...

Page 191: ...Information Commands 191 OperMode Operating status negotiated with the peer device enabled or disabled Syncd Synchronization status between this port and the peer Yes or No Table 79 DCBX Feature Information Fields Parameter Description ...

Page 192: ...GID0 PGID0 PGID0 2 1 PGID0 PGID0 PGID0 2 2 PGID0 PGID0 PGID0 2 3 PGID1 PGID0 PGID0 2 4 PGID2 PGID0 PGID0 2 5 PGID2 PGID0 PGID0 2 6 PGID2 PGID0 PGID0 2 7 PGID2 PGID0 PGID0 DCBX Port Priority Group Bandwidth Allocation Table Port PrioGrp BwDes BwOper BwPeer 1 0 10 0 0 1 1 50 0 0 1 2 40 0 0 2 0 10 0 0 2 1 50 0 0 2 2 40 0 0 3 0 10 0 0 3 1 50 0 0 3 2 40 0 0 Table 80 DCBX Feature Information Fields Para...

Page 193: ... s alias Port Displays each port s number PrioGrp Displays each port s priority group BwDes Bandwidth allocation configured on this switch BwOper Bandwidth allocation negotiated with the peer operating bandwidth BwPeer Bandwidth allocation configured on the peer Table 80 DCBX Feature Information Fields continued Parameter Description ...

Page 194: ...he peer DCBX Port Priority Flow Control Table Port Priority EnableDesr EnableOper EnablePeer 1 0 disabled disabled disabled 1 1 disabled disabled disabled 1 2 disabled disabled disabled 1 3 enabled disabled disabled 1 4 disabled disabled disabled 1 5 disabled disabled disabled 1 6 disabled disabled disabled 1 7 disabled disabled disabled 2 0 disabled disabled disabled 2 1 disabled disabled disable...

Page 195: ...led 1 2 disabled disabled disabled 1 3 enabled disabled disabled 1 4 disabled disabled disabled 1 5 disabled disabled disabled 1 6 disabled disabled disabled 1 7 disabled disabled disabled 2 0 disabled disabled disabled 2 1 disabled disabled disabled FIP Snooping Priority Information Protocol ID 0x8914 Selector Field 0 Organizationally Unique ID 0x1b21 Port Priority EnableDesr EnableOper EnablePee...

Page 196: ...n Protocol ID Identifies the supported Application Protocol Selector Field Specifies the Application Protocol type as follows 0 Ethernet Type 1 TCP socket ID Organizationally Unique ID DCBX TLV identifier Port Port number Priority 802 1p value EnableDesr Status configured on this switch EnableOper Status negotiated with the peer operating status EnablePeer Status configured on the peer ...

Page 197: ...owing Number of Class of Service queues COSq configured 802 1p mapping to Priority Groups and Class of Service queues Bandwidth allocated to each Priority Group Table 82 ETS Information Options Command Syntax and Usage show cee global ets information Displays global ETS information Command mode All Global ETS information Number of COSq 8 Mapping of 802 1p Priority to Priority Groups Priority PGID ...

Page 198: ...tions Command Syntax and Usage show cee port port alias or number pfc Displays PFC information Command mode All show cee port port alias or number pfc information Displays PFC information Command mode All show cee port port alias or number pfc priority 0 7 Displays PFC information Command mode All PFC information for Port 1 PFC ON Priority State Description 0 Dis 1 Dis 2 Dis 3 Ena 4 Dis 5 Dis 6 Di...

Page 199: ...mode All show fcoe fips fcoe Displays FCoE connections learned detected Command mode All show fcoe fips information Displays FIP Snooping information for all ports Command mode All show fcoe fips port port alias or number information Displays FIP Snooping FIPS information for the specified port or ports including a list of current FIPS ACLs Command mode All show fcoe fips vlans Displays VLAN infor...

Page 200: ...t has been configured to automatically detect FCF It has currently detected to have 0 FCF connecting to it FIPS ACLs configured on this port SMAC 00 c0 dd 13 9b 6f action deny SMAC 00 c0 dd 13 9b 70 action deny SMAC 00 c0 dd 13 9b 6d action deny SMAC 00 c0 dd 13 9b 6e action deny DMAC 00 c0 dd 13 9b 6f ethertype 0x8914 action permit DMAC 00 c0 dd 13 9b 70 ethertype 0x8914 action permit DMAC 00 c0 ...

Page 201: ...as members to a specified zone Command mode All show fcf Displays FCF information Command mode All show fcf area size vlan VLAN ID 2 4094 Displays area width Command mode All show fcf login limit vlan VLAN ID 2 4094 Displays the concurrent FLOGI FDISC allowed on a VLAN Command mode All show fcf vlan VLAN ID 2 4094 Displays FCF information specific to a VLAN Command mode All show fcns database Disp...

Page 202: ...ommand mode All show rscn scr table vlan VLAN ID 2 4094 Displays RSCN information For details see page 205 Command mode All show zone name zone name vlan VLAN ID 2 4094 Displays information for the specified zone Command mode All show zone status vlan VLAN ID 2 4094 Displays zone status information Command mode All show zone vlan VLAN ID 2 4094 Lists all zones and its members For details see page ...

Page 203: ...w zoneset vlan VLAN ID 2 4094 Displays the currently active zoneset Command mode All Table 85 Fibre Channel Information Commands Command Syntax and Usage FLOGI DB VLAN PORT FCID PWWN 10 16 2 420000 20 00 00 11 0d 98 cc 00 10 16 2 420001 20 00 00 11 0d 98 cc 01 10 16 2 420002 20 00 00 11 0d 98 cc 02 10 16 2 420003 20 00 00 11 0d 98 cc 03 No of records 4 Name Server DB for Vlan 10 FCID TYPE PORT NAM...

Page 204: ...M Serial Number AUS0402F0B3 Model IBM 1020 Model Description IBM 1020 Hardware Version Rev C Driver Version 2 3 0 0 Firmware Version 2 3 0 0 OS Name Version Microsoft Windows Server 2003 R2 Service Pack 2 CT Payload Len 00000840 Registered HBA List HBA ID 20 01 00 00 00 00 00 01 Node Name 20 00 00 05 1e 78 c2 0e Manufacturer IBM Serial Number AUS0402F0B3 Model IBM 1020 Model Description IBM 1020 H...

Page 205: ... FCID 0x420000 bitmap 1 FCID 0x420003 bitmap 1 FCID 0x420006 bitmap 1 FCID 0x420002 bitmap 1 FCID 0x420005 bitmap 1 FCID 0x420007 bitmap 1 FCID 0x420001 bitmap 1 FCID 0x42000A bitmap 1 FCID 0x42000E bitmap 1 FCID 0x420004 bitmap 1 FCID 0x42000C bitmap 1 FCID 0x420008 bitmap 1 FCID 0x42000F bitmap 1 FCID 0x42000B bitmap 1 FCID 0x420009 bitmap 1 FCID 0x42000D bitmap 1 Count of SCRs 16 zone name myzo...

Page 206: ...d mode All Use the dump command to dump all switch information available 10K or more depending on your configuration This data is useful for tuning and debugging switch performance If you want to capture dump data to a file set your communication software on your workstation to capture session data prior to issuing the dump commands ...

Page 207: ...d mode All show layer3 counters Displays Layer 3 statistics Command mode All show ntp counters Displays Network Time Protocol NTP Statistics See page 328 for a sample output and a description of NTP Statistics Command mode All show ptp counters Displays Precision Time Protocol Statistics See page 330 for a sample output and a description of PTP Statistics Command mode All show snmp server counters...

Page 208: ...ys IEEE 802 1X statistics for the port See page 211 for sample output Command mode All show interface port port alias or number egress queue counters queue number 0 7 drop Displays the total number of packets and bytes either successfully transmitted or dropped for each queue of the specified ports queue number filters the output to the specified queue number drop lists only the queues with droppe...

Page 209: ...for the port See page 223 for sample output Command mode All show interface port port alias or number ip rate Displays per second IP statistics for the port Command mode All show interface port port alias or number link counters Displays link statistics for the port See page 223 for sample output Command mode All show interface port port alias or number oam counters Displays Operation Administrati...

Page 210: ...es Command mode Privileged EXEC clear interface port port alias or number counters Clears all statistics for the port Command mode Privileged EXEC clear interface port port alias or number egress queue counter Clears all QoS egress counters for the specified ports for all queues Command mode Privileged EXEC clear ip bootp relay counters interface port alias or number Clears BOOTP relay statistics ...

Page 211: ...cs of a Port Statistics Description eapolFramesRx Total number of EAPOL frames received eapolFramesTx Total number of EAPOL frames transmitted eapolStartFramesRx Total number of EAPOL Start frames received eapolLogoffFramesRx Total number of EAPOL Logoff frames received eapolRespIdFramesRx Total number of EAPOL Response Identity frames received eapolRespFramesRx Total number of Response frames rec...

Page 212: ...923 backendAccessChallenges 460 backendOtherRequestsToSupplicant 460 backendNonNakResponsesFromSupplicant 460 backendAuthSuccesses 5 backendAuthFails 458 Table 89 802 1X Authenticator Diagnostics of a Port Statistics Description authEntersConnecting Total number of times that the state machine transitions to the CONNECTING state from any other state authEapLogoffsWhileConnecting Total number of ti...

Page 213: ...fWhileAuthenticating Total number of times that the state machine transitions from AUTHENTICATING to ABORTING as a result of an EAPOL Logoff message being received from the Supplicant authReauthsWhileAuthenticated Total number of times that the state machine transitions from AUTHENTICATED to CONNECTING as a result of a re authentication request authEapStartsWhileAuthenticated Total number of times...

Page 214: ...nt Total number of times that the state machine receives a response from the Supplicant to an initial EAP Request and the response is something other than EAP NAK Indicates that the Supplicant can respond to the Authenticator s chosen EAP method backendAuthSuccesses Total number of times that the state machine receives an Accept message from the Authentication Server Indicates that the Supplicant ...

Page 215: ...nters interface port alias or number Command mode All BOOTP Relay statistics for port 1 Requests received from client 0 Requests relayed to server 0 Requests relayed with option 82 0 Requests dropped due to relay not allowed 0 no server or unreachable server 0 packet or processing errors 0 Replies received from server 0 Replies relayed to client 0 Replies dropped due to packet or processing errors...

Page 216: ...mes that have been transmitted by this port to its segment Note that a frame transmitted on the interface corresponding to this port is only counted by this object if and only if it is for a protocol being processed by the local bridging function including bridge management frames dot1PortInDiscards Count of valid frames received which were discarded that is filtered by the Forwarding Process dot1...

Page 217: ... octets in length and do not pass the Frame Check Sequence FCS check The count represented by an instance of this object is incremented when the alignmentError status is returned by the MAC service to the Logical Link Control LLC or other MAC user Received frames for which multiple error conditions obtained are according to the conventions of IEEE 802 3 Layer Management counted exclusively accordi...

Page 218: ...particular interface later than 512 bit times into the transmission of a packet Five hundred and twelve bit times corresponds to 51 2 microseconds on a 10 Mbit s system A late collision included in a count represented by an instance of this object is also considered as a generic collision for purposes of other collision related statistics dot3StatsExcessive Collisions A count of frames for which t...

Page 219: ...tus presented to the LLC dot3StatsInternalMac ReceiveErrors A count of frames for which reception on a particular interface fails due to an internal MAC sub layer receive error A frame is only counted by an instance of this object if it is not counted by the corresponding instance of either the dot3StatsFrameTooLongs object the dot3StatsAlignmentErrors object or the dot3StatsFCSErrors object The p...

Page 220: ... 0 OBM HP packet discards 0 Empty Egress Portmap 3085 Check for HOL blocking discards on associated egress ports Table 92 Interface Statistics of a Port Statistics Description ifInOctets The total number of octets received on the interface including framing characters ifInUcastPkts The number of packets delivered by this sub layer to a higher sub layer which were not addressed to a multicast or br...

Page 221: ...d and which were not addressed to a multicast or broadcast address at this sub layer including those that were discarded or not sent ifOutBroadcastPkts The total number of packets that higher level protocols requested to be transmitted and which were addressed toa broadcast address at this sub layer including those that were discarded or not sent This object is a 64 bit version of ifOutBroadcastPk...

Page 222: ...ample insufficient packet buffering OBM LP packet discards Number of low priority packets discarded because of oversubscription buffer management Oversubscription is applicable only for packet size less than 200 bytes OBM HP packet discards Number of high priority packets discarded because of oversubscription buffer management Oversubscription is applicable only for packet size less than 200 bytes...

Page 223: ...ds 0 Table 93 Interface Protocol Statistics of a Port Statistics Description ipInReceives The total number of input datagrams received from interfaces including those received in error ipInHeaderErrors The number of input datagrams discarded because the IP address in their IP headerʹs destination field was not a valid address to be received at this entity the switch ipInDiscards The number of inpu...

Page 224: ...5to127Octets 0 etherStatsPkts128to255Octets 0 etherStatsPkts256to511Octets 1 etherStatsPkts512to1023Octets 0 etherStatsPkts1024to1518Octets 0 Table 95 RMON Statistics of a Port Statistics Description etherStatsDropEvents The total number of packets received that were dropped because of system resource constraints etherStatsOctets The total number of octets of data including those in bad packets re...

Page 225: ... a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral number of octets Alignment Error etherStatsJabbers The total number of packets received that were longer than 1518 octets excluding framing bits but including FCS octets and had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integra...

Page 226: ...re greater than 255 octets in length excluding framing bits but including FCS octets etherStatsPkts512to1023 Octets The total number of packets including bad packets received that were greater than 511 octets in length excluding framing bits but including FCS octets etherStatsPkts1024to1518 Octets The total number of packets including bad packets received that were greater than 1023 octets in leng...

Page 227: ...oS Queue 1 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 2 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 3 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 7 Tx Packets 900 Dropped Packets 0 Tx Bytes 64320 Dropped Bytes 0 Table 96 QoS Queue Counter Based Statistics of a Port Statistics Description Tx Packets Total number of successfull...

Page 228: ...Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 2 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 3 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 7 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 Table 97 QoS Queue Rate Based Statistics of a Port Statistics Description Tx Packets Number of successfully transmitted packets per second for th...

Page 229: ...y Link Aggregation Group LAG statistics Table 98 LAG Statistics Commands Command Syntax and Usage show interface portchannel 1 208 interface counters Displays interface statistics for the LAG Command mode All clear interface portchannel 1 208 counters Clears all the statistics on the selected LAG Command mode Privileged EXEC ...

Page 230: ...e output Command mode All show mac address table counters Displays FDB statistics See page 233 for sample output Command mode All show mac address table counters all Displays all FDB statistics for all FDB entries Command mode All show mac address table counters interface port port alias or number Displays FDB statistics for a particular port Command mode All show mac address table counters portch...

Page 231: ... 237 for sample output Command mode All show spanning tree statistics stp 1 128 Displays STP statistics for the specified Spanning Tree Group STG See page 237 for sample output Command mode All show vlag statistics Displays all vLAG statistics See page 239 for sample output Command mode All clear hotlinks Clears all Hot Links statistics Command mode Privileged EXEC clear interface port port alias ...

Page 232: ...ENOS 8 4 clear spanning tree statistics Clears all STP statistics Command mode Privileged EXEC clear vlag statistics Clears all vLAG statistics Command mode Privileged EXEC Table 99 Layer 2 Statistics Commands Command Syntax and Usage ...

Page 233: ...new entries finds and unsuccessful searches show mac address table counters Command mode All FDB statistics are described in the following table FDB statistics current 83 hiwat 855 Table 100 Forwarding Database Statistics Statistic Description current Current number of entries in the Forwarding Database hiwat Highest number of entries recorded at any given time in the Forwarding Database ...

Page 234: ...d 0 Table 101 LACP Statistics Statistic Description Valid LACPDUs received Total number of valid LACP data units received Valid Marker PDUs received Total number of valid LACP marker data units received Valid Marker Rsp PDUs received Total number of valid LACP marker response data units received Unknown version TLV type Total number of LACP data units with an unknown version or type length and val...

Page 235: ...er Stats Trigger 1 statistics Trigger Name Trigger 1 Master active 0 Backup active 0 FDB update 0 failed 0 Table 102 Hotlinks Statistics Statistic Description Master active Total number of times the Master interface transitioned to the Active state Backup active Total number of times the Backup interface transitioned to the Active state FDB update Total number of FDB update requests sent failed To...

Page 236: ...rames Discarded 0 TLVs Unrecognized 0 Neighbors Aged Out 0 Table 103 LLDP port Statistics Statistic Description Frames Transmitted Total number of LLDP frames transmitted Frames Received Total number of LLDP frames received Frames Received in Errors Total number of LLDP frames that had errors Frames Discarded Total number of LLDP frames discarded TLVs Unrecognized Total number of unrecognized TLV ...

Page 237: ...0 2016 420530 11 35 54 7 20 2016 24 240073 423000 199662 11 35 53 7 20 2016 420528 11 35 54 7 20 2016 Spanning tree group 23 Port RxBpdu TxBpdu RxTCN LastTCNRx TxTCN LastTCNTx 11 39 211499 5 14 01 02 7 15 2016 101 2 11 41 7 20 2016 12 36 211499 2 13 53 06 7 15 2016 104 2 11 41 7 20 2016 13 36 211497 2 13 53 06 7 15 2016 104 2 11 41 7 20 2016 14 36 211481 2 13 53 06 7 15 2016 104 2 11 41 7 20 2016 ...

Page 238: ...its OAMPDU transmitted and received Total number of unsupported OAM Protocol Data Units OAMPDU transmitted and received Local faults detected Remote faults detected OAM statistics on port 1 Information OAMPDU Tx 0 Information OAMPDU Rx 0 Unsupported OAMPDU Tx 0 Unsupported OAMPDU Tx 0 Local faults 0 Link fault records 0 Critical events 0 Dying gasps Remote faults 0 Link fault records 0 Critical ev...

Page 239: ...port See page 240 for sample output Command mode All clear vlag statistics Clears all vLAG statistics Command mode Privileged EXEC vLAG PDU sent Role Election 10 System Info 7 Peer Instance Enable 624 Peer Instance Disable 52 FDB Dynamic Add 166079 FDB Dynamic Del 33856 FDB Inactive Add 0 FDB Inactive Del 0 Health Check 4665 ISL Hello 2126 Other 0 Unknown 0 vLAG PDU received Role Election 11 Syste...

Page 240: ...received for enabling peer instance Peer Instance Disable Total number of vLAG PDUs sent received for disabling peer instance FDB Dynamic Add Total number of vLAG PDUs sent received for addition of FDB dynamic entry FDB Dynamic Del Total number of vLAG PDUs sent received for deletion of FDB dynamic entry FDB Inactive Add Total number of vLAG PDUs sent received for addition of FDB inactive entry FD...

Page 241: ...unters Displays Internet Protocol version 6 IPv6 statistics See page 249 for sample output Command mode All show ip dhcp snooping counters Displays Dynamic Host Control Protocol DHCP Snooping statistics Command mode All show ip dns counters Displays Domain Name System DNS statistics See page 257 for sample output Command mode All show ip gea bucket IP address ecmp IP address IP netmask Displays Gi...

Page 242: ... mode All show ip ospf counters Displays Open Shortest Path First OSPF statistics See page 269 for sample output Command mode All show ipv6 ospf counters Displays Open Shortest Path First version 3 OSPFv3 statistics See page 274 for sample output Command mode All show ip pim counters Displays Protocol Independent Multicast PIM statistics for all configured PIM interfaces See page 279 for sample ou...

Page 243: ...tocol TCP statistics See page 260 for sample output Command mode All show ip tenant tenant ID 1 30 info Displays tenant statistics Command mode All show ip udp counters Displays User Datagram Protocol UDP statistics See page 262 for sample output Command mode All show ip vrrp counters When virtual routers are configured you can display the protocol statistics for Virtual Router Redundancy Protocol...

Page 244: ...ounters Clears DHCP Snooping statistics Command mode Privileged EXEC clear ip dns counters Clears Domain Name System DNS statistics Command mode Privileged EXEC clear ip icmp counters Clears Internet Control Message Protocol ICMP statistics Command mode Privileged EXEC clear ip igmp VLAN ID 1 4094 counters Clears all IGMP statistics The vlan option clears IGMP statistics only for a specific VLAN C...

Page 245: ...n the selected interface Command mode Privileged EXEC clear ip rip counters Clears Routing Information Protocol RIP statistics Command mode Privileged EXEC clear ip route counters Clears IPv4 route statistics Command mode Privleged EXEC clear ipv6 route counters Clears IPv6 route statistics Command mode Privileged EXEC clear ip slp counters Clears SLP statistics Command mode Privileged EXEC clear ...

Page 246: ...clear ip udp counters Clears User Datagram Protocol UDP statistics Command mode Privileged EXEC clear ip vrrp counters Clears VRRP statistics Command mode Privileged EXEC Table 106 Layer 3 Statistics Commands continued Command Syntax and Usage ...

Page 247: ...drErrors The number of input datagrams discarded because the IP address in their IP headerʹs destination field was not a valid address to be received at this entity the switch This count includes invalid addresses for example 0 0 0 0 and addresses of unsupported Classes for example Class E For entities which are not IP Gateways and therefore do not forward datagrams this counter includes datagrams...

Page 248: ...as encountered to prevent their transmission to their destination but which were discarded for example for lack of buffer space Note that this counter would include datagrams counted in ipForwDatagrams if any such packets met this discretionary discard criterion ipDefaultTTL The default value inserted into the Time To Live TTL field of the IP header of datagrams originated at this entity the switc...

Page 249: ...rmProbs 0 PktTooBigMsg 9 ICMPEchoReq 10 ICMPEchoReps 0 RouterSols 0 RouterAdv 5 NeighSols 9 NeighAdv 0 Redirects 0 AdminProhib 0 ICMPBadCode Sent 19 ICMPMsgs 0 ICMPErrMsgs 0 DstUnReach 0 TimeExcds 0 ParmProbs 0 PktTooBigs 10 EchoReq 9 EchoReply 0 RouterSols 0 RouterAdv 11 NeighSols 5 NeighborAdv 0 RedirectMsgs 0 AdminProhibMsgs UDP statistics Received 0 UDPDgrams 0 UDPNoPorts 0 UDPErrPkts Sent 0 U...

Page 250: ... example for lack of buffer space Note that this counter does not include any datagrams discarded while awaiting re assembly Delivers Number of datagrams successfully delivered to IP user protocols including ICMP OutRequests Number of IP datagrams which local IP user protocols including ICMP supplied to IP in requests for transmission OutDiscards Number of output IP datagrams for which no problem ...

Page 251: ...ntRedirects The number of Redirect messages sent Table 109 ICMP Statistics Statistic Description Received ICMPPkts Number of ICMP messages which the entity the switch received ICMPErrPkt Number of ICMP messages which the entity the switch received but determined as having ICMP specific errors bad ICMP checksums bad length and so forth DestUnreach Number of ICMP Destination Unreachable messages rec...

Page 252: ...t contribute to this counterʹs value DstUnReach Number of ICMP Destination Unreachable messages sent TimeExcds Number of ICMP Time Exceeded messages sent ParmProbs Number of ICMP Parameter Problem messages sent PktTooBigs The number of ICMP Packet Too Big messages sent by the interface EchoReq Number of ICMP Echo request messages sent EchoReply Number of ICMP Echo Reply messages sent RouterSols Nu...

Page 253: ...ms Number of UDP datagrams received by the switch UDPNoPorts Number of received UDP datagrams for which there was no application at the destination port UDPErrPkts Number of received UDP datagrams that could not be delivered for reasons other than the lack of an application at the destination port Sent UDPDgrams Number of UDP datagrams sent from this entity the switch ...

Page 254: ...f routes with ECMP paths 0 Table 111 IPv4 Route Statistics Statistics Description Current total outstanding routes Total number of outstanding routes in the route table Highest number ever recorded Highest number of routes ever recorded in the route table Current static routes Total number of static routes in the route table Current RIP routes Total number of RIP routes in the route table Current ...

Page 255: ... ECMP statistics Maximum number of ECMP routes 600 Max ECMP paths allowed for one route 5 Number of routes with ECMP paths 0 Table 112 IPv6 Route Statistics Statistics Description ipv6RoutesCur Total number of outstanding routes in the route table ipv6RoutesHighWater Highest number of routes ever recorded in the route table ipv6RoutesMax Maximum number of routes that are supported Maximum number o...

Page 256: ...ction statistics vlan VLAN ID 1 4094 Command mode All Mgmt ARP statistics arpEntriesCur 1 arpEntriesHighWater 2 Data ARP statistics arpEntriesCur 1 arpEntriesHighWater 1 arpEntriesMax 16383 Table 113 ARP Statistics Statistic Description arpEntriesCur The total number of outstanding ARP entries in the ARP table arpEntriesHighWater The highest number of ARP entries ever recorded in the ARP table arp...

Page 257: ...ble describes the DNS statistics DNS statistics dnsInRequests 0 dnsOutRequests 0 dnsBadRequests 0 Table 114 DNS Statistics Statistics Description dnsInRequests The total number of DNS response packets that have been received dnsOutRequests The total number of DNS response packets that have been transmitted dnsBadRequests The total number of DNS request packets received that were dropped ...

Page 258: ... Statistics Statistic Description icmpInMsgs The total number of ICMP messages which the entity the switch received Note that this counter includes all those counted by icmpInErrors icmpInErrors The number of ICMP messages which the entity the switch received but determined as having ICMP specific errors bad ICMP checksums bad length and so forth icmpInDestUnreachs The number of ICMP Destination U...

Page 259: ... no types of errors that contribute to this counterʹs value icmpOutDestUnreachs The number of ICMP Destination Unreachable messages sent icmpOutTimeExcds The number of ICMP Time Exceeded messages sent icmpOutParmProbs The number of ICMP Parameter Problem messages sent icmpOutSrcQuenchs The number of ICMP Source Quench buffer almost full stop sending data messages sent icmpOutRedirects The number o...

