SFTOS Command Reference
Notes, Cautions, and Warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates potential damage to hardware or loss of data if instruction are not followed. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Information in this publication is subject to change without notice. © 2010 Dell Force10. All rights reserved.
New Features SFTOS 2.5.3 adds improved SFTOS internals, but no changed CLI. SFTOS 2.5.2 adds: • • A substantial Technical Support interface that is not accessible through the standard CLI modes and is not publicly documented Support for new S-Series platforms, including the S50N, S50N-DC, S25P, and S25P-DC Other Changes to the Document This edition contains only minor edits, with no changes to syntax.
www.dell.com | support.dell.com • • System Management chapter: The list of outputs of the show tech-support command is corrected. See show tech-support on page 68. ACL chapter: • • 4 System Configuration chapter: Added details to show process cpu and to show memory commands Security chapter: — Deprecated single-connection command — Revised show tacacs command output — Noted for ip ssh server enable command that offline key generation no longer required.
Table of Contents New Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3 Other Changes to the Document . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3 1 About This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9 Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 Audience . . . . . . .
www.dell.com | support.dell.com Keyboard Shortcuts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .26 Obtaining Help at the Command Line . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .27 Using Command Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .28 Mode-based Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
12 Stacking Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .217 Stacking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217 Slot and Card Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .226 13 DHCP Server Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .231 14 Time Commands. . . . . . . . . . . . . . . . . . .
www.dell.com | support.dell.com Bootp/DHCP Relay Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .407 Router Discovery Protocol Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .410 Virtual LAN Routing Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .413 Virtual Router Redundancy Protocol (VRRP) Commands . . . . . . . . . . . . . . . . . . . . . .414 23 OSPF Commands . . . . . . . . . . .
1 About This Guide This guide describes configuration commands for SFTOS software. The commands can be accessed from the SFTOS Command Line Interface (CLI), accessed through the console port or through a Telnet connection, and from the Node Manager component of Dell Force10 Management System (FTMS).
www.dell.com | support.dell.com Audience This guide assumes you are knowledgeable in Layer 2 and Layer 3 networking technologies, that you have an understanding of the SFTOS software base and have read the appropriate specification for the relevant switch platform. This document is primarily for system administrators configuring and operating a system using SFTOS software. It is intended to provide an understanding of the configuration options of SFTOS software.
•Quick Reference (also included as a printed booklet with the system) •Hardware installation guides •MIBs files •S-Series Tech Tips and FAQ Except for the Tech Tips and FAQ documents, all of the documents listed above are also on the S-Series CD-ROM. Training slides are also on the S-Series CD-ROM. Currently, access to user documentation on iSupport is available without a customer account. However, in the future, if you need to request an account for access, you can do so through that website.
www.dell.com | support.dell.com Technical Support The iSupport Website Dell Force10 iSupport provides a range of support programs to assist you with effectively using Dell Force10 equipment and mitigating the impact of network outages. Through iSupport you can obtain technical information regarding Dell Force10 products, access to software upgrades and patches, and open and manage your Technical Assistance Center (TAC) cases. Dell Force10 iSupport provides integrated, secure access to these services.
2 SFTOS Overview The SFTOS software loaded in every S-Series switch has two purposes: • • Assist attached hardware in switching frames, based on Layer 2, 3, or 4 information contained in the frames. Provide a complete device management portfolio to the network administrator.
www.dell.com | support.dell.com Layer 2 Package Features The core SFTOS software provides the following features. Basic Routing and Switching Support • • • • • • • • • • • • • • • • • 10 GigE (IEEE 802.3ae) 1000 Base-T (IEEE 802.3ab) 16k MAC Address Table BootP (RFC951, 1542) BootP/DHCP Relay and Server (RFC 2131) IEEE 802.3ad IEEE 802.1ab – Link-level discovery Flow Control (IEEE 802.3x) Host Requirements (RFC 1122) IP (RFC 791) ICMP (RFC 792) Jumbo Frame Support MSTP (IEEE 802.
Multicast Protocols • • IGMP Snooping Layer 2 Multicast Forwarding Security and Packet Control Features • • • • • • • • • Access Profiles on Routing Protocols DOS Protection IEEE 802.
www.dell.com | support.dell.
3 Quick Start This chapter summarizes the procedures to start and operate S-Series switches. For more detail, see the Getting Started chapter in the SFTOS Configuration Guide (and the rest of that guide) or the Quick Reference for your switch model.
www.dell.com | support.dell.com System Info and System Setup To get information on the software version, use the show hardware command: Command Syntax Command Mode Purpose show hardware Privileged Exec Displays the serial number, software version the device contains, burned-in MAC address, and other device information. Information is listed for all units in the stack.
Command Syntax Command Mode Purpose [no] username user passwd Global Config This command adds a new user (account) if space permits, along with the user’s password. The user name and password can each be up to eight alphanumeric characters in length. password To remove a user, use the no username user command. To delete or change a password, remove and reenter the user with the new password. Passwords can include special characters. As of SFTOS 2.5.1.3, the following characters are supported: , .
www.dell.com | support.dell.com To configure the management IP address, use the following commands: Command Syntax Command Mode Purpose show interface managementethernet Privileged Exec Displays the Network Configurations IP Address: IP Address of the interface. Default IP is 0.0.0.0 Subnet Mask: IP Subnet Mask for the interface. Default is 0.0.0.0 Default Gateway: The default Gateway for this interface. Default value is 0.0.0.
Note: Keywords and parameters that are shown within braces in syntax statements must be entered in the CLI. Keywords and parameters that are shown separated by a bar in syntax statements indicate that you choose only one. For details, see Command Syntax Conventions on page 23.
www.dell.com | support.dell.com 22 Resetting to Factory Defaults To help configure factory defaults, use one of the following commands: | Command Syntax Command Mode Purpose clear config Privileged Exec Enter yes when the prompt pops up to clear all the configurations made to the switch. This option replaces the current running-config with the most recent startup configuration file.
4 Using the Command Line Interface The command line interface (CLI) for SFTOS is the primary way to manage S-Series switches, and is the focus of this book.
www.dell.com | support.dell.com Command Format Some commands, such as clear vlan, do not require parameters. Other commands have parameters for which you must supply a value. Parameters are positional — you must enter the values in the correct order. Optional parameters follow required parameters. For example: snmp-server location loc — snmp-server location is the command name. — loc is a parameter—a placeholder for a required value. ip address ipaddr subnetmask — ip address is the command name.
Almost every configuration command has a “no” form. In general, use the “no” form to reverse the action of a command or reset a value to the default. For example, the no shutdown command reverses the shutdown of an interface. Use the command without the keyword no to re-enable a disabled feature or to enable a feature that is disabled by default. Common Command Parameters ipaddr—This parameter is a valid IP address. Presently, the IP address can be entered in these formats: • • • • a (32 bits) a.b (8.
www.dell.com | support.dell.com Double quotation marks such as “System Name with Spaces” set off user defined strings. If the operator wishes to use spaces as part of a name parameter then it must be enclosed in double quotation marks. Empty strings are not valid user-defined strings. Command completion finishes spelling the command when enough letters of a command are entered to uniquely identify the command word.
Ctrl-E—go to end of line Ctrl-F—go forward one character Ctrl-H—display command history or retrieve a command Ctrl-I—complete a keyword Ctrl-K—delete to end of line Ctrl-N—go to next line in history buffer Ctrl-P—go to previous line in history buffer Ctrl-T—transpose previous character Ctrl-U, X—delete to beginning of line Ctrl-W—delete previous word Ctrl-Z—return to root command prompt Delete key—delete next character Tab key or space bar—keyword completion in command line Exit—go to next lower command pr
www.dell.com | support.dell.com Figure 4-1. Partial Keyword Example (Force10) #show ? access-lists arp authentication bootpdhcprelay class-map classofservice diffserv dot1q-tunnel dot1x dvlan-tunnel forwardingdb garp gmrp gvrp hardware igmpsnooping interface interfaces ip logging --More-- or (q)uit Display Access List information. Display Address Resolution Protocol cache. Display ordered methods for authentication lists Display the value of BOOTP/DHCP relay parameters.
Mode-based Topology As detailed above, the CLI is built on a mode concept, where related commands are grouped together within modes that you access with particular mode-access commands. The mode-access commands are listed in Table 4-2 on page 30. Access to the modes is depicted in a tree format in Figure 4-2.
www.dell.com | support.dell.com Note: Previous to Release 2.3, the VLAN mode was accessed from the Privileged Exec mode with the command vlan database. Starting in Release 2.3, you access the mode from the Global Config mode with the command interface vlan vlanid. Note: Some modes may be unavailable, depending on the installed SFTOS image. Access to all commands beyond the User Exec mode can be restricted through the enable password, which you set with the enable passwd command.
Table 4-2. Command Modes Command Mode Mode Access Method Prompt Exit or Access Previous Mode Interface VLAN In the Global Config mode, enter the command interface vlan vlanid. hostname (conf-if-vl-vlan-id) # To exit to the Global Config mode, enter the exit command, or press Ctrl-Z to switch to the User Exec mode. Line Config Mode In the Global Config mode, enter the lineconfig command hostname (line) # To exit to the Global Config mode, enter the exit command.
www.dell.com | support.dell.com The commands available to the operator at any point in time depend upon the mode. Entering a question mark (?) at the CLI prompt displays a list of the available commands, along with descriptions of the commands. The CLI provides the following modes: User Exec Mode. When the operator logs into the CLI, the User Exec mode is the initial mode. The User Exec mode contains a limited set of commands.
hostname (Config-policy-classmap)# Class Map Mode: This mode consists of class creation/deletion and matching commands. The class match commands specify Layer 2, Layer 3 and general match criteria. Use the class-map class-map-name commands to access the QoS class map configuration mode to configure QoS class maps. The prompt sequence is: hostname (Config)# class-map hostname (Config class-map)# Router OSPF Config Mode: In this mode, you can access the router OSPF configuration commands.
www.dell.com | support.dell.com output message displays the ^ marker under the extra “p”, followed by “$%Invalid input detected at '^' marker.” Another typical case when an error message appears is when you have entered an invalid input parameter in the command. The ^ marker shows where in the command the first character of invalid input was detected. After all the mandatory parameters are entered, any additional parameters entered are treated as optional parameters.
5 System Management Commands The commands in this chapter either manage the switch in general, configure management interfaces, or show current management settings. For every configuration command, there is a nieA command that displays the configuration setting.
www.dell.com | support.dell.com • • • • • • • • • • • show interfaces on page 59 show logging on page 60 show mac-addr-table on page 61 show memory on page 63 show msglog on page 63 show network on page 64 show process cpu on page 64 show running-config on page 65 show sysinfo on page 66 show version on page 69 show tech-support on page 68 See also the show commands in the logging chapter, System Logs on page 169.
Related Commands show cx4-cable-length Displays CX4 cable lengths connected to the system. dir This command displays the directory structure and files stored in NVRAM. Syntax dir nvram Default none Mode Command History Example Privileged Exec Version 2.3 Figure 5-4. Introduced Example of dir nvram Command Output Force10 #dir nvram RamDiskVol:filesystem> . .. sslt.rnd dhcpsLeases.cfg startup-config 1024 85088 6392 Filesystem size 4179968 Bytes used 92504 Bytes free 4087464 CodeStorVol:> log2.
www.dell.com | support.dell.com Mode Command History Global Config Version 2.3 Modified: Moved from Privileged Exec mode to Global Config mode. Version 2.2 Replaced set prompt command. interface managementethernet This command invokes the Interface ManagementEthernet mode (uses the (Config-if-ma)# prompt), where you can set up a management IP interface. For details on management interfaces, see the Management chapter of the SFTOS Configuration Guide.
The value for ipaddr is the IP Address of the management interface. The value for subnetmask is a 4-digit dotted-decimal number which represents the subnet mask of the interface. Enter no ip address to remove the IP Address and subnet mask. Mode Command History Related Commands Interface ManagementEthernet — (Config-if-ma)# prompt within the Global Config mode Version 2.3 Introduced: Replaces the network parms command for the IP address and subnet mask components of the management address.
www.dell.com | support.dell.com Command History Related Commands Version 2.3 Introduced. Replaces the network mac-type command. interface managementethernet Invokes the Interface ManagementEthernet mode, the (Config-if-ma)# prompt. management route default This command sets the IP gateway of the switch. The management IP address (configured with the ip address, above) and the gateway must be on the same subnet.
Related Commands interface managementethernet Invokes the (Config-if-ma)# prompt, where you can set up a management IP interface (the ip address command; see next). ip address (management) Configures the IP address of the management interface. show interface Displays a summary of statistics for a specific port, including the management port, or a count of all CPU traffic based upon the argument. network mac-address This command is replaced by the mac-address command in Version 2.3.
www.dell.com | support.dell.com Parameters Default Mode Command History Related Commands bootp Set BootP as the network configuration protocol. This keyword has the switch periodically send requests to a Bootstrap Protocol (BootP) server until a response is received. dhcp Set DHCP as the network configuration protocol. This keyword has the switch periodically send requests to a DHCP server until a response is received.
show cx4-cable-length Display the cable lengths of the cables connected to CX4 cards in the system. Syntax show cx4-cable-length Default none Mode Command History Usage Related Commands EXEC Privilege Version 2.5.1 Introduced See Figure 5-3 on page 36. cx4-cable-length Set the cable length of the cable connected to the CX4 card at the port. show ethernet This command displays detailed statistics for a specific port or for all CPU traffic based upon the argument.
www.dell.com | support.dell.com Example 1 44 | Figure 5-7. Example of show ethernet switchport Output (Force10) #show ethernet switchport Total Packets Received (Octets)................ Unicast Packets Received....................... Multicast Packets Received..................... Broadcast Packets Received..................... 0 0 0 0 Octets Transmitted............................. Unicast Packets Transmitted.................... Multicast Packets Transmitted..................
Example 2 Figure 5-8. Example of show ethernet unit/slot/port Output (Force10) #show ethernet 1/0/1 Type........................................... Admin Mode..................................... Physical Mode.................................. Physical Status................................ Speed.......................................... Duplex......................................... Link Status.................................... MAC Address.................................... Native Vlan..............
www.dell.com | support.dell.com show hardware This command displays inventory information for the switch. Syntax show hardware Mode Privileged Exec Command History Example Version 2.5.1 Figure 5-9. Modified to include information about XFP/SFPs plugged into the system. Example of Using show hardware Command (Force10#show hardware Switch: 1 System Description............................. switch Vendor ID...................................... Plant ID.......................................
Table 5-4.
www.dell.com | support.dell.com Usage Information Figure 5-10 shows an example of the show interface unit/slot/port report on the S50 model. Table 5-5 contains an explanation of the report fields. Figure 5-11 on page 49 shows an example of the report on the S50 model. Table 5-6 on page 49 contains the report fields. See the links above or in the Related Commands section, below, for details on the other options. Example S50: Output of the show interface unit/slot/port Command Figure 5-10.
Figure 5-11. S50V: Output of the show interface unit/slot/port Command Force10-S50V#show interface 1/0/1 Packets Received Without Error................. Packets Received With Error.................... Broadcast Packets Received..................... Packets Transmitted Without Errors............. Transmit Packet Errors......................... Collision Frames............................... Time Since Counters Last Cleared............... Native Vlan....................................
www.dell.com | support.dell.com show interface managementethernet Displays information about the management interface to the switch. show interfaces port-channel Displays detailed statistics for a specific LAG or summary information for all LAGs, based upon the argument. show ip interface Displays summary information about IP configuration settings for all ports in the router.
Example 1 Figure 5-12. Example of show interface ethernet switchport Output (Force10) #show interface ethernet switchport Total Packets Received (Octets)................ Unicast Packets Received....................... Multicast Packets Received..................... Broadcast Packets Received..................... Receive Packets Discarded...................... 40648140 324 307772 3 0 Octets Transmitted............................. Packets Transmitted Without Errors.............
www.dell.com | support.dell.com Table 5-7. Example 2 Fields in Output of show interface ethernet switchport Command Field Description Transmit Packets Discarded The number of outbound packets which were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher-layer protocol. A possible reason for discarding a packet could be to free up buffer space.
Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description Physical Status Whether the port is physically connected or disconnected Speed The port speed setting Duplex Link Status Whether the link is up or down. MAC Address MAC address of the port Native Vlan Total Packets Received (Octets) The total number of octets of data received by the processor (excluding framing bits but including FCS octets).
www.dell.com | support.dell.com Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description Multicast Packets Received The total number of good packets received that were directed to a multicast address. Note that this number does not include packets directed to the broadcast address. Broadcast Packets Received The total number of good packets received that were directed to the broadcast address. Note that this does not include multicast packets.
Table 5-8. Fields in Output of show interface ethernet unit/slot/port Command Field Description Reserved Address Discards The number of frames discarded that are destined to an IEEE 802.1 reserved address and are not supported by the system. Broadcast Storm Recovery The number of frames discarded that are destined for FF:FF:FF:FF:FF:FF when Broadcast Storm Recovery is enabled CFI Discards The number of frames discarded that have CFI bit set and the addresses in RIF are in non-canonical format.
www.dell.com | support.dell.com Table 5-8.
Table 5-8.
www.dell.com | support.dell.com Table 5-9. Related Commands 58 | Fields in Output of show interface managementethernet command Field Description Java Mode Enable or Disable. Specifies if the switch should allow access to the Java applet in the header frame. Enabled means the applet can be viewed. The factory default is disabled. Locally Administered MAC Address If desired, a locally administered MAC address can be configured for in-band connectivity.
show interface switchport This command displays a summary of statistics on Layer 2 interfaces. Syntax Mode Usage Information show interface switchport Privileged Exec The display parameters of show interface, when the argument is switchport, are as follows: Table 5-10. Related Commands Fields in Output of show interface switchport Command Field Description Packets Received Without Error The total number of packets (including broadcast packets and multicast packets) received by the processor.
www.dell.com | support.dell.com Syntax Parameters Mode Command History Usage Information Example show interfaces {cos-queue [unit/slot/port] | description {unit/slot/port | 1-3965} | port-channel {1-128 | brief} | switchport unit/slot/port 0-2} cos-queue [unit/slot/port] (OPTIONAL) For details on this option, see show interfaces cos-queue on page 334. description {unit/slot/port | 1-3965} (OPTIONAL) Enter the keyword description followed by the interface in the form unit/slot/port.
show logging traplogs Displays trap summaries (number of traps since last reset and last view) and trap details. show tech-support Displays the output of many show commands, including show logging. show mac-addr-table This command displays the forwarding database entries. If the command is entered with no parameter, the entire table is displayed. the same as entering the optional all parameter.
www.dell.com | support.dell.com IfIndex—This object indicates the IfIndex of the interface table entry associated with this port. It is a reserved ID that the switch assigns to physical, logical, and VLAN interfaces for the switch to transmit data across the ports within a switch. In the S50 switch running SFTOS 2.5.
Related Commands show mac-address-table Depending on selected display parameters, displays various Multicast Forwarding Database (MFDB) information, including GMRP or IGMP Snooping entries in the table. show memory The output from this command displays current memory usage in bytes, in tabular format. Syntax show memory Mode Privileged Exec Example Figure 5-18.
www.dell.com | support.dell.com show network Command History Related Commands Version 2.3 Deprecated: The keyword managementethernet in the command show interface provides the information that had been available through this command. show interface managementethernet Displays information about the management address of the switch.
show running-config This command is used to display/capture the current setting of different protocol packages supported on the switch. This command displays/captures only commands with settings/configurations with values that differ from the default value. The output is displayed in script format, which can be used to configure another switch with the same configuration. Syntax show running-config [all] [scriptname] The option all adds the display/capture of default values.
www.dell.com | support.dell.com Command History Version 2.5.1 Modified: Output is indented in outline form. Note: Usage Information Related Commands Starting with Release 2.3, show running-config startup-config provides the user the opportunity to capture the running-config data to the startup-config file as a text file. If a startup-config file is already present, the system will prompt the user to overwrite it. copy Downloads files to the switch and uploads files from the switch.
Example Figure 5-21. Using the show sysinfo command (Force10) #show sysinfo System Description............................. Force10-S50 48GE 2TENGIG L3 Stackable switch System Name.................................... System Location................................ System Contact................................. System Object ID............................... force10 System Up Time................................. 0 days 0 hrs 26 mins 39 secs Current SNTP Syncronized Time..................
www.dell.com | support.dell.com Table 5-11. Fields in Output of show sysinfo Command (continued) Field Description System Contact Text used to identify a contact person for this switch. May be up to 31 alpha-numeric characters. The factory default is blank System ObjectID The base object ID for the switch’s enterprise MIB System Up Time The time in days, hours and minutes since the last switch reboot Current SNTP Synchronized Time The current time reported by the SNTP server, if configured.
show version This command displays version details of the software/hardware present on the system, which would be used for trouble-shooting. This command provides the details shown with the show hardware and show sysinfo commands, along with interface information, the u-boot version number, and the system image file version. Syntax Mode Example show version Privileged Exec Figure 5-22. Using the show version Command (Force10) #show version Switch: 1 System Description.............................
www.dell.com | support.dell.com Table 5-12. Fields in Output of show version Command (continued) Headings Explanation Software Version The release.version.revision number of the code currently running on the switch Additional Packages This displays the additional packages that are incorporated into this system, such as Dell Force10 Multicast. 10/100 Ethernet/802.3 interface(s) Copper ports running at 10/100 speed reporting link UP Gig Ethernet/802.
ip address (routed) Configures an IP address on a routed interface. show interface Displays a summary of statistics for a specific port, including the management port, or a count of all CPU traffic based upon the argument.
www.dell.com | support.dell.com The time is a decimal value from 1to 160. The no ip telnet timeout command sets the Telnet connection session timeout value, in minutes, to the default. Default Mode 5 (minutes) Global Config Command History Version 2.3 Changed from telnetcon timeout and moved from Privileged Exec mode to Global Config. ip telnet server enable Enable or disable Telnet services. Syntax Mode [no] telnet server enable Global Config Command History Version 2.
Default Mode 1 (minute) Line Config show telnet This command displays the current outbound telnet settings. Syntax show telnet Modes Privileged Exec and User Exec Outbound Telnet Login Timeout (in minutes)—Indicates the number of minutes an outbound telnet session is allowed to remain inactive before being logged off. A value of 0, which is the default, results in no timeout. Maximum Number of Outbound Telnet Sessions—Indicates the number of simultaneous outbound telnet connections allowed.
www.dell.com | support.dell.com The oe version of this command sets the maximum number of remote connection sessions that can be established to the default value. Default 5 Syntax remotecon maxsessions 0-5 no remotecon maxsessions Mode Privileged EXEC remotecon timeout This command sets the remote connection session timeout value, in minutes. A session is active as long as the session has been idle for the value set. A value of 0 indicates that a session remains active indefinitely.
Serial Commands This section describes the following SFTOS system management commands pertaining to console port connections (serial connections, EIA-232): • lineconfig on page 75 • serial baudrate on page 75 • serial timeout on page 76 • show serial on page 76 lineconfig This command accesses the Line Config mode from the Global Config mode. Syntax Mode Usage Information lineconfig Global Config Users executing this command enter the Line Config mode.
www.dell.com | support.dell.com serial timeout This command specifies the maximum connect time (in minutes) without console activity. Syntax serial timeout 0-160 A value of 0 means no console timeout. The range is 0 to 160 minutes. The no serial timeout command sets the maximum connect time (in minutes) without console activity to the 5-minute default. Default Mode 5 Line Config show serial This command displays serial communication settings for the switch.
Table 5-13. Fields of show serial Command Output (continued) Field Description Stop Bits The number of stop bits per character. The number of stop bits is always 1. Parity The parity method used on the serial port. The parity method is always None.
www.dell.com | support.dell.com show snmpcommunity This command displays SNMP community information. Six communities are supported. You can add, change, or delete communities. The switch does not have to be reset for changes to take effect. The SNMP agent of the switch complies with SNMP Version 1 (for more about the SNMP specification, see the SNMP RFCs).
show trapflags This command displays trap conditions. Configure which traps the switch should generate by enabling or disabling the trap condition. If a trap condition is enabled and the condition is detected, the switch's SNMP agent sends the trap to all enabled trap receivers. The switch does not have to be reset to implement the changes. Cold start traps are always generated and cannot be disabled. Note: The DVMRP, OSPF, and PIM traps are not supported in the L2 image.
www.dell.com | support.dell.com snmp-server community This command adds (and names) a new SNMP community. A community name is a name associated with the switch and with a set of SNMP managers that manage it with a specified privileged level. The length of name can be up to 16 case-sensitive characters. Note: Community names in the SNMP community table must be unique. When making multiple entries using the same community name, the first entry is kept and processed and all duplicate entries are ignored.
Default Mode 0.0.0.0 Global Config snmp-server community mode This command activates an SNMP community. If a community is enabled, an SNMP manager associated with this community manages the switch according to its access right. If the community is disabled, no SNMP requests using this community are accepted. In this case, the SNMP manager associated with this community cannot manage the switch until the status is changed back to Enable.The no version of this command deactivates an SNMP community.
www.dell.com | support.dell.com Mode Command History Global Config Version 2.3 Introduced Note: The CLI indicates successful execution of this command, and the show trapflags report shows successful execution of the command, but this trap is not currently supported. snmp-server enable traps linkmode This command enables Link Up/Down traps for the entire switch. When enabled, link traps are sent only if the Link Trap flag setting associated with the port is enabled (see ‘snmp trap link-status’ command).
snmp-server enable trap violation This command enables the sending of new violation traps designating when a packet with a disallowed MAC address is received on a locked port. Syntax [no] snmp-server enable trap violation The no version of this command disables the sending of new violation traps. Default Mode Disabled Interface Config; Interface Port Channel Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#.
www.dell.com | support.dell.com snmptrap ipaddr This command assigns an IP address to a specified community name. The maximum name length is 16 case-sensitive alphanumeric characters. Note: IP addresses in the SNMP trap receiver table must be unique. If you make multiple entries using the same IP address, the first entry is retained and processed. All duplicate entries are ignored.
snmp trap link-status all This command enables link status traps for all interfaces. Syntax [no] snmp trap link-status all The no version of this command disables link status traps for all interfaces. Note: This command is valid only when the Link Up/Down Flag is enabled. See snmp-server enable traps linkmode. Mode Global Config snmptrap snmpversion This command selects between SNMP version 1 and version 2 traps to be sent for the selected SNMP trap name.
| System Management Commands www.dell.com | support.dell.
6 System Configuration Commands This chapter provides a detailed explanation of the system configuration commands in the following major sections: • • • • • System Configuration Commands on page 87 System Utility Commands on page 105 PoE Commands on page 114 Dual Image Management Commands on page 119 Configuration Scripting on page 122 Note: See also Chapter 5, “System Management Commands,” on page 35 and Chapter 9, “System Logs,” on page 169.
www.dell.com | support.dell.
The no version of this command disables automatic speed negotiation on a port. Mode Command History Related Commands Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.3 Interface Range mode added interface range Defines an interface range and accesses the Interface Range mode speed Manually set the port speed. auto-negotiate all This command enables automatic speed negotiation on all ports.
www.dell.com | support.dell.com configure This command enables the user to enter the Global Config mode from the Privileged Exec mode. Syntax Command Modes Usage Information configure Privileged Exec Users executing this command enter the Global Config mode, which provides access to many commands within that mode. Also, this mode is a gateway to all other more protocol-specific modes except the VLAN mode. For details on modes, see Chapter 4, “Using the Command Line Interface,” on page 23.
interface This command accesses the Interface Config mode for a designated logical or physical interface. The Interface Config mode provides access to configuration commands for the specified interface. Syntax interface unit/slot/port The unit/slot/port is a valid physical or logical port number. Physical ports are numbered #/0/1 through #/0/50. In contrast, logical port numbers contain a number in the slot position and are defined by the system.
www.dell.com | support.dell.com port-channel range,range,... Enter the keyword port-channel and one or more port channel IDs separated by commas or grouped in a range, as above: For example: port-channel 3-5 (In this example, you previously assigned IDs 3, 4, and 5 to three port channels.) vlan range,range,...
The VLAN Range mode commands appear in Figure 6-27. Figure 6-27. Commands Available in VLAN Range Mode (s50-1) (conf-if-range-vl-10,20)#? encapsulation exit igmp ip makestatic mtu name protocol shutdown tagged Configure interface link layer encapsulation type. To exit from the mode. Configure IGMP Snooping parameters for the Vlan Configure IP parameters. Change the VLAN type from 'Dynamic' to 'Static'. Sets the default MTU size. Configure an optional VLAN Name.
www.dell.com | support.dell.com Figure 6-29. Commands Available in Interface Range Mode (s50-1) (conf-if-range-et-1/0/10-1/0/22)#? addport Add this port to a port-channel. auto-negotiate Enables/Disables automatic negotiation on a port. classofservice Configure Class of Service parameters. cos-queue Configure the Cos Queue Parameters. deleteport Delete this port from a port-channel. description Add Description to the interface dot1x Configure Dot1x interface commands. exit To exit from the mode.
Related Commands interface Accesses the Interface Config mode for a designated logical or physical interface. ip address (VLAN) Assigns an IP address and subnet mask to the selected VLAN to support Layer 3 routing. interface vlan Creates a new VLAN and accesses the Interface VLAN mode for it, or selects an existing VLAN and accesses the Interface VLAN mode for it. tagged Adds ports or port channels to the selected VLAN as tagged interfaces.
www.dell.com | support.dell.com Parameters destination interface unit/slot/port Specify the probe port (target port). The probe port cannot be a VLAN member. source interface unit/ slot/port Specify the source interface (mirrored port). The port can be a part of any VLAN. mode Enable/disable the port mirroring session. See monitor session 1 mode on page 96. To remove the destination port, use no monitor session 1 destination interface.
Related Commands monitor session Adds a mirrored port (source port) or mirroring port (destination port) to a session identified with the session ID of 1. mtu (port) Removes the destination port and all source ports from the mirroring configuration. show monitor session Shows the mirroring configuration. mtu (port) This command sets the maximum transmission unit (MTU) size (in bytes) for the selected port.
www.dell.com | support.dell.com no monitor session 1 This command removes all the source ports and a destination port of the mirroring session and restore the default value for mirroring session mode. The 1 or session-id parameter is an integer value used to identify the session. In the current version of the software, the session-id parameter is always 1. This is a stand-alone “no” command. This command does not have a “normal” form.
show interface loopback Display loopback interface configuration. Syntax show interface loopback 0 Modes Privileged Exec; User Exec Command History Related Commands Version 2.5.1 Introduced access-list Creates an IP access control list. interface loopback Configures loopback interface 0. ip access-group (Interface) Attaches a specified access control list to an interface. show mac-address-table This command displays the Multicast Forwarding Database (MFDB) statistics.
www.dell.com | support.dell.com show mac-address-table multicast This command displays the Multicast Forwarding Database (MFDB) information. If the command is entered with no parameter, the entire table is displayed. This is the same as entering the optional all parameter. The user can display the table entry for one MAC Address by specifying the MAC address as an optional parameter. Syntax show mac-address-table multicast {macaddr [1-3965]} (OPTIONAL) For macaddr, enter a 6-byte MAC address.
Example Figure 6-32. Command Example: show mac-address-table stats Force10 #show mac-address-table stats Max MFDB Table Entries......................... 256 Most MFDB Entries Since Last Reset............. 0 Current Entries................................ 0 Related Commands show mac-address-table multicast Displays the Multicast Forwarding Database (MFDB) information show monitor session This command displays the port monitoring information for the system.
www.dell.com | support.dell.com Mode Command History Example Privileged Exec Version 2.3 Figure 6-34. Modified: Revised to include VLAN interface IDs in the Interface column of the report.
Related Commands show tech-support Displays the output of many show commands, including this one. show port protocol This command displays the protocol-based VLAN information for either the entire system (use all keyword), or for the indicated group (specify the group with the value of groupid). Syntax Mode Report Fields show port protocol {groupid | all} Privileged Exec Group Name—This field displays the group name of an entry in the protocol-based VLAN table.
www.dell.com | support.dell.com Syntax [no] shutdown all Default enabled Mode Global Config speed This command sets the speed and duplex setting for the selected interface. Syntax Parameters Default Mode Command History Related Commands speed {{10 | 100 | 1000} {half-duplex | full-duplex}} 10 half-duplex Enter 10 to set the speed as 10BASE-T, followed by half-duplex for half duplex. 10 full-duplex Enter 10 to set the speed as 10BASE-T, followed by full-duplex for full duplex.
100 half-duplex Enter 100 to set the speed as 100BASE-T, followed by half-duplex for half duplex. 100 full-duplex Enter 100 to set the speed as 100BASE-T, followed by full-duplex for full duplex. 1000 half-duplex Enter 1000 to set the speed as 1000BASE-T, followed by half-duplex for half duplex. 1000 full-duplex Enter 1000 to set the speed as 1000BASE-T, followed by full-duplex for full duplex.
www.dell.com | support.dell.com Mode Privileged Exec clear counters This command clears the stats for a specified unit/slot/port or for all the ports or for the entire switch based upon the argument. Syntax Mode clear counters {unit/slot/port | all} Privileged Exec clear traplog This command clears the trap log.
Syntax copy {{{nvram:script url} | nvram:errorlog | nvram:startup-config | nvram:traplog} url} | {url {image1 | image2 | nvram:cli-banner | nvram:script | nvram:sshkey-dsa | nvram:sshkey-rsa1 | nvram:sshkey-rsa2 | nvram:sslpem-dhstrong | nvram:sslpem-dhweak | nvram:sslpem-root | nvram:sslpem-server | nvram:startup-config} | {system:running-config nvram:startup-config} | {image1 | image2} unit://unit/{image1 | image2} | {image1 | image2} unit://*/{image1 | image2}} nvram: Parameters Specify the nvram: key
www.dell.com | support.dell.com The copy command can also be used to download the following files: • • CLI banner: See copy (clibanner). SFTOS software (often called the “software image”): before SFTOS 2.5: filename system:image SFTOS 2.5.
The following command copies the running config from the switch system memory to flash memory, overwriting the startup configuration file: copy system:running-config nvram:startup-config Note: Starting with SFTOS version 2.3, this command creates a text-based startup-config file instead of a binary file. Example Figure 6-35. Using the copy command to Upload the Event Log Force10 S50 #copy nvram:errorlog tftp://10.10.10.10/errorLog Mode........................................... Set TFTP Server IP.......
www.dell.com | support.dell.com Example Figure 6-36. Using the copy command to Download the CLI Banner copy tftp://192.168.77.52/banner.txt nvram:clibanner Mode........................................... Set TFTP Server IP............................. TFTP Path...................................... TFTP Filename.................................. Data Type...................................... TFTP 192.168.77.52 ./ banner.
quit This command duplicates the functionality of the logout command, closing the current Telnet connection, or resetting the current serial connection. Note: Save configuration changes before logging out. Syntax Mode Related Commands quit Privileged Exec logout Close the current Telnet connection, or reset the current serial connection. ping This command checks if another computer is on the network and listens for connections. To use this command, configure the switch for network (in-band) connection.
www.dell.com | support.dell.com show terminal length This command displays how many lines are currently in one page of “show” command output, as configured by the terminal length command. Syntax Mode Command History Related Commands show terminal length Privileged Exec and User Exec Version 2.3 Introduced terminal length Sets the number of lines displayed on the terminal without pausing.
traceroute This command discovers the routes that packets take when traveling to their destination through the network on a hop-by-hop basis. Syntax traceroute ipaddr [port] ipaddr should be a valid IP address. port should be a valid decimal integer in the range of 0 (zero) to 65535. The default value is 33434. The optional port parameter is the UDP port used as the destination of packets sent as part of the traceroute. This port should be an unused port on the destination system.
www.dell.com | support.dell.com PoE Commands SFTOS software, starting with version 2.5.1, supports Power over Ethernet (PoE) functionality on the S50V switch.
Related Commands show inlinepower (stack) Display PoE status of stack members. show inlinepower Display PoE status of designated port. inlinepower threshold Configure the amount of Power over Ethernet (PoE) allotted for a specified switch in the S-Series stack. The amount is specified as a percentage of the total possible power budget.
www.dell.com | support.dell.com inlinepower priority Configure the priority of a port in terms of access to power. Syntax Parameters inlinepower priority {critical | high | low} critical | high | low Enter critical to enable the selected port to receive power at the highest priority. Enter high to enable the selected port to receive power at the next highest priority. Enter low to set the power priority of the selected port at the lowest level.
Parameters Defaults Mode Command History Related Commands type-string Enter an alphanumeric description. no description Interface Config; Interface Range Ethernet Version 2.5.1 Introduced show inlinepower (stack) Display PoE status of stack members. show inlinepower Display PoE status of designated port. show inlinepower (stack) This command shows the status for all switches in a stack that support PoE. Syntax Command Modes show inlinepower User Exec; Privileged Exec Command History Version 2.5.
www.dell.com | support.dell.com inlinepower threshold Set the percentage of the PoE power that could be made available. show inlinepower Display detailed PoE information for ports. show inlinepower This command displays PoE status information for a designated port basis or for all ports. Syntax Command Modes show inlinepower {unit/slot/port | all} Privileged Exec Command History Version 2.5.1 Example Figure 6-38.
Related Commands inlinepower Enable or disable PoE for the switch. inlinepower threshold Set the percentage of the PoE power that could be made available. show inlinepower (stack) Display summary PoE information for each unit in the stack. Dual Image Management Commands SFTOS software, starting with version 2.5.1, supports a dual image feature that allows the switch to have two software images in the permanent storage.
www.dell.com | support.dell.com Related Commands copy Download files to the switch, or upload files from the switch. update bootcode Activate the specified software image for subsequent reboots. show bootvar Display version information and activation status for the current active and backup images. delete (software image) This command deletes the designated image file from permanent storage on the switch.
Command History Related Commands Version 2.5.1 Introduced update bootcode Activate the specified software image for subsequent reboots. show bootvar Display version information and activation status for the current active and backup images. show bootvar This command displays version information and activation status for the current active and backup images on the specified stack member. If you do not specify a unit number, the command displays image details for all nodes on the Stack.
www.dell.com | support.dell.com update bootcode This command updates the bootcode (boot loader) on the switch. The bootcode is read from the active image for subsequent reboots. Syntax Parameters Default Mode Command History Related Commands update bootcode [unit] unit (OPTIONAL) This parameter is valid only on stacks. An error is returned if a number is entered on a standalone system. In a stack, the parameter identifies the stack member on which this command must be executed.
script apply This command backs up the running configuration and then starts applying the commands in the script file. Application of the commands stops at the first failure of a command. Syntax script apply scriptname The scriptname is the file name of the script file (including extension) to be applied. The script name must be “startup-config” or have a file extension of “.scr”. Mode Usage Privileged Exec Use the show running-config command to capture the running configuration into a script.
www.dell.com | support.dell.com script show This command displays the contents of a script file. Syntax script show scriptname The scriptname is the file name of the script file, including extension. The script name must be “startup-config” or have a file extension of “.scr”.
7 VLAN Commands Use the commands in this chapter to configure virtual local area networks (VLANs) that conform to IEEE 802.1Q. The three major sections in this chapter are: • • • Virtual LAN (VLAN) Commands Protected-Port (PVLAN) Commands on page 147 VLAN-Stacking Commands on page 150 Virtual LAN (VLAN) Commands In SFTOS 2.3.1, the aoCEst OEubg command ou (see interface vlan on page 129) is the starting point for VLAN configuration. Execute the command from the Global Config mode.
www.dell.com | support.dell.com Table 7-19. Commands in the Interface VLAN Mode (continued) Commands Change the VLAN type from Dynamic to Static. This chapter mtu (VLAN) Set the default MTU size. This chapter name (VLAN) Configure an optional VLAN name. This chapter protocol Configure the protocols associated with particular group IDs. This chapter tagged/untagged Configure tagging for an interface.
• • • • • • • • vlan port ingressfilter all on page 144 vlan port pvid all on page 144 vlan port tagging all on page 145 vlan protocol group on page 145 vlan protocol group add protocol on page 146 vlan protocol group remove on page 146 vlan pvid on page 146 vlan tagging on page 147 Note: For information on commands related to the management VLAN, see General System Management and Information Commands on page 35 (most specifically, interface managementethernet on page 38) in the Management chapter.
www.dell.com | support.dell.com Usage Information Example The following example shows the use of both single quotes and double quotes in entering a description for a port. The example also shows the resulting descriptions presented in show interfaces description commands. Figure 7-40.
interface vlan This command creates a new VLAN if the identified VLAN ID does not already exist, or else the command selects the existing VLAN. Then, in either case, the command invokes the Interface VLAN mode, in which you have access to VLAN configuration commands for the specified VLAN. Syntax interface vlan vlanid The vlanid is a valid VLAN identification number (ID 1 is reserved for the default VLAN). VLAN range is 2-3965. The no version of this command deletes an existing VLAN.
www.dell.com | support.dell.com interface vlan Groups a set of individual interfaces, a range of interfaces, or more than one range of interfaces, to which subsequent configuration commands can be applied (bulk configuration) ip address (VLAN) Assigns an IP address and subnet mask to the selected VLAN to support Layer 3 routing. protocol group Attach a group ID to the selected VLAN.
name (VLAN) This command changes the name of a VLAN. Syntax [no] name newname The newname is an alphanumeric string of up to 32 characters. The no version of this command sets the name of a VLAN to a blank string. Default Mode The name for VLAN ID 1 is always Default. The name for other VLANs is defaulted to a blank string. Interface VLAN Command History Version 2.
www.dell.com | support.dell.com priority (VLAN) Configure the priority for untagged frames. Mode Command History Related Commands Interface VLAN Version 2.5.1 Removed from CLI Version 2.3 Deprecated tagged Sets tagging to enabled for a specific port (or range of ports) in the selected VLAN. protocol group Attach a group ID to the selected VLAN. A group ID can only be associated with one VLAN at a time. However, the VLAN association can be changed.