Page 260: ... used to determine the retransmission timeout In particular when the timeout algorithm is rsre 3 an object of this type has the semantics of the LBOUND quantity described in RFC 793 tcpRtoMax The maximum value permitted by a TCP implementation for the retransmission timeout measured in milliseconds More refined semantics for objects of this type depend upon the algorithm used to determine the retr...

Page 261: ...ror This count includes segments received on currently established connections tcpOutSegs The total number of segments sent including those on current connections but excluding those containing only retransmitted octets tcpRetransSegs The total number of segments retransmitted that is the number of TCP segments transmitted containing one or more previously transmitted octets tcpInErrs The total nu...

Page 262: ...8077 Table 117 UDP Statistics Statistic Description udpInDatagrams The total number of UDP datagrams delivered to the switch udpOutDatagrams The total number of UDP datagrams sent from this entity the switch udpInErrors The number of received UDP datagrams that could not be delivered for reasons other than the lack of an application at the destination port udpNoPorts The total number of received U...

Page 263: ...V3SourceListChangeRecords 0 rxIgmpV3FilterChangeRecords 0 txIgmpGenQueries 0 rxPimHellos 0 IGMP vlan 147 statistics rxIgmpValidPkts 0 rxIgmpInvalidPkts 0 rxIgmpGenQueries 0 rxIgmpGrpSpecificQueries 0 rxIgmpGroupSrcSpecificQueries 0 rxIgmpDiscardPkts 0 rxIgmpLeaves 0 rxIgmpReports 0 txIgmpReports 0 txIgmpGrpSpecificQueries 0 txIgmpLeaves 0 rxIgmpV3CurrentStateRecords 0 rxIgmpV3SourceListChangeRecor...

Page 264: ...ip Query packets transmitted to specific groups txIgmpLeaves Total number of Leave messages transmitted rxIgmpV3CurrentStateRecords Total number of Current State records received rxIgmpV3SourceListChangeRecords Total number of Source List Change records received rxIgmpV3FilterChangeRecords Total number of Filter Change records received txIgmpGenQueries Total number of General Membership Query pack...

Page 265: ... Displays MLD statistics See page 266 for sample output Command mode All show ipv6 mld groups counters Displays total number of MLD entries Command mode All show ipv6 mld interface counters Displays total number of MLD entries Command mode All show ipv6 mld interface 1 126 counters Displays total number of MLD entries on the interface Command mode All clear ipv6 mld counters Clears MLD counters Co...

Page 266: ...Sent xErrors General Query 0 1067 0 MAS Query 0 0 0 MASSQ Query 0 0 0 MLDv1 Report 0 0 0 MLDv1 Done 0 0 0 MLDv2 Report 1069 1084 0 INC CSRs v2 1 0 0 EXC CSRs v2 2134 1093 0 TO_INC FMCRs v2 1 0 0 TO_EXC FMCRs v2 0 15 0 ALLOW SLCRs v2 0 0 0 BLOCK SLCRs v2 0 0 0 MLD interface packet statistics for interface 2 MLD msg type Received Sent xErrors MLD interface packet statistics for interface 3 MLD msg t...

Page 267: ...Number of packets sent by a multicast listener in response to MLDv1 query Listener Done v1 v2 Number of packets sent by a host when it wants to stop receiving multicast traffic Listener Report v2 Number of packets sent by a multicast listener in response to MLDv2 query MLDv2 INC mode CSRs Number of current state records with include filter mode MLDv2 EXC mode CSRs Number of current state records w...

Page 268: ...PF statistics See page 269 for sample output Command mode All show ip ospf area 0 19 counters Displays OSPF statistics for all areas or a specified area Command mode All show ip ospf interface interface number port port alias or number counters Displays OSPF statistics for all interfaces or a specified interface Command mode All clear ip ospf counters Clears OSPF statistics Command mode Privileged...

Page 269: ...hello 2 hello 4 start 0 down 2 n2way 2 loop 0 adjoint ok 2 unloop 0 negotiation done 2 wait timer 2 exchange done 2 backup 0 bad requests 0 nbr change 5 bad sequence 0 loading done 2 n1way 0 rst_ad 0 down 1 Timers kickoff hello 514 retransmit 1028 lsa lock 0 lsa ack 0 dbage 0 summary 0 ase export 0 Table 122 OSPF General Statistics Statistic Description Rx Tx Stats Rx Pkts The sum total of all OSP...

Page 270: ...ts transmitted on all OSPF areas and interfaces Nbr Change Stats hello The sum total of all Hello packets received from neighbors on all OSPF areas and interfaces Start The sum total number of neighbors in this state that is an indication that Hello packets should now be sent to the neighbor at intervals of HelloInterval seconds across all OSPF areas and interfaces n2way The sum total number of bi...

Page 271: ... The sum total number of times the Neighbor adjacency has been reset across all OPSF areas and interfaces down The total number of Neighboring routers down that is in the initial state of a neighbor conversation across all OSPF areas and interfaces Intf Change Stats hello The sum total number of Hello packets sent on all interfaces and areas down The sum total number of interfaces down in all OSPF...

Page 272: ...he sum total number of times the Link State Advertisement LSA lock timer has been fired across all OSPF areas and interfaces lsa ack The sum total number of times the LSA Ack timer has been fired across all OSPF areas and interfaces dbage The total number of times the data base age Dbage has been fired summary The total number of times the Summary timer has been fired ase export The total number o...

Page 273: ...isplays OSPFv3 statistics See page 274 for sample output Command mode All show ipv6 ospf area area index 0 2 counters Displays OSPFv3 statistics for all areas or a specified area Command mode All show ipv6 ospf interface interface number counters Displays OSPFv3 statistics for all interfaces or a specified interface Command mode All clear ipv6 ospf counters Clears OSPFv3 statistics Command mode Pr...

Page 274: ...180 0 Errors rx on pasv intf 0 rx but ospf off 0 rx on intf not up 0 rx version mismatch 0 rx rtr id is zero 0 rx with our rtr id 0 instance id mismatch 0 area mismatch 0 dest addr mismatch 0 bad checksum 0 no associated nbr 0 bad packet type 0 hello mismatch 0 options mismatch 0 dead mismatch 0 bad nbma ptomp nbr 0 Nbr change stats Intf change Stats down 0 down 5 attempt 0 loop 0 init 1 waiting 6...

Page 275: ... no associated interface has been found Rx database The sum total of all Database Description packets received on all OSPFv3 interfaces Tx database The sum total of all Database Description packets transmitted on all OSPFv3 interfaces Discarded database The sum total of all Database Description packets discarded Rx ls requests The sum total of all Link State Request packets received on all OSPFv3 ...

Page 276: ...tal number of neighbors in this state that is in an adjacencyʹs final state having transmitted a full sequence of Database Description packets across all OSPFv3 interfaces loading done The total number of link state updates received for all out of date portions of the database across all OSPFv3 interfaces full The total number of transitions into full state of neighboring routers across all OSPFv3...

Page 277: ...times the wait timer has been fired which causes an interface to exit waiting state across all OPSFv3 interfaces poll The total number of times the timer whose firing causes hellos to be sent to inactive NBMA and Demand Circuit neighbors has been fired across all OPSFv3 interfaces nbr probe The total number of times the neighbor probe timer has been fired across all OPSFv3 interfaces Number of LSA...

Page 278: ...Advers 0 vrrpOutAdvers 0 vrrpOutGratuitousARPs 0 vrrpBadVersion 0 vrrpBadVrid 0 vrrpBadAddress 0 vrrpBadData 0 vrrpBadPassword 0 vrrpBadInterval 0 Table 125 VRRP Statistics Statistics Description vrrpInAdvers The total number of valid VRRP advertisements that have been received vrrpBadAdvers The total number of VRRP advertisements received that were dropped vrrpOutAdvers The total number of VRRP a...

Page 279: ...ber of Join Prune messages transmitted or received Assert Tx Rx Number of Assert messages transmitted or received Register Tx Rx Number of Register messages transmitted or received Null Reg Tx Rx Number of NULL register messages received RegStop Tx Rx Number of Register Stop messages transmitted or received CandRPAdv Tx Rx Number of Candidate RP Advertisements transmitted or received BSR Tx Rx Num...

Page 280: ... mode All RIP ALL STATS INFORMATION RIP packets received 12 RIP packets sent 75 RIP request received 0 RIP response recevied 12 RIP request sent 3 RIP reponse sent 72 RIP route timeout 0 RIP bad size packet received 0 RIP bad version received 0 RIP bad zeros received 0 RIP bad src port received 0 RIP bad src IP received 0 RIP packets from self received 0 ...

Page 281: ...ng Statistics count all DHCP packets processed by DHCP snooping Table 127 DHCP Statistics Options Command Syntax and Usage show ip dhcp snooping counters Displays DHCP Snooping statistics Command mode All clear ip dhcp snooping counters Clears DHCP Snooping statistics Command mode Privileged EXEC DHCP Snooping statistics Received Request packets 2 Received Reply packets 2 Recevied Invalid packets ...

Page 282: ... Command mode All clear openflow statistics Clears OpenFlow data for all instances Command mode Privileged EXEC clear openflow instance 1 2 statistics Clears OpenFlow data for the specified instance ID Command mode Privileged EXEC Openflow instance 1 is currently disabled Openflow statistics for instance 2 Flow Count Basic Flows 3 ACL Based 3 Unicast FDB Based 0 Multicast FDB Based 0 Emergency Flo...

Page 283: ...ut 0 Delete 0 Vendor Flow Removed Idle Timeout 0 Hard Timeout 0 Delete 0 Port Status Add 0 Delete 0 Modify 0 Packet Out 1088 Flow Mod Add 3 Modify 0 Modify Strict 0 Delete 0 Delete Strict 1 Port Mod 0 Statistics Request Desc 1 Flow 15 Aggregate 0 Table 0 Port 15 Vendor 0 stats 0 stats strict 0 Statistics Reply Desc 1 Flow 15 Aggregate 0 Table 0 Port 15 Vendor 0 stats 0 stats strict 0 Barrier Reque...

Page 284: ...istics for instance 1 Flow Count Static Flows 0 ACL Based 0 Mpls PUSH based 0 Mpls POP based 0 Dynamic Flows 2 ACL Based 2 Unicast FDB Based 0 Multicast FDB Based 0 Mpls PUSH based 0 Mpls POP based 0 Group Count 0 Buffering Count Openflow Packets Buffered 0 Openflow Packets Timed out 0 Openflow Packets Retrieved 0 Openflow Packets Retrieve attempts 0 Message Count Hello Sent 3 Hello Received 3 Ech...

Page 285: ...tatistics 5993 Group counter statistics 0 Group description 0 Group features 0 Port description 3 Multipart Reply Switch description 6 Individual flow statistics 5993 Aggregate flow statistics 0 Flow table statistics 0 Port statistics 5993 Group counter statistics 0 Group description 0 Group features 0 Port description 3 Barrier Request 3 Barrier Reply 3 Error Messages Hello Failed Sent Incompatib...

Page 286: ...d 0 Bad Value 0 Bad Mask 0 Bad Prerequisites 0 Duplicated Field 0 Flow Mod Failed Unknown 0 Table Full 0 Bad Table ID 0 Overlap 0 Permission Error 0 Bad Timeout 0 Bad Command 0 Bad Flags 0 Group Mod Failed Group Exists 0 Invalid Group 0 Weight Unsupported 0 Out of Groups 0 Out of Buckets 0 Chaining Unsupported 0 Watch Unsupported 0 Loop 0 Unknown Group 0 Chained Group 0 Bad Type 0 Bad Command 0 Ba...

Page 287: ... 3 Group Count Count of installed groups Buffering Count Openflow Packets Buffered Count of packets buffered Openflow Packets Timed out Count of buffered packets dropped due to time out Openflow Packets Retrieved Count of packets retrieved Openflow Packets Retrieve attempts Count of attempts made to retrieve the buffer Message Count Count of messages exchanged between the Controller and the switch...

Page 288: ...he switch Available only in OpenFlow 1 0 Feature Request Count of Feature Request messages received from the Controller by the switch Feature Reply Count of Feature Reply messages sent from the switch to the Controller Get Config Request Count of Get Config Request messages received from the Controller by the switch Get Config Reply Count of Get Config Reply messages sent from the switch to the Co...

Page 289: ...Delete Count of vendor defined flow entries removed due to explicit deletion Available only in OpenFlow 1 0 Port Status Add Count of port status messages sent triggered by adding a port to OpenFlow Delete Count of port status messages sent triggered by removing a port from OpenFlow Modify Count of port status messages sent triggered by a modification of a port belonging to OpenFlow for example up ...

Page 290: ...ontroller by the switch Available only in OpenFlow 1 0 Port Count of Port statistics requests received from the Controller by the switch Available only in OpenFlow 1 0 Vendor Available only in OpenFlow 1 0 stats Count of Vendor statistics requests received from the Controller by the switch Available only in OpenFlow 1 0 stats strict Count of Vendor strict statistics requests received from the Cont...

Page 291: ...le only in OpenFlow 1 3 Group counter statistics Count of Group statistics requests received from the Controller Available only in OpenFlow 1 3 Group description Count of Group description requests received from the Controller Available only in OpenFlow 1 3 Group features Count of Group features requests received from the Controller Available only in OpenFlow 1 3 Port description Count of Port des...

Page 292: ... switch if the version in the Hello message is incompatible with the version of the Controller Hello Failed Recv Incompatible Count of error messages received by the switch if the version in the Hello message is incompatible with the version of the Controller Bad Request Bad Version Count of error messages sent due to bad version in the request header Bad Type Count of error messages sent due to b...

Page 293: ...ket out Available only in OpenFlow 1 3 Multipart Buffer Overflow Count of error messages sent when the specified buffer in the multi part request is overflowed Available only in OpenFlow 1 3 Bad Action Bad Type Count of error messages sent due to due to unknown action type specified in flow_mod message Bad Len Count of error messages sent due to wrong action length for type of message received in ...

Page 294: ... Available only in OpenFlow 1 3 Unsupport Instruction Count of error messages sent due to unsupported instruction in the received flow mod message Available only in OpenFlow 1 3 Bad Len Count of error messages sent due to wrong instruction length Available only in OpenFlow 1 3 Permission Error Count of error messages sent due to permission error while processing the instruction Available only in O...

Page 295: ...d Available only in OpenFlow 1 3 Table Full Count of error messages sent because of full table when adding or updating the flow mod message Available only in OpenFlow 1 3 Bad Table ID Count of error messages sent because the specified table id in the flow mod message is invalid or because the table id doesnʹt exist Available only in OpenFlow 1 3 Overlap Count of error messages sent due to an attem...

Page 296: ...OpenFlow 1 3 Watch Unsupported Count of error message sent to Controller due to unsupported watch parameter Available only in OpenFlow 1 3 Loop Count of error message sent to Controller due to unsupported checking that no loop is created while chaining groups Available only in OpenFlow 1 3 Unknown Group Count of error message sent to Controller due to unsupported group type Available only in OpenF...

Page 297: ...messages sent due to invalid advertise in the port_mod message Available only in OpenFlow 1 3 Permission Error Count of error messages sent due to permission error while processing the port_mod message Available only in OpenFlow 1 3 Switch Config Failed Available only in OpenFlow 1 3 Bad Flags Count of error messages sent due to invalid flags in the switch config message Available only in OpenFlow...

Page 298: ...ode All show mp tcp block show processes tcp block Displays all TCP control blocks that are in use To view a sample output and a description of the stats see page 310 Command mode All show mp thread show processes thread Displays thread statistics Command mode All show mp udp block show processes udp block Displays all UDP control blocks that are in use To view a sample output see page 311 Command...

Page 299: ... show processes cpu history Displays a history of CPU use statistics To view a sample output see page 314 Command mode All clear mp counters Clears all MP statistics Command mode All Table 130 Management Processor Statistics Options Command Syntax and Usage ...

Page 300: ...r of logs 1 1000 both displays a list of the most recent packets received or sent by the CPU rx displays a log of the most recent packets received by the CPU tx displays a log of the most recent packets sent by the CPU Command mode All show mp packet logs all rx tx all displays a log of all packets received or sent by the CPU rx displays a log of packets received by the CPU tx displays a log of pa...

Page 301: ...289149 BPDUs 34 178404 Cisco packets 0 0 ARP Requests 100419 1 ARP Replies 4988 0 LACP packets 0 0 IPv4 packets 100394 86826 ICMP Requests 0 77321 ICMP Replies 77315 0 IGMP packets 0 0 PIM packets 0 0 VRRP packets 0 0 TCP packets 84 174 FTP 0 0 HTTP 0 0 SSH 0 0 TACACS 0 0 TELNET 84 174 TCP other 0 0 UDP packets 17666 9331 DHCP 13510 5175 NTP 3 3 PTP 0 0 RADIUS 0 0 SNMP 4153 4153 TFTP 0 0 UDP other...

Page 302: ...ics current 0 max 3072 hi watermark 12 Table 132 Packet Statistics Statistics Description Packets received by CPU Total packets Total number of packets received BPDUs Total number of spanning tree Bridge Protocol Data Units received Cisco packets Total number of UniDirectional Link Detection UDLD packets and Cisco Discovery Protocol CDP packets received ARP packets Total number of Address Resoluti...

Page 303: ...nd which only high priority small packets are allowed hi watermark The highest number of packet allocation with size less than 128 bytes from the packet buffer pool by the TCP IP protocol stack hi water time Time stamp that indicates when the hi watermark was reached medium packet buffers current Total number of packet allocations with size between 128 to 1536 bytes from the packet buffer pool by ...

Page 304: ...s from the packet buffer pool by the TCP IP protocol stack pkt_hdr statistics current Total number of packet allocations with more than 1536 bytes from the packet buffer pool by the TCP IP protocol stack max Maximum number of packet allocations with more than 1536 bytes from the packet buffer pool by the TCP IP protocol stack hi watermark The highest number of packet allocation with more than 1536...

Page 305: ...rent Buffer Statistics thid name headers smalls mediums jumbos 1 STEM 0 0 0 0 2 STP 0 0 0 0 3 MFDB 0 0 0 0 4 TND 0 0 0 0 5 CONS 0 0 0 0 6 TNET 0 0 0 0 7 TNET 0 0 0 0 8 TNET 0 0 0 0 9 TNET 0 0 0 0 10 LOG 0 0 0 0 11 TRAP 0 0 0 0 12 NTP 0 0 0 0 13 RMON 0 0 0 0 16 IP 0 0 0 0 17 RIP 0 0 0 0 18 AGR 0 0 0 0 19 EPI 0 0 0 0 20 PORT 0 0 0 0 95 OVSR 0 0 0 0 96 VTEP 0 0 0 0 97 BFD 0 0 0 0 98 VMFD 0 0 0 0 99 N...

Page 306: ...x bgp Displays only BGP packets logged Command mode All show mp packet parse rx tx bpdu Displays only BPDUs logged Command mode All show mp packet parse rx tx cisco Displays only Cisco packets BPDU CDP UDLD logged Command mode All show mp packet parse rx tx dhcp Displays only DHCP packets logged Command mode All show mp packet parse rx tx ecp Displays only ECP packets logged Command mode All show ...

Page 307: ...isplays only IPv4 packets logged Command mode All show mp packet parse rx tx ipv6 Displays only IPv6 packets logged Command mode All show mp packet parse rx tx lacp Displays only LACP PDUs logged Command mode All show mp packet parse rx tx lldp Displays only LLDP PDUs logged Command mode All show mp packet parse rx tx mac MAC address Displays only logged packets with the specified MAC address Comm...

Page 308: ...se rx tx radius Displays only RADIUS packets logged Command mode All show mp packet parse rx tx rarp Displays only Reverse ARP packets Command mode All show mp packet parse rx tx raw Displays raw packet buffer in addition to headers Command mode All show mp packet parse rx tx rip Displays only RIP packets logged Command mode All show mp packet parse rx tx snmp Displays only SNMP packets logged Com...

Page 309: ... mp packet parse rx tx tftp Displays only TFTP packets logged Command mode All show mp packet parse rx tx udp Displays only UDP packets logged Command mode All show mp packet parse rx tx udpother Displays only UDP other port packets logged Command mode All show mp packet parse rx tx vlan VLAN ID 1 4095 Displays only logged packets with the specified VLAN Command mode All show mp packet parse rx tx...

Page 310: ... 0 0 1 23 listen up 53ee4c58 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 23 listen 53ee4ae8 0 0 0 0 0 0 0 0 0 23 listen Mgmt Ports Active Internet connections servers and established Proto Recv Q Send Q Local Address Foreign Address State tcp 0 0 127 0 0 1 5000 LISTEN tcp 0 0 10 241 31 135 http LISTEN tcp 0 0 10 241 31 135 telnet LISTEN tcp 0 0 127 0 0 1 680 127 0 0 1 5500 ESTABLISHED tcp 0 0 127 0 0 1 5000...

Page 311: ...MP UDP statistics show mp udp block Command mode All Data Ports All UDP allocated control blocks 68 listen 161 listen Mgmt Ports Active Internet connections servers and established Proto Recv Q Send Q Local Address Foreign Address State udp 0 0 10 241 31 135 snmp 0 0 0 0 0 10 241 31 135 161 accept MGT up ...

Page 312: ...NET 280 61440 4 1 0 0 1 idle 10 LOG 3032 8192 461405 4360 6400 0 9 idle 11 TRAP 808 8192 68933 250712 14 0 9 idle 12 NTP 72 8192 4 1 0 0 1 idle 13 RMON 232 8192 523736 81256 42 0 1 idle 16 IP 4232 32768 3990187 1139704 230 0 10 idle 17 RIP 2520 32768 488 514 0 0 2 idle 18 AGR 6280 131072 40339 8130 22 0 1 idle 19 EPI 856 32768 67356 2572 52 0 1 idle 20 PORT 3848 24576 3706308 40854 1076 0 11 idle ...

Page 313: ...hread Thread Utilization Status ID Name 1sec 5sec 1Min 5Min 1 STEM 0 00 0 00 0 00 0 00 idle 2 STP 0 00 0 00 0 00 0 00 idle 3 MFDB 0 00 0 00 0 00 0 00 idle 4 TND 0 00 0 00 0 00 0 00 idle 5 CONS 0 14 0 04 0 00 0 00 running 6 TNET 0 00 0 00 0 00 0 00 idle Table 135 CPU Statistics Statistics Description Thread ID The thread ID number Thread Name The name of the thread 1sec The percent of CPU use over ...

Page 314: ...show processes cpu history Command mode All CPU Utilization History 40 LACP 8 at 12 41 07 Mon Jul 6 2015 75 ARP 32 at 12 41 08 Mon Jul 6 2015 75 ARP 48 at 12 41 13 Mon Jul 6 2015 54 PROX 62 at 13 52 06 Mon Jul 6 2015 54 PROX 63 at 15 03 43 Mon Jul 6 2015 54 PROX 64 at 4 02 46 Wed Jul 8 2015 54 PROX 65 at 3 54 27 Thu Jul 9 2015 ...

Page 315: ...ol packets cisco bpdu Cisco STP packets dest unknown packets with destination not yet learned dhcp DHCP packets ecp ECP packets fips FIPS packets icmp ICMP packets icmp6 ICMP6 packets igmp IGMP packets ipv4 miscellaneous IPv4 packets with IP options and TTL exception ipv6 nd IPv6 Neighbor Discovery packets lacp LACP packets lldp LLDP packets oflow cntrler packets that hit the OpenFlow send to cont...

Page 316: ...ommand mode All clear qos protocol packet control all Clears all packet queue statistics Command mode Privileged EXEC clear qos protocol packet control protocol counters packet type Clears packet queue statistics for the selected packet type Command mode Privileged EXEC clear qos protocol packet control queue counters packet queue number 0 43 Clears packet queue statistics for the selected queue C...

Page 317: ...CL Command mode All show access control macl 1 256 counters Displays the ACL statistics for a specific management ACL MACL Command mode All show access control meter 1 127 counters Displays ACL meter statistics Command mode All show access control vmap 1 128 counters Displays VLAN Map statistics for the selected VMAP For a sample display see page 318 Command mode All clear access control list 1 25...

Page 318: ...tistics show access control vmap 1 128 counters Command mode All clear access control meter 1 127 counters Clears ACL meter statistics Command mode Privileged EXEC clear access control vmap 1 128 counters Clears VLAN Map statistics Command mode Privileged EXEC Table 137 ACL Statistics Commands continued Command Syntax and Usage Hits for ACL 1 26057515 Hits for ACL 2 26057497 Hits for VMAP 1 57515 ...

Page 319: ...XLAN Gateway Virtual Network statistics To view a sample output see page 320 Command mode All clear nwv nsx gw virtual network VxLAN VNID 1 16777216 counters Clears VXLAN Gateway Virtual Network statistics Command mode Privileged EXEC show nwv nsx gw virtual port port alias or number counters Displays VXLAN Gateway virtual port statistics To view a sample output see page 320 Command mode All clear...

Page 320: ...tual port counters Command mode All VNID Pkts In Bytes In Pkts Out Bytes Out 5001 949 99917 1123 5567788 5002 664564 4564446 7235 66799 5003 447 73262 56443 3876234 5004 34564 143693 2345 836252 Port VNID Remote TEP Pkts In Bytes In Pkts Out Bytes Out 7 1 A 5174 LOCAL 223 775 6463 56733763 8 1 A 5640 LOCAL 114 3894 439 96784 7 1 A 5949 LOCAL 663 9044 7333 86673 6 1 N MULTIPLE 192 168 200 15 219555...

Page 321: ...e total can accumulate over several FCoE sessions until the statistics are cleared The following command clears FCoE statistics clear fcoe counters Command mode Privileged EXEC FCOE statistics FCFAdded 5 FCFRemoved 1 FCOEAdded 81 FCOERemoved 24 Table 139 FCoE Statistics stats fcoe Statistic Description FCFAdded Total number of FCoE Forwarders FCF added FCFRemoved Total number of FCoE Forwarders FC...

Page 322: ...RJT 0 0 Plogi NS 0 1 Plogi NS ACC 0 1 Plogi NS RJT 0 0 Logo NS 0 0 Logo NS ACC 0 0 Logo NS RJT 0 0 Plogi MS 0 0 Plogi MS ACC 0 0 Plogi MS RJT 0 0 Logo MS 0 0 Logo MS ACC 0 0 Logo MS RJT 0 0 NS Regns 0 4 NS Regns ACC 3 0 NS Regns RJT 1 0 NS Queries 0 3 NS Queries ACC 0 0 NS Queries RJT 3 0 FDMI Regns 0 0 FDMI Regns ACC 0 0 FDMI Regns RJT 0 0 FDMI Deregns 0 0 FDMI Deregns ACC 0 0 FDMI Deregns RJT 0 ...

Page 323: ...OGO SW_ACC 0 0 LOGO SW_RJT 0 0 Plogi NS 0 1 Plogi NS ACC 0 1 Plogi NS RJT 0 0 Logo NS 0 0 Logo NS ACC 0 0 Logo NS RJT 0 0 Plogi MS 0 0 Plogi MS ACC 0 0 Plogi MS RJT 0 0 Logo MS 0 0 Logo MS ACC 0 0 Logo MS RJT 0 0 NS Regns 0 4 NS Regns ACC 3 0 NS Regns RJT 1 0 NS Queries 0 3 NS Queries ACC 0 0 NS Queries RJT 3 0 FDMI Regns 0 0 FDMI Regns ACC 0 0 FDMI Regns RJT 0 0 FDMI Deregns 0 0 FDMI Deregns ACC ...

Page 324: ...oSuchNames 1 snmpOutBadValues 0 snmpOutReadOnlys 0 snmpOutGenErrs 1 snmpOutGetRequests 0 snmpOutGetNexts 0 snmpOutSetRequests 0 snmpOutGetResponses 150093 snmpOutTraps 4 snmpSilentDrops 0 snmpProxyDrops 0 Table 140 SNMP Statistics Statistic Description snmpInPkts The total number of Messages delivered to the SNMP entity from the transport service snmpInBadVersions The total number of SNMP Messages...

Page 325: ...ocol entity to the transport service snmpInBadTypes The total number of SNMP Messages which failed ASN parsing snmpInTooBigs The total number of SNMP Protocol Data Units PDUs which were delivered to the SNMP protocol entity and for which the value of the error status field is too big snmpInNoSuchNames The total number of SNMP Protocol Data Units PDUs which were delivered to the SNMP protocol entit...

Page 326: ... the SNMP protocol entity snmpInSetRequests The total number of SNMP Set Request Protocol Data Units PDUs which have been accepted and processed by the SNMP protocol entity snmpInGetResponses The total number of SNMP Get Response Protocol Data Units PDUs which have been accepted and processed by the SNMP protocol entity snmpInTraps The total number of SNMP Trap Protocol Data Units PDUs which have ...

Page 327: ...rated by the SNMP protocol entity snmpOutTraps The total number of SNMP Trap Protocol Data Units PDUs which have been generated by the SNMP protocol entity snmpSilentDrops The total number of GetRequest PDUs GetNextRequest PDUs GetBulkRequest PDUs SetRequest PDUs and InformRequest PDUs delivered to the OSPFSNMPv2 entity which were silently dropped because the size of a reply containing an alternat...

Page 328: ...Current system time 8 05 21 Thu Nov 29 2012 Table 141 NTP Statistics Field Description Primary Server Requests Sent The total number of NTP requests the switch sent to the primary NTP server to synchronize time Responses Received The total number of NTP responses received from the primary NTP server Updates The total number of times the switch updated its time based on the NTP responses received f...

Page 329: ...updated Current system time The switch system time when the following command was issued show ntp counters address ref clock st when s offset s 12 200 151 18 198 72 72 10 3 35316 2 synced unsynced Table 142 NTP Associations Field Description address Peer address ref clock Peer reference clock address st Peer stratum when s Time in seconds since the latest NTP packet was received from the peer offs...

Page 330: ...sages transmitted and received Table 143 Precision Time Protocol Statistics Commands Command Syntax and Usage show ptp counters Displays Precision Time Protocol statistics Command mode All show interface port port alias or number ptp counters Displays Precision Time Protocol statistics for the port Command mode All clear ptp counters Resets PTP packet counters Command mode Privileged EXEC Precisio...

Page 331: ...e 144 NAT Statistics Commands Command Syntax and Usage show ip nat statistics Displays Network Address Translation NAT statistics Command mode All clear ip nat statistics Clears NAT statistics Command Mode Privileged EXEC Network address translation status ENABLED Number of hardware source translated packets towards realms inside 0 outside 0 Number of hardware destination translated packets toward...

Page 332: ...unters Use the dump command to dump all switch statistics 40K or more depending on your configuration This data can be used to tune or debug switch performance If you want to capture dump data to a file set your communication software on your workstation to capture session data prior to issuing the dump command ...

Page 333: ...ctive config data port mgt port Restores the active configuration from a file on the specified TFTP server For example copy tftp 10 72 97 135 directory config txt active config mgt port Command mode Privileged EXEC copy backup config running config Copy the backup configuration to the current running configuration Command mode Privileged EXEC copy backup config TFTP server filepath data port mgt p...

Page 334: ...tory config txt mgt port Command mode Privileged EXEC copy TFTP server filepath running config data port mgt port Restores the current running configuration from a file on the specified TFTP server For example copy tftp 10 72 97 135 directory config txt running config mgt port Command mode Privileged EXEC copy ftp tftp sftp running config data port mgt port Restores current configuration from a FT...

Page 335: ...age from the specified location to another specified location Note This command is applicable only to configuration files or NOS images Command mode Privileged EXEC write memory Copy the current running configuration from switch memory to the active config partition Command mode Privileged EXEC show running config Dumps current configuration to a script file For details see page 670 Command mode P...

Page 336: ...xample port status might differ from run time information that you view using the Information commands The Information commands display current run time information of switch parameters Saving the Configuration You must save configuration settings to flash memory so the G8332 reloads the settings after a reboot Note If you do not save the changes they will be lost the next time the system is reboo...

Page 337: ...and privacy protocols and algorithms of the device are compliant with NIST SP 800 131A with non complaint protocols and algorithms disabled Note This setting is applied only after a reboot during which the device will be reset to default factory configuration By default this setting is disabled Command mode Global configuration easyconnect Allows to apply a series of customizable and predefined co...

Page 338: ...mode Global configuration line vty length 0 300 Sets the default number of lines per screen displayed for Telnet and SSH sessions A value of 0 disables paging The default value is 28 Command mode Global configuration no line vty Sets line vty length to the default value of 28 Command mode Global configuration no prompting Enables or disables CLI confirmation prompts By default this settings is ena...

Page 339: ...ystem default ip data mgt Enables or disables default IP address on data interfaces and management interfaces The default setting is enabled Command mode Global configuration no system dhcp hostname syslog Enables or disables Dynamic Host Control Protocol for setting the IP address on interface 1 When enabled the IP address obtained from the DHCP server overrides the static IP address The default ...

Page 340: ...r disables logging of packets that come to the CPU The default setting is enabled Command mode Global configuration no system reset control Enables or disables the reset control flag When enabled the switch continues to function after a crash of the main processor using the last known Layer 2 3 information The default setting is enabled Command mode Global configuration no system server ports port...

Page 341: ...es on the drive Command mode Global configuration terminal dont ask Disables CLI confirmation prompts for the current session The switch will choose the default answer By default CLI confirmation prompts are enabled if they are not configured differently by using the prompting command Note When using this command any settings configured through the prompting command will be temporarily disregarded...

Page 342: ...ion tls10 TLS version 1 0 tls11 TLS version 1 1 tls12 TLS version 1 2 Command mode Global configuration show boot strict Displays the current security strict mode status Command mode Global configuration show system Displays the current system parameters Command mode All Table 146 System Configuration Options continued Command Syntax and Usage ...

Page 343: ... Options Command Syntax and Usage no errdisable recovery Globally enables or disables automatic error recovery for error disabled ports The default setting is disabled Note Each port must have error recovery enabled to participate in automatic error recovery Command mode Global configuration errdisable timeout 30 86400 Configures the error recovery timeout in seconds After the timer expires the sw...

Page 344: ...has elapsed Table 148 Link Flap Dampening Configuration Options Command Syntax and Usage no errdisable link flap enable Enables or disables Link Flap Dampening Command mode Global configuration errdisable link flap max flaps 1 100 Configures the maximum number of link flaps allowed in the configured time period The default value is 5 Command mode Global configuration errdisable link flap time 5 50...

Page 345: ...mmand mode Global configuration logging console severity 0 7 This option sets the severity level of syslog messages delivered via the console telnet and SSH The system displays only messages with the selected severity level and above For example if you set the console severity to 2 only messages with severity level of 1 and 2 are displayed The default is 7 which means log all severity levels Comma...

Page 346: ...isables features for which syslog messages can be generated You can choose to enable disable syslog on all available features by using the option all or enable disable specific features such as vlans stg or ssh For a complete list of features see page 348 Command mode Global configuration no logging pdrop enable Enables or disables packet drop logging By default the switch generates these messages...

Page 347: ...owed by the most recent 2000 syslog messages messages displays the most recent 2000 syslog messages only severity displays syslog messages of the specified severity level reverse displays syslog messages starting with the most recent message displays syslog messages that match one of the following filters include displays syslog messages that match the specified expression exclude displays syslog ...

Page 348: ...hotlinks Hot Links logging igmp group IGMP group logging igmp mrouter IGMP mrouter logging igmp querier IGMP querier logging ip Internet Protocol version 4 logging ipv6 Internet Protocol version 6 logging lacp Link Aggregation Control Protocol logging link System Port Link logging lldp LLDP logging management Management logging mld MLD logging nat Network Address Translation logging netconf NETCON...

Page 349: ...ce Location Protocol logging spanning tree group Spanning tree group logging ssh Secure Shell logging system System logging vlag Virtual Link Aggregation logging vlan VLAN logging vm Virtual Machine logging vrrp Virtual Router Redundancy Protocol logging web Web logging ...

Page 350: ...h maxauthattempts Resets the maximum number of SSH authentication attempts to its default value of 2 Command mode Global configuration ssh port TCP port number 1 65535 Sets the SSH server port number The default port number is 22 Command mode Global configuration no ssh port Resets the SSH server port to the default port number 22 Command mode Global configuration ssh public key index 1 100 adduse...

Page 351: ... keys index Displays a specific SSH public key username Displays all the SSH public keys of a particular user Command mode All clear ssh clienthostkey address SFTP server IP address all Clears stored SFTP SSH host key configuration address Clears a specific SFTP SSH host key all Clears all SFTP SSH host keys Command mode Privileged EXEC clear ssh clientpubkey all index 1 100 username user name Cle...

Page 352: ...lobal configuration default radius server port Resets the RADIUS server port to the default UDP port 1645 Command mode Global configuration radius server primary host hostname IP address key 1 32 characters Sets the primary RADIUS server address and the shared secret between the switch and the RADIUS server s Command mode Global configuration radius server primary host data port mgt port Defines t...

Page 353: ...and mode Global configuration no radius server secure backdoor Enables or disables the RADIUS back door using secure password for telnet SSH HTTP HTTPS This command does not apply when backdoor is enabled Command mode Global configuration radius server timeout 1 10 Sets the amount of time in seconds before a RADIUS server authentication attempt is considered to have failed The default is 3 seconds...

Page 354: ...upports full packet encryption as opposed to password only in authentication requests It supports de coupled authentication authorization and accounting Table 152 TACACS Server Configuration Options Command Syntax and Usage no tacacs server accounting enable Enables or disables TACACS accounting Command mode Global configuration tacacs server attempts 1 10 Sets the number of failed login attempts ...

Page 355: ... enabled each user must add a configured TACACS server hostname to the username for example username hostname during login This command allows the following options restricted Only the username is sent to the specified TACACS server no truncate The entire login string is sent to the TACACS server Command mode Global configuration no tacacs server directed request Disables TACACS directed request C...

Page 356: ...d mode Global configuration tacacs server primary host data port mgt port Defines the primary interface port to use to send TACACS server requests Select the port to use for data transfer Command mode Global configuration no tacacs server primary host key Deletes the primary TACACS server The key option only removes the shared secret between the switch and the TACACS server Command mode Global con...

Page 357: ...ing This feature is recommended to permit access to the switch when the TACACS servers become unresponsive If no back door is enabled the only way to gain access when TACACS servers are unresponsive is to use the back door via the console port The default is disabled Command mode Global configuration tacacs server timeout 4 15 Sets the amount of time in seconds before a TACACS server authenticatio...

Page 358: ...r the primary TACACS server The CLI will prompt you for input Command mode Global configuration secondary password Configures the password for the secondary TACACS server The CLI will prompt you for input Command mode Global configuration show tacacs server Displays current TACACS configuration parameters Command mode All Table 152 TACACS Server Configuration Options continued Command Syntax and U...

Page 359: ... group 1 128 characters Configures a customized LDAP group search attribute where the group membership information of the user is stored The default value is memberOf Note This option is available only in LDAP enhanced mode Command mode Global configuration no ldap server attribute group Resets the LDAP group search attribute to its default value of memberOf Note This option is available only in L...

Page 360: ...P or HTTPS access The default setting is disabled Note To obtain the LDAP back door password for your G8332 contact your Service and Support line Command mode Global configuration ldap server basedn 1 128 characters Configure the Distinguished Name DN of the LDAP server The DN consists of a sequence of different Relative Distinguished Names RDN connected by commas An RDN is an attribute that has a...

Page 361: ...ap server binddn dn 1 64 characters key 1 32 characters Configures a customized distinguished name DN and password This creates a set of pre configured credentials that can be used for authentication when sending a bind request to the LDAP server Note The credentials configured through this command are used only when the switch bind mode is set to pre config If the bind mode is set to login any cr...

Page 362: ...is 389 Note The IP address and port number of a LDAP server must be non zero Note This option is available only in LDAP enhanced mode Command mode Global configuration no ldap server host LDAP server number 1 4 Removes the specified external LDAP server Note This option is available only in LDAP enhanced mode Command mode Global configuration ldap server port UDP port number 1 65000 Enter the numb...

Page 363: ...onfigures LDAP to not encrypt LDAP credentials DN and password when sending a bind request to the LDAP server The default security mode is clear clear text Note This option is available only in LDAP enhanced mode Command mode Global configuration ldap server security ldaps Configures LDAP to encrypt LDAP credentials DN and password using Secure LDAP LDAPS when sending a bind request to the LDAP se...

Page 364: ...and the LDAP client both compare the other s CA root certificate against their own If both certificates match the authentication succeeds If either certificate does not match the authentication fails Note This option is available only in LDAP enhanced mode Command mode Global configuration no ldap server srv Enables or disables the switch to look up LDAP server information by retrieving a Service ...

Page 365: ...le c England uid user ID For example uid 329800735698586629295641978511506172918 no ldap server ipv6 secondary host Deletes the secondary LDAP server Note This option is available only in LDAP legacy mode Command mode Global configuration ldap server timeout 4 15 Sets the amount of time in seconds before a LDAP server authentication attempt is considered to have failed The default is 5 seconds Com...

Page 366: ...ich you want to synchronize the switch clock Command mode Global configuration ntp ipv6 primary server IPv6 address data port mgt port Prompts for the IPv6 address of the primary NTP server to which you want to synchronize the switch clock Command mode Global configuration no ntp ipv6 primary server Deletes the IPv6 primary NTP server Command mode Global configuration ntp ipv6 secondary server dat...

Page 367: ...conds Command mode Global configuration no ntp offset Resets the NTP offset to the default 300 seconds value Command mode Global configuration ntp secondary server data port mgt port Prompts for the port of the secondary NTP server to which you want to synchronize the switch clock Command mode Global configuration ntp secondary server hostname or IP address data port mgt port Prompts for the IP ad...

Page 368: ...r disables informational logs for NTP synchronization failures Default setting is enabled Command mode Global configuration show ntp Displays the current NTP service settings Command mode All Table 154 NTP Server Configuration Options continued Command Syntax and Usage ...

Page 369: ...agement objects to retrieve or to modify SNMP parameters that can be modified include System name System location System contact Use of the SNMP system authentication trap function Read community string Write community string Trap community strings Table 155 System SNMP Options Command Syntax and Usage no snmp server authentication trap enable Enables or disables the use of the system authenticati...

Page 370: ...rs Configures the name for the system The name can have a maximum of 64 characters Command mode Global configuration no snmp server name Deletes the name of the system Command mode Global configuration snmp server read community 1 32 characters Configures the SNMP read community string The read community string controls SNMP get access to the switch It can have a maximum of 32 characters The defau...

Page 371: ...onfiguration snmp server write community 1 32 characters Configures the SNMP write community string The write community string controls SNMP set access to the switch It can have a maximum of 32 characters The default write community string is private Command mode Global configuration no snmp server write community additional 1 32 characters Adds or removes an additional SNMP write community string...

Page 372: ...pendent SNMP message parameters To view command options see page 378 Command mode Global configuration snmp server group 1 17 A group maps the user name to the access group names and their access rights needed to access SNMP management objects A group defines the access rights assigned to all names that belong to a particular group To view command options see page 377 Command mode Global configura...

Page 373: ...eral sets of SNMP parameters To view command options see page 380 Command mode Global configuration snmp server user 1 17 This command allows you to create a user security model USM entry for an authorized user You can also configure this entry through SNMP To view command options see page 374 Command mode Global configuration snmp server view 1 128 This command allows you to create different MIB ...

Page 374: ...during validation This command allows you to create or change your password for authentication Command mode Global configuration snmp server user 1 17 name 1 32 characters This command allows you to configure a string that represents the name of the user This is the login name that you need in order to access the switch Command mode Global configuration snmp server user 1 17 privacy protocol des a...

Page 375: ...iew subtrees Command mode Global configuration snmp server view 1 128 name 1 32 characters This command defines the name for a family of view subtrees Command mode Global configuration snmp server view 1 128 tree 1 63 characters This command defines MIB tree which when combined with the corresponding mask defines a family of view subtrees Command mode Global configuration snmp server view 1 128 ty...

Page 376: ... both with authentication and using a privacy protocol Command mode Global configuration snmp server access 1 32 name 1 32 characters Defines the name of the group Command mode Global configuration snmp server access 1 32 notify view 1 32 characters Defines a notify view name that allows you notify access to the MIB view Command mode Global configuration snmp server access 1 32 read view 1 32 char...

Page 377: ...mp server group 1 17 group name 1 32 characters The name for the access group as defined in the following command snmp server access 1 32 name 1 32 characters on page 374 Command mode Global configuration snmp server group 1 17 security usm snmpv1 snmpv2 Defines the security model Command mode Global configuration snmp server group 1 17 user name 1 32 characters Sets the user name as defined in th...

Page 378: ...1 16 name 1 32 characters Defines the user name as defined in the following command snmp server user 1 17 name 1 32 characters on page 374 Command string Global configuration snmp server community 1 16 tag 1 255 characters Allows you to configure a tag This tag specifies a set of transport endpoints to which a command responder application sends an SNMP trap Command mode Global configuration snmp ...

Page 379: ...address 1 16 name 1 32 characters address transport IP address Configures a transport IPv4 address that can be used in the generation of SNMP traps Command mode Global configuration snmp server target address 1 16 name 1 32 characters address6 transport IPv6 address Configures a transport IPv6 address that can be used in the generation of SNMP traps IPv6 addresses are not displayed in the configur...

Page 380: ...Parameters Table Configuration Options Command Syntax and Usage snmp server target parameters 1 16 level noAuthNoPriv authNoPriv authPriv Allows you to select the level of security to be used when generating the SNMP messages using this entry noAuthNoPriv means that the SNMP message will be sent without authentication and without using a privacy protocol authNoPriv means that the SNMP message will...

Page 381: ...s the targetParamsTable entry Command mode Global configuration show snmp server v3 target parameters 1 16 Displays the current targetParamsTable configuration Command mode All Table 163 Target Parameters Table Configuration Options continued Command Syntax and Usage Table 164 Notify Table Options Command Syntax and Usage snmp server notify 1 16 name 1 32 characters Defines a locally arbitrary but...

Page 382: ...0 Command mode Global configuration access snmp read only read write Enables read only write read SNMP access Command mode Global configuration no access snmp Disables SNMP access Command mode Global configuration no access telnet enable Enables or disables Telnet access The default setting is enabled Command mode Global configuration access telnet port TCP port number 1 65535 Sets an optional Tel...

Page 383: ...Options continued Command Syntax and Usage Table 166 Management Network Configuration Options Command Syntax and Usage no access management network mgmt network IPv4 address mgmt network IPv4 netmask Adds or removes a defined network through which switch access is allowed via Telnet SNMP or the Enterprise NOS browser based interface A range of IPv4 addresses is produced when used with a network ma...

Page 384: ...uration causes the Firewall Load Balancing health checks to fail and creates a Network Down state on the network Command mode Global configuration no access management network6 mgmt network IPv6 address IPv6 prefix length snmp ro snmp rw Adds or removes a defined IPv6 network through which SNMP read only or SNMP read write switch access is allowed Command mode Global configuration no access manage...

Page 385: ...netconf timeout 30 3600 Configures the timeout value for NETCONF sessions in seconds The default value is 300 seconds Command mode Global configuration default access netconf timeout Resets the timeout value for NETCONF sessions to the default of 300 seconds Command mode Global configuration show access Displays the current configuration Command mode All Table 168 NETCONF over SSH Configuration Op...

Page 386: ...disable the administrator password Command Mode Global configuration access user eject user name session id session ID Ejects the specified user from the G8332 Command mode Global configuration access user operator password Sets the operator oper password The operator manages all functions of the switch The operator can view all switch information and statistics and can reset ports This command wi...

Page 387: ...cess user 1 20 level user operator administrator Sets the Class of Service to define the user s authority level Enterprise NOS defines these levels as User Operator and Administrator with User being the most restricted level Command mode Global configuration access user 1 20 name 1 64 characters Defines the user name of maximum eight characters Command mode Global configuration access user 1 20 pa...

Page 388: ...ong password expiry 1 365 Configures the number of days allowed before the password must be changed The default value is 60 days Command mode Global configuration access user strong password faillock 1 10 Configures the number of failed login attempts that trigger the account lockout The default value is 6 attempts Command mode Global configuration access user strong password faillog 1 255 Configu...

Page 389: ...S Command mode Global configuration access https generate certificate Allows you to generate a certificate to connect to the SSL to be used during the key exchange A default certificate is created when HTTPS is enabled for the first time The user can create a new certificate defining the information that they want to be used in the various fields For example Country Name 2 letter code CA State or ...

Page 390: ... Command mode Global configuration access https save certificate Allows the client or the Web browser to accept the certificate and save the certificate to Flash to be used when the switch is rebooted Command mode Global configuration access https delete certificate Deletes the current certificate from the flash memory Command mode Global configuration access https port TCP port number 1 65535 Def...

Page 391: ...ftp sftp public key data port mgt port Enables you to import a client public key using TFTP SFTP Command mode Global configuration copy tftp public key address hostname or server IP address filename server filename data port mgt port Enables you to import a client public key using TFTP Command mode Global configuration copy cert request tftp ftp sftp address hostname or server IP address filename ...

Page 392: ...nable Enables or disables the Custom Daylight Saving Time settings Command mode Global configuration system custom dst start rule WDDMMhh Configures the start date for custom DST as follows WDMMhh W week 0 5 where 0 means use the calendar date D day of the week 01 07 where 01 is Monday MM month 1 12 hh hour 0 23 Note Week 5 is always considered to be the last week of the month Command mode Global ...

Page 393: ...ent Command mode Global configuration sflow port UDP port number 1 65000 Configures the UDP port for the sFlow server The default value is 6343 Command mode Global configuration default sflow port Resets the sFlow server port to the default port number 6343 Command mode Global configuration sflow server IP address data port mgt port Defines the sFlow server address and interface port Command mode ...

Page 394: ...lling 5 60 Configures the sFlow polling interval in seconds The default setting is disabled Command mode Interface port no sflow polling Disables sFlow polling interval Command mode Interface port sflow sampling 256 65536 Configures the sFlow sampling rate in packets per sample The default setting is disabled Command mode Interface port no sflow sampling Disables sFlow sampling rate Command mode I...

Page 395: ...idered to be uplink ports VMready learns Virtual Machine information only from server ports Table 176 Server Port Configuration Options Command Syntax and Usage no system server ports port port alias or number Adds or removes one or more ports to the list of server ports Command mode Global configuration show system server ports Displays the current server port configuration Command mode All ...

Page 396: ...te for the ports Note Supported in OpenFlow Only mode Command mode Global Configuration no bpdu guard Enables or disables BPDU guard to avoid Spanning Tree loops on ports configured as edge ports Command mode Interface port Interface portchannel description 1 64 characters Sets a description for the port The assigned port description appears next to the port number on some information and statisti...

Page 397: ...ce port no learning Enables or disables FDB learning on the port Command mode Interface port Interface portchannel no mac address table mac notification Enables or disables MAC Address Notification With MAC Address Notification enabled the switch generates a syslog message when a MAC address is added or removed from the MAC address table Command mode Interface port Interface portchannel port chann...

Page 398: ...icast level rate 0 2097151 Limits the available bandwidth for broadcast multicast or unicast messages to the specified value Command mode Interface port Interface portchannel no storm control broadcast multicast unicast Sets the port to forward all broadcast multicast or unicast packets Command mode Interface port Interface portchannel no switchport Enables or disables routing on a port Command mo...

Page 399: ... private vlan host association primary VLAN ID 2 4094 secondary VLAN ID 2 4094 Enables or disables the private VLAN association on a secondary port Command mode Interface port Interface portchannel no switchport private vlan mapping primary VLAN ID 2 4094 Enables or disables private VLAN mapping on a port in promiscuous mode Command mode Interface port Interface portchannel switchport trunk allowe...