The no version of this command removes the interface from this protocol-based VLAN group that is identified by this groupid. Syntax [no] protocol vlan group groupid Default None Mode Global Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command History Version 2.5.2 Related Commands Unsupported: not tested in 2.5.2 Version 2.5.1 Unsupported: not tested in 2.5.1 Version 2.3 Added Interface Range mode.
www.dell.com | support.dell.com Related Commands untagged Sets tagging to disabled for a specific port (or range of ports) in the selected VLAN. show vlan This command displays information about VLANs, either detailed information for a specific VLAN or summary information for all configured VLANs. The ID is a valid VLAN identification number.
Example Figure 7-42.
www.dell.com | support.dell.com Usage Information Example For the show vlan id vlan-id command, the output is shown in the following example: Figure 7-44.
Example Figure 7-45. Output of the show vlan association mac Command Force10#show vlan association mac MAC Address ----------------------00:06:11:11:11:11:11:11 00:07:11:12:13:14:15:16 VLAN ID ------6 7 Force10-S50V #show vlan association mac 11:11:11:11:11:11 MAC Address ----------------------00:06:11:11:11:11:11:11 Related Commands VLAN ID ------6 vlan association mac Configures a VLAN by associating the VLAN with a set of MAC addresses.
www.dell.com | support.dell.com Example Figure 7-46. Output of the show vlan association subnet Command Force10#show vlan association subnet IP Address ---------------- IP Mask ---------------- VLAN ID ------- 2.2.2.2 3.3.3.2 255.0.0.0 255.0.0.0 6 7 Force10-S50V #show vlan association subnet Related Commands 2.2.2.2 IP Address ---------------- IP Mask ---------------- VLAN ID ------- 2.2.2.2 255.0.0.0 6 255.0.0.
Example Figure 7-47. Output of the show vlan port Command Force10-S50 #show Port Interface VLAN ID --------- ------1/0/1 1 vlan port 1/0/1 Acceptable Ingress Default Frame Types Filtering GVRP Priority ------------ ----------- ------- -------Admit All Enable Disable 0 Protected Port ..............................
www.dell.com | support.dell.com Usage Information The tagged command includes the functionality of the vlan participation include command and the vlan acceptframe vlanOnly command. For details, see the VLAN chapter in the SFTOS Configuration Guide. The tagged command cannot be applied to ports in VLAN 1, which is the default VLAN. Example Figure 7-48.
Command History Usage Information Related Commands Version 2.5.1 Modified: Added ranges for ports and port channels. Added Interface Range Vlan Config mode. Version 2.3 Introduced The untagged command includes the functionality of these commands: participation include, pvid, and acceptframe untagged. For details, see the VLAN chapter in the SFTOS Configuration Guide.
www.dell.com | support.dell.com Default Mode Command History Related Commands enabled Interface VLAN Version 2.5.2 Unsupported: not tested in 2.5.2 Version 2.5.1 Introduced interface vlan Creates a new VLAN, or selects one based on ID, and then enters the Interface VLAN mode, which provides access to VLAN configuration commands for the specified VLAN. show mac-addr-table Displays forwarding database entries, including MAC addresses by VLAN.
Related Commands interface vlan Creates a new VLAN, or selects one based on ID, and then enters the Interface VLAN mode, which provides access to VLAN configuration commands for the specified VLAN. show vlan association subnet Displays information about either all IP subnet-based VLANs or the VLAN associated with a specific IP address and mask. show port Displays port information for a selected port or for all ports show interfaces Displays information about a selected interface or VLAN.
www.dell.com | support.dell.com vlan participation all This command configures the degree of participation for all interfaces in a VLAN. Mode Global Config Command History Version 2.5.1 Deprecated. Removed from CLI Version 2.3 Modified: Moved from Interface Config mode to Global Config mode. Related Commands tagged Configure a tagged interface in the selected VLAN. untagged Configure an untagged interface in the selected VLAN.
Related Commands tagged Configure a tagged interface in the selected VLAN. untagged Configure an untagged interface in the selected VLAN. vlan port tagging all This command sets the tagging behavior for all interfaces in a VLAN to enabled. Mode Global Config Command History Version 2.5.1 Related Commands Deprecated. Removed from CLI tagged Configure a tagged interface in the selected VLAN. untagged Configure an untagged interface in the selected VLAN.
www.dell.com | support.dell.com vlan protocol group add protocol This command adds the named protocol to the protocol-based VLAN identified by groupid. A group may have more than one protocol associated with it. Each interface and protocol combination can only be associated with one group. If adding a protocol to a group causes any conflicts with interfaces currently associated with the group, this command will fail and the protocol will not be added to the group.
Mode Command History Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.5.1 Removed from CLI Version 2.3 Deprecated untagged Adds a Layer 2 interface to the selected VLAN as an untagged interface. Related Commands vlan tagging This command sets tagging to enabled for the selected interface in a specified VLAN.
www.dell.com | support.dell.com This section describes commands you use to configure and view protected ports. Ports are unprotected by default. A Private Edge VLAN, also referred to as a “protected VLAN” — PVLAN), prevents ports designated as such in the specified protected port group from forwarding traffic to each other even if they are on the same VLAN. However, protected ports can forward traffic to all unprotected ports in their group.
Mode Command History Example User Exec; Privileged Exec Version 2.5.1 Figure 7-50. Introduced Example of Output from the show switchport protected Command (Force10) #show switchport protected 0 Name.........................................willstest Member Ports : 1/0/10 Field Descriptions Name–An optional name of the protected port group. The name can be up to 32 alphanumeric characters long, including blanks. The default is blank.
www.dell.com | support.dell.com Related Commands show switchport protected Displays current memory usage in bytes in tabular format. switchport protected (Interface Config) Add ports to a protected port group. switchport protected (Interface Config) Use this command to add the selected interface to a protected port group. You can only configure an interface as protected in one group. Note: Port protection occurs within a single switch.
• • • • mode dvlan-tunnel on page 153 show dot1q-tunnel on page 154 show dvlan-tunnel on page 155 show dvlan-tunnel l2pdu-forwarding on page 155 dvlan-tunnel l2pdu-forwarding enable This command is used to enable/disable the l2pdu-forwarding mode, used for BPDU tunneling. Syntax [no] dvlan-tunnel l2pdu-forwarding enable The no version of this command disables the l2pdu-forwarding mode. Default Enable Mode Global Config Command History Version 2.5.
www.dell.com | support.dell.com Related Commands dvlan-tunnel l2pdu-forwarding enable Enable/disable the l2pdu-forwarding mode. show dvlan-tunnel l2pdu-forwarding Displays the current l2pdu tunneling configuration on the switch. show dot1q-tunnel Displays whether an interface is enabled for Double VLAN Tunneling, along with the system-configured etherType and detailed information about Double VLAN Tunneling for the specified interface, or a list of interfaces and their tunneling status.
Syntax mode dot1q-tunnel Default disabled Mode Command History Usage Information Related Commands Interface Config Version 2.5.2 Unsupported: This command was not tested in SFTOS 2.5.2, so is not supported Version 2.5.1 Unsupported: This command was not tested in SFTOS 2.5.1, so is not supported By default, all ports become core ports. To configure a particular port as an access port, enable DVLAN tagging in Interface Config mode for that port with this command.
www.dell.com | support.dell.com show dot1q-tunnel This command displays whether an interface is enabled for Double VLAN Tunneling, along with the system-configured etherType and detailed information about Double VLAN Tunneling for the specified interface, or a list of interfaces and their tunneling status. This command performs the same function as show dvlan-tunnel.
show dvlan-tunnel This command displays whether an interface is enabled for Double VLAN Tunneling, along with the system-configured etherType and detailed information about Double VLAN Tunneling for the specified interface, or a list of interfaces and their tunneling status. This command performs the same function as show dot1q-tunnel.
www.dell.com | support.dell.com Command History 156 Example Version 2.5.2 Unsupported: This command was not tested in SFTOS 2.5.2, so is not supported Version 2.5.1 Unsupported: This command was not tested in SFTOS 2.5.1, so is not supported Version 2.3.1.9 Introduced Figure 7-53. Example of Use of show dvlan-tunnel l2pdu-forwarding Command Force10 S50 #show dvlan-tunnel l2pdu-forwarding L2Pdu-Forwarding Mode: enabled.
8 Link Layer Discovery Protocol (LLDP) Commands The IEEE 802.1AB standard defines the Link Layer Discovery Protocol (LLDP). LLDP support is new in SFTOS 2.5.1.
www.dell.com | support.dell.com Figure 8-54 presents a diagram of the basic LLDP packet sent to a multicast MAC address. The Ethertype is set to 88cc. Figure 8-54. TLV Packet Overview Figure 8-55 shows a more detailed diagram of the TLV sequence in the LLDPDU section of the LLDP packet, showing how TLVs are strung together in the payload of the LLDP PDU: Figure 8-55. LLDPDU Section of the Packet Figure 8-56 shows the structure of each TLV section, for example the Chassis ID TLV.
• • • • • • • • • • lldp multiplier on page 161 lldp notification on page 162 lldp notification-interval on page 162 lldp timers-reinit on page 163 lldp transmit-mgmt on page 163 lldp transmit-tlv on page 163 show lldp interface on page 164 show lldp local-device on page 165 show lldp neighbors on page 166 show lldp remote-device on page 167 clear lldp neighbors Clear LLDP neighbor information. Syntax OgE sugg.
www.dell.com | support.dell.com Related Commands clear lldp neighbors Clear LLDP neighbor information. lldp mode (global) Enable/disable LLDP globally. lldp mode (interface) Enable/disable LLDP on a particular interface. show lldp local-device Display LLDP neighbor information. lldp hello Use this command to set the interval, in seconds, to transmit local LLDP data (LLDPDUs).
Command History Related Commands Version 2.5.1 Introduced clear lldp neighbors Clear LLDP neighbor information. lldp mode (interface) Enable/disable LLDP on a selected port. show lldp local-device Display LLDP neighbor information. lldp mode (interface) Enable LLDP on the selected port (timers not supported on one interface). Set whether the LLDP protocol is enabled on sent packets, received packets, or both.
www.dell.com | support.dell.com Command History Version 2.5.1 Related Commands Introduced lldp hello The interval in seconds to transmit local LLDP data lldp notification Configure minimum interval to send remote data change notifications lldp timers-reinit Configure LLDP global timer for delay before re-initialization. show lldp local-device Display LLDP neighbor information. lldp notification Enable/Disable LLDP remote data change notifications.
Related Commands lldp hello The interval in seconds to transmit local LLDP data lldp multiplier The interval multiplier to set local LLDP data TTL lldp timers-reinit Configure LLDP global timer for delay before re-initialization. lldp notification Display LLDP neighbor information. lldp timers-reinit Configure LLDP global timer for delay before re-initialization. Syntax lldp timers-reinit reinit-seconds The reinit-seconds parameter is the delay before re-initialization of tasks and data structure.
www.dell.com | support.dell.com Parameters port-desc Include/Exclude LLDP port description TLV (the description configured for the transmitting port using the description command within the Interface Config mode). sys-cap Include/Exclude LLDP system capabilities TLV (general info about this switch, e.g. ‘switch, router’; not configurable). sys-desc Include/Exclude LLDP system description TLV (the system description that also appears in show run; not configurable).
Example Figure 8-57.
www.dell.com | support.dell.com Example Figure 8-58.
Example Figure 8-59.
www.dell.com | support.dell.
9 System Logs This chapter provides a detailed explanation of the following syslog commands: • • • • • • • • • • • • • • • logging buffered on page 169 logging buffered wrap on page 170 logging cli-command on page 170 logging console on page 170 logging facility on page 171 logging history on page 172 logging host on page 172 logging persistent on page 173 logging port on page 173 logging syslog on page 173 show logging on page 174 show logging eventlog on page 175 show logging history on page 176 show log
www.dell.com | support.dell.com Related Commands logging buffered wrap Enables wrapping of in-memory logging when full capacity is reached. logging cli-command Enables logging to the System Log of all Command Line Interface (CLI) commands issued on the system. logging console Enables logging of System log messages to the console. logging host Configures mirroring of System log messages to a syslog server.
Use no logging console to disable logging to the console. Default Mode disabled; severity = critical Global Config logging facility Configure the facility type sent to Syslog servers. Syntax logging facility [facility-type] To remove to the configured value, enter no logging facility. Parameters facility-type (OPTIONAL) Enter one of the following keywords.
www.dell.com | support.dell.com logging history This command enables logging of system messages to the SFTOS logging history table. Optionally, specify how many messages are to be saved in the SFTOS logging history table before being overwritten. This log collects the same messages as the System log. Syntax logging history [size size] To return to the default level, enter no logging history. To return to the default size, enter no logging history size.
reconfigure host-index hostaddress Revise the IP address of a configured syslog host. To learn the current association of host-id with hostaddress, use the show logging hosts command. The value for host-index is in the Index column of the output of that command. remove Remove the identified host, using host-index the described above.
www.dell.com | support.dell.com show logging This command displays the buffered log (the in-memory log). Syntax Mode Example show logging Privileged Exec Figure 9-61. Sample Output from the show logging Command Force10-S50 #show logging Syslog Logging CLI Command Logging Console Logging Buffered (In-Memory) Logging Buffered Logging Wrapping Behavior Logging Host List Empty : : : : : <189> DEC 08 16:39:59 10.11.130.247-1 %% Link Up: LAG- 1 <189> DEC 08 16:39:59 10.11.130.
Related Commands logging buffered Enables logging of the system log to RAM and any other enabled destination, including the console and any enabled syslog server. logging cli-command Displays CLI activity in the log. logging facility Configure the Syslog facility, used for error messages sent to Syslog servers. show logging eventlog Displays the persistent event log. show logging traplogs Displays the SNMP trap log.
www.dell.com | support.dell.com Related Commands logging buffered Enables logging of the system log to RAM and any other enabled destination, including the console and any enabled syslog server. logging cli-command Displays CLI activity in the log. logging facility Configure the Syslog facility, used for error messages sent to Syslog servers. show logging history Show the messages stored in the buffered log — last logged, first displayed.
show logging hosts This command displays configured logging hosts. Syntax show logging hosts unit The unit variable is the host index Mode Example Privileged Exec Figure 9-64. Using the show logging hosts Command Force10 #show logging hosts ? Enter switch ID in the range of 1 to 8. Force10 #show logging hosts 1 ? Press Enter to execute command. Force10 #show logging hosts 1 Index IP Address ----- -------------1 192.168.77.
www.dell.com | support.dell.com Report Fields Number of Traps since last reset—The number of traps that have occurred since the last reset of this device. Number of Traps since log last displayed—The number of traps that have occurred since the traps were last displayed. Getting the traps by any method (terminal interface display, upload file from switch, etc.) will result in this counter being cleared to 0. Log—The sequence number of this trap.
10 User Account Commands These commands manage user accounts. The commands are divided into two functional groups: • • Show commands display switch settings, statistics, and other information. Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
www.dell.com | support.dell.com Report Fields User Name—The name the user will use to login using the serial port or Telnet. A new user may be added to the switch by entering a name in a blank entry. The user name may be up to 8 characters, and is not case sensitive. The Read/Write user ‘admin’ is the only factory default. Connection From—IP address of the telnet client machine or EIA-232 for the serial port connection. Idle Time—Time this session has been idle.
Parameters user Enter a string to represent the new user’s name. The name can be up to eight characters in length. The name can be comprised of alphanumeric characters, as well as the dash (‘-’) and underscore (‘_’). password password Enter the keyword password, followed by a new password, which cannot be more than eight alphanumeric characters in length. Passwords can include special characters. As of SFTOS 2.5.1.3, the following characters are supported: , . { } |.
www.dell.com | support.dell.com Syntax users snmpv3 authentication username [none | md5 | sha] users snmpv3 authentication username Mode Global Config users snmpv3 encryption This command specifies the encryption protocol to be used for the specified login user. The valid encryption protocols are des or none. If des is specified, the required key may be specified on the command line. The key may be up to 16 characters long.
11 Security Commands This chapter provides a detailed explanation of the security commands available in SFTOS, presented in the following sections: • • • • • • Port Security Commands Port-Based Network Access (IEEE 802.
www.dell.com | support.dell.com Syntax [no] port-security Default Disabled Modes Global Config; Interface Config; Interface Port Channel Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command History Related Commands Version 2.5.1 Modified: Added Interface Port Channel Config mode. Version 2.3 Added Interface VLAN and Interface Range modes. interface Identifies an interface and enters the Interface Config mode.
port-security max-dynamic This command sets the maximum of dynamically locked MAC addresses allowed on a selected interface. Syntax port-security max-dynamic maxvalue The no port-security max-dynamic command resets the maximum of dynamically locked MAC addresses allowed on a selected interface to its default value. The maxvalue range is from 0 to 600.
www.dell.com | support.dell.com show port-security This command displays the port-security settings for a particular interface or for the entire system.
show port-security dynamic This command displays the dynamically locked MAC addresses for the designated port. Syntax Mode Report Field show port-security dynamic unit/slot/port Privileged Exec MAC Address — MAC address of the dynamically locked MAC show port-security static This command displays the statically locked MAC addresses for the designated port.
www.dell.com | support.dell.com • • • • • • • • • dot1x timeout on page 192 dot1x user on page 193 show authentication on page 193 show authentication users on page 194 show dot1x on page 194 show dot1x users on page 197 show users authentication on page 198 users defaultlogin on page 198 users login on page 199 authentication login This command defines a particular sequence of authentication methods to be used to allow user access and then assigns a list name to that sequence.
Mode Related Commands Global Config radius server host Configure the RADIUS authentication and accounting server. tacacs-server host Specify a TACACS+ server host. users defaultlogin Assign the authentication login list to use for non-configured users when attempting to log in to the system. clear dot1x statistics This command resets the 802.1x statistics for the specified port or for all ports.
www.dell.com | support.dell.com dot1x login This command assigns the specified authentication login list to the specified user for 802.1x port security. The user parameter must be a configured user and the listname parameter must be a configured authentication login list.
Mode Command History Related Commands Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.3 Interface Range mode added interface range Defines an interface range and accesses the Interface Range mode dot1x port-control all This command sets the authentication mode to be used on all ports. The control mode may be one of the following.
www.dell.com | support.dell.com Default Mode Command History Related Commands disabled Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.3 Interface Range mode added interface range Defines an interface range and accesses the Interface Range mode dot1x system-auth-control This command is used to enable the dot1x authentication support on the switch. By default, the authentication support is disabled.
supp-timeout—Sets the value, in seconds, of the timer used by the authenticator state machine on this port to timeout the supplicant. The supp-timeout must be a value in the range 1 - 65535. server-timeout—Sets the value, in seconds, of the timer used by the authenticator state machine on this port to timeout the authentication server. The supp-timeout must be a value in the range 1 - 65535.
www.dell.com | support.dell.com Example Figure 11-66. show authentication Command Example (Force10 ) #show authentication Authentication Login List ------------------------defaultList Report Fields Method 1 -------local Method 2 -------undefined Method 3 -------undefined Authentication Login List—This displays the authentication methods log-in list names. Figure 11-66 shows only the default log-in authentication method list.
Mode Report Fields Privileged Exec If none of the optional parameters are used, the global dot1x configuration summary is displayed, as follows: Administrative mode—Indicates whether authentication control on the switch is enabled or disabled. If the optional parameter detail unit/slot/port is used, the detailed dot1x configuration for the specified port are displayed, as follows: Example Figure 11-67. Example of Output from the show dot1x detail Command Force10 #show dot1x detail 1/0/1 Port...........
www.dell.com | support.dell.com Reauthentication Enabled—Indicates if reauthentication is enabled on this port. Possible values are “True” or “False”. Key Transmission Enabled—Indicates if the key is transmitted to the supplicant for the specified port. Possible values are True or False. Control Direction—Indicates the control direction for the specified port or ports. Possible values are both or in.
Invalid EAPOL Frames Received—The number of EAPOL frames that have been received by this authenticator in which the frame type is not recognized EAP Length Error Frames Received—The number of EAPOL frames that have been received by this authenticator in which the frame type is not recognized If the optional parameter summary {unit/slot/port | all} is used, the dot1x configuration for the specified port or all ports are displayed, as follows: Example Figure 11-69.
www.dell.com | support.dell.com Example Figure 11-70. Example of Output from the show dot1x users Command Force10 #show dot1x users 1/0/1 Users ----------------admin User—Users configured locally to have access to the specified port. Related Commands dot1x user Add the specified user to the list of users with access to the specified port or all ports. show users authentication This command displays all user and all authentication login information.
Syntax Mode users defaultlogin listname Global Config users login This command assigns the specified authentication login list to the specified user for system login. The user must be a configured user and the listname must be a configured login list. If the user is assigned a login list that requires remote authentication, all user access (from all sessions) will be blocked until authentication is complete.
www.dell.com | support.dell.com radius server host Configure the RADIUS authentication and accounting server connections. Syntax radius server host {auth | acct} ipaddr [port] no radius server host {auth | acct} ipaddr Parameters Usage auth Use this keyword if you want to configure a connection to a RADIUS authentication server. See Usage, below. acct Use this keyword if you want to configure a connection to a RADIUS accounting server. See Usage, below.
radius server key Configure the shared secret between the RADIUS client and the RADIUS accounting / authentication server. Syntax radius server key {auth | acct} ipaddr Depending on whether the auth or acct keyword is used, the shared secret will be configured for the RADIUS authentication or RADIUS accounting server. The IP address provided must match a previously configured server. When this command is executed, the secret will be prompted.
www.dell.com | support.dell.com Default Mode 10 Global Config radius server timeout This command sets the timeout value (in seconds) after which a request must be retransmitted to the RADIUS server if no response is received. The timeout value is an integer in the range of 1 to 30. Syntax radius server timeout seconds The no radius server timeout command sets the timeout value to the default value, after which a request must be retransmitted to the RADIUS server if no response is received.
show radius accounting statistics This command is used to display the configured RADIUS accounting mode, accounting server, and the statistics for the configured accounting server. Syntax show radius accounting [statistics IP address] Mode Privileged Exec Example Figure 11-72. show radius accounting Command Example (Force10_S50) #show radius accounting RADIUS Accounting Mode......................... IP Address..................................... Port...........................................
www.dell.com | support.dell.com Table 11-21. show radius accounting Command Example Fields Field Description RADIUS Accounting Server IP Address of the configured RADIUS accounting server IP Address Round Trip Time The time interval, in hundredths of a second, between the most recent Accounting-Response and the Accounting-Request that matched it from the RADIUS accounting server. Requests The number of RADIUS Accounting-Request packets sent to this accounting server.
Access Requests—The number of RADIUS Access-Request packets sent to this server. This number does not include retransmissions. Access Retransmission—The number of RADIUS Access-Request packets retransmitted to this RADIUS authentication server. Access Accepts—The number of RADIUS Access-Accept packets, including both valid and invalid packets, which were received from this server.
www.dell.com | support.dell.com Syntax tacacs-server host ip-address To remove a TACACS+ server host, use the no tacacs-server host {hostname | ip-address} command. Parameters Default Mode ip-address Enter the IP address, in dotted decimal format, of the TACACS+ server host. Not configured CONFIGURATION Usage Information In CONFIGURATION mode, you can set several global values for all TACACS+ servers, as listed below.
Related Commands tacacs-server host Identify a TACACS server. key Specify the authentication and encryption key for all communications between the client and a particular TACACS server. tacacs-server timeout Specify a global timeout value for all TACACS+ hosts. Syntax tacacs-server timeout timeout To restore the default, enter no tacacs-server timeout. Parameters timeout Default 5 seconds Mode Related Commands Range: 1 to 30 seconds Global Config tacacs-server host Identify a TACACS server.
www.dell.com | support.dell.com Parameters Default Command Mode port-number Range: zero (0) to 65535 If unspecified, the port number defaults to 49. TACACS Configuration tacacs-server host Identify a TACACS server. show tacacs Display TACACS+ settings. priority Use the priority command to determine the order in which the servers will be used, with 0 being the highest priority.
Example Figure 11-74. Example of show tacacs Command Output Force10 #show tacacs Global Timeout: 5 IP address Port ------------------10.10.10.226 49 10.16.1.58 49 Timeout ------Global Global Priority -------0 0 Force10# Command History Version 2.5.1 Related Commands Modified: Removed fields from report output — Status, Single, Connection tacacs-server host Identify a TACACS server. timeout Specify the timeout value for a particular TACACS host.
www.dell.com | support.dell.com This section provides a detailed explanation of the SSH commands. The commands are of two functional types: • Configuration commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting. Show commands are used to display switch settings, statistics and other information.
ip ssh server enable Enable SSH. The no version of this command disables SSH. Note: Previous to SFTOS 2.5.1, this command required keys/certificates to be generated offline before the service starts. See s50-secure-management.pdf at: https://www.force10networks.com/csportal20/KnowledgeBase/Documentation.aspx Syntax ip ssh server enable no ip ssh server enable Default disabled Mode Global Config Command History Version 2.5.1 Modified: Removed requirement to generate keys offline. Version 2.
www.dell.com | support.dell.com show ip ssh This command displays the ssh settings. Syntax Mode Report Fields show ip ssh Privileged Exec Administrative Mode—This field indicates whether the administrative mode of SSH is enabled or disabled. Protocol Levels—The protocol level may have the values of version 1, version 2 or both versions 1 and version 2. Connections—This field specifies the current ssh connections.
• Configuration commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting. Show commands are used to display switch settings, statistics and other information. • ip http javamode enable Enable Java mode for the Web User interface (Web UI) to SFTOS. Syntax ip http javamode enable Use no ip http javamode enable to disable Java mode.
www.dell.com | support.dell.com Mode Global Config Command History Version 2.5.1 Unsupported: The SFTOS Web UI is not supported in v. 2.5.1 or 2.5.2. Version 2.3 Modified: Moved from Privileged Exec mode to Global Config mode. ip http secure-server enable This command is used to enable the secure socket layer for secure HTTP. The no version of this command is used to disable the secure socket layer for secure HTTP.
ip http secure-server enable Enable the secure socket layer for secure HTTP. show ip http Displays the HTTP settings for the switch. show ip http This command displays the HTTP settings for the switch. Syntax Mode Command History Report Fields show ip http Privileged Exec Version 2.5.1 Unsupported: The SFTOS Web UI is not supported in v. 2.5.1 or 2.5.2. HTTP Mode (Unsecure) — This field indicates whether basic HTTP is enabled or disabled on the switch.
| Security Commands www.dell.com | support.dell.
12 Stacking Commands This chapter provides a detailed explanation of the stacking commands. The commands are listed under two headings: • • Stacking on page 217 Slot and Card Commands on page 226 See also the copy and Dual Image Management Commands on page 119 in the System Configuration chapter.
www.dell.com | support.dell.com Command History Related Commands Version 2.5.1 copy Deprecated Copy software from the stack management unit to a stack member. copy {image1 | image2} unit://unit/{image1 | image2} archive download-sw This command downloads the SFTOS software image (.OPR file) to the switch. The url is the transfer mode. The switch must be reset for the new code to start running.
movemanagement This command moves the management unit functionality from one switch to another. The fromunit is the switch identifier on the current Management Unit. The tounit is the switch identifier on the new management unit. Upon execution, the entire stack (including all interfaces in the stack) will be unconfigured and reconfigured with the configuration on the new management unit. After the reload is complete, all stack management capability must be performed on the new management unit.
www.dell.com | support.dell.com Configured Stack Mode—Stack or Ethernet Stack Mode—Stack or Ethernet Link Status—Status of the link Link Speed—Speed (Gb/s) of the stack port link Example 2 The S50V has two expansion slots for up to four stacking ports, so this report is set up to display all four ports, as shown in Figure 12-77, whether or not all are installed (in this case, only a 10G XFP module is installed, but it is not linked).
Interface—Stack port number (A or B) Diagnostic Entry1—80 character string used for diagnostics. Diagnostic Entry—80 character string used for diagnostics. Diagnostic Entry3—80 character string used for diagnostics. show switch This command displays information about all units in the stack or about a specified unit. Syntax Mode Example 1 show switch [unit] User Exec; Privileged Exec Figure 12-78 shows the output of both show switch and show switch unit-id for on an S50. Figure 12-78.
www.dell.com | support.dell.com Example Figure 12-79 shows the output of both show switch and show switch unit-id for on an S50V. Figure 12-79. Example of Output from the show switch Command on an S50V Force10-S50V>show switch Management Preconfig Plugged-in Switch Code Switch Status Model ID Model ID Status Version ------ ------------ ---------------- ---------------- --------------- -------1 Mgmt Switch S50-01-GE-48T-V S50-01-GE-48T-V OK 2.5.1.
Preconfigured Model Identifier—This field displays the preconfigured model identifier for this switch. A Model Identifier is a 32-character field assigned by the device manufacturer to identify the device. Plugged-in Model Identifier—This field displays the plugged-in model identifier for this switch. Switch Status—This field displays the switch status. Possible values are OK, Unsupported, Code Mismatch, Config Mismatch, or Not Present. Switch Description—This field displays the switch description.
www.dell.com | support.dell.com Switch Model ID—This field displays the model identifier for the supported switch type. Management Pref—This field indicates the administrative management preference value assigned to the switch. This preference value indicates how likely the switch is to be chosen as the management unit. Code Type—This field displays the code load target identifier of the switch type. Example 2 Figure 12-81.
switch priority This command configures the ability of a switch to become the management unit in a stack. Syntax switch unit priority value The unit is the switch identifier. The value is the preference parameter that allows the user to specify the priority of one backup switch over another. The priority range is 0 to 15. The switch with the highest priority value will be chosen to become the management unit if the active management unit fails.
www.dell.com | support.dell.com Slot and Card Commands This section provides detailed explanations of the slot and card commands: • • • • • set slot disable on page 226 set slot power on page 226 show slot on page 226 show supported cardtype on page 227 slot on page 229 set slot disable Command History Version 2.3 Replaced by the slot command. set slot power Command History Version 2.3 Replaced by the slot command.
Admin State—This field displays the slot administrative mode as enabled or disabled. Power State—This field displays the slot power mode as enabled or disabled. Configured Card Model Identifier—This field displays the model identifier of the card preconfigured in the slot. Model Identifier is a 32-character field used to identify a card. Pluggable—This field indicates whether cards are pluggable or non-pluggable in the slot. Power Down—This field indicates whether the slot can be powered down.
www.dell.com | support.dell.com Example 1 Figure 12-83. Using the show supported cardtype Command on an S50 Force10-S50 #show supported cardtype CID Card Model ID --- -------------------------------2 SA-01-10GE-2P <========= catalog # of Force10 10G XFP fiber module for S50 3 SA-01-GE-48T <========== catalog # of S50 model switch Force10-S50#show supported cardtype 3 Card Type......................... 0x56304002 Model Identifier.................. S50-01-GE-48T Card Description..................
slot (This command is not usable for S-Series switches, because they do not have slots in the conventional sense.) This command configures a slot in a system. Command History Related Commands Version 2.3 Modified: Added the disable and power options, replacing the set slot disable and set slot power commands. show slot Displays information about the expansion slots. show supported cardtype Displays information about all card types supported in the system.
| Stacking Commands www.dell.com | support.dell.
13 DHCP Server Commands These commands configure the Dynamic Host Configuration Protocol (DHCP) server parameters and address pools.
www.dell.com | support.dell.com bootfile The command specifies the name of the default boot image for a DHCP client. The filename specifies the boot image file. The oe version of this command deletes the boot image name. Syntax bootfile filename no bootfile Default Mode none DHCP Pool Config clear ip dhcp binding This command deletes an automatic address binding from the DHCP server database. If “*” is specified, the bindings corresponding to all the addresses are deleted.
client-identifier This command specifies the unique identifier for a DHCP client. The unique identifier is a valid notation in hexadecimal format. In some systems, such as Microsoft DHCP clients, the client identifier is required instead of hardware addresses. The unique identifier is a concatenation of the media type and the MAC address. For example, the Microsoft client identifier for Ethernet address c819.2488.f177 is 01c8.1924.88f1.77 where 01 represents the Ethernet media type.
www.dell.com | support.dell.com dns-server This command specifies the IP servers available to a DHCP client. Address parameters are valid IP addresses; each made up of four decimal bytes ranging from 0 to 255. IP address 0.0.0.0 is invalid. The no version of this command removes the DNS Server list. Syntax dns-server address1 [address2....address8] no dns-server Default Mode none DHCP Pool Config domain-name This command specifies the domain name for a DHCP client.
host This command specifies the IP address and network mask for a manual binding to a DHCP client. Address and Mask are valid IP addresses; each made up of four decimal bytes ranging from 0 to 255. IP address 0.0.0.0 is invalid. The prefix-length is an integer from 0 to 32. The no version of this command removes the IP address of the DHCP client.
www.dell.com | support.dell.com Syntax ip dhcp excluded-address lowaddress [highaddress] The no version of this command removes the excluded IP addresses for a DHCP client. Default Mode none Global Config ip dhcp filtering (global) This command enables DHCP filtering on all interfaces (globally). DHCP requests/replies will be blocked on all physical and VLAN interfaces. Syntax [no]ip dhcp filtering The no version of this command removes DHCP filtering globally.
ip dhcp pool This command configures a DHCP address pool name on a DHCP server and enters DHCP Pool Config mode. Syntax ip dhcp pool name The no version of this command removes the DHCP address pool. The name should be a previously configured pool name. Default Mode none Global Config Mode lease This command configures the duration of the lease for an IP address that is assigned from a DHCP server to a DHCP client.
www.dell.com | support.dell.com netbios-name-server This command configures Windows Internet Naming Service (WINS) name servers that are available to DHCP clients. WINS name servers map NetBIOS names to IP addresses on TCP/IP networks. Syntax [no] netbios-name-server address [address2...address8] One IP address is required, although one can specify up to eight addresses in one command line.
Default Mode If the next-server command is not used to configure a boot server list, the DHCP Server uses inbound interface helper addresses as boot servers. DHCP Pool Config option The command configures DHCP Server options. Code specifies the DHCP option code. Ascii string specifies an NVT ASCII character string. ASCII character strings that contain white space must be delimited by quotation marks. Hex string specifies hexadecimal data.
www.dell.com | support.dell.com Lease expiration—The lease expiration time of the IP Address assigned to the client. Type—The manner in which IP Address was assigned to the client. show ip dhcp global configuration This command displays address bindings for the specific IP address on the DHCP server. If no IP address is specified, the bindings corresponding to all the addresses are displayed.
Hardware Address Type—The protocol of the hardware platform. Host—The IP address and the mask for a manual binding to a DHCP client. show ip dhcp server statistics This command displays DHCP server statistics. Syntax Mode show ip dhcp server statistics Privileged Exec and User Exec Address Pool—The number of configured address pools in the DHCP server. Automatic Bindings—The number of IP addresses that have been automatically mapped to the MAC addresses of hosts that are found in the DHCP database.
www.dell.com | support.dell.com Detection Method—The manner in which the IP address of the hosts were found on the DHCP Server 242 Detection time—The time when the conflict was found.
14 Time Commands Use the commands in this chapter to configure and monitor time and date on the switch. You can manually set the system clock or use SNTP (see SNTP Commands on page 244).
www.dell.com | support.dell.com Mode Privileged Exec Command History Version 2.5.1.0 Example Figure 14-85. Introduced Example of Output from show clock Command Force10# show clock FRI MAR 02 08:57:47 2006 SNTP Commands This section provides a detailed explanation of the Simple Network Time Protocol (SNTP) commands. The commands are comprised of two functional groups: • • Configuration Commands configure features and options of the switch.
sntp client mode This command enables the Simple Network Time Protocol (SNTP) client, and optionally sets the mode to either broadcast or unicast. Syntax sntp client mode [broadcast | unicast] Use the no sntp client mode command to disable SNTP client mode. Parameters Default Mode broadcast SNTP operates in the same manner as multicast mode but uses a local broadcast address instead of a multicast address.
www.dell.com | support.dell.com Usage Default Mode You can also set the poll interval for an SNTP client with the sntp client port command. 6 Global Config sntp unicast client poll-timeout This command sets the number of seconds to wait for an SNTP response when the client is configured in unicast mode. Syntax sntp unicast client poll-timeout poll-timeout The poll-timeout range is 1 to 30 seconds.
Parameters ipaddress Specify either the IPv4 address of the server or a DNS hostname. If DNS, then that hostname should be resolved into an IP address each time a SNTP request is sent to it. priority Optionally, specify the priority of this server entry in determining the sequence of servers to which SNTP requests will be sent. The client continues sending requests to different servers until a successful response is received or all servers are exhausted.
www.dell.com | support.dell.com show sntp client This command displays SNTP client settings. Syntax show sntp client Mode Privileged Exec Example Figure 14-87.
Field Descriptions Server IP Address—IP address of configured SNTP server Server Type—Address type of server Server Stratum—Claimed stratum of the server for the last received valid packet Server Reference ID—Reference clock identifier of the server for the last received valid packet Server Mode—SNTP server mode Server Max Entries—Total number of SNTP Servers allowed Server Current Entries—Total number of SNTP configured For each configured server: IP Address—IP Address of configured SNTP Server Address T
| Time Commands www.dell.com | support.dell.
15 GARP Commands This chapter provides a detailed explanation of the General Attribute Registration Protocol (GARP) commands, including GVRP and GMRP commands. The commands are divided into two functional groups: • • Show commands display switch settings, statistics, and other information. Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
www.dell.com | support.dell.com The no version of this command sets the GVRP join time per port and per GARP to 20 centiseconds (0.2 seconds). This command has an effect only when GVRP is enabled. Default Mode Command History Related Commands 20 centiseconds Interface Config, Global Config; Interface Port Channel Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.5.2 Unsupported: not tested in 2.5.2 Version 2.5.
set garp timer leaveall This command sets how frequently Leave All PDUs are generated per port. A Leave All PDU indicates that all registrations will be unregistered. Participants would need to rejoin in order to maintain registration. The value applies per port and per GARP participation. The time may range from 200 to 6000 (centiseconds). The value 1000 centiseconds is 10 seconds.
www.dell.com | support.dell.com GARP VLAN Registration Protocol (GVRP) Commands This section provides a detailed explanation of the GVRP commands: • • • • • • • gvrp adminmode enable on page 254 gvrp interfacemode enable on page 254] gvrp interfacemode enable all on page 255 set gvrp adminmode on page 255 set gvrp interfacemode on page 255 set gvrp interfacemode all on page 255 show gvrp configuration on page 255 gvrp adminmode enable This command enables GVRP globally.
gvrp interfacemode enable all This command enables GVRP (GARP VLAN Registration Protocol) for all ports. Syntax set gvrp interfacemode enable all Use no set gvrp interfacemode enable all to disable GVRP for all ports. If GVRP is disabled, Join Time, Leave Time, and Leave All Time have no effect. Default Mode Command History disabled Global Config Version 2.5.2 Unsupported: not tested in v.2.5.2 Version 2.5.1 Unsupported: not tested in v.2.5.1 Version 2.
www.dell.com | support.dell.com Example Figure 15-90.
GARP Multicast Registration Protocol (GMRP) Commands This chapter provides a detailed explanation of the GMRP commands. The commands are divided into two functional groups: • • Show commands display switch settings, statistics, and other information. Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
www.dell.com | support.dell.com gmrp interfacemode enable all This command enables GARP Multicast Registration Protocol (GMRP) on all interfaces. If an interface which has GARP enabled is enabled for routing or is enlisted as a member of a port-channel (LAG), GARP functionality will be disabled on that interface. GARP functionality will subsequently be re-enabled if routing is disabled and port-channel (LAG) membership is removed from an interface that has GARP enabled.
set gmrp interfacemode all Command History Version 2.3 Changed to gmrp interfacemode enable all. show gmrp configuration This command displays GARP Multicast Registration Protocol information for one or all interfaces. Syntax Mode Example show gmrp configuration {unit/slot/port | all} Privileged Exec and User Exec Figure 15-91.
www.dell.com | support.dell.com Port GMRP Mode—Indicates the GMRP administrative mode for the port. It may be enabled or disabled. If this parameter is disabled, Join Time, Leave Time and Leave All Time have no effect. The factory default is disabled. Port GVRP Mode—Indicates the GVRP administrative mode for the port. It may be enabled or disabled. If this parameter is disabled, Join Time, Leave Time and Leave All Time have no effect. The factory default is disabled.
16 RMON Commands This chapter contains syntax statements for the following commands: • • • • • • • • • • • • • • • rmon alarm on page 261 rmon collection history on page 263 rmon collection statistics on page 264 rmon event on page 264 show rmon on page 265 show rmon alarms on page 266 show rmon alarms brief on page 266 show rmon events on page 267 show rmon events brief on page 268 show rmon history on page 268 show rmon history brief on page 269 show rmon log on page 269 show rmon log brief on page 270 s
www.dell.com | support.dell.com Parameters 1-65535 An integer, from 1 to 65535 that uniquely identifies the alarm in the RMON Alarm Table. SNMP_OID The MIB object to monitor. The variable must be in the SNMP OID format, for example, 1.3.6.1.2.1.1.3. For general MIB queries, the OIDs start from 1.3.6.1.2.1. For private MIB queries, the OIDs start from 1.3.6.1.4.1.6027.1, where 6027 is the Dell Force10 Enterprise Number. The object type must be a 32-bit integer.