Page 400: ...xisting regular VLANs and to any other VLAN that gets created afterwards none removes the port from all currently associated VLANs and assigns the port to the default VLAN VLAN 1 for data ports and VLAN 4095 for the management port Command mode Interface port Interface portchannel no switchport trunk allowed vlan Assigns the port to all available data VLANs Command mode Interface port Interface po...

Page 401: ...sabled the VLAN tag is removed at egress from packets whose VLAN tag matches the port PVID Native vlan The default setting is disabled Note In global configuration mode this is an operational command used to set the VLAN tag persistence on all ports currently tagged at the moment of execution VLAN tag persistence will not be set automatically for ports tagged afterwords Also as an operational comm...

Page 402: ...yntax and Usage no errdisable recovery Enables or disables automatic error recovery for the port The default setting is enabled Note Error recovery must be enabled globally before port level commands become active Command mode Interface port Interface portchannel show interface port port alias or number errdisable Displays the specified port s Error Disable parameters Command mode All Table 179 Po...

Page 403: ...mand mode Interface port Interface portchannel duplex full half auto Sets the operating mode The choices include Auto negotiation default Half duplex Full duplex Note Data ports are fixed at full duplex Command mode Interface port Interface portchannel flowcontrol receive send on off Turns flow control receiving or transmiting on or off Command mode Interface port Interface portchannel no flowcont...

Page 404: ...ollowing command at any prompt Because this configuration sets a temporary state for the port you do not need to use a save operation The port state will revert to its original configuration when the RackSwitch G8332 is rebooted See the Operations Commands on page 675 for other operations level commands RS G8332 config interface port port alias or number shutdown ...

Page 405: ... Configures the UDLD mode for the selected port as follows Normal Detect unidirectional links that have mis connected interfaces The port is disabled if UDLD determines that the port is mis connected Use the no form to select normal operation Aggressive In addition to the normal mode the aggressive mode disables the port if the neighbor stops sending UDLD probes for 7 seconds Command mode Interfac...

Page 406: ...t OAM Configuration Options Command Syntax and Usage no oam Enables or disables OAM discovery on the current port Command mode Interface port no oam passive Enables or disables OAM discovery passive mode In passive mode the current port allows its peer link to initiate OAM discovery If OAM determines that the port is in an anomalous condition the port is disabled Command mode Interface port show i...

Page 407: ...wo Command mode Interface port Interface portchannel no access control list 1 256 Adds or removes the specified ACL to the port You can add multiple ACLs to a port but the total number of precedence levels allowed is two Command mode Interface port Interface portchannel no access control list6 1 128 Adds or removes the specified IPv6 ACL to the port You can add multiple ACLs to a port but the tota...

Page 408: ...r disables Random Detection and avoidance Command mode Interface port no random detect ecn enable Enables or disables Explicit Congestion Notification ECN When ECN is on the switch marks the ECN bit of the packet if applicable instead of dropping the packet ECN aware devices are notified of the congestion and those devices can take corrective actions Note ECN functions only on TCP traffic Command ...

Page 409: ...x and Usage no random detect transmit queue 0 7 enable Enables or disables the WRED transmit queue configuration Command mode Interface port random detect transmit queue 0 7 tcp min threshold 1 100 max threshold 1 100 drop rate 1 100 Configures the WRED thresholds for TCP traffic Command mode Interface port no random detect transmit queue 0 7 tcp Clears the WRED configuration for TCP traffic Comma...

Page 410: ...02 1p Configuration Options Command Syntax and Usage qos transmit queue mapping priority 0 7 COSq number 0 7 Maps the 802 1p priority to the Class of Service queue COSq priority Enter the 802 1p priority value followed by the Class of Service queue that handles the matching traffic Command mode Global configuration default qos transmit queue mapping Resets the 802 1p packet priority mapping to its...

Page 411: ...v Code point value to an 802 1p priority value Enter the DSCP value followed by the corresponding 802 1p value Command mode Global configuration qos dscp dscp mapping DSCP 0 63 new DSCP 0 63 Maps the initial DiffServ Code Point DSCP value to a new value Enter the DSCP value of incoming packets followed by the new value Command mode Global configuration no qos dscp re marking Globally enables or di...

Page 412: ...kets of applications arp bcast ARP broadcast packets arp ucast ARP unicast reply packets bgp BGP packets bpdu Spanning Tree Protocol packets cisco bpdu Cisco STP packets dest unknown packets with destination not yet learned dhcp DHCP packets ecp ECP packets fips FIPS packets icmp ICMP packets icmp6 ICMP6 packets igmp IGMP packets ipv4 miscellaneous IPv4 packets with IP options and TTL exception ip...

Page 413: ...iguration no qos protocol packet control rate limit packet queue packet queue number 0 43 Clears the packet rate configured for the selected packet queue Command mode Global configuration show qos protocol packet control information protocol Displays of mapping of protocol packet types to each packet queue number The status indicates whether the protocol is running or not running Command mode All ...

Page 414: ...r port WRED commands see Port WRED Configuration on page 408 Table 189 WRED Configuration Options Command Syntax and Usage no qos random detect ecn enable Enables or disables Explicit Congestion Notification ECN When ECN is on the switch marks the ECN bit of the packet if applicable instead of dropping the packet ECN aware devices are notified of the congestion and those devices can take correctiv...

Page 415: ...detect transmit queue 0 7 non tcp min threshold min threshold 1 100 max threshold max threshold 1 100 drop rate drop rate 1 100 Configures the WRED thresholds for non TCP traffic Command mode Global configuration qos random detect transmit queue 0 7 tcp min threshold min threshold 1 100 max threshold max threshold 1 100 drop rate drop rate 1 100 Configures the WRED thresholds for TCP traffic Comma...

Page 416: ...an Access Control List To view command options see page 417 Command mode Global configuration access control list6 1 128 Configures an IPv6 Access Control List To view command options see page 427 Command mode Global configuration access control macl 1 256 Configures an Access Control List To view command options see page 436 Command mode Global configuration access control vmap 1 128 Configures a...

Page 417: ...oup LAG Command mode Global configuration access control list 1 256 egress port port port alias or number Configures the ACL to function on egress packets Command mode Global configuration no access control list 1 256 egress port Disables the ACL to function on egress packets Command mode Global configuration no access control list 1 256 log Enables or disables logging for the Access Control List ...

Page 418: ...plays the current port mirroring parameters for the ACL Command mode All Table 194 Ethernet Filtering Configuration Options Command Syntax and Usage access control list 1 256 ethernet destination mac address MAC address MAC mask Defines the destination MAC address for this ACL Command mode Global configuration no access control list 1 256 ethernet destination mac address Removes the destination MA...

Page 419: ...trol list 1 256 ethernet vlan VLAN ID 1 4094 VLAN mask Defines a VLAN number and mask for this ACL Command mode Global configuration no access control list 1 256 ethernet vlan Removes VLAN number and mask for this ACL Command mode Global configuration default access control list 1 256 ethernet Resets Ethernet parameters for the ACL to their default values Command mode Global configuration no acces...

Page 420: ...otocol matches this filter Specify the protocol number Listed below are some of the well known protocols Number Name 1 icmp 2 igmp 6 tcp 17 udp 89 ospf 112 vrrp Command mode Global configuration no access control list 1 256 ipv4 protocol Deletes the configured IP protocol for the specified ACL Command mode Global configuration access control list 1 256 ipv4 source ip address IP address IP mask Def...

Page 421: ...rs Command mode All Table 195 IP version 4 Filtering Configuration Options Command Syntax and Usage Table 196 TCP UDP Filtering Configuration Options Command Syntax and Usage access control list 1 256 tcp udp source port 1 65535 mask 0xFFFF Defines a source port for the ACL If defined traffic with the specified TCP or UDP source port will match this ACL Specify the port number Listed here are some...

Page 422: ...ACL Command mode Global configuration access control list 1 256 tcp udp flags value 0x0 0x3f mask 0x0 0x3f Defines a TCP UDP flag for the ACL Command mode Global configuration no access control list 1 256 tcp udp flags Disables the configured TCP UDP flag for the specified ACL Command mode Global configuration default access control list 1 256 tcp udp Resets the TCP UDP parameters for the ACL to t...

Page 423: ...mat ip ipv4 ipv6 Defines the IP format for the ACL Command mode Global configuration access control list 1 256 packet format tagging any none tagged Defines the tagging format for the ACL Command mode Global configuration no access control list 1 256 packet format ethernet ip tagging Deletes the selected format for the specified ACL Command mode Global configuration default access control list 1 2...

Page 424: ... a multiple of 64 Command mode Global configuration no access control list 1 256 meter enable Enables or disables ACL Metering Command mode Global configuration access control list 1 256 meter maximum burst size 32 4096 Configures the maximum burst size in kilobits Enter one of the following values for mbsize 32 64 128 256 512 1024 2048 4096 Command mode Global configuration default access control...

Page 425: ...e Options Command Syntax and Usage access control list 1 256 re mark dot1p 0 7 Re marks the 802 1p value The value is the priority bits information in the packet structure Command mode Global configuration no access control list 1 256 re mark dot1p Disables the use of 802 1p priority for in profile traffic Command mode Global configuration access control list 1 256 re mark in profile dscp 0 63 Re ...

Page 426: ...marking on out of profile traffic Command mode Global configuration Table 202 ACL VxLAN Configuration Options Command Syntax and Usage access control list 1 256 vxlan vnid VNID 1 16777215 Configures the ACL VxLAN Virtual Network ID VNID Command mode Global configuration no access control list 1 256 vxlan vnid Removes the ACL VxLAN VNID Command mode Global configuration no access control list 1 256...

Page 427: ... packets either through an ethernet port or a Link Aggregation Group LAG Command mode Global configuration access control list6 1 128 egress port port port alias or number Configures the ACL to function on egress packets Command mode Global configuration no access control list6 1 128 egress port port Disables the ACL to function on egress packets Command mode Global configuration no access control...

Page 428: ...st6 1 128 ipv6 flow label Deletes the configured flow label for the specified ACL Command mode Global configuration access control list6 1 128 ipv6 next header 0 255 Defines the next header value for the ACL If defined traffic with this next header value will match this ACL Command mode Global configuration no access control list6 1 128 ipv6 next header Deletes the configured next header for the s...

Page 429: ...mmand mode All Table 204 IP version 6 Filtering Options Command Syntax and Usage Table 205 IPv6 ACL TCP UDP Filtering Options Command Syntax and Usage access control list6 1 128 tcp udp source port source port number 1 65535 mask 0xFFFF Defines a source port for the ACL If defined traffic with the specified TCP or UDP source port will match this ACL Specify the port number Listed here are some of ...

Page 430: ... for the specified ACL Command mode Global configuration access control list6 1 128 tcp udp flags value 0x0 0x3f mask 0x0 0x3f Defines a TCP UDP flag for the ACL Command mode Global configuration no access control list6 1 128 tcp udp flags Deletes the configured TCP UDP flag for the specified ACL Command mode Global configuration default access control list6 1 128 tcp udp Resets the TCP UDP parame...

Page 431: ...rofile Options Command Syntax and Usage access control list6 1 128 re mark dot1p 0 7 Re marks the 802 1p value The value is the priority bits information in the packet structure Command mode Global configuration no access control6 list6 1 128 re mark dot1p Disables the use of 802 1p priority for in profile traffic Command mode Global configuration access control list6 1 128 re mark in profile dscp...

Page 432: ... Options Command Syntax and Usage access control list6 1 128 re mark out profile dscp 0 63 Re marks the DSCP value on out of profile packets for the ACL Command mode Global configuration no access control list6 1 128 re mark out profile Disables re marking on out of profile traffic Command mode Global configuration show access control list6 1 128 re mark Displays current re mark parameters Command...

Page 433: ...ate in kilobits per second The committed rate must be a multiple of 64 Command mode Global configuration no access control list6 1 128 meter enable Enables or disables ACL Metering Command mode Global configuration access control list6 1 128 meter maximum burst size 32 4096 Configures the maximum burst size in kilobits Enter one of the following values for mbsize 32 64 128 256 512 1024 2048 4096 C...

Page 434: ...s Control List logging Command mode Global configuration access control log interval 5 600 Sets the filter log displaying interval in seconds The default setting is 300 seconds Command mode Global configuration access control log rate limit 1 1000 Sets the filter log queue rate limit in packets per second pps The default settings is 10 pps Command mode Global configuration default access control l...

Page 435: ...e ports Table 211 ACL Group Configuration Commands Command Syntax and Usage no access control group 1 256 list 1 256 Adds or removes the selected IPv4 ACL to the ACL group Command mode Global configuration no access control group 1 256 list6 1 128 Adds or removes the selected IPv6 ACL to the ACL group Command mode Global configuration show access control group 1 256 Displays the current ACL group ...

Page 436: ...Command mode Global configuration no access control macl 1 256 enable Enables or disables the management ACL Command mode Global configuration no access control macl 1 256 statistics Enables or disables the statistics collection for the MACL Command mode Global configuration show access control macl 1 256 Displays the current MACL parameters Command mode All Table 213 IP version 4 Filtering Config...

Page 437: ...ation access control macl 1 256 ipv4 source ip address IP address IP mask Defines a source IP address for the MACL If defined traffic with this source IP address will match this MACL Specify an IP address in dotted decimal notation Command mode Global configuration no access control macl 1 256 ipv4 source ip address Deletes the configured source IP address for the specified MACL Command mode Globa...

Page 438: ...70 gopher 79 finger 80 http Command mode Global configuration no access control macl 1 256 tcp udp source port Deletes the configured source port for the specified MACL Command mode Global configuration access control macl 1 256 tcp udp destination port 1 65535 mask 0xFFFF Defines a destination port for the MACL If defined traffic with the specified TCP or UDP destination port will match this MACL...

Page 439: ...CL Command mode Global configuration default access control macl 1 256 tcp udp Resets the TCP UDP parameters for the MACL to their default values Command mode Global configuration show access control macl 1 256 tcp udp Displays the current TCP UDP Filtering parameters Command mode All Table 214 TCP UDP Filtering Configuration Options Command Syntax and Usage ...

Page 440: ...ority 0 7 Configures a filter action for packets that match the VMAP definitions You can choose to permit pass or deny drop packets or set the 802 1p priority level Command mode Global configuration access control vmap 1 128 action redirect port port alias or number portchannel 1 208 Configures the switch to redirect traffic that matches the VMAP definitions to a specific port or Link Aggregation ...

Page 441: ...dress MAC address MAC mask Defines the source MAC address for the VMAP Command mode Global configuration no access control vmap 1 128 ethernet source mac address Removes the source MAC address for the specified VMAP Command mode Global configuration access control vmap 1 128 ethernet vlan VLAN ID 1 4094 VLAN mask Defines a VLAN number and mask for the VMAP Command mode Global configuration no acce...

Page 442: ...ce IP address Command mode Global configuration no access control vmap 1 128 ipv4 source ip address Disables filtering of VMAP statistics collection based on source IP address Command mode Global configuration access control vmap 1 128 ipv4 type of service 0 255 Enables filtering of VMAP statistics collection based on type of service Command mode Global configuration no access control vmap 1 128 i...

Page 443: ...n no access control vmap 1 128 mirror Disables VMAP mirroring Command mode Global configuration access control vmap 1 128 packet format ethernet ethernet type2 llc snap Sets to filter the specified ethernet packet format type Command mode Global configuration access control vmap 1 128 packet format ip ipv4 ipv6 Sets to filter the specified IP packet format type Command mode Global configuration ac...

Page 444: ...s control vmap 1 128 re mark in profile out profile Removes all re mark in profile or out profile settings Command mode Global configuration no access control vmap 1 128 re mark in profile dscp Disables the use of DSCP for in profile traffic Command mode Global configuration no access control vmap 1 128 re mark use tos precedence Enables or disables the use of the TOS precedence for in profile tra...

Page 445: ...n default access control vmap 1 128 tcp udp Resets the TCP UDP parameters for the VMAP to their default values Command mode Global configuration no access control vmap 1 128 tcp udp Removes TCP UDP filtering for this ACL Command mode Global configuration default access control vmap 1 128 Resets the VMAP parameters to their default values Command mode Global configuration no access control vmap 1 1...

Page 446: ...ow port mirroring Displays current settings of the mirrored and monitoring ports Command mode All Table 217 Port Based Port Mirroring Configuration Options Command Syntax and Usage port mirroring monitor port port alias or number mirroring port port alias or number in out both Adds the port to be mirrored This command also allows you to enter the direction of the traffic It is necessary to specify...

Page 447: ... Global Configuration on page 448 802 1X Guest VLAN Configuration on page 450 802 1X Port Configuration on page 451 Table 218 Layer 2 Configuration Commands Command Syntax and Usage vlan VLAN ID 1 4094 Enter VLAN configuration mode If the specified VLAN s doesn t exist it will be created To view command options see page 493 Command mode Global configuration show layer2 Displays current Layer 2 par...

Page 448: ...thorized by the RADIUS server force authorized the port is authorized unconditionally allowing all traffic The default value is force authorized Command mode Global configuration dot1x quiet time 0 65535 Sets the time in seconds the authenticator waits before transmitting an EAP Request Identity frame to the supplicant client after an authentication failure in the previous round of authentication ...

Page 449: ...om the supplicant client before retransmitting the EAP Request packet from the authentication server The default value is 30 seconds Command mode Global configuration dot1x transmit interval 1 65535 Sets the time in seconds the authenticator waits for an EAP Response Identity frame from the supplicant client before retransmitting an EAP Request Identity frame The default value is 30 seconds Comman...

Page 450: ...le 221 802 1X Guest VLAN Configuration Options Command Syntax and Usage no dot1x guest vlan enable Enables or disables the 802 1X Guest VLAN Command mode Global configuration dot1x guest vlan vlan VLAN ID 1 4094 Configures the Guest VLAN number Command mode Global configuration no dot1x guest vlan vlan Removes the Guest VLAN number Command mode Global configuration show dot1x Displays current 802 ...

Page 451: ...thorized until it is successfully authorized by the RADIUS server force authorized the port is authorized unconditionally allowing all traffic force unauthorized the port is unauthorized unconditionally The default value is force authorized Command mode Interface port dot1x quiet time 0 65535 Sets the time in seconds the authenticator waits before transmitting an EAP Request Identity frame to the ...

Page 452: ...cant client before retransmitting the EAP Request packet from the authentication server The default value is 30 seconds Command mode Interface port dot1x transmit interval 1 65535 Sets the time in seconds the authenticator waits for an EAP Response Identity frame from the supplicant client before retransmitting an EAP Request Identity frame The default value is 30 seconds Command mode Interface po...

Page 453: ...ng state until a BPDU is received Command mode Global configuration spanning tree mode disable mst pvrst rstp Selects and enables Multiple Spanning Tree mode mst Per VLAN Rapid Spanning Tree mode pvrst or Rapid Spanning Tree mode rstp The default mode is PVRST When you select the disable option the switch globally turns Spanning Tree off All ports are placed into forwarding state Any BPDU s receiv...

Page 454: ...nected to the port as follows auto Configures the port to detect the link type and automatically match its settings p2p Configures the port for Point To Point protocol shared Configures the port to connect to a shared medium usually a hub The default link type is auto Command mode Interface port Interface portchannel no spanning tree portfast Enables or disables this port as portfast or edge port ...

Page 455: ...g time You can also see the following port specific STG information Port alias and priority Cost State Command mode All show spanning tree root Displays the Spanning Tree configuration on the root bridge for each STP instance For details see page 77 Command mode All show spanning tree blockedports Lists the ports blocked by each STP instance Command mode All show spanning tree vlan VLAN ID 1 4094 ...

Page 456: ...root bridge To make this switch the root bridge configure the bridge priority lower than all other switches and bridges on your network The lower the value the higher the bridge priority The range is 0 to 65535 in steps of 4096 0 4096 8192 12288 and the default value is 32768 Command mode Global configuration no spanning tree mst 0 32 priority Resets the bridge priority for the specified MSTP inst...

Page 457: ...mmand mode MST configuration name 1 32 characters Configures a name for the MSTP region All devices within an MSTP region must have the same region name Command mode MST configuration no name Clears the name of the MSTP region Command mode MST configuration revision 0 65535 Configures a revision number for the MSTP region The revision is used as a numerical identifier for the region All devices wi...

Page 458: ...cost is used to help determine the designated port for a segment Port path cost is based on the port speed and is calculated as follows 1Gbps 20000 10Gbps 2000 The default value of 0 zero indicates that the default path cost will be computed for an auto negotiated link speed Command mode Interface port Interface portchannel no spanning tree mst 0 32 enable Enables or disables the specified MSTP in...

Page 459: ...rotocol data unit BPDU Any bridge that is not the root bridge uses the root bridge Hello value The range is 1 to 10 seconds and the default is 2 seconds Command mode Interface port Interface portchannel show interface port port alias or number spanning tree mstp cist Displays the current CIST port configuration Command mode All Table 225 MSTP Port Configuration Options continued Command Syntax and...

Page 460: ... of 128 Note The switch needs to be reloaded for the configuration to take effect Command mode Global configuration no spanning tree stp 1 128 enable Globally enables or disables Spanning Tree Protocol STG is turned on by default Command mode Global configuration spanning tree stp 1 128 vlan VLAN ID 1 4094 Associates a VLAN with a Spanning Tree Group and requires a VLAN ID as a parameter If the VL...

Page 461: ...m number of available STGs after the switch reloads For a sample output see page 690 Command mode All show spanning tree stp 1 128 Displays current Spanning Tree Protocol parameters for the specified Spanning Tree Group See page 71 for details about the information parameter Command mode All Table 226 RSTP PVRST Configuration Options continued Command Syntax and Usage ...

Page 462: ...ation no spanning tree stp 1 128 bridge forward delay Resets the bridge forward delay parameter to its default value of 15 seconds Command mode Global configuration spanning tree stp 1 128 bridge hello time 1 10 Configures the bridge Hello time The Hello time specifies how often the bridge transmits a configuration bridge protocol data unit BPDU Any bridge that is not the root bridge uses the root...

Page 463: ... other switches and bridges on your network The lower the value the higher the bridge priority Enter the value in multiples of 4096 Non multiples are automatically rounded up to the closest valid priority The default value is 32768 Command mode Global configuration no spanning tree stp 1 128 bridge priority Resets the bridge priority to its default value of 32768 Command mode Global configuration ...

Page 464: ...e default value of 0 zero indicates that the default path cost will be computed for an auto negotiated link speed Command mode Interface port Interface portchannel spanning tree stp 1 128 priority 0 240 Configures the port priority The port priority helps determine which bridge port becomes the designated port In a network topology that has multiple bridge ports connected to a single segment the p...

Page 465: ...65535 Configures the aging value for FDB entries in seconds The default value is 300 seconds Command mode Global configuration mac address table multicast Configures multicast FDB entries For command options see page 466 Command mode Global configuration mac address table static Configures static FDB entries For command options see page 467 Command mode Global configuration show mac address table ...

Page 466: ...ing on ports that are not to receive multicast packets interface port port alias or number flood blocking Use the following commands to configure static Multicast MAC entries in the Forwarding Database FDB Table 230 Static Multicast MAC Configuration Options Command Syntax and Usage no mac address table multicast MAC address VLAN ID 1 4094 port alias or number Adds or removes a static multicast en...

Page 467: ...cast MAC Configuration Options Command Syntax and Usage Table 231 FDB Configuration Options Command Syntax and Usage no mac address table static MAC address port port alias or number Adds or removes a permanent FDB entry Enter the MAC address using the following format xx xx xx xx xx xx For example 08 00 20 12 34 56 You can also enter the MAC address as follows xxxxxxxxxxxx For example 08002012345...

Page 468: ...se the specified MAC address vlan deletes all permanent entries that use the specified vlan Note Available if routing is disabled on the port Command mode Global configuration no mac address table static all interface port port alias or number portchannel 1 104 adminkey 1 65535 Deletes all permanent FBD entries that use the specified port Link Aggregation Group LAG or LACP admin key Command mode G...

Page 469: ...0 9000 Configures ECP retransmit interval in milliseconds The default value is 1000 miliseconds Command mode Global configuration default ecp retransmit interval Resets the ECP retransmit interval to the default 1000 milliseconds Command mode Global configuration show ecp channels retransmit interval upper layer protocols Displays settings for the ECP retransmit interval or for all ECP channels or...

Page 470: ...he message transmission interval in seconds The default value is 30 seconds Command mode Global configuration no lldp refresh interval Resets the message transmission interval to its default value of 30 seconds Command mode Global configuration lldp reinit delay 1 10 Configures the re initialization delay interval in seconds The re initialization delay allows the port LLDP information to stabilize...

Page 471: ... mode Global configuration show lldp port port alias or number Display current LLDP configuration Command mode All Table 233 LLDP Configuration Options continued Command Syntax and Usage Table 234 LLDP Port Options Command Syntax and Usage lldp admin status tx_only rx_only tx_rx Configures the LLDP transmission type for the port as follows Transmit only Receive only Transmit and receive The defaul...

Page 472: ...mation type Command mode Interface port no lldp tlv linkaggr Enables or disables the Link Aggregation information type Command mode Interface port no lldp tlv macphy Enables or disables the MAC Phy Configuration information type Command mode Interface port no lldp tlv mgmtaddr Enables or disables the Management Address information type Command mode Interface port no lldp tlv portdesc Enables or di...

Page 473: ...es information type Command mode Interface port no lldp tlv sysdescr Enables or disables the System Description information type Command mode Interface port no lldp tlv sysname Enables or disables the System Name information type Command mode Interface port no lldp tlv vlanname Enables or disables the VLAN Name information type Command mode Interface port show interface port port alias or number l...

Page 474: ...rts in a LAG with the same properties speed duplex flow control STG VLAN and so on Aggregation from non Lenovo devices must comply with Cisco EtherChannel technology By default each LAG is empty and disabled Table 236 LAG Configuration Options Command Syntax and Usage no portchannel 1 104 enable Enables or disables the current LAG Command mode Global configuration portchannel 1 104 port port alias...

Page 475: ...ntag id Command mode Global configuration no portchannel thash fcoe destination id Enables or disables FCoE LAG hashing on the destination id Command mode Global configuration no portchannel thash fcoe fabric id Enables or disables FCoE LAG hashing on the fabric id Command mode Global configuration no portchannel thash fcoe originator id Enables or disables FCoE LAG hashing on the originator id Co...

Page 476: ...r disables use of Layer 4 service ports TCP UDP and so on to compute the hash value The default setting is disabled Command mode Global configuration show portchannel hash Display current LAG hash configuration Command mode All Table 237 LAG Hash Options Command Syntax and Usage ...

Page 477: ...rameters for the switch Table 238 Layer 2 LAG Hash Options Command Syntax and Usage portchannel thash l2thash l2 destination mac address Enables Layer 2 LAG hashing on the destination MAC Command mode Global configuration portchannel thash l2thash l2 source mac address Enables Layer 2 LAG hashing on the source MAC Command mode Global configuration portchannel thash l2thash l2 source destination ma...

Page 478: ... l3 destination ip address Enables Layer 3 LAG hashing on the destination IP address Command mode Global configuration portchannel thash l3thash l3 source ip address Enables Layer 3 LAG hashing on the source IP address Command mode Global configuration portchannel thash l3thash l3 source destination ip Enables Layer 3 LAG hashing on both the source and the destination IP address Command mode Globa...

Page 479: ...ry timer to the default 300 seconds duration Command mode Global configuration no vlag enable Enables or disables vLAG globally Command mode Global configuration no vlag mac address table refresh Enables or disables the periodic check of the aging status of synchronized Forwarding Database FDB entries When a MAC address is marked for removal from the FDB table the entry is reinstalled instead The ...

Page 480: ...bal configuration no vlag startup delay Sets the vLAG startup delay timer to the default 120 seconds duration Command mode Global configuration vlag tier id 1 512 Sets the vLAG peer ID Command mode Global configuration no vlag tier id Resets the vLAG peer ID to its default value of 0 Command mode Global configuration no vlag vrrp active Enables or disables vLAG VRRP active mode Note If active mode...

Page 481: ... 3 Command mode Global configuration no vlag hlthchk keepalive attempts Resets the number of vLAG keep alive attempts to the default value of 3 Command mode Global configuration vlag hlthchk keepalive interval 2 300 Sets in seconds the time between vLAG keep alive attempts The default value is 5 seconds Command mode Global configuration no vlag hlthchk keepalive interval Resets the time between vL...

Page 482: ...CP Link Aggregation Groups LAGs formed with this admin key will be included in the ISL Command mode Global configuration no vlag isl adminkey Disables vLAG Inter Switch Link ISL for LACP admin keys Command mode Global configuration vlag isl portchannel 1 104 Enables vLAG Inter Switch Link ISL on the selected LAG Command mode Global configuration no vlag isl portchannel Disables vLAG Inter Switch L...

Page 483: ...out value of long If your G8332 s CPU utilization rate remains at 100 for periods of 90 seconds or more consider using static Link Aggregation Groups LAGs instead of LACP Command mode Global configuration default lacp timeout Resets the timeout period before invalidating LACP data from a remote partner to its default value of long Command mode Global configuration default lacp Resets the LACP syst...

Page 484: ...e admin key and oper key operational state generated internally can form a LACP LAG group Command mode Interface port Interface portchannel default lacp key Resets the LACP admin key of the port to the default value Command mode Interface port Interface portchannel lacp mode off active passive Set the LACP mode for this port as follows off turns LACP off for this port You can use this port to manu...

Page 485: ...s anymore Command mode Interface port Interface portchannel default lacp suspend individual Resets the LACP state of the port to its default value Command mode Interface port Interface portchannel default lacp Resets the LACP port configuration to its default values Command mode Interface port Interface portchannel port channel min links 1 32 Set the minimum number of links for the LACP LAG to whi...

Page 486: ... show failover trigger Displays current Layer 2 Failover parameters Command mode All Table 246 Failover Trigger Configuration Options Command Syntax and Usage no failover trigger 1 8 enable Enables or disables the Failover trigger Command mode Global configuration failover trigger 1 8 limit 0 1024 Configures the minimum number of operational links allowed within each trigger before the trigger ini...

Page 487: ...al Monitor Port configuration LACP Link Aggregation Groups LAGs formed with this admin key will be included in the Manual Monitor Port configuration Command mode Global configuration no failover trigger 1 8 mmon monitor member port alias or number Adds or removes the selected port to the Manual Monitor Port configuration Command mode Global configuration no failover trigger 1 8 mmon monitor portch...

Page 488: ...Control configuration LACP Link Aggregation Groups LAGs formed with this admin key will be included in the Manual Monitor Control configuration Command mode Global configuration no failover trigger 1 8 mmon control member port alias or number Adds or removes the selected port to the Manual Monitor Control configuration Command mode Global configuration no failover trigger 1 8 mmon control portchan...

Page 489: ...ee group that is globally turned off This feature can prevent unintentional loop scenarios for example if two uplinks come up at the same time The default setting is disabled Command mode Global configuration no hotlinks enable Globally enables or disables Hot Links Command mode Global configuration no hotlinks fdb update Enables or disables FDB Update which allows the switch to send FDB and MAC u...

Page 490: ... configuration hotlinks trigger 1 25 name 1 32 characters Defines a name for the Hot Links trigger Command mode Global configuration no hotlinks trigger 1 25 name Removes the name of the specified Hot Links trigger Command mode Global configuration no hotlinks trigger 1 25 preemption Enables or disables pre emption which allows the Master interface to transition to the Active state whenever it bec...

Page 491: ...all LACP admin keys on the Master interface Command mode Global configuration hotlinks trigger 1 25 master port port alias or number Adds the selected port to the Hot Links Master interface Command mode Global configuration no hotlinks trigger 1 25 master port Clears all ports added to the Hot Links Master interface Command mode Global configuration hotlinks trigger 1 25 master portchannel 1 104 A...

Page 492: ...LACP admin keys on the Hot Links Backup interface Command mode Global configuration hotlinks trigger 1 25 backup port port alias or number Adds the selected port to the Hot Links Backup interface Command mode Global configuration no hotlinks trigger 1 25 backup port Clears all ports added to the Hot Links Backup interface Command mode Global configuration hotlinks trigger 1 25 backup portchannel 1...

Page 493: ... specified VLAN s doesn t exist it will be created Command mode Global configuration name 1 32 characters Assigns a name to the VLAN or changes the existing name The default VLAN name is the first one Command mode VLAN no name Removes the assigned name from the current VLAN Command mode VLAN protocol vlan protocol number 1 8 Configures the Protocol based VLAN PVLAN For command options see page 494...

Page 494: ... is applied to the entire VLAN Command mode VLAN no vlan VLAN ID 1 4094 Deletes the specified VLAN Command mode Global configuration show vlan information Displays the current VLAN configuration Command mode All Table 253 VLAN Configuration Options Command Syntax and Usage Table 254 Protocol VLAN Configuration Options Command Syntax and Usage no protocol vlan protocol number 1 8 enable Enables or ...

Page 495: ...2 SNA 802 2 snaEther2 IBM SNA Service on Ethernet vinesEther2 Banyan VINES xnsEther2 XNS Compatibility Command mode VLAN no protocol vlan protocol number 1 8 tag pvlan port alias or number Adds or removes a port that will be tagged by the selected protocol on this VLAN Command mode VLAN no protocol vlan protocol number 1 8 Deletes the selected protocol configuration from the VLAN Command mode VLAN...

Page 496: ...ty Enables or disables the VLAN type as a community VLAN Community VLANs carry upstream traffic from host ports A Private VLAN may have multiple community VLANs Command mode VLAN no private vlan isolated Enables or disables the VLAN type as an isolated VLAN The isolated VLAN carries unidirectional traffic from host ports A Private VLAN may have only one isolated VLAN Command mode VLAN no private v...

Page 497: ...ommand mode VLAN no cpu Enables or disables the switch to forward unregistered IP multicast traffic to the MP which adds an entry in the IPMC table as follows If no Mrouter is present drop subsequent packets with same IPMC If a Mrouter is present forward subsequent packets to the Mrouter s on the ingress VLAN The default setting is enabled Note If both flood and cpu are disabled the switch drops a...

Page 498: ...guration ip router id IP address Sets the router ID Command mode Global configuration no ip router id Removes the router ID Command mode Global configuration route map 1 255 Enters IP Route Map mode To view command options see page 519 Command mode Global configuration router bgp Enters Border Gateway Protocol BGP configuration mode To view command options see page 557 Command mode Global configur...

Page 499: ...p Enters Virtual Router Redundancy VRRP configuration mode To view command options see page 596 Command mode Global configuration show layer3 Displays the current IP configuration Command mode All Table 257 Layer 3 Configuration Commands continued Command Syntax and Usage ...

Page 500: ... IP netmask Configures the IP subnet address mask for the interface using dotted decimal notation Command mode Interface IP ipv6 address IPv6 address IPv6 prefix length anycast enable Configures the IPv6 address of the switch interface using hexadecimal format with colons The anycast option configures the IPv6 address as an IPv6 anycast address The enable option also enables the IP interface Comma...

Page 501: ...rvices per tenant are supported Command mode Interface IP no tenant services tenant id 1 30 Removes tenants who use the interface to access a service network Command mode Interface IP tenant tenant id 1 30 Defines the tenant downlink network Up to 10 subnets per tenant are supported Command mode Interface IP no tenant tenant id 1 30 Removes all tenant or a specific tenant from the current interfac...

Page 502: ...v6 interface Command mode Interface IP no interface ip 1 128 Removes this IP interface Command mode Global configuration show ip tenant 1 30 Displays tenant information Command mode All show ip tenant info 1 30 Displays tenant dynamic ACLs including next hops Command mode All show interface ip 1 128 Displays the current interface settings Command mode All Table 258 IP Interface Configuration Optio...

Page 503: ...r of duplicate address detection attempts to the default value of 1 Command mode Interface IP ipv6 nd hops limit 0 255 Configures the Router Advertisement hop limit The default value is 64 hops Command mode Interface IP no ipv6 nd hops limit Resets the IPv6 Router Advertisement hop limit to its default value of 64 hops Command mode Interface IP no ipv6 nd managed config Enables or disables the man...

Page 504: ... IPv6 Router Advertisement minimum interval to its default value of 198 seconds Command mode Interface IP ipv6 nd ra lifetime 0 9000 Configures the IPv6 Router Advertisement lifetime interval The RA lifetime interval must be greater than or equal to the RA maximum interval advint The default value is 1800 seconds Command mode Interface IP no ipv6 nd ra lifetime Resets the IPv6 Router Advertisement...

Page 505: ...s 1 second Command mode Interface IP no ipv6 nd retransmit time Resets the Router Advertisement re transmit timer to its default value of 1 second Command mode Interface IP no ipv6 nd suppress ra Enables or disables IPv6 Router Advertisements on the interface The default setting is disabled suppress Router Advertisements Command mode Interface IP Table 259 IPv6 Neighbor Discovery Configuration Opt...

Page 506: ...cks The default setting is disabled Note The arp option does not apply to management gateways Command mode Global configuration no ip gateway 1 4 enable Enables or disables the gateway for use Command mode Global configuration ip gateway 1 4 interval 0 60 The switch pings the default gateway to verify that it s up This command sets the time between health checks The range is from 0 to 60 seconds a...

Page 507: ...emove must be specified using dotted decimal notation Command mode Global configuration ip route ecmphash sip Configures ECMP hashing parameters You may choose one or more of the following parameters sip Source IP address Command mode Global configuration no ip route healthcheck Enables or disables static route health checks The default setting is disabled Command mode Global configuration ip rout...

Page 508: ...number Clears all IP static routes that use the specified IP interface Command mode Global configuration no ip route port port alias or number Clears all IP static routes that use the specified port Command mode Global configuration show ip route static Displays the current IP static routes Command mode All Table 261 IPv4 Static Route Configuration Options continued Command Syntax and Usage ...

Page 509: ...nd member port of the route must be specified Command mode Global configuration no ip mroute IP address VLAN ID 1 4094 portchannel 1 104 primary backup host virtual router ID Adds or removes a static multicast route The destination address VLAN and member Link Aggregation Group LAG of the route must be specified Command mode Global configuration no ip mroute IP address VLAN ID 1 4094 adminkey 1 65...

Page 510: ...eceived by the router In response the router sends its own MAC address Any traffic between hosts is forwarded via the routerʹs layer 3 interface Note For a routed interface enabling ARP local proxy feature requires disabling all ICMP redirects Table 263 ARP Configuration Options Command Syntax and Usage ip arp rearp 2 120 Defines re ARP period in minutes for entries in the switch arp table When AR...

Page 511: ...and Usage ip arp IP address MAC address vlan VLAN ID 1 4094 port port alias or number Adds a permanent ARP entry To enable ARP on a LAG add the port number of a member of the LAG Command mode Global configuration ip arp destination unicast IP address destination multicast MAC address vlan cluster vlan number Adds a static multicast ARP entry for Network Load Balancing NLB Command mode Global confi...

Page 512: ...d Syntax and Usage no ip arp inspection vlan VLAN ID 1 4094 Enables or disables DAI on the selected VLANs Command mode Global configuration no ip arp inspection trust Configures the current port to be a DAI trusted port On a DAI trusted port all ARP packets skip the security check The default settings is untrusted Note Configuring trusted interfaces as being untrusted can result in a loss of conne...

Page 513: ...and mode Global configuration no ip routing directed broadcasts Enables or disables forwarding directed broadcasts The default setting is disabled Command mode Global configuration no ip routing icmp6 redirect Enables or disables IPv6 ICMP re directs The default setting is disabled Command mode Global configuration no ip routing no icmp redirect Enables or disables ICMP re directs The default sett...

Page 514: ... outside local IP address local TCP UDP port number outside global IP address global TCP UDP port number one way Configures one to one translations of the outside local address and local TCP UDP port number to the outside global address and global TCP UDP port number The one way option restricts the NAT process to only translating local IP addresses to global IP addresses Command mode Global confi...

Page 515: ...cal IP address local TCP UDP port number one way Configures one to one translations of the inside global address and global TCP UDP port number to the inside local address and local TCP UDP port number The one way option restricts the NAT process to only translating global IP addresses to local IP addresses Command mode Global configuration no ip nat outside source pool pool name pool translation ...

Page 516: ...ol name Deletes the specified NAT pool Command mode Global configuration no ip nat pools Deletes all NAT pools Command mode Global configuration no ip nat proxy arp enable Enables or disables NAT proxy arp Command mode Global configuration ip nat translation timeout 0 4294967 Configures a timeout period for dynamic NAT translations The default value is 300 seconds Command mode Global configuration...

Page 517: ...res a specific IP interface to be part of default realm Command mode Interface IP show ip nat Displays the current NAT configuration Command mode All show ip nat translations Displays the current NAT table Command mode All Table 268 NAT Configuration Options Command Syntax and Usage ...

Page 518: ...is filter to define the range of IP addresses that will be accepted by the peer when the filter is enabled The default address is 0 0 0 0 0 0 0 0 Command mode Global configuration no ip match address 1 256 enable Enables or disables the Network Filter configuration Command mode Global configuration no ip match address 1 256 Deletes the Network Filter configuration Command mode Global configuration...

Page 519: ...e information see page 525 Command mode Route map as path preference 1 65535 Sets the AS path preference of the matched route You can configure up to 32 path preferences Command mode Route map no as path preference Removes the AS path preference of the current route map Command mode Route map no enable Enables or disables the route map Command mode Route map local preference 0 4294967294 Sets the ...

Page 520: ...the route map The smaller the value the higher the precedence The default value is 10 Command mode Route map set community community string none Sets the BGP community attribute Enter up to 32 communities strings using the format aa nn For example 12 34 Valid strings are from 0 0 to 65535 65535 The none option removes the community attribute from prefix that passed the route map Command mode Route...

Page 521: ...n Commands 521 no route map 1 255 Deletes the route map Command mode Global configuration show route map 1 255 Displays the current route configuration Command mode All Table 270 Routing Map Configuration Options continued Command Syntax and Usage ...

Page 522: ...cess list Command mode Route map no access list 1 32 match access control 1 256 Sets the network filter number Command mode Route map no access list 1 32 match address 1 256 Sets the network filter number See Network Filter Configuration on page 518 for details Command mode Route map access list 1 32 metric 1 4294967294 Sets the metric value in the AS External ASE LSA Command mode Route map no acc...

Page 523: ...s sequence 1 255 arp icmp interval 1 60 retry 1 3 access list 1 32 Performs health checking on and inserts the next hop IP address at the specified place sequence in the specified access list using ARP or ICMP as the tracking protocol If not successful the command will retry the health check at regular intervals of the specified number of seconds for the number of retries specified by retry Use th...

Page 524: ...he current route map configuration Command mode All show route map 1 255 access list 1 32 Displays the current Access List configuration Command mode All show ip policy Displays the current routing policy information Command mode All show ip policy statistics Displays statistics for the current routing policy Command mode All Table 272 IP Next Hop Configuration Options Command Syntax and Usage ...

Page 525: ...y Permits or denies Autonomous System filter action Command mode Route map as path list 1 8 as path 1 65535 Sets the Autonomous System filter s path number Command mode Route map no as path list 1 8 enable Enables or disables the Autonomous System filter Command mode Route map no as path list 1 8 Deletes the Autonomous System filter Command mode Route map show route map 1 255 as path list 1 8 Disp...

Page 526: ...uter RIP configuration mode Command mode Global configuration no enable Globally enables or disables RIP Command mode Router RIP no redistribute ebgp eospf fixed ibgp ospf static Configures RIP route distribution To view command options see page 529 Command mode Router RIP timers update 1 120 Configures the time interval for sending for RIP table updates in seconds The default value is 30 seconds ...

Page 527: ...rip authentication type password password Configures the authentication type The default is none Command mode Interface IP no ip rip authentication type Removes the authentication type Command mode Interface IP ip rip default action listen supply both When enabled the switch accepts RIP default routes from other routers but gives them lower priority than configured default gateways The default val...

Page 528: ...s split horizon The default value is enabled Command mode Interface IP no ip rip supply When enabled the switch supplies routes to other routers The default value is enabled Command mode Interface IP no ip rip triggered Enables or disables Triggered Updates Triggered Updates are used to speed convergence When enabled Triggered Updates force a router to send update messages immediately even if it i...

Page 529: ...ated by a comma To add or remove all 255 route maps type all The routes of the redistribution protocol matched by the route maps in the route redistribution list will be redistributed Command mode Router RIP redistribute fixed static ospf eospf ebgp ibgp export metric number 1 15 Exports the routes of this protocol in which the metric and metric type are specified Command mode Router RIP no redist...

Page 530: ... to view command options Command mode Router OSPF default information 1 16777214 AS external metric type 1 2 Sets one default route among multiple choices in an area Command mode Router OSPF no default information Removes the default route information Command mode Router OSPF no enable Enables or disables OSPF on the G8332 Command mode Router OSPF host 1 128 Configures OSPF for the host routes Up ...

Page 531: ...e current OSPF configuration settings Command mode All Table 277 OSPF Configuration Options continued Command Syntax and Usage Table 278 Area Index Configuration Options Command Syntax and Usage area 0 19 area id IP address Defines the IP address of the OSPF area number Command mode Router OSPF area 0 19 authentication type password md5 Sets the authentication type password authenticates simple pa...

Page 532: ...area For example when a virtual link has to be established with the backbone the area type must be defined as transit transit area allows area summary information to be exchanged between routing devices Any area that is not a stub area or NSSA is considered to be transit area stub area is an area where external routing information is not distributed Typically a stub area is connected to only one o...

Page 533: ...dress or the IP address mask for the range Command mode Router OSPF area range 1 16 area 0 19 Displays the area index used by the G8332 Command mode Router OSPF no area range 1 16 enable Enables or disables the OSPF summary range Command mode Router OSPF no area range 1 16 hide Hides or shows the OSPF summary range Command mode Router OSPF no area range 1 16 Deletes the OSPF summary range Command ...

Page 534: ...h parameters of a hello packet in seconds or milliseconds before declaring a silent router to be down Command mode Interface IP no ip ospf enable Enables or disables the OSPF interface Command mode Interface IP ip ospf hello interval 1 65535 ip ospf hello interval 50 65535 ms Configures the interval in seconds or milliseconds between the hello packets for the interfaces Command mode Interface IP i...

Page 535: ...or the G8332 s OSPF interfaces A priority value of 255 is the highest and 1 is the lowest A priority value of 0 specifies that the interface cannot be used as Designated Router DR or Backup Designated Router BDR Command mode Interface IP ip ospf retransmit interval 1 3600 Configures the retransmit interval in seconds Command mode Interface IP ip ospf transit delay 1 3600 Configures the transit del...

Page 536: ...isables OSPF virtual link Command mode Router OSPF area virtual link 1 3 hello interval 1 65535 area virtual link 1 3 hello interval 50 65535 ms Configures the authentication parameters of a hello packet in seconds or milliseconds The default value is 10 seconds Command mode Router OSPF area virtual link 1 3 key password Configures the password up to eight characters for each virtual link The defa...

Page 537: ...nsmit interval in seconds The default value is 5 seconds Command mode Router OSPF area virtual link 1 3 transit delay 1 3600 Configures the delay in transit in seconds The default value is 1 second Command mode Router OSPF no area virtual link 1 3 Deletes OSPF virtual link Command mode Router OSPF show ip ospf area virtual link 1 3 Displays the current OSPF virtual link settings Command mode All T...

Page 538: ...IP address for the host entry Command mode Router OSPF host 1 128 area 0 19 Configures the area index of the host Command mode Router OSPF host 1 128 cost 1 65535 Configures the cost value of the host Command mode Router OSPF no host 1 128 enable Enables or disables the OSPF host entry Command mode Router OSPF no host 1 128 Deletes OSPF host entry Command mode Router OSPF show ip ospf host 1 128 D...

Page 539: ...de Router OSPF redistribute fixed static rip ebgp ibgp export metric 1 16777214 AS external metric type 1 2 Exports the routes of this protocol as external OSPF AS external LSAs in which the metric and metric type are specified Command mode Router OSPF no redistribute fixed static rip ebgp ibgp export Stops exporting the routes of the protocol Command mode Router OSPF show ip ospf redistribute Dis...

Page 540: ...ws Standard Cisco IBM The default setting is standard Command mode Router OSPF3 no abr type Resets the Area Border Router ABR type to its default value standard Command mode Router OSPF3 as external lsdb limit LSDB limit 0 2147483647 1 for no limit Sets the link state database limit The default value is 1 Command mode Router OSPF3 no enable Enables or disables OSPFv3 on the switch Command mode Rou...

Page 541: ... cannot be used as Designated Router or Backup Designated Router The default value is 1 Command mode Router OSPF3 no neighbor 1 256 enable Enables or disables the specified neighbor Command mode Router OSPF3 no neighbor 1 256 Deletes the neighbor entry Command mode Router OSPF3 no nssaAsbrDfRtTrans Enables or disables setting of the P bit in the default Type 7 LSA generated by an NSSA internal ASB...

Page 542: ...OSPF configuration settings Command mode All Table 285 OSPFv3 Configuration Options continued Command Syntax and Usage Table 286 OSPFv3 Area Index Configuration Options Command Syntax and Usage area 0 2 area id IP address Defines the IP address of the OSPFv3 area number Command mode Router OSPF3 area 0 2 default metric metric value 1 16777215 Configures the cost for the default summary route in a ...

Page 543: ...ssa no summary Defines the type of area For example when a virtual link has to be established with the backbone the area type must be defined as transit transit allows area summary information to be exchanged between routing devices Any area that is not a stub area or NSSA is considered to be transit area stub is an area where external routing information is not distributed Typically a stub area i...

Page 544: ...4 no area 0 2 Deletes the OSPF area Command mode Router OSPF3 show ipv6 ospf areas area 0 2 Displays the current OSPFv3 area configuration Command mode All Table 286 OSPFv3 Area Index Configuration Options continued Command Syntax and Usage ...

Page 545: ...2 Configures the area index used by the switch Command mode Router OSPF3 no area range 1 16 enable Enables or disables the OSPFv3 summary range Command mode Router OSPF3 no area range 1 16 hide Hides or shows the OSPFv3 summary range Command mode Router OSPF3 area range 1 16 lsa type summary Type7 Configures the LSA type as follows Summary LSA Type7 LSA Command mode Router OSPF3 area range 1 16 ta...

Page 546: ...ted Type 5 LSAs are generated For other area IDs aggregated Type 7 LSAs are generated in the NSSA area not advertise If the area ID is 0 0 0 0 Type 5 LSAs are not generated while all NSSA LSAs within the range are cleared and aggregated Type 7 LSAs are generated for all NSSAs For other area IDs aggregated Type 7 LSAs are not generated in the NSSA area Command mode Router OSPF3 summary prefix 1 16 ...

Page 547: ... mode Interface IP no ipv6 ospf cost Removes the metric value for sending a packet on the interface Command mode Interface IP ipv6 ospf dead interval 1 65535 Configures the time period in seconds for which the router waits for hello packet from the neighbor before declaring this neighbor down Command mode Interface IP no ipv6 ospf dead interval Resets the dead interval for hello packets to its def...

Page 548: ...disables the passive setting on the interface On a passive interface OSPFv3 protocol packets are suppressed Command mode Interface IP ipv6 ospf poll interval 0 4294967295 Configures the poll interval in seconds for neighbors in NBMA networks The default value is 120 seconds Command mode Interface IP no ipv6 ospf poll interval Configures the poll interval in seconds for neighbors in NBMA and point ...

Page 549: ...and mode Interface IP ipv6 ospf transmit delay 1 1800 Configures the estimated time in seconds taken to transmit LS update packet over this interface Command mode Interface IP no ipv6 ospf transmit delay Resets the estimated time taken to transmit LS update packet over the current interface to its default value Command mode Interface IP no ipv6 ospf Deletes OSPFv3 from interface Command mode Inter...