Example Figure 16-92. RMON configuration Example Force10# config Force10 (config)#rmon event 10 Force10 (config)#rmon event 20 Force10 (config)#rmon alarm 50 1.3.6.1.4.1.6027.1.1.16.0.2 absolute rising-threshold 200 10 falling-threshold 100 20 Related Commands show rmon alarms Display the contents of the RMON Alarm Table for a specific index number. show rmon alarms brief Display a summary of the contents of the RMON Alarm Table.
www.dell.com | support.dell.com rmon collection statistics Enable RMON MIB statistics collection on an interface. Syntax rmon collection statistics controlEntry 1-65535 [owner name] To remove RMON MIB statistics collection on an interface, use the no rmon collection statistics controlEntry 1-65535 command. Parameters Defaults Mode controlEntry 1-65535 Enter the keyword controlEntry to specify the RMON group of statistics using a value.
Defaults Mode Command History Usage Related Commands description string (OPTIONAL) Enter the keyword description followed by a string describing the event. Range: 1–127 alphanumeric characters owner name (OPTIONAL) Enter the keyword owner followed by a name for the owner of this event. Range: 1–127 alphanumeric characters As described above Global Config Version 2.5.1.
www.dell.com | support.dell.com rmon collection statistics Enable RMON MIB statistics collection on an interface. rmon event Add an event in the RMON event table. show rmon alarms Display the contents of the RMON Alarm Table for a specific index number. Syntax show rmon alarms [index] index Parameters Defaults Mode (OPTIONAL) Enter the RMON table index number to display just that entry. Range: 1-65535 No default behavior Privileged Exec Command History Version 2.5.1.0 Example Figure 16-94.
Mode Privileged Exec Command History Version 2.5.1.0 Example Figure 16-95. Introduced show rmon alarms brief Command Example Force10#show rmon alarms brief index SNMP OID -------------------------------------------------------------------1 1.3.6.1.2.1.1.3 2 1.3.6.1.2.1.1.3 3 1.3.6.1.2.1.1.3 Force10# Related Commands rmon alarm Set an alarm on a MIB object. show rmon events Display the contents of RMON Event Table for a specific index entry.
www.dell.com | support.dell.com show rmon events brief Display a summary of the contents of the RMON Event Table. Syntax Defaults Mode show rmon events brief No default behavior Privileged Exec Command History Version 2.5.1.0 Example Figure 16-97. Introduced show rmon event brief Command Example Force10#show rmon events brief index description -------------------------------------------------------------------1 abc 2 rt Force10# Related Commands rmon event Add an event in the RMON event table.
Example Figure 16-98. show rmon history index Command Example Force10#show rmon history 1800 RMON history control entry 1800 Interface ........................ IfIndex .......................... Bucket requested ................. Bucket granted ................... Sampling interval ................ Owner ............................ Status ...........................
www.dell.com | support.dell.com Defaults Mode No default behavior Privileged Exec Command History Example Version 2.5.1.0 Introduced Figure 16-100. show rmon log index Command Example Force10#show rmon log 1 RMON Log entry 1 Log event Index ......................... 5 Log time ................................ Log Description ......................... xyz Force10# Usage Information The log table has a maximum of 500 entries.
Related Commands rmon event Add an event in the RMON event table. rmon collection history Enable the RMON MIB history group of statistics collection on an interface. show rmon statistics Display the contents of RMON Statistics table for a specific index entry. Syntax Parameters Defaults Mode Command History Example show rmon statistics [index] index (OPTIONAL) Enter the index number to display just that entry. Range: 1-65535 No default behavior Privileged Exec Version 2.5.1.
www.dell.com | support.dell.com Defaults Mode No default behavior Privileged Exec Command History Example Version 2.5.1.0 Figure 16-103. show rmon statistics brief Command Example Force10#show rmon statistics brief Index Interface ---------------4 0/1 5 0/3 Force10# Related Commands 272 Introduced | RMON Commands rmon collection statistics Enable RMON MIB statistics collection on an interface.
17 IGMP Snooping Commands This chapter provides a detailed explanation of the IGMP (Internet Group Management Protocol) Snooping commands.
www.dell.com | support.dell.com igmp enable (global) This command enables IGMP Snooping on the system. The default value is disabled. Note: The IGMP application supports the following: • • • • Global configuration or per interface configuration. Per VLAN configuration is unsupported in the IGMP snooping application. Validation of the IP header checksum (as well as the IGMP header checksum) and discarding of the frame upon checksum error.
igmp fast-leave This command enables or disables IGMP Snooping fast-leave admin mode on a selected interface. Enabling fast-leave allows the switch to immediately remove the Layer 2 LAN interface from its forwarding table entry upon receiving an IGMP leave message for that multicast group without first sending out MAC-based general queries to the interface.
www.dell.com | support.dell.com Command History Related Commands Version 2.3 Modified: Revised from set igmp groupmembership-interval. Added Interface Range mode. Version 2.5.1 Added Interface Port Channel Config mode igmp enable (interface) Enables IGMP Snooping on a selected interface. interface range Defines an interface range and accesses the Interface Range mode interface Identifies an interface and enters the Interface Config mode.
Mode Interface Config;Interface Port Channel Config; Interface Vlan Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command History Related Commands Version 2.5.1 Modified: Added Interface Port Channel Config mode. Version 2.3 Modified: Revised from set igmp maxresponse. Added Interface Range and Interface Vlan Config modes. igmp enable (interface) Enables IGMP Snooping on a selected interface.
www.dell.com | support.dell.com Mode Interface Config; Interface Port Channel Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command History Related Commands Version 2.5.1 Modified: Added Interface Port Channel Config mode. Version 2.3 Modified: Revised from set igmp mrouter. Added Interface Range mode. igmp enable (interface) Enables IGMP Snooping on a selected interface.
Related Commands igmp enable (global) Enables IGMP Snooping on the system. igmp enable (interface) Enables IGMP Snooping on a selected interface. set igmp fast-leave Command History Related Commands Version 2.3 Revised to igmp fast-leave. igmp fast-leave Enables or disables IGMP Snooping fast-leave admin mode on a selected interface. igmp enable (global) Enables IGMP Snooping on the system.
www.dell.com | support.dell.com set igmp groupmembership-interval all This command sets the IGMP Group Membership Interval time on the system for all the interfaces. The Group Membership Interval time is the amount of time in seconds that a switch will wait for a report from a particular group on a particular interface before deleting the interface from the entry. Syntax set igmp groupmembership-interval all 2-3600 This variable must be greater than the IGMP Maximum Response time value.
Related Commands igmp enable (interface) Enables IGMP Snooping on a selected interface. show igmpsnooping Displays IGMP Snooping status information. set igmp maxresponse Command History Related Commands Version 2.3 igmp maxresponse Revised to igmp maxresponse. Sets the IGMP Maximum Response time on a particular interface. set igmp maxresponse all This command sets the IGMP Maximum Response time on the system for all the interfaces.
www.dell.com | support.dell.com no set igmp mcrtrexpiretime Default Mode Related Commands 0 Global Config igmp enable (interface) Enables IGMP Snooping on a selected interface. set igmp mcrtrexpiretime (global) Sets the Multicast Router Present Expiration time on the system for all the interfaces. show igmpsnooping Displays IGMP Snooping status information. set igmp mcrtexpiretime (interface) Command History Version 2.3 Related Commands Revised to igmp mcrtexpiretime.
set igmp mrouter interface Command History Related Commands Version 2.3 Revised to igmp mrouter interface. igmp enable (interface) Enables IGMP Snooping on a selected interface. igmp mrouter interface enable Configures a selected interface as a multicast router interface. set igmp mrouter Command History Version 2.3 Related Commands igmp mrouter Enables IGMP Snooping on a selected interface. igmp enable (global) Enables IGMP Snooping. Revised to igmp mrouter.
www.dell.com | support.dell.com Example Figure 17-104. Output of the show igmpsnooping Command Force10#show igmpsnooping Admin Mode...............................Enable Multicast Control Frame Count............0 Interfaces Enabled for IGMP Snooping.....1/0/10 Vlans enabled for IGMP snooping..........20 Report Fields Force10-S50 #show igmpsnooping 1/0/1 IGMP Snooping Admin Mode....................... Fast Leave Mode................................ Group Membership Interval......................
show igmpsnooping fast-leave Command History Version 2.3 Deprecated: Use show igmpsnooping to display whether or not IGMP Snooping is enabled on the designated interface. show igmpsnooping mrouter interface This command displays information about statically configured ports. Syntax Parameters Mode Example show igmpsnooping mrouter interface {unit/slot/port | vlan 1-3965} unit/slot/port Display ports on which Multicast Routers are detected. Enter interface in unit/slot/port format.
www.dell.com | support.dell.com Example Figure 17-106. Output of the show mac-address-table igmpsnooping Command Force10#show mac-address-table igmpsnooping Press Enter to execute the command.
18 LAG/Port Channel Commands This chapter provides syntax details of the Link Aggregation Group (LAG) commands (802.3ad), also called port channel, port trunking, and other terms.
www.dell.com | support.dell.
interface range Defines an interface range and accesses the Interface Range mode interface port-channel Creates the port channel (LAG) and invokes the Interface Port Channel Config mode. Or, if the port channel is already created, simply invokes the Interface Port Channel Config mode. channel-member This command adds/deletes the specified range of ports to the LAG (port channel) selected by the interface port-channel command.
www.dell.com | support.dell.com classofservice dot1p-mapping See classofservice dot1p-mapping on page 328 in the QoS chapter. clear port-channel This command removes all currently configured port-channels (LAGs). Syntax Mode Related Commands clear port-channel Privileged Exec cos-queue max-bandwidth Deletes the selected port from the specified logical interface.
cos-queue random-detect This command activates weighted random early discard (WRED) for each specified queue on the interface. Specific WRED parameters are configured using the 'random-detect queue-parms' and the 'random-detect exponential-weighting-constant' commands. The no version of this command disables WRED, thereby restoring the default tail drop operation for the specified queues on the interface.
www.dell.com | support.dell.com Related Commands addport In Interface Config mode, adds a port to the port-channel (LAG), or, in Interface Range mode, the selected range of interfaces channel-member Adds/deletes the specified range of ports to the LAG selected by the interface port-channel command. clear port-channel Removes all port-channels (LAGs). interface port-channel Creates the port channel (LAG) and invokes the Interface Port Channel Config mode.
Example Figure 18-108. show interfaces description Command Example S50 #conf S50 (Config)#interface 1/0/1 S50 (Interface 1/0/1)#description "1/0/1 is access port" S50 (Interface 1/0/1)#exit S50 (Config)#interface 1/0/30 S50 (Interface 1/0/30)#description 'management port in vlan 30' S50 (Interface 1/0/30)#exit S50 (Config)#exit S50 #show interfaces description 1/0/1 Interface.......1/0/1 IfIndex.........1 Description.....1/0/1 is access port MAC Address.....00:01:E8:D5:BA:C0 Bit Offset Val..
www.dell.com | support.dell.com gmrp interfacemode enable (LAG) This command enables GARP Multicast Registration Protocol (GMRP) on the selected LAG. If an interface with GARP enabled is enabled for routing or is enlisted as a member of the LAG (port channel), GARP functionality will be disabled on that interface. GARP functionality will subsequently be re-enabled on that interface if routing is disabled and port-channel (LAG) membership is removed from the interface.
igmp mrouter This command is available in the Interface Port Channel Config mode. See igmp mrouter on page 277 in the IGMP chapter. igmp mrouter interface This command is available in the Interface Port Channel Config mode. See igmp mrouter interface enable on page 278 in the IGMP chapter. interface port-channel This command invokes the Interface Port Channel Config mode, along with creating a port channel (LAG) if one with the designated number does not exist.
www.dell.com | support.dell.com Parameters Default Mode Command History Related Commands 1–199 Enter the number of the ACL, which was assigned using the access-list command. 1-4294967295 (OPTIONAL) Enter a sequence number that indicates the desired order of this ACL relative to other ACLs already assigned to this LAG. A lower number indicates higher precedence order. If the number is already in use for this LAG, this ACL replaces the currently attached ACL using that sequence number.
Related Commands interface port-channel Defines a port channel and invokes the Interface Port Channel Config mode interface range Defines an interface range and accesses the Interface Range mode mac access-group In the Global Config, Interface Config, or Interface Range modes, attaches a MAC ACL to the selected interface. mac access-list extended Creates a MAC Access Control List (ACL) identified by name, consisting of classification fields defined for the Layer 2 header of an Ethernet frame.
www.dell.com | support.dell.com Related Commands show interfaces port-channel Displays an overview of all port channels (LAGs) on the switch or details on the selected LAG. addport Add a port to a LAG. LAG ports must be physical ports, not other LAGs. port-channel enable all (global) This command enables the administrative mode for all port channel (LAGs). The no version of this command disables all port channels (LAGs). Syntax Mode Command History port-channel enable all Global Config Version 2.
port-channel name This command defines a name for the port channel (LAG). Mode Command History Global Config Version 2.5.1 Deprecated: Replaced by description (port channel), which adds a text description of the port channel from the new Interface Port Channel Config mode. port-channel staticcapability This command enables the support of port channels (static link aggregations - LAGs) on the device. By default, the static capability for all port channels is disabled. Command History Version 2.5.
www.dell.com | support.dell.com Command History Related Commands Version 2.5 Deprecated. Use protocol lacp and protocol static. Version 2.3 Revised from [no] port lacpmode all interface range Defines an interface range and accesses the Interface Range mode protocol lacp Reenables LACP on a LAG. protocol static Converts a LAG from LACP to static. port lacptimeout (global) This command sets the Link Aggregation Control Protocol (LACP) timeout on all ports.
port-security This command is available in the Interface Port Channel Config mode. See port-security on page 183 in the Security Commands chapter. port-security mac-address This command is available in the Interface Port Channel Config mode. See port-security mac-address on page 184 in the Security Commands chapter. port-security mac-address move This command is available in the Interface Port Channel Config mode. See port-security mac-address move on page 184 in the Security Commands chapter.
www.dell.com | support.dell.com interface range Defines an interface range and accesses the Interface Range mode protocol static Convert the LAG to static mode. protocol static This command converts the selected LAG (port channel) from LACP mode to static. Syntax protocol static Default disabled Mode Usage Interface Port Channel Config LAGs are in LACP mode by default.
set garp timer leaveall This command is available in the Interface Port Channel Config mode. See set garp timer leaveall on page 253 in the GARP Commands chapter. show interfaces port-channel This command displays details about the designated LAG (port channel) or a summary of all LAGs. Syntax Parameters Mode Command History Example 1 show interfaces port-channel {1–128 | brief} 1–128 Enter the number of the port channel, as defined in page 295.
www.dell.com | support.dell.com Example 2 Figure 18-110. Example of Output from show interface port-channel Command Force10#show interface port-channel 1 Description.................................... wills_po20-21-22 MAC Address.................................... 00:01:E8:D5:A0:81 MTU............................................
Syntax Mode Command History show port-channel brief Privileged Exec and User Exec Version 2.5.1 Modified to show interfaces port-channel. shutdown (port channel) This command enables or disables the port channel selected by the interface port-channel command. The port channel is enabled by default. Alternatively, the no version of this command enables the port channel. Syntax [no] shutdown Default enabled Mode Command History Related Commands Interface Port Channel Config Version 2.5.
www.dell.com | support.dell.com Related Commands interface range Defines an interface range and accesses the Interface Range mode interface port-channel Defines a port channel and invokes the Interface Port Channel Config mode snmp trap link-status (interface) Enables link status traps by selected interface spanning-tree (LAG) This command sets the spanning-tree operational mode on the selected LAG (port channel). The no version of this command sets the spanning-tree operational mode to disabled.
spanning-tree 0 priority (LAG) This command sets/clears the CST priority for the port channel. Syntax [no] spanning-tree 0 priority 0-15 Default 8 Mode Command History Related Commands Interface Port Channel Config Version 2.5.
www.dell.com | support.dell.com Defaults Mode Command History Related Commands 128 (priority) Interface Port Channel Config Version 2.5.1 Introduced in the new Interface Port Channel Config mode interface port-channel Defines a port channel and invokes the Interface Port Channel Config mode spanning-tree (LAG) Sets the spanning-tree operational mode on the selected port channel spanning-tree Sets the spanning-tree operational mode to enabled at the global level.
19 Spanning Tree (STP) Commands This chapter provides a detailed explanation of the Spanning Tree commands. The commands are divided into two functional groups: • • Show commands display switch settings, statistics, and other information. Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting. Note: The SFTOS software platform STP default mode is IEEE 802.1s, but the legacy IEEE 802.
www.dell.com | support.dell.com show spanning-tree This command displays spanning tree settings for the common and internal spanning tree. Syntax Mode Example 1 nieAund ooao:6CsEEu [rsaEt] Privileged Exec and User Exec Figure 19-111. Example Output from show spanning-tree Command Force10#show spanning-tree Bridge Priority................................ Bridge Identifier.............................. Time Since Topology Change..................... Topology Change Count..........................
Bridge Hold Time—Minimum time between transmission of Configuration Bridge Protocol Data Units (BPDUs) CST Regional Root—Bridge Identifier of the common spanning tree regional root. It is derived using the bridge priority and the base MAC address of the bridge. Regional Root Path Cost—Path cost to the common spanning tree Regional Root. Associated FIDs—List of forwarding database identifiers currently associated with this instance. Associated VLANs—List of VLAN IDs currently associated with this instance.
www.dell.com | support.dell.com Port Up Time Since Counters Last Cleared—Time since port was reset, displayed in days, hours, minutes, and seconds. Hello Time—Configured value of the parameter for common spanning tree. STP BPDUs Transmitted—Spanning Tree Protocol Bridge Protocol Data Units sent STP BPDUs Received—Spanning Tree Protocol Bridge Protocol Data Units received.
show spanning-tree mst port detailed This command displays the detailed settings and parameters for a specific port within a particular multiple spanning tree instance. Syntax show spanning-tree mst port detailed mstid unit/slot/port The instance mstid is a number that corresponds to the desired existing multiple spanning tree instance. The unit/slot/port is the desired switch port. Mode Report Fields Privileged Exec and User Exec MST Instance ID—The ID of the MST instance.
www.dell.com | support.dell.com Edge Port—The configured value indicating if this port is an edge port. Edge Port Status—The derived value of the edge port status. True if operating as an edge port; false otherwise.
Associated FIDs—List of forwarding database identifiers associated with this instance. Associated VLANs—List of VLAN IDs associated with this instance. show spanning-tree summary This command displays spanning tree settings and parameters for the switch. The following details are displayed on execution of the command. Syntax Mode Report Fields show spanning-tree summary Privileged Exec and User Exec Spanning Tree Adminmode—Enabled or disabled. Spanning Tree Version—Version of 802.
www.dell.com | support.dell.com Mode Related Commands Global Config spanning-tree (LAG) Sets the spanning-tree operational mode on the selected port channel spanning-tree port mode enable all spanning-tree bpdumigrationcheck Use this command to force a transmission of rapid spanning tree (RSTP) and multiple spanning tree (MSTP) BPDUs. Syntax spanning-tree bpdumigrationcheck {unit/slot/port | all} To transmit a BPDU from a specified interface, use its unit/slot/port.
Default Mode 0 Global Config spanning-tree edgeport This command specifies that this port is an edge port (portfast) within the common and internal spanning tree, allowing this port to transition to forwarding state without delay. The no version of this command specifies that this port is not an edge port within the common and internal spanning tree.
www.dell.com | support.dell.com The no version of this command sets the Bridge Forward Delay parameter for the common and internal spanning tree to the default value, in other words, 15. Syntax [no] spanning-tree forward-time 4-30 Default 15 Mode Global Config spanning-tree hello-time This command sets the Admin Hello Time parameter to a new value for the common and internal spanning tree.
Mode Global Config spanning-tree max-hops This command sets the MSTP Max Hops parameter to a new value for the common and internal spanning tree. The max-hops value is in a range of 1 to 127. The no version of this command sets the Bridge Max Hops parameter for the common and internal spanning tree to the default value.
www.dell.com | support.dell.com Default cost : auto external-cost : auto port-priorty : 128 Format spanning-tree mst {{cost <1-200000000> | auto } | {external-cost <1-200000000> | auto }| port-priority <0-240>} Mode Interface Config no spanning-tree mst This command sets the Path Cost or Port Priority for this port within the multiple spanning tree instance or in the common and internal spanning tree to the respective default values.
show spanning-tree This command displays spanning tree settings for the common and internal spanning tree, when the optional parameter “brief” is not included in the command. The following details are displayed. Format Mode show spanning-tree Bridge Priority Privileged EXEC and User EXEC Configured value. Bridge Identifier Time Since Topology Change in seconds Topology Change Count Number of times changed.