Page 550: ...ures the Security Parameters Index SPI algorithm and authentication key for the Authentication Header AH The algorithms supported are MD5 hexadecimal key length is 32 SHA1 hexadecimal key length is 40 Command mode Interface IP no ipv6 ospf authentication ipsec spi 256 4294967295 Disables the specified Authentication Header AH SPI Command mode Interface IP ipv6 ospf authentication ipsec default Res...

Page 551: ...tion algorithms supported are md5 hexadecimal key length is 32 sha1 hexadecimal key length is 40 none means ESP with no authentication Note If the encryption algorithm is null the authentication algorithm must be either MD5 or SHA1 If an encryption algorithm is specified 3DES or AES CBC the authentication algorithm can be none Command mode Interface IP no ipv6 ospf encryption ipsec spi 256 4294967...

Page 552: ...nterval in seconds between the hello packets that the router sends on the interface Command mode Router OSPF3 area virtual link 1 3 neighbor router NBR router ID IP address Configures the router ID of the virtual neighbor The default setting is 0 0 0 0 Command mode Router OSPF3 area virtual link 1 3 retransmit interval 1 3600 Configures the interval in seconds between link state advertisement LSA ...

Page 553: ...tication Header AH to its default values Command mode Router OSPF3 area virtual link 1 3 encryption ipsec enable Enables OSPFv3 IPsec encryption Command mode Router OSPF3 area virtual link 1 3 encryption ipsec spi 256 4294967295 esp 3des aes cbc null encryption key hexadecimal md5 sha1 none authentication key hexadecimal Configures the Security Parameters Index SPI encryption algorithm authenticat...

Page 554: ...ll Table 292 Layer 3 IPsec Configuration Options continued Command Syntax and Usage Table 293 OSPFv3 Host Entry Configuration Options Command Syntax and Usage host 1 128 address IPv6 address prefix length 1 128 Configures the base IPv6 address and the subnet prefix length for the host entry Command mode Router OSPF3 host 1 128 area 0 2 Configures the area index of the host Command mode Router OSPF...

Page 555: ...PF3 redist config 1 128 metric type asExttype1 asExttype2 Configures the metric type applied to the route before it is advertised into the OSPFv3 domain Command mode Router OSPF3 redist config 1 128 metric value 1 16777215 Configures the route metric value applied to the route before it is advertised into the OSPFv3 domain Command mode Router OSPF3 redist config 1 128 tag 0 4294967295 Configures t...

Page 556: ...ected static export metric value 1 16777215 metric type 1 2 tag 0 4294967295 Exports the routes of this protocol as external OSPFv3 AS external LSAs in which the metric metric type and route tag are specified Command mode Router OSPF3 no redistribute connected static export Stops exporting the routes of the protocol Command mode Router OSPF3 show ipv6 ospf Displays the current OSPFv3 route redistr...

Page 557: ... static routes fixed routes and virtual server IP addresses with other internal and external routers In the current Enterprise NOS implementation the RackSwitch G8332 does not advertise BGP routes that are learned from one iBGP speaker to another iBGP speaker BGP is turned off by default Note Fixed routes are subnet routes There is one fixed route per IP interface Table 296 Border Gateway Protocol...

Page 558: ...path as the preferred route if you are using eBGP or use the local preference if you are using iBGP Command mode Router BGP maximum paths ibgp 1 32 Set maximum paths allowed for an external route ibgp will set the maximum paths allowed for an internal route By default BGP will install only one path to the IP routing table Command mode Router BGP no maximum paths ibgp Resets the maximum paths allow...

Page 559: ...296 Border Gateway Protocol Options continued Command Syntax and Usage Table 297 BGP Peer Configuration Options Command Syntax and Usage neighbor 1 96 advertisement interval 1 65535 Sets time in seconds between advertisements The default value is 60 seconds Command mode Router BGP no neighbor 1 96 next hop self Enables or disables enforcing the use the router s own IP address as next hop attribute...

Page 560: ...oute map in out 1 255 Adds route map into in route or out route map list Command mode Router BGP no neighbor 1 96 route map in out 1 255 all Removes all route maps or a specific route map from in route or out route map list Command mode Router BGP neighbor 1 96 route origination interval 1 65535 Sets the minimum time between route originations in seconds The default value is 15 seconds Command mod...

Page 561: ...ulti hops which allow BGP peers to talk across a routed network The default number is set at 1 Note The TTL value is significant only to eBGP peers for iBGP peers the TTL value in the IP packets is always 255 regardless of the configured value Command mode Router BGP no neighbor 1 96 time to live Disables the TTL feature Command mode Router BGP neighbor 1 96 timers hold time 0 3 65535 Sets the per...

Page 562: ...d mode Router BGP no neighbor 1 96 Deletes this peer configuration Command mode Router BGP show ip bgp neighbor 1 192 Displays the current BGP peer configuration Command mode All Table 297 BGP Peer Configuration Options continued Command Syntax and Usage Table 298 BGP Aggregation Configuration Options Command Syntax and Usage aggregate address 1 16 IP address IP netmask Defines the starting subnet...

Page 563: ...ed to peer If the routes are learned from default gateway configuration you have to enable static routes since the routes from default gateway are static routes Similarly if the routes are learned from a certain routing protocol you have to enable that protocol Command mode Router BGP no neighbor 1 96 redistribute default action Disables the default route action configuration Command mode Router B...

Page 564: ... 60 seconds Command mode Router BGP neighbor group 1 8 listen limit group limit 1 96 Sets the maximum number of BGP dynamic peers Command mode Router BGP neighbor group 1 8 listen range IPv4 address IPv4 subnet mask Defines the range of IP addresses that will be accepted for the group Command mode Router BGP neighbor group 1 8 name 1 32 characters Sets the name for the group Command mode Router BG...

Page 565: ...e map list Command mode Router BGP neighbor group 1 8 route origination interval min orig time 1 65535 Sets the minimum time between route originations in seconds The default value is 15 seconds Command mode Router BGP no neighbor group 1 8 route reflector client Enables or disables the group as a route reflector client Configuring route reflector clients implicitly sets up the local router as a r...

Page 566: ...Command mode Router BGP no neighbor group 1 8 time to live 1 255 Disables the TTL feature Command mode Router BGP neighbor group 1 8 timers hold time hold time 0 3 65535 Sets the period of time in seconds that will elapse before the peering group session is torn down because the switch hasn t received a keep alive message from the peer The default value is 180 seconds Command mode Router BGP neigh...

Page 567: ...neighbor group 1 8 Deletes this peering group configuration Command mode Router BGP show ip bgp neighbor group 1 8 Displays the current peering group configuration Command mode All Table 300 BGP Peering Group Configuration Options continued Command Syntax and Usage ...

Page 568: ...e routes are learned from default gateway configuration you have to enable static routes since the routes from default gateway are static routes Similarly if the routes are learned from a certain routing protocol you have to enable that protocol Command mode Router BGP no neighbor group 1 8 redistribute default action Disables the default route action configuration Command mode Router BGP neighbor...

Page 569: ... MLD Global Configuration Commands Command Syntax and Usage ipv6 mld Enter MLD global configuration mode Command mode Global configuration no enable Globally enables or disables MLD Command mode MLD Configuration default Resets MLD parameters to their default values Command mode MLD Configuration show ipv6 mld Displays the current MLD configuration parameters Command mode All ...

Page 570: ...onds The default value is 1 second Command mode Interface IP no ipv6 mld llistnr Resets the Last Listener query interval to its default value of 1 second Command mode Interface IP ipv6 mld qintrval 2 65535 Configures the interval for MLD Query Reports in seconds The default value is 125 seconds Command mode Interface IP no ipv6 mld qintrval Resets the interval for MLD Query Reports to its default ...

Page 571: ...P no ipv6 mld robust Resets the MLD Robustness variable to its default value of 2 Command mode Interface IP ipv6 mld version 1 2 Defines the MLD protocol version number The default value is 1 Command mode Interface IP no ipv6 mld version Resets the MLD protocol version number to its default value of 1 Command mode Interface IP ipv6 mld default Resets MLD parameters for the selected interface to th...

Page 572: ... on page 576 IGMP Static Multicast Router Configuration on page 577 IGMP Filtering Configuration on page 578 IGMP Advanced Configuration on page 580 IGMP Querier Configuration on page 581 Table 304 IGMP Configuration Options Command Syntax and Usage no ip igmp aggregate Enables or disables IGMP Membership Report aggregation Command mode Global configuration no ip igmp enable Globally enables or di...

Page 573: ...he timeout value is reached the switch removes the multicast router from its IGMP table if the proper conditions are met The range is from 1 to 600 seconds The default is 255 seconds Command mode Global configuration no ip igmp snoop port port alias or number Adds or removes the selected port to from IGMP Snooping Command mode Global configuration no ip igmp snoop source ip IP address Configures t...

Page 574: ...p igmpv3 sources 1 64 Configures the maximum number of IGMP multicast sources to snoop from within the group record Use this command to limit the number of IGMP sources to provide more refined control The default value is 8 Command mode Global configuration no ip igmp snoop igmpv3 sources Resets the maximum number of IGMP multicast sources to snoop from within the group record to its default value...

Page 575: ... mode Global configuration ip igmp relay report 0 150 Configures the interval between unsolicited Join reports sent by the switch in seconds The default value is 10 Command mode Global configuration ip igmp relay vlan VLAN ID 1 4094 Adds the VLAN or range of VLANs to the list of IGMP Relay VLANs Command mode Global configuration no ip igmp relay vlan VLAN ID 1 4094 all Removes all VLANs or just th...

Page 576: ...o ip igmp relay mrouter 1 2 enable Enables or disables the multicast router Command mode Global configuration ip igmp relay mrouter 1 2 interval 1 60 Configures the time interval between ping attempts to the upstream Mrouters in seconds The default value is 2 Command mode Global configuration ip igmp relay mrouter 1 2 retry 1 120 Configures the number of failed ping attempts required before the sw...

Page 577: ...Configuration Options Command Syntax and Usage ip igmp mrouter port port alias or number VLAN ID 1 4094 version 1 3 Selects a port VLAN combination on which the static multicast router is connected and configures the IGMP version of the multicast router Command mode Global configuration no ip igmp mrouter port port alias or number VLAN ID 1 4094 version 1 3 all Removes all static multicast routers...

Page 578: ... filtering Displays the current IGMP Filtering parameters Command mode All Table 311 IGMP Filter Definition Options Command Syntax and Usage ip igmp profile 1 16 action allow deny Allows or denies multicast traffic for the IP multicast addresses specified The default action is deny Command mode Global configuration no ip igmp profile 1 16 enable Enables or disables this IGMP filter Command mode Gl...

Page 579: ...12 IGMP Filter Port Configuration Options Command Syntax and Usage no ip igmp filtering Enables or disables IGMP filtering on this port Command mode Interface port no ip igmp profile 1 16 Adds or removes an IGMP filter to this port Command mode Interface port show interface port port alias or number igmp filtering Displays the current IGMP filter parameters for this port Command mode All ...

Page 580: ...n ip igmp query interval 1 600 Sets the IGMP router query interval in seconds The default value is 125 seconds Command mode Global configuration no ip igmp query interval Resets the IGMP router query interval to its default value of 125 seconds Command mode Global configuration ip igmp robust 1 10 Configures the IGMP Robustness variable which allows you to tune the switch for expected packet loss ...

Page 581: ...ation Options continued Command Syntax and Usage Table 314 IGMP Querier Configuration Options Command Syntax and Usage no ip igmp querier enable Enables or disables IGMP Querier Command mode Global configuration no ip igmp querier port port alias or number Adds or removes the specified port to from IGMP Querier Command mode Global configuration ip igmp querier vlan VLAN ID 1 4094 election type ipv...

Page 582: ...efault value is 125 seconds Command mode Global configuration no ip igmp querier vlan VLAN ID 1 4094 query interval Resets the interval between IGMP Query broadcasts to its default value of 125 seconds Command mode Global configuration ip igmp querier vlan VLAN ID 1 4094 robustness 1 10 Configures the IGMP Robustness variable which is the number of times that the switch sends each IGMP message The...

Page 583: ...l configuration no ip igmp querier vlan VLAN ID 1 4094 startup interval Resets the Startup Query Interval to its default value of 31 seconds Command mode Global configuration ip igmp querier vlan VLAN ID 1 4094 version v1 v2 v3 Configures the IGMP version The default version is v3 Command mode Global configuration no ip igmp querier vlan VLAN ID 1 4094 version Resets the IGMP version to its defaul...

Page 584: ...e in case a packet is not received by the peer and needs to be retransmitted The default value is 20 seconds Command mode Global configuration show ikev2 Displays the current IKEv2 settings Command mode All Table 316 IKEv2 Preshare Key Options Command Syntax and Usage ikev2 preshare key local 1 256 characters Configures the local preshare key The default value is ibm123 Command mode Global configu...

Page 585: ...re secure but require additional time to compute the key Table 317 IKEv2 Proposal Options Command Syntax and Usage ikev2 proposal Enter IKEv2 proposal mode Command mode Global configuration encryption 3des aes cbc Configures IKEv2 encryption mode The default value is 3des Command mode IKEv2 proposal group 24 Configures the DH group The default group is 2 Command mode IKEv2 proposal integrity sha1 ...

Page 586: ... address as identification Command mode Global configuration ikev2 identity local fqdn 1 32 characters Configures the switch to use the fully qualified domain name such as example com as identification Command mode Global configuration ikev2 identity local email 1 32 characters Configures the switch to use the supplied email address such as xyz example com as identification Command mode Global con...

Page 587: ... Command Syntax and Usage ipsec transform set 1 10 ah sha1 esp 3des esp aes cbc esp null esp sha1 Sets the AH or ESP authentication encryption or integrity algorithm The available algorithms are as follows ah sha1 esp 3des esp aes cbc esp null esp sha1 Command mode Global configuration ipsec transform set 1 10 transport ah sha1 esp 3des esp aes cbc esp null esp sha1 Sets transport mode and the AH ...

Page 588: ...le 320 IPsec Transform Set Options continued Command Syntax and Usage Table 321 IPsec Traffic Selector Options Command Syntax and Usage ipsec traffic selector 1 10 permit deny any icmp ICMPv6 type 0 255 tcp IPV6 address any Sets the traffic selector to permit or deny the specified type of traffic Command mode Global configuration no ipsec traffic selector 1 10 Resets the specified traffic selector...

Page 589: ...er IP address Command mode IPsec dynamic policy pfs enable disable Enables or disables perfect forward security Command mode IPsec dynamic policy sa lifetime 120 86400 Sets the IPsec SA lifetime in seconds The default value is 86400 seconds Command mode IPsec dynamic policy traffic selector 1 10 Sets the traffic selector for the IPsec policy Command mode IPsec dynamic policy transform set 1 10 Set...

Page 590: ...ice key lengths are fixed to 20 characters for SHA1 Command mode IPsec manual policy in esp auth key cipher key key code hexadecimal Sets the inbound Encapsulating Security Payload ESP authenticator key or cipher key Note For manual policies when peering with a third party device key lengths are fixed to 8 characters for DES and to 24 characters for 3DES and AES CBC encryption Command mode IPsec m...

Page 591: ...for 3DES and AES CBC encryption Command mode IPsec manual policy out esp spi 256 4294967295 Sets the outbound Encapsulating Security Payload ESP Security Parameter Index SPI Note For manual policies when peering with a third party device key lengths are fixed to 20 characters for SHA1 Command mode IPsec manual policy peer IPv6 address Sets the remote peer IP address Command mode IPsec manual polic...

Page 592: ...s data port mgt port You are prompted to set the IPv4 address for your primary DNS server using dotted decimal notation Command mode Global configuration no ip dns primary server Removes the IPv4 primary DNS server Command mode Global configuration ip dns secondary server IPv4 address data port mgt port You are prompted to set the IPv4 address for your secondary DNS server using dotted decimal not...

Page 593: ...gured secondary will be used instead Command mode Global configuration no ip dns ipv6 secondary server Removes the IPv6 secondary DNS server Command mode Global configuration ip dns ipv6 request version ipv4 ipv6 Sets the protocol used for the first request to the DNS server as follows IPv4 IPv6 Command mode Global configuration show ip dns Displays the current Domain Name System settings Command ...

Page 594: ...elay Command mode Global configuration ip bootp relay server 1 5 address IP address Sets the IP address of the selected global BOOTP server Command mode Global configuration no ip bootp relay server 1 5 Removes the specified BOOTP server Command mode Global configuration Table 326 BOOTP Relay Broadcast Domain Configuration Options Command Syntax and Usage no ip bootp relay bcast domain 1 10 enable...

Page 595: ...BOOTP Relay Broadcast Domain Configuration Options continued Command Syntax and Usage Table 327 Option 82 Configuration Options Command Syntax and Usage no ip bootp relay information enable Enables or disables BOOTP Option 82 Command mode Global configuration ip bootp relay information policy keep drop replace Configures the DHCP re forwarding policy as follows keep Retains requests that contain r...

Page 596: ...se Network Operating System 8 4 Table 328 Virtual Router Redundancy Protocol Options Command Syntax and Usage router vrrp Enter Router VRRP configuration mode Command mode Global configuration no enable Globally enables or disables VRRP on this switch Command mode Router VRRP group Configures VRRP virtual routers groups To view command options see page 602 Command mode Router VRRP holdoff 0 255 Gl...

Page 597: ...ual router 1 128 Configures virtual routers for the switch To view command options see page 598 Command mode Router VRRP show ip vrrp Displays the current VRRP parameters Command mode All Table 328 Virtual Router Redundancy Protocol Options Command Syntax and Usage ...

Page 598: ...s virtual router Command mode Router VRRP no virtual router 1 128 fast advertise Enables or disables Fast Advertisements When enabled the VRRP master advertisements interval is calculated in units of centiseconds instead of seconds For example if adver is set to 1 and fadver is enabled master advertisements are sent every 10 miliseconds When you disable fast advertisement the advertisement interva...

Page 599: ...s switch is the owner the IP interface address and virtual router addr are the same By default this option is enabled If priority only is specified preemption is based on priority and the IP address is disregarded Command mode Router VRRP virtual router 1 128 priority 1 254 Defines the election priority bias for this virtual server During the master router election process the routing device with ...

Page 600: ...sed in conjunction with the no virtual router VRID address IP address command below to define a virtual router on this switch To create a pool of VRRP enabled routing devices which can provide redundancy to each other each participating VRRP device must be configured with the same virtual router The VRID for standard virtual routers where the virtual router IP address is not the same as any virtua...

Page 601: ...any configured virtual server IP address Table 330 VRRP Priority Tracking Configuration Options Command Syntax and Usage no virtual router 1 128 track interfaces When enabled the priority for this virtual router will be increased for each other IP interface active on this switch An IP interface is considered active when there is at least one active port on the same VLAN This helps elect the virtua...

Page 602: ...witch increasing routing and load balancing efficiency This command is disabled by default Command mode Router VRRP show ip vrrp virtual router 1 128 track Displays the current configuration for priority tracking for this virtual router Command mode All Table 330 VRRP Priority Tracking Configuration Options Command Syntax and Usage Table 331 VRRP Virtual Router Group Configuration Options Command ...

Page 603: ...ity than the current master this virtual router will pre empt the lower priority master and assume control Note that even when preemption is disabled this virtual router will always pre empt any other master if this switch is the owner the IP interface address and virtual router address are the same The default setting is enabled If priority only is specified preemption is based on priority and th...

Page 604: ...ress is not the same as any virtual server can be any integer between 1 and 128 All VRID values must be unique within the VLAN to which the virtual router s IP interface see interface belongs The default virtual router ID is 1 Command mode Router VRRP no group Deletes the virtual router group from the switch configuration Command mode Router VRRP show ip vrrp group Displays the current configurati...

Page 605: ...ce active on this switch An IP interface is considered active when there is at least one active port on the same VLAN This helps elect the virtual routers with the most available routes as the master This command is disabled by default Command mode Router VRRP no group track ports When enabled the priority for this virtual router will be increased for each active port on the same VLAN A port is co...

Page 606: ...entication Command mode Router VRRP interface 1 126 password password Defines a plain text password up to eight characters long This password will be added to each VRRP packet transmitted by this interface when password authentication is chosen see interface authentication above Command mode Router VRRP no interface 1 126 password Resets the configured password to its default value Command mode Ro...

Page 607: ... Command Syntax and Usage tracking priority increment interfaces 0 254 Defines the priority increment value for active IP interfaces detected on this switch The default value is 2 Command mode Router VRRP tracking priority increment next hops 0 254 Defines the priority increment value for each next hop that is active or subtracted The default value is 2 Command mode Router VRRP tracking priority i...

Page 608: ...nable Enables or disables PIM border router The default setting is disabled Command mode Global configuration ip pim regstop ratelimit period 0 2147483647 Configures the register stop rate limit in seconds The default value is 5 seconds Command mode Global configuration default ip pim regstop ratelimit period Reset the register stop rate limit to its default value of 5 seconds Command mode Global ...

Page 609: ...cast router entries Command mode Privileged EXEC Table 335 PIM Configuration Options Command Syntax and Usage Table 336 PIM Component Configuration Options Command Syntax and Usage ip pim component 1 2 Enter PIM component mode Command mode Global configuration mode dense sparse Configures the operational mode of the PIM router dense or sparse Command mode PIM Component show ip pim component 1 2 Di...

Page 610: ...and mode PIM Component no rp candidate holdtime Resets the hold time of the RP candidate to its default value of 0 seconds Command mode PIM Component no rp candidate rp address group multicast address group subnet mask IP address Adds or removes an RP candidate Command mode PIM Component Table 338 RP Static Configuration Options Command Syntax and Usage rp static rp address group multicast address...

Page 611: ...p router preference Command mode Interface IP default no ip pim cbsr preference Resets the canditate bootstrap router preference to its default value Command mode Interface IP ip pim component id 1 2 Defines the component ID for the interface Command mode Interface IP no ip pim component id Removes the interface from the PIM component Command mode Interface IP ip pim dr priority 0 4294967294 Confi...

Page 612: ...ault value of 30 seconds Command mode Interface IP ip pim join prune interval 0 65535 Configures the interval between Join Prune messages in seconds The default value is 60 seconds Command mode Interface IP default no ip pim join prune interval Resets the interval between Join Prune messages to its default value of 60 seconds Command mode Interface IP ip pim lan delay 0 32767 Configures the LAN de...

Page 613: ...following command ip pim neighbor addr IP address Command mode Interface IP ip pim override interval 0 65535 Configures the override interval for the router interface in seconds Command mode Interface IP default no ip pim override interval Resets the override interval for the router interface to its default value Command mode Interface IP default ip pim Resets the PIM configuration on the interfac...

Page 614: ... and Usage ip gateway6 1 4 address IPv6 address enable Configures the IPv6 address of the default gateway in hexadecimal format with colons such as 3001 0 0 0 0 0 abcd 12 The enable option also enables the gateway Command mode Global configuration no ip gateway6 1 4 enable Enables or disables the default gateway Command mode Global configuration no ip gateway6 1 4 Deletes the default gateway Comma...

Page 615: ...nation address IPv6 address gateway default IPv6 gateway address interface IP interface number all Clears the selected IPv6 static routes Command mode Global configuration show ipv6 route static Displays the current static route configuration Command mode All Table 342 IPv6 Neighbor Discovery Cache Configuration Options Command Syntax and Usage ip neighbors IPv6 address MAC address vlan VLAN ID 1 ...

Page 616: ... timeout value for Path MTU cache entries in minutes Enter 0 zero to set the timeout to infinity no timeout The default value is 10 minutes Command mode Global configuration clear ipv6 pmtu Clears all entries in the Path MTU cache Command mode Privileged EXEC show ipv6 pmtu Displays the current Path MTU configuration Command mode All Table 344 IPv6 Neighbor Discovery Prefix Options Command Syntax ...

Page 617: ...ar the off link flag omit the off link parameter when you issue this command Command mode Interface IP ipv6 nd prefix IPv6 prefix IPv6 prefix length valid lifetime 0 4294967295 infinite variable 0 4294967295 prefered lifetime 0 4294967295 infinite variable no autoconfig off link Configures the Valid Lifetime and optionally the Preferred Lifetime of the prefix in seconds The Valid Lifetime is the l...

Page 618: ...x length precedence 0 100 label 0 100 Adds or removes a Prefix Policy Table entry Enter the following parameters IPv6 address prefix Prefix length Precedence The precedence is used to sort destination addresses Prefixes with a higher precedence are sorted before those with a lower precedence Label The label allows you to select prefixes based on matching labels Source prefixes are coupled with des...

Page 619: ...interface Command mode Interface loopback ip address IP address subnet mask enable Defines the loopback interface IP address You can also specify its subnet mask The enable option also enables the loopback interface Command mode Interface loopback ip netmask subnet mask Defines the loopback interface subnet mask Command mode Interface loopback ip ospf area 0 19 Configures the OSPF area index used ...

Page 620: ...Removes an entry from the binding table Command mode Global configuration no ip dhcp snooping information option insert Enables or disables option 82 support for DHCP Snooping When enabled DHCP Snooping performs the following functions if a DHCP packet from a client contains option 82 information the information is retained when DHCP Snooping forwards a DHCP packet from a client option 82 informat...

Page 621: ...ommands Table 348 CEE Configuration Options Command Syntax and Usage no cee enable Globally enables or disables CEE Command mode Global configuration no cee iscsi enable Enables or disables ISCSI TLV advertisements Command mode Global configuration show cee iscsi Displays the current ISCSI TLV parameters Command mode All show cee Displays the current CEE parameters Command mode All ...

Page 622: ...ndwidth percentage allocated to the Priority Group Note Priority Group 15 is a strict priority group and does not need bandwidth assigned to it Command mode Global configuration cee global ets priority group pgid 0 7 15 description 1 31 characters Enter text that describes this Priority Group Command mode Global configuration no cee global ets priority group 0 7 15 description Deletes the Priority...

Page 623: ...ntax and Usage no cee global pfc enable Globally enables or disables Priority Flow Control on all ports Command mode Global configuration cee global pfc priority 0 7 description 1 31 characters Enter text that describes this Priority Group Command mode Global configuration no cee global pfc priority 0 7 description Removes the description for the specified Priority Group Command mode Global config...

Page 624: ...ty Note PFC can be enabled on 802 1p priority 3 and one other priority only Command mode Global configuration cee port port alias or number pfc priority 0 7 description 1 31 characters Enter text to describe the priority value Command mode Global configuration no cee port port alias or number pfc priority 0 7 description Deletes the description for the specified priority value Command mode Global ...

Page 625: ...e Global configuration no cee port port alias or number dcbx ets advertise Enables or disables DCBX ETS advertisements of configuration data When enabled the Advertisement flag is set to 1 advertise data to the peer device Command mode Global configuration no cee port port alias or number dcbx ets willing Enables or disables ETS willingness to accept configuration data from the peer device When en...

Page 626: ...tion Options Command Syntax and Usage no fcoe fips automatic vlan Enables or disables automatic VLAN creation based on response received from the connected device Command mode Global configuration no fcoe fips enable Globally enables or disables FIP Snooping Command mode Global configuration no fcoe fips timeout acl Enables or disables ACL time out removal When enabled ACLs associated with expired...

Page 627: ... FIP Snooping configuration options Table 354 Port FIP Snooping Options Command Syntax and Usage no fcoe fips port port alias or number enable Enables or disables FIP Snooping on the port The default setting is enabled Command mode Global configuration fcoe fips port port alias or number fcf mode auto on off Configures FCoE Forwarding FCF on the port as follows on Configures the port as a Fibre Ch...

Page 628: ... width Command mode Global configuration fcf concurrent login 1 2048 Configures the maximum number of concurrent FLOGI FDISC for this FCF The default setting is 16 Command mode VLAN no fcf concurrent login Sets the maximum number of concurrent FLOGI FDISC for this FCF to 0 Command mode VLAN no fcf enable Enables or disables the VLAN as Fibre Channel Forwarding VLAN The default setting is disabled ...

Page 629: ...e fcmap 0xefc00 0xefcff Configures the global FC map that identifies the FC fabric used by the switch The switch will discard MAC addresses that are not part of the current fabric which avoids cross fabric talk The FC map is a 24 bit hexadecimal value The default value is 0x0efc00 Command mode VLAN no fcoe fcmap 0xefc00 0xefcff Resets all the FC maps or a specific FC map to the default 0x0efc00 va...

Page 630: ... Permits or denies traffic flow to default zone members Command mode Global configuration no zone name 1 64 characters vlan VLAN ID 2 4094 Enter FC Zone configuration mode for the specified zone If the zone doesn t exist it is created The no form of the command erases the zone Command mode Global configuration zone rename current name new name vlan VLAN ID 2 4094 Renames the FC zone Command mode G...

Page 631: ...al configuration zoneset clone selected zoneset name new zoneset name vlan VLAN ID 2 4094 Creates a new zoneset with the attributes of the selected zoneset Command mode Global configuration no zoneset name 1 64 characters vlan VLAN ID 2 4094 Enter FC Zoneset configuration mode for the specified zone If the zoneset doesn t exist it is created The no form of the command erases the zoneset Command mo...

Page 632: ...eletes a port alias specific to a VLAN Command mode Global configuration fcalias rename old pwwn alias new pwwn alias vlan VLAN ID 2 4094 Renames a port alias specific to a VLAN Command mode Global configuration no member fcalias pwwn alias Adds or removes a port alias associated with a zone Command mode FC Zone Configuration no member pwwn pwwn alias Adds or removes a member associated with a pww...

Page 633: ... to the standard interface OID as follows 1 3 6 1 2 1 2 2 1 1 X where X is the ifIndex Command mode Global configuration rmon history 1 65535 owner 1 127 characters Enter a text string that identifies the person or entity that uses this History index Command mode Global configuration no rmon history 1 65535 owner Deletes the identification information for the specified History index Command mode G...

Page 634: ...5 description Deletes the description of the specified event index Command mode Global configuration rmon event 1 65535 owner 1 127 characters Enter a text string that identifies the person or entity that uses this Event index Command mode Global configuration no rmon event 1 65535 owner Deletes the identification information for the specified Event index Command mode Global configuration rmon eve...

Page 635: ...ther Configures the alarm type as rising falling or either rising or falling Command mode Global configuration rmon alarm 1 65535 falling crossing index 0 65535 Configures the falling alarm event index that is triggered when a falling threshold is crossed Command mode Global configuration rmon alarm 1 65535 falling limit 2147483647 2147483647 Configures the falling threshold for the sampled statis...

Page 636: ...s threshold and the value at the last sampling interval was less than this threshold a single event is generated Command mode Global configuration rmon alarm 1 65535 sample abs delta Configures the method of sampling the selected variable and calculating the value to be compared against the thresholds as follows abs absolute value the value of the selected variable is compared directly with the th...

Page 637: ...s Command mode Global configuration show virt Displays the current virtualization parameters Command mode All Table 364 VM Bandwidth Management Options Command Syntax and Usage no virt vmpolicy vmbwidth MAC address UUID name IP address index number bwctrl Enables or disables bandwidth control on the VM policy Command mode Global configuration virt vmpolicy vmbwidth MAC address UUID name IP address...

Page 638: ... Command mode Global configuration no virt vmpolicy vmbwidth MAC address UUID name IP address index number Deletes the bandwidth management settings from this VM policy Command mode Global configuration show virt vmpolicy vmbwidth MAC address UUID name IP address index number index range include exclude section begin Displays the current VM bandwidth management parameters for all virtual machines ...

Page 639: ...l be included in the VM group Command mode Global configuration no virt vmgroup 1 4096 optflood Enables or disables Optimized Flooding on the VM group Command mode Global configuration no virt vmgroup 1 4096 port port alias or number Adds or removes the selected port to from the VM group Note A port can be added to a VM group only if no VMs on that port are members of the VM group Command mode Glo...

Page 640: ...esses on virtual machines The default setting is disabled Command mode Global configuration no virt vmgroup 1 4096 validate Disables MAC address spoof prevention for the specified VM group Command mode Global configuration virt vmgroup 1 4096 vlan VLAN ID 1 4094 Assigns a VLAN to this VM group If you do not assign a VLAN to the VM group the switch automatically assigns the first unused VLAN when a...

Page 641: ... non server ports only If you do not select a port type the VMAP is applied to the entire VM Group For more information about configuring VLAN Maps see VMAP Configuration on page 440 Command mode Global configuration no virt vmgroup 1 4096 Deletes the VM group Command mode Global configuration show virt vmgroup 1 4096 Displays the current VM group parameters Command mode All Table 365 VM Group Con...

Page 642: ...nd mode Global configuration virt vmcheck action advanced acl link log Sets up action taken when detecting MAC address spoofing in advanced validation mode acl registers a syslog entry and installs an ACL to drop traffic incoming on the corresponding switch port originating from the spoofed MAC address link registers a syslog entry and disables the corresponding switch port log registers a syslog ...

Page 643: ...ame 1 39 characters Defines a name for the VM profile The switch supports up to 2048 VM profiles Command mode Global configuration no virt vmprofile profile name 1 39 characters Deletes the selected VM profile Command mode Global configuration virt vmprofile edit profile name 1 39 characters eshaping average 1 1000000000 burst 1 1000000000 peak 1 1000000000 Configures traffic egress shaping parame...

Page 644: ...per second Delete traffic shaping parameters Command mode Global configuration no virt vmprofile profile name 1 39 characters shaping Deletes the traffic shaping parameters for the specified VM profile Command mode Global configuration virt vmprofile edit profile name 1 39 characters vlan VLAN ID 1 4094 Assigns a VLAN to the VM profile Command mode Global configuration show virt vmprofile profile ...

Page 645: ...ration default virt vmware hbport Sets to default esx esxi server to vcenter heartbeat udp port Command mode Global configuration virt vmware hello enable haddr IP address hport port alias or number htimer 1 60 Configures CDP Cisco Discovery Protocol advertisements sent periodically to VMware ESX hypervisors Exchanging CDP message with ESX hypervisors facilitates MAC address spoof prevention Defau...

Page 646: ...password for the Virtual Center Whether to authenticate the SSL security certificate yes or no Command mode Global configuration no virt vmware vcspec Deletes the Virtual Center credentials on the switch Command mode Global configuration show virt vmware Displays the current VMware parameters Command mode All Table 368 VM Ware Configuration Options Command Syntax and Usage Table 369 VMReady Config...

Page 647: ...VSIDB number Enter Virtual Station Interface Database configuration mode For more details see page 648 Command mode Global configuration virt evb profile profile number Enter Virtual Station Interface Profile configuration mode For more details see page 650 Command mode Global configuration show virt evb vsidb VSIDB number Displays the current Virtual Station Interface database information Command...

Page 648: ...rface Type database document path Command mode VSI Database no filepath Deletes the Virtual Station Interface Type database document path Command mode VSI Database host IP address mgt port data port Sets the Virtual Station Interface Type database manager IP address and the port used for the connection By default the management port is used Command mode VSI Database port 1 65534 Sets the Virtual S...

Page 649: ...al configuration show virt evb vsitypes mgrid 0 255 typeid 1 16777215 version 0 255 Displays the current Virtual Station Interface Type database parameters Command mode All show virt evb vsidb VSIDB number Displays the current Virtual Station Interface database information Command mode All Table 371 Edge Virtual Bridge VSI Type Database Configuration Options continued Command Syntax and Usage ...

Page 650: ...Command mode EVB Profile no vsi discovery Enables or disables VSI Discovery ECP and VDP Command mode EVB Profile no virt evb profile profile number Deletes the specified EVB profile Command mode Global configuration evb profile 1 16 Applies the specified EVB profile for the port Automatically enables LLDP EVB TLV on the corresponding port Command mode Interface port no evb profile Resets EVB profi...

Page 651: ...itch port Command mode Interface port nwv nsx gw Enters the VXLAN Gateway configuration mode Command mode Global configuration controller ip IPv4 address data port mgt port Configures the NSX controller IP address Configuration mode VXLAN Gateway controller port TCP port 1 65534 Configures the NSX controller port Configuration mode VXLAN Gateway no controller Removes the NSX controller configurati...

Page 652: ...tches between OpenFlow version 1 0 and OpenFlow version 1 3 on reboot The default setting is v1 Command mode Global configuration boot profile default Starts the switch in Hybrid mode on reboot This is the default setting Command mode Global configuration boot profile openflow Starts the switch in OpenFlow only mode on reboot Command mode Global configuration no openflow enable Enables or disables...

Page 653: ... mode The default setting is disabled Command mode Global configuration openflow mpls priority 1 65535 Configures a priority value to map flows with matching priority to MPLS entries The default value is 65535 Note Supported only in OpenFlow 1 3 Note When you issue this command all the existing MPLS flows are cleared automatically Command mode Global configuration no openflow mpls priority Resets ...

Page 654: ...em uses the management port Command mode OpenFlow Instance controller 1 4 port TCP port number 1 65535 Configures the TCP port used for communication with the Controller The default port is 6633 Command mode OpenFlow Instance no controller 1 4 Deletes the selected controller from the specified instance ID Command mode OpenFlow Instance dpid hex string Applies an 8 byte Datapath ID to the instance ...

Page 655: ...er than the echo reply timeout value Command mode OpenFlow Instance no echo request interval Resets the echo request interval to the default value of 30 seconds Command mode OpenFlow Instance no edgeport port alias or number Enables or disables the selected port as an OpenFlow edge port outside port Edge ports are usually connected to servers The default setting is disabled Note Learning and flood...

Page 656: ...mode OpenFlow Instance max flow acl 0 1500 max flow acl 0 2000 Enables or disables the maximum flow ACL option which ensures a dedicated maximum number of ACL flows are available for the instance The maximum number of entries is 1500 in Hybrid mode and 2000 in OpenFlow Only mode The total number of 1500 2000 entries is shared between instances By default max flow acl is set to 0 allowing instances...

Page 657: ...By default max flow mpls pop is set to 0 allowing instances to dynamically access the available MPLS label pop flow slots until depletion Note Setting max flow mpls pop manually limits the number of MPLS label pop flow slots available for other instances by the corresponding value Note Supported only in OpenFlow 1 3 Command mode OpenFlow Instance no max flow mpls pop Sets the instance s maximum nu...

Page 658: ...fdb Sets the instance s maximum number of FDB based unicast flows to the default value of 0 dynamic allocation Command mode OpenFlow Instance no member port alias or number Enables or disables port usage by the OpenFlow instance for data traffic Command mode OpenFlow Instance no member portchannel 1 208 Enables or disables static portchannel or LACP usage by the OpenFlow instance for data traffic ...

Page 659: ...acket only to a controller The default value is 0xffffffffffffffff Note Supported only in OpenFlow 1 3 Command mode OpenFlow Instance no send to controller cookie Resets the send to controller flow cookie to the default value of 0xffffffffffffffff Note Supported only in OpenFlow 1 3 Command mode OpenFlow Instance static table Configures static flows For command options see page 662 Command mode Op...

Page 660: ... the static FDB table This enables equal cost multi path routing and use cases where IPS and Firewall devices forward packets without changing the source MAC address The default value is disabled Command mode Interface port Interface portchannel clear openflow group table basic emergency dynamic static Clears OpenFlow data for all instances The group option clears the OpenFlow 1 3 group table The ...

Page 661: ...ation displays the configured current and maximum number of flows for all OpenFlow instances For more information see page 153 group displays group information for all OpenFlow 1 3 instances For more information see page 155 information displays the configuration for all OpenFlow instances For more information see page 156 table displays the basic and emergency flow tables for all OpenFlow instanc...

Page 662: ...g table describes the static flow configuration options Table 375 Static FlowsConfiguration Options Command Syntax and Usage static table add index 1 1000 match matching qualifier actions matching qualifier options matching qualifier priority 0 65535 Adds a static flow entry to the instance Command mode OpenFlow Instance static table modify index 1 1000 match matching qualifier actions matching qu...

Page 663: ...e ʺarpʺ ʺ0806ʺ or ʺipʺ ʺ0800ʺ or hex value 65535 protocol ʺtcpʺ or ʺudpʺ or 0 255 tos IP Type of Service 0 255 type ʺrequestʺ or ʺreplyʺ can be set only if ether type is ARP all Applicable to all traffic Table 377 Static Flow Matching Qualifiers in OpenFlow 1 3 Qualifier Value in port switch input port in portchannel switch input portchannel in phy port switch physical input port valid only when i...

Page 664: ...lʺ ʺin portʺ ʺcontrollerʺ or a valid port set src mac Change source MAC address set dst mac Change destination MAC address strip vlan id Remove VLAN identifier set vlan priority Set 802 1p priority code point value 0 7 set nw tos Set IP Type of Service 0 255 drop Drop packet max len Maximum length to send to controller Table 379 Static Flow Actions in OpenFlow 1 3 Action Value output ʺallʺ ʺin por...

Page 665: ...P Differentiated Services Code Point 0 63 set mpls label set MPLS label 1 0xFFFFF set mpls ttl set MPLS time to live copy ttl out copy time to live outward from next to outermost to outermost copy ttl in copy time to live inward from outermost to next to outermost dec nw ttl decrement network time to live drop drop the packet Table 379 Static Flow Actions in OpenFlow 1 3 continued Action Value ...

Page 666: ...settings Command mode Global configuration no ptp transparent enable Enables or disables PTP End to End transparent clock mode In this mode incoming PTP packets are forwarded based on routing rules currently in place for the PTP domain s multicast address within the 224 0 1 129 224 0 1 132 range On egress PTP packet timestamps are updated based on the time spent between ingress and egress The defa...

Page 667: ...abled ports will not support PTP even if PTP is globally enabled The default setting is enabled Note PTP is not supported on management ports Command mode Interface port show ptp Displays current PTP settings Command mode All Table 380 Precision Time Protocol Configuration Options continued Command Syntax and Usage ...

Page 668: ...larity in milliseconds The default setting is 5 miliseconds Command mode Global configuration microburst port threshold port alias or number 1 60628 Configures the number of memory cells a port is allowed to access from the shared service pool There is no dedicated number of memory cells for a port If this threshold is reached it means the port is congested and needs to access additional memory fr...

Page 669: ...le 382 Service Location Protocol Options Command Syntax and Usage no ip slp active da discovery enable Enables or disables active directory agent discovery The default value is disabled Command mode Global configuration ip slp active da discovery start wait time 1 10 Number of seconds to wait after enabling SLP before attempting active DA discovery if active DA discovery is enabled The default val...

Page 670: ...been changed from the default values The screen display can be captured edited and placed in a script file which can be used to configure other switches through a Telnet connection When using Telnet to configure a new switch paste the configuration commands from the script file at the command line prompt of the switch The active configuration can also be saved or loaded via SFTP FTP TFTP as descri...

Page 671: ...nd filename Note The output file is formatted with line breaks but no carriage returns the file cannot be viewed with editors that require carriage returns such as Microsoft Notepad Note If the FTP TFTP SFTP server is running SunOS or the Solaris operating system the specified configuration file must exist prior to executing the copy running config command and must be writable set with proper perm...

Page 672: ...with the commands found in the specified configuration file The file can contain a full switch configuration or a partial switch configuration To start the switch configuration download at the prompt enter or or The switch prompts you for the server address and filename RS G8332 copy ftp running config RS G8332 copy sftp running config RS G8332 copy tftp running config ...

Page 673: ...oot crashdump image1 image2 syslog Command mode Privileged EXEC In this example the active configuration file is copied to a directory on the USB drive Copy from USB Use the following command to copy a file from the USB drive to the switch usbcopy fromusb filename active boot image1 image2 Command mode Privileged EXEC In this example the active configuration file is copied from a directory on the ...

Page 674: ...674 G8332 Command Reference for ENOS 8 4 ...

Page 675: ...ions Command Mode Global configuration console log Enables or disables session console logging Command Mode Privileged EXEC ntp send Allows the user to send requests to the NTP server Command Mode Privileged EXEC password 1 128 characters Allows the user to change the password You must enter the current password in use for validation The switch prompts for a new password between 1 128 characters C...

Page 676: ... port port alias or number rmon Temporarily enables or disables remote monitoring of the port The port will be returned to its configured operation mode when the switch is rebooted Command Mode Privileged EXEC interface port port alias or number shutdown Temporarily disables the port The port will be returned to its configured operation mode when the switch is rebooted Command Mode Privileged EXEC...

Page 677: ...r disabling a MDA board Table 385 Port Operations Command Syntax and Usage mda shutdown Disables the MDA board The MDA board is physically present but the ports are disabled Command Mode Global configuration no mda shutdown Enables the MDA board Command Mode Global configuration show mda Displays MDA board information Command Mode All ...

Page 678: ...operations commands are listed in the following table Table 386 NAT Operations Command Syntax and Usage clear ip nat statistics Clears NAT statistics Command Mode Privileged EXEC clear ip nat translations Clears dynamically created NAT translations Command Mode Privileged EXEC ...

Page 679: ...ch has been returned to service after a failure When this command is executed the current master gives up control and initiates a new election by temporarily advertising its own priority level as 0 lowest After the new election the virtual router forced into backup mode by this command will resume master control in the following cases This switch owns the virtual router the IP addresses of the vir...

Page 680: ... enter a new name to create a new Virtual Switch Command Mode All virt vmware pg Port Group name host ID VSwitch name VLAN ID 0 4094 shaping enabled average Kbps burst KB peak Kbps Adds a Port Group to a VMware host You are prompted for the following information Port Group name VMware host ID Use host UUID host IP address or host name Virtual Switch name VLAN ID of the Port Group Whether to enable...

Page 681: ... follows Shaping enabled Average traffic in kilobits per second Maximum burst size in kilobytes Peak traffic in kilobits per second Delete traffic shaping parameters Command Mode All virt vmware vmacpg VM NIC MAC address Port Group name Changes a VM NIC s configured Port Group Command Mode All no virt vmware vsw host ID Virtual Switch name Adds or removes a Virtual Switch to a VMware host Use one ...

Page 682: ...ost UUID IP address Host name Command Mode All virt vmware dvswitch adduplink dvSwitch name host UUID host IP address host name uplink name Adds the specified physical NIC to the specified dvSwitch uplink ports Command Mode All virt vmware dvswitch del datacenter name dvSwitch name Removes the specified dvSwitch from the specified DataCenter Command Mode All virt vmware dvswitch remhost dvSwitch n...

Page 683: ...dth in kilobits per second burst size in kilobits peak bandwidth in kilobits per second Command Mode All virt vmware dpg del port group name dvSwitch name Removes the specified port group from the specified dvSwitch Command Mode All virt vmware dpg update port group name dvSwitch name VLAN ID 1 4094 ishaping bandwidth burst size peak bandwidth eshaping bandwidth burst size peak bandwidth Updates t...

Page 684: ...nds Command Syntax and Usage virt evb update vsidb VSIDB number Update VSI types from the VSI database Command mode All clear virt evb vsi mac address port port alias or number type id 1 16777215 vlan 1 4094 Clears VSI database associations Command mode Privileged EXEC clear virt evb vsidb mgrid 0 255 type id 1 16777215 version 0 255 Clears local VSI types cache Command mode Privileged EXEC ...

Page 685: ...en the switch on the next reboot Selecting a configuration block to be used when the switch on the next reboot Downloading or uploading a new software image to the switch via SFTP FTP TFTP In addition to the Boot commands you can use a Web browser or SNMP to work with switch image and configuration files To use SNMP refer to Working with Switch Images and Configuration Files The boot options are d...

Page 686: ...ime cancel a previously scheduled reboot and check the time of the current reboot schedule Table 392 Scheduled Reboot Options Command Syntax and Usage boot schedule day time hh mm Configures the switch reboot time The following options are valid for the day value monday tuesday wednesday thursday friday saturday sunday Command mode Global configuration no boot schedule Cancels the switch reboot ti...

Page 687: ...ation the switch uses the manually configured TFTP server address and file path Table 393 Netboot Options Command Syntax and Usage boot netboot cfgfile 1 31 characters Defines the file path for the configuration file on the TFTP server For example directory sub config cfg Command mode Global configuration no boot netboot cfgfile Removes the file path for the configuration file on the TFTP server C...

Page 688: ...ith such protocols are unavailable The following protocols are disabled and are not available on the switch if Secure Policy mode is enabled HTTP LDAP Client SNMPv1 and SNMPv2 Telnet Client and Telnet Server Telnet IPv6 Client and Telnet IPv6 Server FTP Client and FTP Server Radius Client TACACS Client Syslog Server The following protocols are enabled and available on the switch if Secure Policy m...

Page 689: ...KE IPSec Ping and Ping IPv6 Traceroute and Traceroute IPv6 bootp TFTP IPv6 SNMPv3 IPv6 To configure the switch policy mode use the following command Table 394 Security Policy Configuration Command Syntax and Usage boot security policy legacy mode secure mode Configures the switch security policy Note A switch reload is needed for the changes to take effect Command mode Global configuration show bo...

Page 690: ... switch needs to be reloaded for the configuration to take effect Command mode Global configuration no boot spanning tree max instances Reset the maximum number of STGs available on the switch to the default value of 128 Note The switch needs to be reloaded for the configuration to take effect Command mode Global configuration show boot spanning tree Displays the maximum number of currently availa...

Page 691: ... feature configures the switch Machine Type Model MTM Table 396 Machine Type Model Configuration Command Syntax and Usage boot mtm MTM code Configures the switch s machine type model MTM value MTMs are applied on reboot and persist over firmware upgrades Command mode Global configuration ...

Page 692: ...40gports port alias or number Enables or disables 40GbE mode on the selected QSFP ports When enabled each QSFP port is set as a single 40GbE port When disabled each QSFP port is configured to breakout into four 10GbE ports Note You must reboot the switch for this change to take effect Command mode Global configuration show boot qsfp port modes Displays the current QSFP parameters Command mode All ...

Page 693: ...are image The existing images are not affected RSG8332_replace1_OS img The switch replaces the current software image1 with the new image and boots with the new image RSG8332_replace2_OS img The switch replaces the current software image2 with the new image and boots with the new image RSG8332 cfg The switch boots with the new configuration file The existing configuration files active and backup a...

Page 694: ...re released you can upgrade the software running on your switch Use the following command to determine the current software version show boot Command mode All Upgrading the software image on your switch requires the following Loading the new image onto a SFTP FTP or TFTP server on your network Transferring the new image from the SFTP FTP or TFTP server to your switch Selecting the new software ima...

Page 695: ...the new software image or boot file Note The DNS parameters must be configured if specifying hostnames When the above requirements are met use the following procedure to download the new software to your switch 1 In Privileged EXEC mode enter the following command 2 Select a port to use for downloading the image 3 Enter the hostname or IP address of the SFTP FTP or TFTP server 4 Enter the name of ...

Page 696: ...IP address of the SFTP FTP or TFTP server 4 Enter the name of the file into which the image will be uploaded on the SFTP FTP or TFTP server 5 Enter your username and password for the server if applicable 6 The system then requests confirmation of what you have entered To have the file uploaded enter Y RS G8332 config boot image image1 image2 Next boot will use switch software image1 instead of ima...

Page 697: ...ation block There is also a factory configuration block This holds the default configuration set by the factory when your RackSwitch G8332 was manufactured Under certain circumstances it may be desirable to reset the switch configuration to the default This can be useful when a custom configured RackSwitch G8332 is moved to a network environment where it will be re configured for a different purpo...

Page 698: ...presentative can assign your switch an Entitlement Serial Number ESN at the time you request support The ESN can be conveniently stored on the switch using the following command The ESN helps to locate your switch s identifying information when you call technical support for help in future RS G8332 config boot esn Entitlement Serial Number ...