Hello Time show spanning-tree interface Privileged EXEC and User EXEC Admin hello time for this port Port mode Enabled or disabled. www.dell.com | support.dell.com Format Mode Port Up Time Since Counters Last Cleared Time since port was reset, displayed in days, hours, minutes, and seconds. STP BPDUs Transmitted Spanning Tree Protocol Bridge Protocol Data Units sent STP BPDUs Received Spanning Tree Protocol Bridge Protocol Data Units received.
The port identifier for this port within the CST. Port Priority The priority of the port within the CST. Port Forwarding State The forwarding state of the port within the CST. Port Role The role of the specified interface within the CST. Port Path Cost The configured path cost for the specified interface. Designated Root Identifier of the designated root for this port within the CST. Designated Port Cost Path Cost offered to the LAN by the Designated Port.
www.dell.com | support.dell.com If the external-cost token is specified, this command sets the external-path cost for MST instance “0” (in other words, the CIST instance). The external-path cost is specified as a number in the range of 1 to 200000000. If the priority token is specified, this command sets the priority for this port within a specific multiple spanning tree instance or the common and internal spanning tree instance, depending on the msti parameter.
The instance mstid is a number in the range 0-63 that corresponds to the desired existing multiple spanning tree instance. 0–61440 is the priority value, representing a range of 0 to 61440 in increments of 4096. If 0 (defined as the default CIST ID) is passed as the mstid, this command sets the bridge priority parameter to a new value for the common and internal spanning tree. The bridge priority value is a number within a range of 0 to 61440.
www.dell.com | support.dell.com spanning-tree port mode enable This command sets the Administrative Switch Port State for this port to enabled. The no version of this command sets the Administrative Switch Port State for this port to disabled. Syntax [no] spanning-tree port mode enable Default disabled Mode Command History Related Commands Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.
20 Quality of Service (QoS) Commands This chapter provides a detailed explanation of Quality of Service (QoS) commands. The chapter is divided into the following sections: • • • • Class of Service (CoS) Commands Differentiated Services (DiffServ) Commands on page 335 Provisioning (IEEE 802.1p) Commands on page 365 Buffer Carving on page 367 Note: Access Control Lists (ACLs) also factor into quality of service. For ACL commands, see ACL Commands on page 379.
www.dell.com | support.dell.com Table 20-22. Default CoS Queue Prioritization Queue Fraction (%) of Total Bandwidth 0 1/28 (3.57%) 1 2/28 (7.14%) 2 3/28 (10.71%) 3 4/28 (14.28%) 4 5/28 (17.86%) 5 6/28 (21.43%) 6 7/28 (25%) classofservice dot1p-mapping This command maps an 802.1p priority to an internal traffic class. Syntax classofservice dot1p-mapping userpriority trafficclass The userpriority value can range from 0-7 and trafficclass can range from 0-6.
Related Commands classofservice dot1p-mapping Maps an 802.1p priority to an internal traffic class. interface range Defines an interface range and accesses the Interface Range mode classofservice ip-precedence-mapping This command maps an IP precedence value to an internal traffic class. Syntax classofservice ip-precedence-mapping ipprecedence trafficclass The ipprecedence and trafficclass can both range from 0-6, although the actual number of available traffic classes depends on the platform.
www.dell.com | support.dell.com cos-queue max-bandwidth This command specifies the maximum transmission bandwidth limit for each interface queue. Also known as rate shaping, this has the effect of smoothing temporary traffic bursts over time so that the transmitted traffic rate is bounded. The total number of queues supported per interface is platform specific. Syntax Oen6HWEWEu, G6r o.Aa.
cos-queue strict This command activates the strict priority scheduler mode for each specified queue. The no version of this command restores the default weighted scheduler mode for each specified queue. Syntax [no] cos-queue strict queue-id-1 [queue-id-2 … queue-id-n> Modes Global Config; Interface Config; Interface Port Channel Config Command History Version 2.5.
www.dell.com | support.dell.com Mode Example Privileged Exec Figure 20-113. Example of show classofservice dot1p-mapping Command Force10 #show classofservice dot1p-mapping 1/0/1 User Priority ------------0 1 2 3 4 5 6 7 Traffic Class ------------1 0 0 1 2 2 3 3 The following information is repeated for each user priority. User Priority—The 802.
Traffic Class—The traffic class internal queue identifier to which the IP Precedence value is mapped. Related Commands classofservice ip-precedence-mapping Maps an IP precedence value to an internal traffic class show classofservice ip-precedence-mapping This command displays the current IP precedence mapping to internal traffic classes for all interfaces or a specific interface. Syntax show classofservice ip-precedence-mapping [unit/slot/port] The unit/slot/port parameter is optional.
www.dell.com | support.dell.com Example Figure 20-116. Example of show classofservice trust Command Force10 #show classofservice trust Class of Service Trust Mode: Dot1P Non-IP Traffic Class—The traffic class used for non-IP traffic. This is only displayed when the COS trust mode is set to trust IP Precedence or IP DSCP (on platforms that support IP DSCP)—either 'trust ip-dscp' or 'trust ip-precedence'. Untrusted Traffic Class—The traffic class used for all untrusted traffic.
Differentiated Services (DiffServ) Commands The commands in this section are: • diffserv on page 337 Class Commands on page 337: • • • • • • • • • • • • • • • • • class-map match-all on page 338 class-map rename on page 339 match ethertype on page 340 match any on page 340 match class-map on page 340 match cos on page 341 match destination-address mac on page 341 match dstip on page 341 match dstl4port on page 342 match ip dscp on page 342 match ip precedence on page 343 match ip tos on page 343 match pr
www.dell.com | support.dell.com • show service-policy on page 364 For examples of using these commands, see the DiffServ chapter in the SFTOS Configuration Guide. The user configures DiffServ in several stages by specifying: • Class: Creating and deleting classes Defining match criteria for a class. Note: The only way to remove an individual match criterion from an existing class definition is to delete the class and re-create it.
The user can display summary and detailed information for classes, policies and services. All configuration information is accessible via the CLI and SNMP user interfaces. diffserv This command sets the DiffServ operational mode to active. While disabled, the DiffServ configuration is retained and can be changed, but it is not activated. When enabled, Diffserv services are activated. The no version of this command sets the DiffServ operational mode to inactive.
www.dell.com | support.dell.com class-map match-all This command defines a new DiffServ class of type match-all. The match-all class type indicates that all of the individual match conditions must be true for a packet to be considered a member of the class.
The command defines how matching in the policy works. Policy statements describe what to match in the packet. For example, “class-map match-all Dallas” means “Create a policy named ‘Dallas’ that must match all statements in the policy.” Example Figure 20-117.
www.dell.com | support.dell.com match ethertype This command adds to the specified class definition a match condition based on the value of the ethertype. The ethertype value is specified as one of the following keywords: appletalk, arp, ibmsna, ipv4, ipv6, ipx, mplsmcast, mplsucast, netbios, novell, pppoe, rarp or as a custom ethertype value in the range of 0x0600–0xFFFF. Syntax Mode match ethertype {keyword | custom 0x0600-0xFFFF} Class Map (The prompt is “(Config-classmap)#”.
The total number of class rules formed by the complete reference class chain (includes both predecessor and successor classes) must not exceed a platform-specific maximum. In some cases, each removal of a refclass rule reduces the maximum number of available rules in the class definition by one. match cos This command adds to the specified class definition a match condition for the Class of Service value (the only tag in a single tagged packet or the first or outer 802.
www.dell.com | support.dell.com match dstl4port This command adds to the specified class definition a match condition based on the destination Layer 4 port of a packet using a single keyword or numeric notation or a numeric range notation. Syntax match dstl4port {portkey | 0-65535} [0-65535] To specify the match condition as a single keyword, the value for portkey is one of the supported port name keywords.
match ip precedence This command adds to the specified class definition a match condition based on the value of the IP Precedence field in a packet, which is defined as the high-order three bits of the Service Type octet in the IP header (the low-order five bits are not checked). Note: The IP DSCP, IP precedence, and IP TOS match conditions are alternative ways to specify a match criterion for the same Service Type field in the IP header, but with a slightly different user notation.
www.dell.com | support.dell.com To specify the match condition using a single keyword notation, the value for protocol-name is one of the supported protocol name keywords. The currently supported values are: icmp, igmp, ip, tcp, udp. Note that a value of ip is interpreted to match all protocol number values. To specify the match condition using a numeric value notation, the protocol number is a standard value assigned by IANA and is interpreted as an integer from 0 to 255.
match srcl4port This command adds to the specified class definition a match condition based on the source Layer 4 port of a packet using a single keyword or numeric notation or a numeric range notation. Syntax match srcl4port {portkey | 0-65535} [0-65535] To specify the match condition as a single keyword notation, the value for portkey is one of the supported port name keywords. The currently supported portkey values are: domain, echo, ftp, ftpdata, http, smtp, snmp, telnet, tftp, www.
www.dell.com | support.dell.
The queueid is an integer from 0 to n-1, where n is the number of egress queues supported by the device. Mode Policy Class (The prompt is “(Policy-classmap Config)#”.) bandwidth kbps This command identifies a minimum amount of bandwidth to be reserved for the specified class instance within the named policy using an absolute rate notation. The committed information rate is specified in kilobits-per-second (Kbps) and is an integer from 1 to 4294967295.
www.dell.com | support.dell.com Policy Type Incompatibilities Out Expedite (all forms) class This command creates an instance of a class definition within the specified policy for the purpose of defining treatment of the traffic class through subsequent policy attribute statements. Note that this command causes the specified policy to create a reference to the class definition. Note: The CLI mode is changed to Policy Class mode (“Policy-classmap Config”) when this command is successfully executed.
expedite kbps This command identifies the maximum guaranteed amount of bandwidth to be reserved for the specified class instance within the named policy using an absolute rate notation. The committed information rate is specified in kilobits-per-second (Kbps) and is an integer from 1 to 4294967295. The optional committed burst size is specified in kilobytes (KB) as an integer from 1 to 128, with a default of 4.
www.dell.com | support.dell.com Policy Type Incompatibilities Out Bandwidth (all forms), Shape Peak mark cos This command marks all packets for the associated traffic stream with the specified class of service value in the priority field of the 802.1p header. If the packet does not already contain this header, one is inserted. Syntax mark cos 0-7 The cos value is an integer from 0 to 7.
Table 20-23.
www.dell.com | support.dell.com police-simple This command establishes the traffic policing style for the specified class. Syntax police-simple {1-4294967295 1-128 conform-action {drop | set-prec-transmit 0-7 | set-dscp-transmit 0-63 | set-cos-transmit 0-7 | set-secondary-cos-transmit 0-7 | transmit} [violate-action drop]} The simple form of the command uses a single data rate and burst size, resulting in two outcomes: conform and nonconform.
police-single-rate This command is used to establish the traffic policing style for the specified class. The single-rate form of the police command uses a single data rate and two burst sizes, resulting in three outcomes: conform, exceed and violate. The conforming data rate is specified in kilobits-per-second (Kbps) and is an integer from 1 to 4294967295. The conforming burst size is specified in kilobytes (KB) as an integer from 1 to 128.
www.dell.com | support.dell.com For set-dscp-transmit, a value is required and is specified as either an integer from 0 to 63, or symbolically through one of the following keywords: af11, af12, af13, af21, af22, af23, af31, af32, af33, af41, af42, af43, be, cs0, cs1, cs2, cs3, cs4, cs5, cs6, cs7, ef. For set-prec-transmit, an IP Precedence value is required and is specified as an integer from 0-7.
policy-map rename This command changes the name of a DiffServ policy. Syntax policy-map rename policyname newpolicyname The policyname is the name of an existing DiffServ class. The newpolicyname parameter is a case-sensitive alphanumeric string from 1 to 31 characters uniquely identifying the policy. Mode Global Config mark secondary-cos This command marks all packets for the associated traffic stream with the specified secondary class of service value (the inner 802.
www.dell.com | support.dell.com The last two parameters, namely sampling rate and decay exponent, are hierarchically specified in this command. That is, in order to provide a value for the decay exponent <0-16>, the user is required to also specify a sampling rate <0-1000000> for proper command interpretation.
Incompatibilities Expedite (all forms) Service Commands The service command set consists of service-policy and show service. The service-policy command assigns a DiffServ traffic conditioning policy (as specified by the policy commands) to an interface in the incoming direction. Only one policy may be assigned at any one time to an interface. service-policy This command attaches a policy to an interface in a particular direction. However, this version of SFTOS limits the direction to ingress.
www.dell.com | support.dell.com Show Commands The commands in this section are: • • • • • • • show class-map on page 358 show diffserv on page 359 show policy-map on page 362 show diffserv service on page 360 show diffserv service brief on page 361 show policy-map interface on page 363 show service-policy on page 364 The DiffServ show commands display configuration and status information for: • • • Classes Policies Services This information can be displayed in either summary or detailed formats.
Field Descriptions If a class name is specified, the following fields are displayed: Class Name—The name of this class Class Type—The class type (all, any, or acl) indicating how the match criteria are evaluated for this class. A class type of all means every match criterion defined for the class is evaluated simultaneously they must all be true to indicate a class match. For a type of any each match criterion is evaluated sequentially and only one need be true to indicate a class match.
www.dell.com | support.dell.com Example Figure 20-119. Example of Output from the show diffserv Command Force10 #show diffserv DiffServ Admin mode............................ Class Table Size Current/Max................... Class Rule Table Size Current/Max.............. Policy Table Size Current/Max.................. Policy Instance Table Size Current/Max......... Policy Attribute Table Size Current/Max........ Service Table Size Current/Max.................
Example Figure 20-120. Example of Output from the show diffserv service Command Force10 #show diffserv service 1/0/1 in DiffServ Admin mode............................ Interface...................................... Direction...................................... No policy is attached to this interface in this Report Fields Enable 1/0/1 In direction.
www.dell.com | support.dell.com show policy-map This command displays all configuration information for the specified policy. Syntax show policy-map [policyname] The policyname is the name of an existing DiffServ policy. Mode Report Fields EXEC Privilege Mark Secondary COS—Denotes the secondary class of service value that is set in the 802.1p header of outbound packets. This is not displayed if the mark secondary-cos was not specified.
Committed Burst Size (KB)—This field displays the committed burst size, used in simple policing. Conform Action—The current setting for the action taken on a packet considered to conform to the policing parameters. This is not displayed if policing is not in use for the class under this policy. Conform DSCP Value—This field shows the DSCP mark value if the conform action is markdscp. Conform IP Precedence Value—This field shows the IP Precedence mark value if the conform action is markprec.
www.dell.com | support.dell.com The unit/slot/port parameter specifies a valid interface for the system. The direction parameter indicates the interface direction of interest. Report Fields Interface—Valid unit, slot and port number separated by forward slashes. Direction—The traffic direction of this interface service, either in or out. Note: SFTOS only supports a policy-map in the “in” direction. Operational Status—The current operational status of this DiffServ service interface.
Discarded Packets—A count of the total number of packets discarded for all class instances in this service for any reason due to DiffServ treatment. These are overall per-interface per-direction counts. Sent Packets—A count of the total number of packets forwarded for all class instances in this service after their defined DiffServ treatments were applied.
www.dell.com | support.dell.com dot1p-priority This command configures the 802.1p port priority, from 0 to 7, assigned to untagged packets for a specific interface. Syntax dot1p-priority 0–7 Default 0 Mode Interface Port Channel Config Command History Version 2.5 Introduced. Replaces vlan priority for port channel ports (LAG ports) show classofservice dot1pmapping This command displays the current 802.1p priority mapping to internal traffic classes for all or specific interfaces.
Mode Interface Config Command History Version 2.5 Replaced, in part, by dot1p-priority, for port channel ports.
www.dell.com | support.dell.com Mode Usage Command History Related Commands Global Config After you change the buffers, you should execute this command before rebooting the switch to verify that the buffer allocations meet the hardware requirements. Version 2.5.1 Introduced buffer dedicated (1G and stacking ports) Set buffer sizes per port and per queue for ports 1 – 48 and the stack port on the S50, and ports 1 – 52 and the stack port on the S50V.
Defaults Equal allocation per queue Mode Global Config Command History Version 2.5.1 Usage Information Related Commands Introduced For example, to set the buffer to 50k in each buffer on port 1/0/1 in unit 1 in an S50 stack, the command would be buffer dedicated interface 1/0/1 50 50 50 50 50 50 50. buffer check Verify that the configured buffer allocations meet the hardware requirements.
www.dell.com | support.dell.com Parameters interface unit/slot/port Enter the keyword interface followed by the port that you want to configure, in unit/slot/port format. The only ports that this command configures are ports 49 and 50 on the S50. Use buffer dedicated (1G and stacking ports) for the other ports. The possible ports vary by platform: S50: The optional 10Gb ports — 49 and 50 (Use buffer dedicated (1G and stacking ports) for ports 1 – 48.) S25P: 1 through 25 Queue-0_buffer, Queue-1_buffer...
To return buffers to their default values, use the no buffer dynamic interface unit/slot/port or no buffer dynamic system-uplink unit command syntax, depending on the target port. Parameters interface unit/slot/port Enter the keyword interface followed by the port that you want to configure. The possible ports vary by platform: • • system-uplink unit S50: The 1Gb ports (ports 1 – 48) (Dynamic buffering is not supported for the optional 10Gb ports 49 and 50.
www.dell.com | support.dell.com buffer dynamic interface (S25P) This command sets the dynamic buffer size for S25P ports. Syntax [no] buffer dynamic interface unit/slot/port buffer To return buffers to their default values, use the no buffer dynamic interface unit/slot/port command syntax.
Command History Related Commands Version 2.5.1 Introduced buffer check Verify that the configured buffer allocations meet the hardware requirements. buffer dynamic (1G and stack ports) Set dynamic buffer sizes per port for ports 1 – 48 and the stack port on the S50, and ports 1 – 52 and the stack port on the S50V. buffer dedicated interface (10G ports) Set buffer sizes per port and per queue for ASICs controlling the optional 10GB ports 49 and 50 on the S50 and the 10Gb ports on the S25P.
www.dell.com | support.dell.com Usage Information Related Commands The total number of packets cannot exceed 2047 per port. buffer check Verify that the configured buffer allocations meet the hardware requirements.
Example 2 Figure 20-122. show buffer unit Command Output from an S50V or S25P (Force10 S50) #show buffer unit 2 Broadcom ASIC 56504 (BCM unit 0) Total Physical Buffer………………………….2048 kb Total Dedicated Buffer………………………..1340 kb Total Dynamic Buffer………………………….708 kb Interface Fixed buffer Fixed Buffer Over-sub (Conf) (Actual) (Conf) 2/0/1 100k 100k 10 2/0/2 120k 95k 12 2/0/3 100k 100k 10 2/0/4 120k 95k 12 !-----------output truncated-------------! Table 20-24.
www.dell.com | support.dell.com show buffer allocation interface This command displays configured and actual static buffer allocation and packet allocation values per queue for the selected port in an S50, S50V, or S25P. Because configured values do not take effect until the stack is rebooted, the actual values can be different.
Table 20-25. Command History Related Commands Fields of show buffer unit Command Output (continued) Field Description Pkt Limit (Conf) The packet limit allocation, as configured Pkt Limit (Actual) The packet limit allocation, as it is before reboot sets the value to the configured value Version 2.5.1 Introduced buffer check Verify that the configured buffer allocations meet the hardware requirements.
www.dell.com | support.dell.
21 ACL Commands SFTOS supports the following types of Access Control Lists (ACLs): • • • IP Access Control List (IP ACL) Commands MAC Access Control List (ACL) Commands on page 384 Broadcast Storm Control Commands on page 389 An Access Control List (ACL) ensures that only authorized users and types of traffic have access to specific resources, while blocking unwarranted attempts to reach network resources.
www.dell.com | support.dell.com Syntax IP Standard ACL: 1-99 {deny | permit} {every | srcip srcmask} [log] [assign-queue queue-id] OOEnn6ganC [{mirror | redirect} unit/slot/port] Note: The mirror option is supported in the S50V and S25P models only.
log (OPTIONAL) Specifies that hits on this rule are to be logged (For details, see the System Logs chapter in the SFTOS Configuration Guide). The log attribute is only for deny rules. assign-queue (OPTIONAL) The assign-queue ID is the queue identifier to which packets matching this rule are assigned. queue-id {mirror | redirect} unit/slot/port (OPTIONAL) Specify whether the packets matching this rule are mirrored or redirected through the specified port.
www.dell.com | support.dell.com Mode Command History Related Commands Interface Config (including Interface Loopback Config) and Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.3 Interface Range mode added interface range Defines an interface range and accesses the Interface Range mode. access-list Creates an IP access control list. ip address (routed) configures an IP address on a routed interface.
Example Figure 21-125. Command Example specifying ACL number: show ip access-lists Force10-S50 #show ip access-lists 1 ACL ID: 1 Interface:1/0/48 Field Descriptions Rule Number: 1 Action......................................... Match All...................................... Source IP Address.............................. Source IP Mask................................. permit FALSE 1.1.1.1 255.255.255.0 Rule Number: 2 Action......................................... Match All............................
www.dell.com | support.dell.com MAC Access Control List (ACL) Commands The commands in this section are: • • • • • {deny|permit} on page 384 mac access-list extended on page 386 mac access-list extended rename on page 386 mac access-group on page 387 show mac access-lists on page 388 {deny|permit} This command creates a new rule for the selected MAC access list. Each rule is appended to the list of configured rules for the list. Note that an implicit “deny all” MAC rule always terminates the access list.
Note: The 'no' form of this command is not supported, as the rules within an ACL cannot be deleted individually. Rather, the entire ACL must be deleted and re-specified. A rule may either deny or permit traffic according to the specified classification fields. At a minimum, the source and destination MAC value must be specified, each of which may be substituted using the keyword any to indicate a match on any value in that field.
www.dell.com | support.dell.com mac access-list extended This command creates a MAC Access Control List (ACL) identified by name, consisting of classification fields defined for the Layer 2 header of an Ethernet frame. Note: The CLI mode is changed to Mac Access List Config (prompt is “hostname (Mac-Access-List Config)#”) when this command is successfully executed. If a MAC ACL by this name already exists, this command simply invokes the mode.
Related Commands {deny|permit} Creates a new rule for the MAC access list selected by the mac access-list extended command.
www.dell.com | support.dell.com show mac access-lists This command displays the rules defined for all MAC ACLs or the MAC ACL specified by name. Syntax Mode show mac access-lists [name] Privileged Exec When the command is used with the name option, the report displays details for the identified MAC access list, in the following fields: Field Descriptions Rule Number—The ordered rule number identifier defined within the ACL. Action—Displays the action associated with each rule.
Broadcast Storm Control Commands This section contains the following commands: • • • show storm-control storm-control broadcast on page 390 storm-control flowcontrol on page 390 show storm-control This command displays switch configuration information. Syntax Mode Defaults show storm-control [unit/slot/port | all] Privileged Exec Broadcast Storm Recovery Mode—May be enabled or disabled. The factory default is disabled. 802.3x Flow Control Mode—May be enabled or disabled. The factory default is disabled.
www.dell.com | support.dell.com storm-control broadcast This command enables broadcast storm recovery mode. If the mode is enabled, broadcast storm recovery with high and low thresholds is implemented. Syntax [no] storm-control broadcast The no version of this command disables broadcast storm recovery mode. The threshold implementation follows a percentage pattern.
22 Routing Commands This chapter provides a detailed explanation of routing commands, in the following sections: • • • • • • Address Resolution Protocol (ARP) Commands on page 391 IP Routing on page 397 Bootp/DHCP Relay Commands on page 407 Router Discovery Protocol Commands on page 410 (IRDP/ICMP) Virtual LAN Routing Commands on page 413 Virtual Router Redundancy Protocol (VRRP) Commands on page 414 Address Resolution Protocol (ARP) Commands This section provides a detailed explanation of the ARP command
www.dell.com | support.dell.com arp This command creates an ARP entry. Syntax [oe] sd ipaddress macaddr The value for ipaddress is the IP address of a device on a subnet attached to an existing routing interface. macaddr is a unicast MAC address for that device. The format is 6 two-digit hexadecimal numbers that are separated by colons, for example 00:06:29:32:81:40. The no version of this command deletes an ARP entry. Mode Global Config arp cachesize This command configures the ARP cache size.
arp resptime This command configures the ARP request response timeout. The value for seconds is a valid positive integer, which represents the IP ARP entry response timeout time in seconds. The range for seconds is between 1-10 seconds. The no version of this command configures the default ARP request response timeout. Syntax arp resptime 1-10 no arp resptime Default Mode l Global Config arp retries This command configures the ARP count of maximum request for retries.
www.dell.com | support.dell.com clear arp-cache This command causes all ARP entries of type dynamic to be removed from the ARP cache. If the gateway parameter is specified, the dynamic entries of type gateway are purged as well. Syntax Mode clear arp-cache [gateway] Privileged Exec ip proxy-arp This command enables proxy ARP on a router interface. Without proxy ARP, a device only responds to an ARP request if the target IP address is an address configured on the interface where the ARP request arrived.
Example Figure 22-127. show arp Command Example (Force10 ) #show arp Age Time (seconds)............................. Response Time (seconds)........................ Retries........................................ Cache Size..................................... Dynamic Renew Mode ............................ Total Entry Count Current / Peak .............. Static Entry Count Configured / Active / Max ..
www.dell.com | support.dell.com Example Figure 22-128. show arp Command Example (Force10 ) #show arp brief Age Time (seconds)............................. Response Time (seconds)........................ Retries........................................ Cache Size..................................... Dynamic Renew Mode ............................ Total Entry Count Current / Peak .............. Static Entry Count Configured / Active / Max ..
IP Routing This section provides a detailed explanation of the IP Routing commands. The commands are divided by functionality into the following different groups: • • Show commands are used to display switch settings, statistics and other information. Configuration Commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting.
www.dell.com | support.dell.com Mode Interface Config; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command History Related Commands Version 2.3 Interface Range mode added interface range Defines an interface range and accesses the Interface Range mode ip address (routed) This command configures an IP address on a routed interface. The IP address may be a secondary IP address.
Packets originated on the router, such as OSPF packets, may be fragmented by the IP stack. The IP stack uses its default IP MTU and ignores the value set using the ip mtu command. OSPF advertises the IP MTU in the Database Description packets it sends to its neighbors during database exchange. If two OSPF neighbors advertise different IP MTUs, they will not form an adjacency unless OSPF has been instructed to ignore differences in IP MTU with the ip ospf mtu-ignore command.
www.dell.com | support.dell.com Mode Global Config ip route default This command configures the default route. The value for nextHopRtr is a valid IP address of the next hop router. The preference is an integer value from 1 to 255. The no version of this command deletes all configured default routes.
routing This command enables routing for the selected interface. Syntax [no] routing The no version of this command disables routing for an interface. The current value for this function is displayed under show ip interface labeled as “Routing Mode”. Default Mode Related Commands disabled Interface Config show ip interface (see below) Sets the IP gateway of the switch. interface Invokes the Interface ManagementEthernet mode, the (Config-if-ma)# prompt.
www.dell.com | support.dell.com Example 2 Figure 22-130. show ip interface output Command Example (Force10) #show ip interface 1/0/1 Routing Mode................................... Administrative Mode............................ Forward Net Directed Broadcasts................ Proxy ARP...................................... Active State................................... Link Speed Data Rate........................... MAC Address.................................... Encapsulation Type.......................
Active State—Displays whether the interface is active or inactive. An interface is considered active if its link is up and in forwarding state. Link Speed Data Rate—Is an integer representing the physical link data rate of the specified interface. This is measured in megabits per second (Mbps). MAC Address—Is the burned-in physical address of the specified interface. The format is six two-digit hexadecimal numbers separated by colons. Encapsulation Type—Is the encapsulation type for the specified interface.
www.dell.com | support.dell.com Routing Mode—Is the administrative mode of router interface participation. The possible values are enable or disable. This value was configured into the unit. Administrative Mode—Is the administrative mode of the specified interface. The possible values of this field are enable or disable. This value was configured into the unit. Forward Net Directed Broadcasts—Displays whether forwarding of network-directed broadcasts is enabled or disabled.
Subnet Mask—Is a mask of the network and host portion of the IP address for the router interface. Protocol—Tells which protocol added the specified route. The possibilities are: local, static, OSPF or RIP. Total Number of Routes—The total number of routes. For each Next Hop: Next Hop Intf—The outgoing router interface to use when forwarding traffic to the next destination.
www.dell.com | support.dell.com Subnet Mask—Is a mask of the network and host portion of the IP address for the attached network. Protocol—Tells which protocol added the specified route. The possibilities are: local, static, OSPF or RIP. For each Next Hop: Next Hop Interface—The outgoing router interface to use when forwarding traffic to the next destination. Next Hop IP Address—The outgoing router IP address to use when forwarding traffic to the next router (if any) in the path toward the destination.
This command is used to discover the routes that packets actually take when traveling to their destination through the network on a hop-by-hop basis. should be a valid IP address. [port] should be a valid decimal integer in the range of 0(zero) to 65535. The default value is 33434. Format traceroute [] Mode Privileged EXEC Bootp/DHCP Relay Commands This section provides a detailed explanation of the BootP/DHCP Relay commands.
www.dell.com | support.dell.com bootpdhcprelay maxhopcount This command configures the maximum allowable relay agent hops. The parameter has a range of 1 to 16. The no version of this command sets the maximum allowable hops to the default. Syntax bootpdhcprelay maxhopcount 1-16 no bootpdhcprelay maxhopcount Default Mode 4 Global Config bootpdhcprelay minwaittime This command configures the minimum wait time in seconds for BootP/DHCP Relay on the system.
show bootpdhcprelay This command displays the BootP/DHCP Relay information. Syntax Mode Example show bootpdhcprelay Privileged Exec and User Exec Figure 22-132. show bootpdhcprelay Command Example (Force10 ) #show bootpdhcprelay Maximum Hop Count.............................. Minimum Wait Time(Seconds)..................... Admin Mode..................................... Server IP Address.............................. Circuit Id Option Mode......................... Requests Received........................
www.dell.com | support.dell.com Router Discovery Protocol Commands This section provides a detailed explanation of router discovery commands using IRDP (ICMP Router Discovery Protocol) (ICMP is Internet Control Message Protocol).
ip irdp holdtime This command configures the value, in seconds, of the holdtime field of the router advertisement sent from this interface or VLAN. Syntax ip irdp holdtime maxadvertinterval-9000 The range is the maxadvertinterval to 9000 seconds. The no ip irdp holdtime command configures the default value, in seconds, of the holdtime field of the router advertisement sent from this interface. Default Mode Command History 3 * maxinterval Interface Config or Interface VLAN Version 2.
www.dell.com | support.dell.com Mode Interface Config or Interface VLAN Command History Version 2.3 Modified: Added Interface VLAN as a mode. ip irdp preference This command configures the preferability of the address as a default router address, relative to other router addresses on the same subnet. Syntax ip irdp preference -2147483648-2147483647 The range is -2147483648 to -1 to 0 to 1 to 2147483647.
Example Figure 22-133. Example of show ip irdp Command Output Force10 #show ip irdp 1/0/1 Interface --------1/0/1 Ad Mode ------Disable Advertise Address ----------------224.0.0.
www.dell.com | support.dell.com VLAN ID—Is the identifier of the VLAN. Logical Interface—Indicates the logical unit/slot/port associated with the VLAN routing interface. IP Address—Displays the IP Address associated with this VLAN. Subnet Mask—Indicates the subnet mask that is associated with this VLAN. vlan routing Command History Version 2.3 Related Commands Deprecated. Replaced by ip address (VLAN). ip address (VLAN) Assigns an IP address and subnet mask to the selected VLAN.
Default Mode enabled Global Config ip vrrp This command sets the VRID (virtual router ID) on an interface for virtual router configuration in the router. This command also has options, detailed below, to designate the configured virtual router IP address, set the mode, and set authentication. Syntax [no] ip vrrp vrID The vrID parameter is the virtual router ID; it is an integer value with a range from 1 to 255.
www.dell.com | support.dell.com The no ip vrrp vrID authentication command sets the default authorization details value for the virtual router configured on a specified interface. Default Mode no authorization Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command History Version 2.3 Related Commands Added Interface Range and Interface VLAN modes.
Syntax [no] ip vrrp vrID mode The parameter vrID is the virtual router ID, which has an integer value ranging from 1 to 255. The no version of this command disables the virtual router configured on the specified interface. Disabling the status field stops a virtual router. Default Mode Command History Related Commands disabled Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.
www.dell.com | support.dell.com ip vrrp priority This command sets the priority value for the virtual router configured on a specified interface. Syntax ip vrrp vrID priority 1-254 The parameter vrID is the virtual router ID, which is an integer that ranges from 1 to 255. The priority of the interface is an integer from 1 to 254. The no ip vrrp vrID priority command sets the default priority value for the virtual router configured on a specified interface.
interface vlan Creates a VLAN and assigns it an ID, and then enters the Interface VLAN mode, which provides access to VLAN configuration commands for the specified VLAN. ip vrrp Sets the VRID (virtual router ID) on an interface for virtual router configuration in the router. This command also has options. show ip vrrp interface stats This command displays the statistical information about each virtual router configured on the SFTOS switch.
www.dell.com | support.dell.com show ip vrrp This command displays whether VRRP functionality is enabled or disabled on the SFTOS switch. It also displays some global parameters which are required for monitoring This command takes no options. Syntax Mode Report Fields show ip vrrp Privileged Exec and User Exec VRRP Admin Mode—Displays the administrative mode for VRRP functionality on the switch.
Mode Report Fields Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes. VRID—Represents the router ID of the virtual router. IP Address—Is the IP Address that was configured on the virtual router Mode—Represents whether the virtual router is enabled or disabled. State—Represents the state (Master/backup) of the virtual router.
| Routing Commands www.dell.com | support.dell.
23 OSPF Commands This chapter provides a detailed explanation of the Open Shortest Path First (OSPF) commands. The commands are divided by functionality into the following groups: • • Show commands are used to display switch settings, statistics and other information. Configuration Commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting.
www.dell.com | support.dell.
area authentication Command History Version 2.3 Deprecated area default-cost This command configures the monetary default cost for the stub area. The operator must specify the area ID and an integer value between 1-16777215. Syntax Mode area areaid default-cost 1-16777215 Router OSPF Config area nssa This command configures the specified areaid to function as an NSSA (Not So Stubby Area). The no version of this command disables nssa from the specified area ID.
www.dell.com | support.dell.com area nssa no-summary (OSPF) This command configures the NSSA so that summary Link State Advertisements (LSAs) are not advertised into the NSSA. Syntax Mode area areaid nssa no-summary Router OSPF Config area nssa translator-role (OSPF) This command configures the translator role of the NSSA.
area stub This command creates a stub area for the specified area ID. A stub area is characterized by the fact that AS External LSAs are not propagated into the area. Removing AS External LSAs and Summary LSAs can significantly reduce the link state database of routers within the stub area. The no version of this command deletes a stub area for the specified area ID.
www.dell.com | support.dell.com If the authentication type is simple, the authentication key must be 8 bytes or less. If the type is encrypt, the key may be up to 256 bytes. The key is composed of standard displayable, non-control keystrokes from a Standard 101/102-key keyboard. If the type is encrypt, a key ID in the range of 0 and 255 must be specified for keyid. Neither the default password key nor the default key ID are configured. Unauthenticated interfaces do not need an authentication key.
The no area areaid virtual-link neighbor hello-interval command invokes the default hello interval for the OSPF virtual interface on the virtual interface identified by areaid and neighbor.
www.dell.com | support.dell.com default-information originate (OSPF) This command is used to control the advertisement of default routes. Syntax default-information originate [always] [metriO0-16777215] [metric-type {1 | 2}] The no default-information originate [metric] [metric-type] command sets the advertisement of routes to the default. Default Mode metric—unspecified; type—2 Router OSPF Config default-metric (OSPF) This command is used to set a default for the metric of distributed routes.
The no version of this command is used to specify the access list to filter routes received from the source protocol. Mode Router OSPF Config enable (OSPF) This command resets the default administrative mode of OSPF in the router (active). The no version of this command sets the administrative mode of OSPF in the router to inactive. Syntax [no] enable Default enabled Mode Router OSPF Config exit-overflow-interval This command configures the exit overflow interval for OSPF.
www.dell.com | support.dell.com If the value of limit is -1, then there is no limit. The range for limit is -1 to 2147483647. Default -1 Router OSPF Config ip ospf This command enables OSPF on a router interface. Syntax [no] ip ospf The no version of this command disables OSPF on a router interface.
ip ospf authentication This command enables you to select either no or simple OSPF authentication for the specified interface. If simple authentication is selected, you then select a plain-text key. Syntax ip ospf authentication {none | simple key} The type is either none or simple. The key is composed of standard displayable, non-control keystrokes from a standard 101/102-key keyboard and must be 8 bytes or less.
www.dell.com | support.dell.com Command History Related Commands Version 2.3 Added Interface Range and Interface VLAN modes. Modified: Separated ip ospf authentication into two commands—ip ospf authentication and ip ospf authentication-key, and removed encrypt as a parameter. interface range Defines an interface range and accesses the Interface Range mode interface vlan Creates a VLAN or selects an existing one and enters the Interface VLAN mode.
Mode Command History Related Commands Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.3 Added Interface Range and Interface VLAN modes. interface range Defines an interface range and accesses the Interface Range mode interface vlan Creates a VLAN or selects an existing one and enters the Interface VLAN mode.
www.dell.com | support.dell.com ip ospf mtu-ignore This command disables OSPF maximum transmission unit (MTU) mismatch detection. OSPF Database Description packets specify the size of the largest IP packet that can be sent without fragmentation on the interface. When a router receives a Database Description packet, it examines the MTU advertised by the neighbor.
Syntax ip ospf retransmit-intervalrseconds The value for seconds is the number of seconds between link-state advertisement retransmissions for adjacencies belonging to this router interface. This value is also used when retransmitting database and link-state request packets. Range: 0 to 3600 seconds (1 hour) The no ip ospf retransmit-interval command sets the OSPF retransmit interval for the specified interface to the default.
www.dell.com | support.dell.com maximum-paths This command sets the number of paths that OSPF can report for a given destination where maxpaths is platform dependent. The no version of this command resets the number of paths that OSPF can report for a given destination back to its default value. Syntax maximum-paths maxpaths no maximum-paths Default Mode 4 OSPF Router Config router-id This command sets a 4-digit dotted-decimal number uniquely identifying the router ospf ID.
show ip ospf This command displays information relevant to the OSPF router. This command takes no options. Syntax Mode Example show ip ospf Privileged Exec Figure 23-134. Example Output from the show ip ospf Command S50V-1#show ip ospf Router ID...................................... OSPF Admin Mode................................ ASBR Mode...................................... RFC 1583 Compatibility......................... 0.0.0.0 Disable Disable Enable OSPF must first be initialized for the switch.
www.dell.com | support.dell.
Spf Runs—Number of times that the intra-area route table has been calculated using this area's link-state database Area Border Router Count—Total number of area border routers reachable within this area Area LSA Count—Total number of link-state advertisements in this area's link-state database, excluding AS External LSA's. Area LSA Checksum—A number representing the Area LSA Checksum for the specified AreaID excluding the external (LS type 5) link-state advertisements.
www.dell.com | support.dell.com Figure 23-135. Example of Output from the show ip ospf interface Command on an S50V S50V-1#show ip ospf interface 1/0/24 IP Address..................................... Subnet Mask.................................... OSPF Admin Mode................................ OSPF Area ID................................... Router Priority................................ Retransmit Interval............................ Hello Interval................................. Dead Interval.........
OSPF Interface Type—Broadcast LANs, such as Ethernet and IEEE 802.5, take the value 'broadcast'. The OSPF Interface Type will be 'broadcast'. State—The OSPF Interface States are: down, loopback, waiting, point-to-point, designated router, and backup designated router. This is the state of the OSPF interface. Designated Router—Is the router ID representing the designated router. Backup Designated Router—Is the router ID representing the backup designated router.
www.dell.com | support.dell.com Syntax Mode Report Fields show ip ospf interface stats unit/slot/port Privileged Exec and User Exec OSPF Area ID—The area ID of this OSPF interface. Spf Runs—The number of times that the intra-area route table has been calculated using this area's link-state database. Area Border Router Count—The total number of area border routers reachable within this area. This is initially zero, and is calculated in each SPF pass.
Example Figure 23-136. Example Output from the show ip ospf neighbor interface Command S50V-1#show ip ospf neighbor interface 1/0/24 Router ID Priority IP Address Interface State Dead Time ---------------- -------- --------------- ----------- -------- -----192.168.2.1 1 192.168.3.
www.dell.com | support.dell.com Options—An integer value that indicates the optional OSPF capabilities supported by the neighbor. The neighbor's optional OSPF capabilities are also listed in its Hello packets. This enables received Hello Packets to be rejected (i.e., neighbor relationships will not even start to form) if there is a mismatch in certain crucial OSPF capabilities. Router Priority—The OSPF priority for the specified interface. The priority of an interface is a priority integer from 0 to 255.
Advertisement—The status of the advertisement. Advertisement has two possible settings: enabled or disabled. show ip ospf stub table This command displays the OSPF stub table. The information below will only be displayed if OSPF is initialized on the switch. Syntax Mode Report Fields show ip ospf stub table Privileged Exec and User Exec Area ID—Is a 32-bit identifier for the created stub area. Type of Service—Is the type of service associated with the stub metric. SFTOS only supports Normal TOS.
www.dell.com | support.dell.com show ip ospf virtual-link brief This command displays the OSPF Virtual Interface information for all areas in the system. Syntax Mode Report Fields show ip ospf virtual-link brief Privileged Exec and User Exec Area Id—Is the area ID of the requested OSPF area. Neighbor—Is the neighbor interface of the OSPF virtual interface. Hello Interval—Is the configured hello interval for the OSPF virtual interface.
24 RIP Commands This chapter provides a detailed explanation of the Routing Information Protocol (RIP) commands. The commands are divided by functionality into the following different groups: • • Show commands are used to display switch settings, statistics and other information. Configuration Commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting.
www.dell.com | support.dell.com default-information originate (RIP) This command is used to control the advertisement of default routes. The no version of this command is used to control the advertisement of default routes. Syntax Mode [no] default-information originate Router RIP Config default-metric (RIP) This command is used to set a default for the metric of distributed routes. The no version of this command is used to reset the default metric of distributed routes to its default value.
Default Mode 0 Router RIP Config enable (RIP) This command resets the default administrative mode of RIP in the router (active). The no version of this command sets the administrative mode of RIP in the router to inactive. Syntax [no] enable Default enabled Mode Router RIP Config ip rip This command enables RIP on a router interface. The no version of this command disables RIP on a router interface.
www.dell.com | support.dell.com Default The default authentication type is none. Default The default password key is an empty string. Unauthenticated interfaces do not need an authentication key. Default The default keyid is not defined. Unauthenticated interfaces do not need an authentication key ID. Mode Command History Related Commands Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.
Syntax ip rip send version {1 | rip1c | 2 | none} To revert to the default of sending RIP version 2 using multicast, use the no ip rip send version command. Default Mode 2 Interface Config; Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Command History Version 2.3 Added Interface Range and Interface VLAN modes. Modified: Replaced rip1 | rip2 keywords with 1|2.
www.dell.com | support.dell.
show ip rip interface brief This command displays general information for each RIP interface. For this command to display successful results routing must be enabled per interface (i.e. ip rip). Syntax Mode show ip rip interface brief Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes. IP Address—The IP source address used by the specified RIP interface. Send Version—The RIP version(s) used when sending updates on the specified interface.
www.dell.com | support.dell.com Bad Packets Received—The number of RIP response packets received by the RIP process which were subsequently discarded for any reason. 456 Bad Routes Received—The number of routes contained in valid RIP packets that were ignored for any reason. Updates Sent—The number of triggered RIP updates actually sent on this interface.
25 IP Multicast Commands This chapter provides a detailed explanation of the IP Multicast commands that are available in the SFTOS Layer 3 software IP Multicast module.
www.dell.com | support.dell.com ip mcast boundary This command adds an administrative scope multicast boundary specified by groupipaddr and mask for which this multicast administrative boundary is applicable. Syntax adu,O nCureWo. groupipaddr sIu umask groupipaddr is a group IP address and mask is a group IP mask.
The combination of the sourceipaddr and the mask fields specify the network IP address of the multicast packet source. The groupipaddr is the IP address of the next hop toward the source. The metric is the cost of the route entry for comparison with other routes to the source network and is a value in the range of 0 and 255. The current incoming interface is used for RPF checking for multicast packets matching this multicast static route entry.
www.dell.com | support.dell.com mrinfo This command is used to query the neighbor information of a multicast-capable router specified by [ipaddr]. The default value is the IP address of the system at which the command is issued. The mrinfo command can take up to 2 minutes to complete. Only one mrinfo command may be in process at a time. The results of this command will be available in the results bufferpool which can be displayed by using show mrinfo.
The default value of group is 224.2.0.1. Mode Privileged Exec no ip mcast mroute This command is used to clear entries in the mroute table. The all parameters is used to clear all entries. Syntax no ip mcast mroute {group groupipaddr | source sourceipaddr [groupipaddr] | all} The source parameter is used to clear the routes in the mroute table entries containing the specified sourceipaddr or sourceipaddr [groupipaddr] pair. The source address is the source IP address of the multicast packet.
www.dell.com | support.dell.com show ip mcast boundary This command displays all the configured administrative scoped multicast boundaries. Syntax Mode Report Fields show ip mcast boundary {unit/slot/port | all} Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes. Group Ip—The group IP address Mask—The group IP mask show ip mcast interface This command displays the multicast information for the specified interface.
Group IP Addr—This field displays the IP address of the destination of the multicast packet. Protocol—This field displays the multicast routing protocol by which this entry was created. Incoming Interface—This field displays the interface on which the packet for this source/group arrives. Outgoing Interface List—This field displays the list of outgoing interfaces on which this packet is forwarded.
www.dell.com | support.dell.com If the summary parameter is specified the follow fields are displayed: Source IP Addr—This field displays the IP address of the multicast data source. Group IP Addr—This field displays the IP address of the destination of the multicast packet. Protocol—This field displays the multicast routing protocol by which this entry was created. Incoming Interface—This field displays the interface on which the packet for this source arrives.
TTL—The TTL threshold associated with this neighbor Flags—Status of the neighbor show mstat This command is used to display the results of packet rate and loss information from the results buffer pool of the router, subsequent to the execution/completion of a mstat source [group] [receiver] command. Within two minutes of the completion of the mstat command, the results will be available in the buffer pool. The next issuing of mstat would overwrite the buffer pool with fresh results.
www.dell.com | support.dell.com • Configuration commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting. Note: The DVMRP feature was available in SFTOS before version 2.5.1, but the commands were not tested in either 2.5.1 or 2.5.2, so the commands in this section are not supported.
Command History Version 2.5.2 Unsupported: not tested in 2.5.2 Version 2.5.1 Unsupported: not tested in 2.5.1 ip dvmrp metric This command configures the value used in DVMRP messages as the cost to reach this network or selected VLAN. Syntax ip dvmrp metric value The value field has a range of 1 to 63 for a selected interface, 1 to 31 for the selected VLAN. The no version of this command resets the metric for an interface to the default value.
www.dell.com | support.dell.com Mode Report Fields Privileged Exec and User Exec Admin Mode—This field indicates whether DVMRP is enabled or disabled. This is a configured value. Version String—This field indicates the version of DVMRP being used. Number of Routes—This field indicates the number of routes in the DVMRP routing table. Reachable Routes—This field indicates the number of entries in the routing table with non-infinite metrics. The following fields are displayed for each interface.
Syntax Mode Report Fields show ip dvmrp neighbor Privileged Exec and User Exec IfIndex—This field displays the value of the interface used to reach the neighbor. Nbr IP Addr—This field indicates the IP Address of the DVMRP neighbor for which this entry contains information. State—This field displays the state of the neighboring router. The possible value for this field are ACTIVE or DOWN. Up Time—This field indicates the time since this neighboring router was learned.
www.dell.com | support.dell.com show ip dvmrp prune This command displays the table listing the router’s upstream prune information. Syntax Mode Report Fields show ip dvmrp prune Privileged Exec and User Exec Group IP—This field identifies the multicast Address that is pruned. Source IP—This field displays the IP Address of the source that has pruned. Source Mask—This field displays the network Mask for the prune source. It should be all 1s or both the prune source and prune mask must match.
IGMP Commands This section provides a detailed explanation of the Internet Group Management Protocol (IGMP) commands available in the Layer 3 package.
www.dell.com | support.dell.com Default Mode Command History disabled Interface VLAN Version 2.3 Introduced ip igmp last-member-query-count This command sets the number of group-specific queries sent before the router assumes that there are no local members on the interface or VLAN. The no version of this command resets the number of Group-Specific Queries to the default value. Syntax ip igmp last-member-query-count count no ip igmp last-member-query-count The range for count is 1 to 20.
ip igmp-proxy When used without parameters, this Layer 3 command enables/disables the IGMP Proxy feature on the selected port. To enable the feature, you must also enable multicast forwarding. Also, make sure that there are no multicast routing protocols enabled on the router. IGMP Proxy is used by the IGMP router to enable the system to issue IGMP host messages on behalf of hosts that the system discovered through standard IGMP router interfaces.
www.dell.com | support.dell.com Command History Version 2.3 Modified: Added Interface VLAN mode. ip igmp query-max-resp-time This command configures the maximum response time interval for the specified interface or VLAN, which is the maximum query response time advertised in IGMPv2 queries on this interface or VLAN. Syntax ip igmp query-max-response-time 0-255 0-255 Parameters Specify the maximum response time interval in tenths of a second.
The range for count is 1 to 20. The no ip igmp startup-query-count command resets the number of Queries sent out on startup, separated by the Startup Query Interval on the interface to the default value. Default Mode Command History 2 Interface Config; Interface VLAN Version 2.3 Modified: Added Interface VLAN mode. ip igmp startup-query-interval This command sets the interval between general queries sent by a querier on startup on the interface or VLAN.
www.dell.com | support.dell.com show ip igmp This command displays the system-wide IGMP information. Syntax Mode Example show ip igmp Privileged Exec and User Exec Figure 25-137. Example of show ip igmp Command Output Force10 #show ip igmp IGMP Admin Mode................................
Mode Report Fields Privileged Exec and User Exec If detail is not specified for a specified interface, the following fields are displayed: IP Address—This displays the IP address of the interface participating in the multicast group. Subnet Mask—This displays the subnet mask of the interface participating in the multicast group. Interface Mode—This displays whether IGMP is enabled or disabled on this interface. The following fields are not displayed if the interface is not enabled.
www.dell.com | support.dell.com Example Figure 25-138. Example of show ip igmp interface Command Output Force10 #show ip igmp interface 1/0/1 Slot/Port...................................... IGMP Admin Mode................................ Interface Mode................................. IGMP Version................................... Query Interval (secs).......................... Query Max Response Time (1/10 of a second)..... Robustness..................................... Startup Query Interval (secs) ..
show ip igmp interface membership This command displays the list of interfaces that have registered in the specified multicast group. Syntax Mode Report Fields show ip igmp interface membership multiipaddr [detail] Privileged Exec Interface—Valid unit, slot and port number separated by forward slashes. Interface IP—This displays the IP address of the interface participating in the multicast group. State—This displays whether the interface has IGMP in querier mode or non-querier mode.
www.dell.com | support.dell.com Report Fields Querier Status—This field indicates the status of the IGMP router, whether it is running in querier mode or non-querier mode. Querier IP Address—This field displays the IP Address of the IGMP querier on the IP subnet to which this interface is attached. Querier Up Time—This field indicates the time since the interface querier was last changed. Querier Expiry Time—This field displays the amount of time remaining before the Other Querier Present Timer expires.
Querier IP Address on Proxy Interface — The IP address of the querier, if any, in the network attached to the upstream interface (IGMP-Proxy interface). Older Version 1 Querier Timeout — The interval used to time out the older version 1 queriers. Older Version 2 Querier Timeout — The interval used to time out the older version 2 queriers. Proxy Start Frequency — The number of times the IGMP Proxy has been stopped and started.
www.dell.com | support.dell.com show ip igmp-proxy groups This command displays information about the subscribed multicast groups that IGMP Proxy reported. Syntax Mode Command History Report Fields show ip igmp-proxy groups Privileged Exec and User Exec Version 2.5.
Group Address — The IP address of the multicast group Last Reporter — The IP address of host that last sent a membership report for the current group, on the network attached to the IGMP-Proxy interface (upstream interface) Up Time (in secs) — The time elapsed since last created Member State — The status of the entry. Possible values are: IDLE_MEMBER — The interface has responded to the latest group membership query for this group.
| IP Multicast Commands www.dell.com | support.dell.
26 PIM Commands This chapter contains the following major sections: • • PIM-DM Commands on page 485 PIM-SM Commands on page 488 PIM-DM Commands This section provides Protocol Independent Multicast–Dense Mode (PIM-DM) command syntax.
www.dell.com | support.dell.com ip pimdm mode This command sets administrative mode of PIM-DM on an interface to enabled. Syntax [no] aduda,.,u,e.E unit/slot/port The no version of this command sets administrative mode of PIM-DM on an interface to disabled. Default Mode Command History Related Commands disabled Interface Config or Interface VLAN; Interface Range, which is indicated by the (conf-if-range-interface)# prompt, such as (conf-if-range-vlan 10-20)#. Version 2.5.
Syntax Mode show ip pimdm Privileged Exec and User Exec PIM-DM Admin Mode—This field indicates whether PIM-DM is enabled or disabled. This is a configured value. Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes. Interface Mode—This field indicates whether PIM-DM is enabled or disabled on this interface. This is a configured value. State—This field indicates the current state of PIM-DM on this interface. Possible values are Operational or Non-Operational.
www.dell.com | support.dell.com show ip pimdm neighbor This command displays the neighbor information for PIM-DM on the specified interface. Syntax show ip pimdm neighbor {unit/slot/port | all} The no version of this command Mode Privileged Exec and User Exec Neighbor Address—This field displays the IP Address of the neighbor on an interface. Interface—Valid unit, slot and port number separated by forward slashes.
ip pimsm cbsrpreference This command is used to configure the CBSR preference for a particular PIM-SM interface. The range of CBSR preference is –1 to 255. Syntax ip pimsm cbsrpreference 1-255 no ip pimsm cbsrpreference The no version of this command is used to reset the CBSR preference for a particular PIM-SM interface to the default value.
www.dell.com | support.dell.com ip pimsm crppreference This command is used to configure the Candidate Rendezvous Point (CRP) for a particular PIM-SM interface. The valid values are from (1 to 255), and the value of -1 is used to indicate that the local interface is not a Candidate RP interface. The active router interface, with the highest IP Address and crppreference greater than -1, is chosen as the CRP for the router. The default value is 0.
Syntax ip pimsm message-interval 10-3600 The join/prune interval is specified in seconds. This parameter can be configured to a value from 10 to 3600. The no ip pimsm message-interval command resets the global join/prune interval for PIM-SM router to the default value. Default Mode 60 Global Config ip pimsm This command sets administrative mode of PIM-SM multicast routing across the router to enabled. IGMP must be enabled before PIM-SM can be enabled.
www.dell.com | support.dell.com ip pimsm query-interval This command configures the transmission frequency of hello messages in seconds between PIM enabled neighbors. This field has a range of 10 to 3600 seconds. Syntax ip pimsm query-interval 10-3600 The no ip pimsm query-interval command resets the transmission frequency of hello messages between PIM enabled neighbors to the default value.
ip pimsm staticrp This command is used to create the RP IP address for the PIM-SM router. Syntax [no] ip pimsm staticrp ipaddress groupaddress groupmask The ipaddress is the IP address of the RP. The groupaddress is the group address supported by the RP. The groupmask is the group mask (regular form) for the group address. The no version of this command is used to delete the RP IP address for the PIM-SM router.
www.dell.com | support.dell.com Mode Privileged Exec and User Exec PIM-SM Admin Mode—This field indicates whether PIM-SM is enabled or disabled. This is a configured value. Join/Prune Interval (secs)—This field shows the interval at which periodic PIM-SM Join/Prune messages are to be sent. This is a configured value. Data Threshold Rate (K bits/sec)—This field shows the data threshold rate for the PIM-SM router. This is a configured value.
Component BSR Expiry Time—This field displays the minimum time remaining before the BSR in the local domain will be declared down. Component CRP Hold Time—This field displays the hold time of the component when it is a candidate. show ip pimsm interface This command displays the interface information for PIM-SM on the specified interface. Syntax Mode show ip pimsm interface unit/slot/port Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes.
www.dell.com | support.dell.com Designated Router—This indicates the IP Address of the Designated Router for this interface. Neighbor Count—This field displays the number of neighbors on the PIM-SM interface. show ip pimsm neighbor This command displays the neighbor information for PIM-SM on the specified interface. Syntax Mode show ip pimsm neighbor {unit/slot/port | all} Privileged Exec and User Exec Unit/Slot/Port—Valid unit, slot and port number separated by forward slashes.
show ip pimsm rp This command displays the PIM information for candidate Rendezvous Points (RPs) for all IP multicast groups or for the specific groupaddress groupmask provided in the command. The information in the table is displayed for each IP multicast group. Syntax Mode show ip pimsm rp {groupaddress groupmask | candidate | all} Privileged Exec and User Exec Group Address—This field specifies the IP multicast group address. Group Mask—This field specifies the multicast group address subnet mask.
| PIM Commands www.dell.com | support.dell.
Index Symbols {deny|permit} 384 Numerics 1583compatibility 424 802.1p 327, 328, 332 802.
www.dell.com | support.dell.
default-information originate (RIP) 450 defaultList (default log-in list) 188 default-metric (OSPF) 430 default-metric (RIP) 450 Delete 27 delete (software image) 120 deleteport (global config) 291 deleteport (interface config) 291 description (port channel) 292 description (port or VLAN) 127 description (VLAN) 127 destination port 95, 96 device configuration commands 99, 100253, 260, 475–479 DHCP client 233 DHCP Pool Config 233 DHCP Pool Config mode 30 DHCP Pool Config mode, accessing 237 DHCP Pool Config
www.dell.com | support.dell.
ip ospf dead-interval 435 ip ospf hello-interval 435 ip ospf mtu-ignore 436 ip ospf priority 436 ip ospf retransmit-interval 437 ip ospf transmit-delay 437 ip rip 451 ip rip authentication 452 ip rip receive version 331, 452 ip rip send version 147, 453 ip vrrp ip 416 ip vrrp mode 417 ip vrrp preempt 417 ip vrrp priority 418 ip vrrp timers advertise 418 ip vrrp vrID authentication 416 mac access-group 387 no port-security max-dynamic 185 port lacpmode 299 port-security 184 port-security mac-address 184 port
www.dell.com | support.dell.
logging cli-command 170 logging console 170 logging facility 171 logging history 172 logging host 172 logging persistent 173 logging port 173 logging syslog 173 show eventlog 175 show logging 174 show logging eventlog 175 show logging history 176 show logging hosts 177 show logging traplogs 177 logging history command 172 logging history size command 176 logging host reconfigure 172 logging host remove 172 logical slot/port 25 logout 19, 110 logout commands 110, 111 loopback interface 95 LSA 426 LSDB 426 m
www.dell.com | support.dell.com N name (VLAN) 131 native 139, 140 NetBIOS mapping 238 NetBIOS node type 238 netbios-name-server 238 netbios-node-type 238 network 237 network configuration commands 71 201 commands ??–74 network mac-address 41 network mac-type 41 network mgmt_vlan 131 network mgmt_vlan. See vlan participation.
port-channel staticcapability 299 portfast 317 ports administrative mode 103, 305 deleting from LAGs 291 frame acceptance mode 141, 144 GVRP 254, 255 information 101 ingress filtering 141, 142, 143, 144 link traps 84, 85, 305 physical mode 104 tagging 139, 140, 145, 147 VLAN IDs 144, 146 port-security 183, 301 port-security mac-address 184, 301 port-security mac-address move 184, 301 port-security max-dynamic 185, 301 port-security max-static 185, 301 Power over Ethernet (PoE) 114 preemphasis, CX4 cable len
www.dell.com | support.dell.
show garp 253 show gmrp configuration 259 show gvrp configuration 255 show hardware 18, 46 show hardware Command 46 show igmpsnooping 283 show igmpsnooping command example 284, 285 show igmpsnooping fast-leave 285 show igmpsnooping interface command example 284 show igmpsnooping mrouter interface 285 show igmpsnooping vlan command example 284 show inlinepower 118 show inlinepower (stack) 117 show inlinepower all example 118 show interface 47, 57, 59 show interface ethernet 50 show interface ethernet switchp
www.dell.com | support.dell.
show users 18, 180 show users authentication 198 show version 69 show version command 68 show version sample output 69 show vlan 134 show vlan association 134 show vlan association subnet 136, 137 show vlan brief 135 show vlan id 136 show vlan port 138, 147 shutdown (port channel) 305 shutdown (port) 103 shutdown all (port) 103 Simple Network Time Protocol (SNTP) commands simple OSPF authentication 433 single-connection 208 slot 229 SMLT 287 SNAP Encapsulation Type 403 SNMP management commands 467 SNMP syst
www.dell.com | support.dell.
V W vlan 141 vlan acceptframe 141 vlan association mac 141 vlan association subnet 142 vlan commands (Global Config) 143, 144, 145, 146 vlan ingressfilter 143 VLAN Mode 33 VLAN mode 31 vlan name. See name.
| Index www.dell.com | support.dell.