Page 699: ...support in a local file to flash memory The no dump option skips this step thereby decreasing the time needed for the switch to reboot By default the switch saves technical support information before rebooting Technical support information backup tech support can be uploaded to an external server using the following command copy backup tech support ftp sftp tftp Command mode Privileged EXEC Note T...

Page 700: ...enovo Enterprise Network Operating System 8 4 To change the deployment profile select the new profile and reboot the G8332 Use the following command to select a new profile The following list describes the boot profile options acl deployment profile with maximum Access Control Lists ACLs default deployment profile with balanced resources ipmc opt deployment profile with different IPMC entries and ...

Page 701: ...The Boot Management menu allows you to perform the following actions To change the booting image press I and follow the screen prompts To change the configuration block press C and follow the screen prompts To boot in recovery mode press R For more details see Boot Recovery Mode on page 702 To restart the boot process from the beginning press Q To exit the Boot Management menu press E The booting ...

Page 702: ...mage Upgrade using TFTP on page 703 To recover from a failed software or boot image upgrade using XModem download press X and follow the screen prompts For more details see Recovering from a Failed Image Upgrade using XModem Download on page 705 To enable the loading of an unofficial image press P and follow the screen prompts For more details see Physical Presence on page 707 To restart the boot ...

Page 703: ...gress and the dots are being displayed 4 Enter Boot Recovery Mode by selecting R The Recovery Mode menu will appear 5 To start the recovery process using TFTP select T The following message will appear 6 Enter the IP address of the management port 7 Enter the network mask of the management port 8 Enter the gateway of the management port 9 Enter the IP address of the TFTP server 10 Enter the filena...

Page 704: ...135 Image Filename G8332 8 4 1 0_OS img Netmask 255 255 255 128 Gateway 10 241 6 66 Configuring management port Installing image G8332 8 4 1 0_OS img from TFTP server 10 72 97 135 Extracting images Do NOT power cycle the switch Installing Application Image signature verified Install image as image 1 or 2 hit return to just boot image 2 Installing image as image2 100 Image2 updated succeeded Updati...

Page 705: ...X for Xmodem download You will see the following display 6 When you see the following message change the Serial Port speed to 115200 bps 7 Press Enter to set the system into download accept mode When the readiness meter displays a series of C characters start Xmodem on your terminal emulator You will see a display similar to the following 8 Select the image to download Xmodem initiates the file tr...

Page 706: ... Filesystem Image signature verified 100 Installing Kernel Image signature verified 100 Installing Device Tree Image signature verified 100 Installing Boot Loader 100 Updating install log File image installed from xmodem at 18 06 02 on 13 3 2015 Please select one of the following options T Configure networking and tftp download an image X Use xmodem 1K to serial download an image P Physical presen...

Page 707: ...ecurity test will be performed The system location blue LED will blink a number of times between 1 and 12 Enter that number 8 After entering the correct number the Recovery Mode menu will re appear To install an unofficial image use one of the following procedures TFTP for details see page 703 XModem Download for details see page 705 Note You have three attempts to successfully complete the securi...

Page 708: ...708 G8332 Command Reference for ENOS 8 4 ...

Page 709: ...information via TFTP SFTP or FTP For details see page 729 Command mode Privileged EXEC copy switch filename tftp address TFTP server IP address filename TFTP server filepath data port mgt port Uploads a file via TFTP Command mode Privileged EXEC copy log stfp tftp data port mgt port Uploads the system log file SYSLOG via SFTP or TFTP Command mode Privileged EXEC copy tech support ftp sftp data por...

Page 710: ... Command mode Privileged EXEC clear logging Clears the system log file SYSLOG Command mode Privileged EXEC show tech support fcoe l2 l3 link port Dumps all G8332 information statistics and configuration You can log the output tsdmp into a file To filter the information use the following options fcoe displays only FCoE related information l2 displays only Layer 2 related information l3 displays onl...

Page 711: ...4 56 xxxxxxxxxxxx such as 080020123456 Command mode All show mac address table interface port port alias or number Displays all FDB entries for a particular port Command mode All show mac address table multicast Displays all Multicast MAC entries in the FDB Command mode All show mac address table private vlan VLAN ID 2 4094 Displays all FDB entries on a single private VLAN Command mode All show ma...

Page 712: ... Command mode Privileged EXEC no debug lacp packet receive transmit both port port alias or number Enables or disables debugging for Link Aggregation Control Protocol LACP packets on selected ports running LACP The following parameters are available receive filters only LACP packets received transmit filters only LACP packets sent both filters LACP packets either sent or received port filters LACP...

Page 713: ...ters are available receive filters only BPDU frames received transmit filters only BPDU frames sent By default STP BPDU debugging is disabled Command mode Privileged EXEC no debug spanning tree tc Enables or disables the display of messages relating to STP topology changes Command mode Privileged EXEC no debug tacacs client Enables or disables TACACS client debug messages Command mode Privileged E...

Page 714: ...EXEC no debug ssh server all Enables or disables all SSH Server debug messages Command mode Privileged EXEC no debug ssh server disconnect Enables or disables SSH Server disconnect debug messages Command mode Privileged EXEC no debug ssh server msg Enables or disables SSH Server type and protocol debug messages Command mode Privileged EXEC no debug ssh server packet Enables or disables SSH Server ...

Page 715: ...ty debug messages Command mode Privileged EXEC no debug sec crypto Enables or disables all IP security cryptographic debug messages Command mode Privileged EXEC no debug sec ike Enables or disables all IP security IKEv2 debug messages Command mode Privileged EXEC no debug sec info Displays the current security debug flag Command mode Privileged EXEC no debug sec ipsec Enables or disables all IPsec...

Page 716: ...G Health Check debug messages Command mode Privileged EXEC no debug vlag isl Enable or disables vLAG ISL debug messages Command mode Privileged EXEC no debug vlag msg Enable or disables vLAG debug messages Command mode Privileged EXEC no debug vlag portmgr Enable or disables vLAG Port Manager debug messages Command mode Privileged EXEC no debug vlag sm Enable or disables vLAG State Machine debug m...

Page 717: ...BGP debug messages for the specified BGP neighbor Command mode Privileged EXEC no debug bgp IP address in out Enables or disables all inbound or outbound BGP debug messages for the specified BGP neighbor Command mode Privileged EXEC no debug bgp in out Enables or disables all inbound or outbound BGP debug messages Command mode Privileged EXEC no debug bgp persistent Enables or disables saving BGP ...

Page 718: ...ting with the last entry first Command mode All show ip bgp debugging IP address in out last Displays inbound or outbound BGP debugging updates for the specified neighbor If the last option is specified displays the results starting with the last entry first Command mode All show ip bgp debugging ignored last Shows all BGP information for routers that have been ignored If the last option is specif...

Page 719: ...bout the Control state machine for the selected port Command mode All show cee information dcbx port port alias or number ets Displays DCBX ETS state machine information Command mode All show cee information dcbx port port alias or number feature Displays information about the Feature state machine for the selected port Command mode All show cee information dcbx port port alias or number pfc Displ...

Page 720: ...de All show lldp port port alias or number tlv evb Displays Edge Virtual Bridge EVB type length value TLV information for the specified port Command mode All show lldp receive Displays information about the LLDP receive state machine Command mode All show lldp transmit Displays information about the LLDP transmit state machine Command mode All show lldp remote device 1 256 detail port port alias o...

Page 721: ... Syntax and Usage show ip arp Shows all ARP entries Command mode All show ip arp find IP address Shows a single ARP entry by IP address Command mode All show ip arp interface port port number or alias Shows ARP entries on selected ports Command mode All show ip arp reply Shows the list of IP addresses which the switch will respond to for ARP requests Command mode All show ip arp vlan VLAN ID 1 409...

Page 722: ...ute by destination IP address Command mode All show ip route gateway IP address Shows routes to a default gateway Command mode All show ip route interface 1 128 Shows routes on a single interface Command mode All show ip route tag address bgp broadcast fixed martian multicast ospf rip static Shows routes of a single tag For a description of IP routing tags see Table 40 on page 88 Command mode All ...

Page 723: ...its IP address Command mode All show ip igmp groups detail IP address Displays detailed information about a single IGMP multicast group Command mode All show ip igmp groups interface port port alias or number Displays all IGMP multicast groups on selected ports Command mode All show ip igmp groups portchannel 1 208 Displays all IGMP multicast groups on a single Link Aggregation Group LAG Command m...

Page 724: ...a specified interface portchannel Command mode All show ip igmp mrouter information Displays IGMP snooping information for all Mrouters Command mode All show ip igmp mrouter vlan VLAN ID 1 4094 Displays IGMP Mrouter information for a single VLAN Command mode All show ip igmp querier vlan VLAN ID 1 4094 Displays IGMP querier information for a single VLAN Command mode All show ip igmp relay Displays...

Page 725: ...N encapsulated Bidirectional Forwarding Detection BFD statistics Command mode Privileged EXEC debug bfd show sess by index 0 5000 Displays Bidirectional Forwarding Detection BFD sessions by index Note Using 0 as the index will display all BFD sessions Command mode Privileged EXEC show nwv ovsdb connection Displays OVSDB connection information Command mode Privileged EXEC Idx Type Peer State Inact ...

Page 726: ...ors find IPv6 address Shows a single IPv6 Neighbor Cache entry by IP address Command mode All show ipv6 neighbors interface port port alias or number Shows IPv6 Neighbor Cache entries on a single port Command mode All show ipv6 neighbors static Shows static IPv6 Neighbor Cache entries Command mode All show ipv6 neighbors vlan VLAN ID 1 4094 Shows IPv6 Neighbor Cache entries on a single VLAN Comman...

Page 727: ...by destination IP address Command mode All show ipv6 route gateway IPv6 gateway address Show routes to a single gateway Command mode All show ipv6 route interface 1 128 Show routes on a single IP interface Command mode All show ipv6 route static Show static IPv6 routes Command mode All show ipv6 route summary Shows a summary of IPv6 route information Command mode All show ipv6 route type connected...

Page 728: ...rmation Command mode All show fcf ports Displays fabric ports information Command mode All show fcf trace vlan VLAN ID 2 4094 Displays debug traces information The vlan option displays debug traces information for a specified VLAN Command mode All show fcf trace FCF module vlan VLAN ID 2 4094 Displays debug traces information for a selected module The vlan option displays debug traces information ...

Page 729: ... the specified file will be replaced with the current dump data To save dump information via TFTP enter You are prompted for the TFTP server IP address or hostname and the filename of the target dump file To save dump information via SFTP enter You are prompted for the SFTP server IP address or hostname and the filename of the target dump file To save dump information via FTP enter You are prompte...

Page 730: ...rmation from flash memory enter The switch clears the dump region of flash memory and displays the following message If the flash dump region is already clear the switch displays the following message RS G8332 clear flash dump FLASH dump region cleared FLASH dump region is already clear ...

Page 731: ...memory the following message is displayed when you log on to the switch Note A system dump exists in FLASH The dump was saved at 13 43 22 Wednesday January 30 2011 Use show flash dump uuencode to extract the dump for analysis and clear flash dump to clear the FLASH region The region must be cleared before another dump can be saved ...

Page 732: ...732 G8332 Command Reference for ENOS 8 4 ...

Page 733: ...e The hostname is displayed when configured For example 1 1 1 1 Log Label The following types of log messages are recorded LOG_CRIT LOG_WARNING LOG_ALERT LOG_ERR LOG_NOTICE and LOG_INFO Thread ID This is the software thread that reports the log message For example stg ip console telnet vrrp system web server ssh bgp Message The log message Following is a list of potential syslog messages To keep t...

Page 734: ... exceeded oflow Switch is configured to function in Openflow Mode oflow Switch is configured to function in Normal Mode oflow WARNING In Hybrid Mode with Openflow enabled legacy switching features are not supported on Openflow ports Features involving TCAM resources are not supported on all ports oflow WARNING In Openflow Only Mode legacy switching features are not supported on all ports oflow Ope...

Page 735: ... full Could not add FDB entry to Openflow Flow Table oflow ACL table full Could not add ACL entry for Openflow Flow Table oflow Openflow statistics cleared for all instances oflow Openflow instance x Openflow statistics cleared oflow Openflow instance x Memory not available Could not modify flow entry in Openflow Flow Table oflow Openflow instance x Flow Limit reached Could not perform Flow mod re...

Page 736: ...rom root inconsistent state STP STG STG interface port port moved into leave from loop inconsistent state STP STG STG interface port port moved into leave from root inconsistent state STP STG STG new root bridge STP STG STG topology change detected STP Too many BPDUs flooded in VLAN VLAN Some of them will be discarded SYSTEM LACP trunk trunk ID and trunk ID formed with admin key key VLAG vLAG Heal...

Page 737: ... VRRP received incorrect VRRP adver type from IP address VRRP received incorrect VRRP authentication type from IP address VRRP received incorrect VRRP password from IP address VRRP VRRP received incorrect IP addresses list from IP address Thread LOG_ALERT Message continued ...

Page 738: ... Command Reference for ENOS 8 4 LOG_CRIT Thread LOG_CRIT Message SSH canʹt allocate memory in load_MP_INT SSH currently not enough resource for loading RSA private public key SYSTEM System memory is at n percent ...

Page 739: ...er MGMT Error Apply not done MGMT Error Save not done MGMT Firmware download failed insufficient memory MGMT Revert Apply is issued by another user Try later MGMT Revert is issued by another user Try later MGMT Save is issued by another user Try later NTP unable to listen to NTP port nsx gw VTEP failed to bind logical port to VNI VNID port port link down or removed from VLAN VLAN number nsx gw VTE...

Page 740: ...740 G8332 Command Reference for ENOS 8 4 SYSTEM I2C device ID description set to access state state from CLI SYSTEM Not enough memory Thread LOG_ERR Message continued ...

Page 741: ...load completed Now writing to flash MGMT boot kernel downloaded from host hostname via browser filename too long to be displayed software version version MGMT boot kernel downloaded from host hostname file ʹ filename ʹ software version version MGMT Canʹt downgrade to image with only single flash support MGMT Could not revert unsaved changes MGMT Download already currently in progress Try again lat...

Page 742: ...name ʹ software version version MGMT New config set MGMT new configuration applied from BBI EM SCP SNMP MGMT new configuration saved from BBI ISCLI SNMP MGMT scp username user type logout ejected idle timeout connection closed from Console Telnet SSH MGMT scp username user type login on Console from host IP address MGMT SP boot kernel download completed Now writing to flash MGMT SP boot kernel dow...

Page 743: ...ice node IP address is removed nsx gw Active service node IP address is removed and no backup service node is up nsx gw Database syncing is complete nsx gw OVSDB SSL connection to NVP ssl IP address TCP port is closed nsx gw OVSDB SSL connection to NVP ssl IP address TCP port is establishing nsx gw Register database ʺhardware_vtepʺ succeed nsx gw Service node IP address is active nsx gw Unregister...

Page 744: ...744 G8332 Command Reference for ENOS 8 4 SSH Wrong config file type SYSTEM booted version version from Flash image image active backup factory config block Thread LOG_INFO Message continued ...

Page 745: ...rorʺ is set to ʺStandby Activeʺ HOTLINKS ʺLearningʺ is set to ʺStandby Activeʺ HOTLINKS ʺNoneʺ is set to ʺStandby Activeʺ HOTLINKS ʺSide Maxʺ is set to ʺStandby Activeʺ HOTLINKS has no ʺ Side Max None Learning Error ʺ interface MGMT username automatically logged out from BBI because changing of authentication type MGMT username user type logout ejected idle timeout connection closed from BBI Conso...

Page 746: ...ADIUS server MGMT RADIUS trying alternate server MGMT scp username user type logout ejected idle timeout connection closed from Console Telnet SSH MGMT scp username user type login on Console from host IP address MGMT second syslog host changed to this host IP address MGMT selectable boot mode changed MGMT STP BPDU statistics cleared MGMT switch reset from CLI MGMT syslog host changed to this host...

Page 747: ...rom host IP address SSH Error in setting the new config SSH Failed login attempt via SSH SSH New config set SSH scp username user type logout ejected idle timeout connection closed from Console Telnet SSH SSH scp username user type login on Console from host IP address SSH Wrong config file type SYSTEM Change fibre GIG port port mode to full duplex SYSTEM Change fibre GIG port port speed to 1000 S...

Page 748: ...wn reason watchdog timer SYSTEM Received BOOTP Offer IP IP address Mask netmask Broadcast IP address GW IP address SYSTEM Watchdog threshold changed from old value to new value seconds SYSTEM Watchdog timer has been enabled SYSTEM MDA 8x40GbE Shutdown Ready for Removal or Start SYSTEM MDA 8x40GbE Active SYSTEM MDA 8x40GbE StartUp Error TEAMING error action is undefined TEAMING is down but teardown...

Page 749: ...is set to ʺStandby Activeʺ HOTLINKS ʺLearningʺ is set to ʺStandby Activeʺ HOTLINKS ʺNoneʺ is set to ʺStandby Activeʺ HOTLINKS ʺSide Maxʺ is set to ʺStandby Activeʺ HOTLINKS has no ʺ Side Max None Learning Error ʺ interface NTP cannot contact primary secondary NTP server IP address FCF VLAN VLAN NPRD VA_RJT Out of order reported FCF VLAN VLAN NPRD VA_RJT Insufficient resources FCF VLAN VLAN NPRD VA...

Page 750: ...750 G8332 Command Reference for ENOS 8 4 ...

Page 751: ...rned on Check for updated software firmware and operating system device drivers for your Lenovo product The Lenovo Warranty terms and conditions state that you the owner of the Lenovo product are responsible for maintaining and updating all software and firmware for the product unless it is covered by an additional maintenance contract Your service technician will request that you upgrade your sof...

Page 752: ...You can solve many problems without outside assistance by following the troubleshooting procedures that Lenovo provides in the online help or in the Lenovo product documentation The Lenovo product documentation also describes the diagnostic tests that you can perform The documentation for most systems operating systems and programs contains troubleshooting procedures and explanations of error mess...

Page 753: ...ss or implied warranties in certain transactions therefore this statement may not apply to you This information could include technical inaccuracies or typographical errors Changes are periodically made to the information herein these changes will be incorporated in new editions of the publication Lenovo may make improvements and or changes in the product s and or the program s described in this p...

Page 754: ...ments may vary significantly Some measurements may have been made on development level systems and there is no guarantee that these measurements will be the same on generally available systems Furthermore some measurements may have been estimated through extrapolation Actual results may vary Users of this document should verify the applicable data for their specific environment ...

Page 755: ...he United States other countries or both Intel and Intel Xeon are trademarks of Intel Corporation in the United States other countries or both Internet Explorer Microsoft and Windows are trademarks of the Microsoft group of companies Linux is a registered trademark of Linus Torvalds Other company product or service names may be trademarks or service marks of others ...

Page 756: ...ith the largest currently supported drives that are available from Lenovo Maximum memory might require replacement of the standard memory with an optional memory module Each solid state memory cell has an intrinsic finite number of write cycles that the cell can incur Therefore a solid state device has a maximum number of write cycles that it can be subjected to expressed as total bytes written TB...

Page 757: ... of information technology IT equipment to responsibly recycle their equipment when it is no longer needed Lenovo offers a variety of programs and services to assist equipment owners in recycling their IT products For information on recycling Lenovo products go to http www lenovo com recycling ...

Page 758: ...enovo may condition provision of repair or replacement of devices or parts on implementation of appropriate remedial measures to mitigate such environmental contamination Implementation of such remedial measures is a customer responsibility Contaminant Limits Particulate The room air must be continuously filtered with 40 atmospheric dust spot efficiency MERV 9 according to ASHRAE Standard 52 21 Ai...

Page 759: ...t This product may not be certified in your country for connection by any means whatsoever to interfaces of public telecommunications networks Further certification may be required by law prior to making any such connection Contact a Lenovo representative or reseller for any questions ...

Page 760: ...er than recommended cables and connectors or by unauthorized changes or modifications to this equipment Unauthorized changes or modifications could void the user s authority to operate the equipment This device complies with Part 15 of the FCC Rules Operation is subject to the following two conditions 1 this device may not cause harmful interference and 2 this device must accept any interference r...

Page 761: ...Rechtsvorschriften über die elektromagnetische Verträglichkeit in den EU Mitgliedsstaaten und hält die Grenzwerte der Klasse A der Norm gemäß Richtlinie Um dieses sicherzustellen sind die Geräte wie in den Handbüchern beschrieben zu installieren und zu betreiben Des Weiteren dürfen auch nur von der Lenovo empfohlene Kabel angeschlossen werden Lenovo übernimmt keine Verantwortung für die Einhaltung...

Page 762: ... Die Genehmigung wird erteilt wenn keine elektromagnetischen Störungen zu erwarten sind ʺ Auszug aus dem EMVG Paragraph 3 Abs 4 Dieses Genehmigungsverfahrenist nach Paragraph 9 EMVG in Verbindung mit der entsprechenden Kostenverordnung Amtsblatt 14 93 kostenpflichtig Anmerkung Um die Einhaltung des EMVG sicherzustellen sind die Geräte wie in den Handbüchern angegeben zu installieren und zu betreib...

Page 763: ...Appendix C Notices 763 Korea Communications Commission KCC Statement This is electromagnetic wave compatibility equipment for business Type A Sellers and users need to pay attention to it This is for any areas other than home ...

Page 764: ...764 G8332 Command Reference for ENOS 8 4 Russia Electromagnetic Interference EMI Class A statement ...

Page 765: ... Copyright Lenovo 2016 Appendix C Notices 765 People s Republic of China Class A electronic emission statement ...

Page 766: ...766 G8332 Command Reference for ENOS 8 4 Taiwan Class A compliance statement ...

Page 767: ...Australia Class A statement 760 autonomous system filter action 525 configuration 519 configuration display 525 delete 525 enable 525 path as path list 525 path number 525 B backup configuration block 697 bandwidth allocation Priority Groups 622 BGP 89 aggregation configuration 563 564 568 community 520 configuration 557 configuration mode 23 control plane protection 412 eBGP 557 filters aggregati...

Page 768: ...information 72 74 79 CPU statistics 313 statistics history 314 use 313 use history 314 D daylight savings time 339 DCB Capability Exchange Protocol 625 DCBX configuration 625 information 188 debugging 709 default gateway information 84 default gateway interval for health checks 506 default password 30 delete counters for all interfaces and queues 210 CPU use statistics 207 FDB entry 711 FDB statis...

Page 769: ...orwarding Database see FDB 56 forwarding state FWD 76 77 79 FWD port state 72 74 fwd STP bridge option 462 FwdDel forward delay bridge port 76 77 79 G gaseous contamination 758 gateway clearing routes that use 508 default gateway configuration IPv4 506 IPv6 614 Germany Class A statement 761 getting help 751 gtcfg TFTP load command 672 H health checks default gateway interval retries 506 retry numb...

Page 770: ...rmation 112 route statistics 255 static route 615 statistics 249 ISCLI commands basics 21 to 31 modes 22 J Japan Class A electronic emission statement 762 Japan Electronics and Information Technology Indus tries Association statement 762 JEITA statement 762 K Korea Class A electronic emission statement 763 L LACP clear statistics 231 configuration 483 control plane protection 412 information 59 in...

Page 771: ...nd Class A statement 760 notes important 756 notice 340 notices 753 NTP synchronization 366 O OAM Discovery information 68 statistics 238 online help 26 OpenFlow configuration 652 configuration mode 25 information 150 flow allocation 153 155 flow configuration 155 flow tables 158 global configuration 151 static flows 662 actions 664 qualifiers 663 statistics 282 Operations commands 675 to operatio...

Page 772: ...ation mode 23 disabling temporarily 404 ECN configuration 408 Error Disable and Recovery 402 information 165 link configuration 403 membership of the VLAN 53 82 mirroring ACLs 418 configuration 446 number 164 operations level options 676 677 priority 72 79 speed 33 164 states 58 trunking configuration 474 description 474 VLAN ID 33 165 WRED configuration 408 preemption assuming VRRP master routing...

Page 773: ...logged 308 options 369 parameters modifying 369 statistics 207 324 SNMPv3 community table configuration 378 community table information 42 configuration 372 group configuration 377 information 38 notify table configuration 381 target address table configuration 379 target address table information 43 target parameters table configuration 380 view configuration 375 software image 694 image file and...

Page 774: ...p 731 upgrade switch software 694 USB Boot 693 USB Copy 673 USB drive 673 693 user access control configuration 386 user account 30 V Virtual Link Aggregation Control Protocol see vLAG 53 virtual router description 598 group configuration 602 group priority tracking 605 increasing priority level of 601 priority increment values for VRRP 607 tracking criteria 601 Virtual Router Redundancy Protocol ...

Page 775: ...606 master advertisements 599 master advertisements time interval 602 operations level options 679 priority tracking options 559 562 601 statistics 278 tracking configuration 607 weights for priority levels 607 VSI configuration mode 25 W watchdog timer 709 Weighted Random Early Detection see WRED 414 WRED configuration 414 transmit queue configuration 409 415 write community string SNMP option 37...

Page 776: ...776 G8332 Command Reference for ENOS 8 4 ...

Reviews:

No comments

Related manuals for RackSwitch G8332

Brand: D-Link Pages: 100

Brand: D-Link Pages: 134

Brand: D-Link Pages: 187

Brand: D-Link Pages: 225

Brand: D-Link Pages: 31

Brand: D-Link Pages: 35

DES-1016D - Switch

Brand: D-Link Pages: 19

Brand: D-Link Pages: 107

AirPlusXtremeG DI-624

Brand: D-Link Pages: 5

Brand: D-Link Pages: 48

Brand: BandLuxe Pages: 67

Brand: H3C Pages: 16

Brand: H3C Pages: 24

Brand: REXROTH Pages: 68

Brand: Speedtouch Pages: 124

Brand: Maipu Pages: 80

Brand: Zoom Pages: 2

XC-16CH-NVR-4TB

Brand: Xyclop Pages: 19

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands