Command Line Reference Guide

ManualsBrandsDell ManualsNetworkingForce10 S25-01-GE-24P

FTOS Command Line

Reference Guide

FTOS 8.4.2.6

E-Series TeraScale, C-Series,

S-Series (S50/S25)

Summary of content (1686 pages)

PAGE 1
FTOS Command Line Reference Guide FTOS 8.4.2.
PAGE 2
Notes, Cautions, and Warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates potential damage to hardware or loss of data if instructions are not followed. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Information in this publication is subject to change without notice. © 2012 Dell Force10. All rights reserved.
PAGE 3
Table of Contents 1 Preface Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 Information Symbols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 4
www.dell.com | support.dell.com 3 File Management Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27 Basic File Management Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .27 Upgrading the C-Series FPGA . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .56 4 BOOT_USER Mode Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 5
11 Bidirectional Forwarding Detection (BFD) Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 293 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 293 12 Border Gateway Protocol IPv4 (BGPv4) Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 307 BGPv4 Commands . . . . . . . . .
PAGE 6
www.dell.com | support.dell.com Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 483 Important Points to Remember . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .483 20 Force10 Service Agent Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 491 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 7
IPv6 Route Map Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .708 27 IPv6 Basics Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 713 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 713 28 IPv6 Border Gateway Protocol (IPv6 BGP) Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 8
www.dell.com | support.dell.com 36 Multicast Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 949 IPv4 Multicast Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .949 IPv6 Multicast Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .966 37 Neighbor Discovery Protocol (NDP) Overview . . . . . . . . . . . . . . . . . . . . . .
PAGE 9
Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1131 45 Port Monitoring Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1137 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1137 Important Points to Remember . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 10
www.dell.com | support.dell.com Authentication and Password Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1280 RADIUS Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1291 TACACS+ Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1296 Port Authentication (802.1X) Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 11
60 Time and Network Time Protocol (NTP) Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1425 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1425 61 Uplink Failure Detection (UFD) Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1441 Commands . . . . . . . . . . . . . . . . . . .
PAGE 12
www.dell.com | support.dell.com Offline Diagnostic Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1549 Hardware Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1552 67 E-Series Debugging and Diagnostics Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1575 Diagnostics and Monitoring Commands . . . . . . . . . . . . . . . . . .
PAGE 13
1 Preface About this Guide This book provides information on the FTOS Command Line Interface (CLI). It includes some information on the protocols and features found in FTOS and on the Dell Force10 systems supported by FTOS (C-Series c, E-Series e, and S-Series s).
PAGE 14
www.dell.com | support.dell.com {X} Keywords and parameters within braces must be entered in the CLI. [X] Keywords and parameters within brackets are optional. x|y Keywords and parameters separated by bar require you to choose one. x||y Keywords and parameters separated by a double bar enables you to choose any or all of them. Information Symbols Table 1-1 describes symbols contained in this guide. Table 1-1.
PAGE 15
2 CLI Basics This chapter describes the command structure and command modes. FTOS commands are in a text-based interface that allows you to use launch commands, change the command modes, and configure interfaces and protocols.
PAGE 16
www.dell.com | support.dell.com Multiple Configuration Users When a user enters the CONFIGURATION mode and another user(s) is already in that configuration mode, FTOS generates an alert warning message similar to the following: Figure 2-2. Configuration Mode User Alert Force10#conf % Warning: The following users are currently configuring the system: User User User User "" on line "admin" on "admin" on "Irene" on console0 line vty0 ( 123.12.1.123 ) line vty1 ( 123.12.1.123 ) line vty3 ( 123.12.1.
PAGE 17
Table 2-1.
PAGE 18
www.dell.com | support.dell.com • — Type a keyword followed by a space and a ? Type a partial keyword followed by a ? — A display of keywords beginning with the partial keyword is listed. Figure 2-3 illustrates the results of entering ip ? at the prompt. Figure 2-3.
PAGE 19
Use the left and right arrow keys to navigate left or right in the FTOS command line. Table 2-2 defines the key combinations valid at the FTOS command line. Table 2-2. Short-cut Keys and their Actions Key Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character. CNTL-D Deletes character at cursor. CNTL-E Moves the cursor to the end of the line. CNTL-F Moves the cursor forward one character. CNTL-I Completes a keyword.
PAGE 20
www.dell.com | support.dell.com • • • • • except— display only text that does not match the pattern (or regular expression) find — search for the first occurrence of a pattern grep — display text that matches a pattern no-more — do not paginate the display output save - copy output to a file for future use Note: FTOS accepts a space before or after the pipe, no space before or after the pipe, or any combination.
PAGE 21
EXEC Mode When you initially log in to the switch, by default, you are logged into the EXEC mode. This mode allows you to view settings and to enter the EXEC Privilege mode to configure the device. While you are in the EXEC mode, the > prompt is displayed following the “hostname” prompt, as described above. which is “Force10” by default. You can change it with the hostname command. See the command hostname. Each mode prompt is preceded by the hostname.
PAGE 22
www.dell.com | support.dell.com Table 2-3. Interface prompts Prompt Interface Type Force10(conf-if-nu-0)# Null Interface followed by zero Force10(conf-if-po-0)# Port-channel interface number Force10(conf-if-vl-0)# VLAN Interface followed by VLAN number (range 1 to 4094) Force10(conf-if-so-0/0)# SONET interface followed by slot/port information.
PAGE 23
IP ACCESS LIST Mode While in the CONFIGURATION mode, use the ip access-list standard or ip access-list extended command to enter the IP ACCESS LIST mode and configure either standard or extended access control lists (ACL). To enter IP ACCESS LIST mode: 1. 2. Verify that you are logged in to the CONFIGURATION mode. Use the ip access-list standard or ip access-list extended command. You must include a name for the ACL.The prompt changes to include (conf-std-nacl) or (conf-ext-nacl).
PAGE 24
www.dell.com | support.dell.com IP COMMUNITY LIST Mode Use the IP COMMUNITY LIST mode to configure an IP Community ACL on the E-Series. See Chapter 9, Access Control Lists (ACL). To enter IP COMMUNITY LIST mode: 1. 2. Verify that you are logged in to the CONFIGURATION mode. Enter the ip community-list command. You must include a name for the Community list.The prompt changes to include (config-community-list). You can return to the CONFIGURATION mode by entering the exit command.
PAGE 25
RAPID SPANNING TREE Mode Use PVST+ mode to enable and configure the RSTP protocol, as described in Chapter 51, Rapid Spanning Tree Protocol (RSTP). To enter RSTP mode: 1. 2. Verify that you are logged into the CONFIGURATION mode. Enter the protocol spanning-tree rstp command. You can return to the CONFIGURATION mode by entering the exit command.
PAGE 26
www.dell.com | support.dell.com ROUTER RIP Mode Use the ROUTER RIP mode to configure RIP on the C-Series or E-Series, as described in Chapter 49, Router Information Protocol (RIP). To enter ROUTER RIP mode: 1. 2. Verify that you are logged into the CONFIGURATION mode. Enter the router rip command.The prompt changes to include (conf-router_rip). You can switch to the INTERFACE mode by using the interface command or you can switch to the ROUTER OSPF mode by using the router ospf command.
PAGE 27
3 File Management Overview This chapter contains commands needed to manage the configuration files and includes other file management commands found in FTOS.
PAGE 28
www.dell.com | support.dell.com • • • • • • • • • • show file-systems show linecard show os-version show running-config show startup-config show version upgrade (E-Series version) upgrade (C-Series version) upgrade (S-Series management unit) on page 55 upgrade fpga-image boot config ce Syntax Parameters Set the location and name of the configuration file that is loaded at system start-up (or reload) instead of the default startup-configuration.
PAGE 29
Output for show bootvar with no boot configuration configured Force10#show bootvar PRIMARY IMAGE FILE = flash://FTOS-EF-8.2.1.0.bin SECONDARY IMAGE FILE = flash://FTOS-EF-7.6.1.0.bin DEFAULT IMAGE FILE = flash://FTOS-EF-7.5.1.0.
PAGE 30
www.dell.com | support.dell.com Related Commands Display the variable settings for the E-Series boot parameters. show bootvar boot network ce Set the location of the configuration file in a remote network. Syntax boot network {primary | secondary} remote-url Parameters primary Enter the keywords primary to attempt to load the primary network configuration files. secondary Enter the keywords secondary to attempt to load the secondary network configuration files.
PAGE 31
secondary After entering rpm0 or rpm1, enter the keyword secondary to configure boot parameters used if the primary operating system boot selection is not available. file-url To boot from a file: on the internal Flash, enter flash:// followed by the filename. on an FTP server, enter ftp://user:password@hostip/filepath on the external Flash, enter slot0:// followed by the filename. on a TFTP server, enter tftp://hostip/filepath • • • • Defaults Command Modes Command History Not configured.
PAGE 32
www.dell.com | support.dell.com Parameters directory (OPTONAL) Enter one of the following: • • Command Modes Command History flash: (internal Flash) or any sub-directory slot0: (external Flash) or any sub-directory (C-Series and E-Series only) EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command change bootflash-image ce Change boot flash image from which to boot.
PAGE 33
Parameters file-url Enter the following location keywords and information: • • • • • • • • • • • To copy a file from the internal FLASH, enter flash:// followed by the filename.
PAGE 34
www.dell.com | support.dell.com copy running-config ftp: Command Example: copy running-config scp: Force10#copy running-config scp:/ Address or name of remote host []: 10.10.10.1 Destination file name [startup-config]? old_running User name to login remote host? sburgess Password to login remote host? dilling In this example — copy scp: flash: — specifying SCP in the first position indicates that the target is to be specified in the ensuing prompts.
PAGE 35
Usage Information In this streamline copy command, the source image is copied to the primary RPM and then, if specified, to the standby RPM. After the copy is complete, the new image file path on each RPM is automatically configured as the primary image path for the next boot. The current system image (the one from which the RPM booted) is automatically configured as the secondary image path. FTOS supports IPv4 and IPv6 addressing for FTP, TFTP, and SCP.
PAGE 36
www.dell.com | support.dell.com dir ces Syntax Parameters Display the files in a file system. The default is the current directory. dir [filename | directory name:] filename | directory name: (OPTIONAL) Enter one of the following: • • Command Modes Command History For a file or directory on the internal Flash, enter flash:// followed by the filename or directory name. For a file or directory on the external Flash, enter slot0:// followed by the filename or directory name: EXEC Privilege Version 7.6.1.
PAGE 37
download alt-full-image e Syntax Command Modes Command History Usage Information Download an alternate FTOS image to the chassis. download alt-full-image file-url EXEC Privilege Version 7.7.1.0 Removed form E-Series Version 6.5.1.0 Introduced Starting with FTOS 7.7.1.0, the functions of this command are incorporated into the upgrade command. For software upgrade details, see the FTOS Release Notes.
PAGE 38
www.dell.com | support.dell.com Default Command Modes Command History dosFs1.0 Enter the keyword dosFs1.0 to format in DOS 1.0 (the default) dosFs2.0 Enter the keyword dosFs2.0 to format in DOS 2.0 DOS 1.0 (dosFs1.0) EXEC Privilege Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information When you format flash: 1 The startup-config is erased. 2 All cacheboot data files are erased and you must reconfigure cacheboot to regain it.
PAGE 39
Related Commands copy Copy the current configuration to either the startup-configuration file or the terminal. show file Display contents of a text file in the local filesystem. show file-systems Display information about the file systems on the system. logging coredump ce Enable coredump. Syntax logging coredump {cp | linecard {number | all} | rps} Parameters Defaults Command Modes Command History Usage Information Related Commands cp Enable coredump for the CP.
PAGE 40
www.dell.com | support.dell.com type Enter the password type: • • password Defaults Command Modes Command History Usage Information Enter 0 to enter an unencrypted password. Enter 7 to enter a password that has already been encrypted using a Type 7 hashing algorithm. Enter a password to access the target server. Crash kernel files are uploaded to flash by default. CONFIGURATION Version 8.4.1.0 Added support for IPv6. Version 7.7.1.0 Restructured command to accommodate core dumps for CP.
PAGE 41
rename ces Syntax Parameters Rename a file in the local file system. rename url url url Enter the following keywords and a filename: • • Command Modes Command History For a file on the internal Flash, enter flash:// followed by the filename. For a file on the external Flash, enter slot0:// followed by the filename. EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 42
www.dell.com | support.dell.com Example Force10#show boot system all Current system image information in the system: ============================================= Type Boot Type A B ---------------------------------------------------------------CP DOWNLOAD BOOT invalid invalid RP1 DOWNLOAD BOOT invalid invalid RP2 DOWNLOAD BOOT invalid invalid linecard 0 is not present. linecard 1 DOWNLOAD BOOT invalid invalid linecard 2 DOWNLOAD BOOT 4.7.5.387 6.5.1.
PAGE 43
boot network Set the location of configuration files from a remote network. boot system Set the location of FTOS image files. boot system gateway Specify the IP address of the default next-hop gateway for the management subnet. show file ces Syntax Parameters Display contents of a text file in the local filesystem. show file filesystem filesystem Enter one of the following: • • Command Modes Command History flash: for the internal Flash slot0: for the external Flash EXEC Privilege Version 7.6.1.
PAGE 44
www.dell.com | support.dell.com show file-systems ces Syntax Command Modes Command History Display information about the file systems on the system. show file-systems EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Example Command Output example: show file-system Force10#show file-systems Size(b) Free(b) 63938560 51646464 63938560 18092032 Force10# Feature dosFs2.0 dosFs1.
PAGE 45
show linecard ce View the current linecard status. Syntax show linecard [number | all | boot-information] Parameters Command Modes Command History number Enter a number to view information on that linecard. Range: 0 to 6. all (OPTIONAL) Enter the keyword all to view a table with information on all present linecards. boot-information (OPTIONAL) Enter the keyword boot-information to view cache boot information of all line cards in table format. EXEC Privilege Version 7.5.1.
PAGE 46
www.dell.com | support.dell.com Command History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Example Note: A filepath that contains a dot ( . ) is not supported. Command output example (E-Series): show os-version Force10#show os-version RELEASE IMAGE INFORMATION : --------------------------------------------------------------------Platform Version Size ReleaseTime E-series: EF 7.5.1.
PAGE 47
Parameters entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration.
PAGE 48
www.dell.com | support.dell.
PAGE 49
Parameters number Enter a number to view information on that SFM. Range: 0 to 8. all (OPTIONAL) Enter the keyword all to view a table with information on all present SFMs. brief (OPTIONAL) Enter the keyword brief to view a list with SFM status. Note: The brief option is not available on C-Series. Command Modes EXEC EXEC Privilege Command History Version 7.5.1.
PAGE 50
www.dell.com | support.dell.com Command output example: show sfm all Force10#show sfm all Switch Fabric State: up -- Switch Fabric Modules -Slot Status --------------------------------------------------------------------------0 active 1 active 2 active 3 active 4 active 5 active 6 active 7 active 8 active Force10# show startup-config ces Syntax Command Modes Command History Example Display the startup configuration. show startup-config EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.
PAGE 51
Command History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Command output example on E-Series: show version Force10#show version Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: 5.3.1.0 Copyright (c) 1999-2004 by Force10 Networks, Inc.
PAGE 52
www.dell.com | support.dell.com show version Command Fields S-Series Example Lines beginning with Description 128K bytes... Amount and type of memory on system. 1 Route Processor... Hardware configuration of the system, including the number and type of physical interfaces available. Command output example on an S50V: show version Force10#show version Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.
PAGE 53
booted Enter this keyword to upgrade using the image packed with the currently running FTOS image. file-url Enter the following location keywords and information to upgrade using an FTOS image other than the one currently running: Enter the transfer method and file location: flash://filename ftp://userid:password@hostip/filepath slot0://filename tftp://hostip/filepath Defaults Command Modes Command History No configuration or default values EXEC Privilege Version 7.7.1.
PAGE 54
www.dell.com | support.dell.com linecard number rpm Enter the keyword rpm to upgrade the system image of a selector image on all processors on the RPM. repair Enter this keyword to upgrade a line card newly inserted into an already upgraded chassis. This option is only available with the system-image keyword. booted Upgrade the bootflash or bootselector image using the currently running FTOS image.
PAGE 55
upgrade (S-Series management unit) s Syntax Parameters Defaults Command Modes Command History Usage Information Upgrade the bootflash image or system image of the S-Series management unit. upgrade {boot | system} {ftp: | scp: | tftp:} file-url boot Enter this keyword to change the boot image. system Enter this keyword to change the system image.
PAGE 56
www.dell.com | support.dell.com Parameters sfm Enter the keyword sfm to upgrade the FPGA on the SFMs. rpm Enter the keyword rpm to upgrade all processors on the RPM. all Enter the keyword all to upgrade the FPGA on all the SFMs. id Enter the keyword id to upgrade the FPGA on all a specific SFM. Enter the path to the upgrade source. Entering updates the FPGA from the flash. Defaults Command Modes No default values or behavior EXEC Privilege Command History Example Version 8.3.1.
PAGE 57
Defaults Command Mode Command History Example None. EXEC Privilege Version 7.7.1.0 Renamed keyword primary-fpga-flash to fpga-image. Version 7.5.1.0 Introduced on C-Series Command example: restore fpga-image Force10#restore fpga-image linecard 4 Current FPGA information in the system: ======================================= Card FPGA Name Current Version New Version -----------------------------------------------------------------------LC4 48 Port 1G LCM FPGA A: 3.
PAGE 58
www.dell.com | support.dell.com system-fpga (OPTIONAL) Enter system-fpga to upgrade only the system FPGA on a fiber linecard. Contact the Dell Force10 TAC before using this keyword. link-fpga (OPTIONAL) Enter link-fpga to upgrade only the link FPGA on a fiber linecard. Contact the Dell Force10 TAC before using this keyword. booted Upgrade the FPGA image using the currently running FTOS image.
PAGE 59
4 BOOT_USER Mode Overview All commands in this chapter are in the BOOT_USER mode except for format, which is in the BOOT_ADMIN mode.
PAGE 60
www.dell.com | support.dell.com • • • • • • save show boot selection show bootflash show bootvar show default-gateway show interface management ethernet Note: You cannot use the Tab key to complete commands in this mode. Note: The question mark (?) key to get help does not work in this mode. Instead, enter help. boot change c es Syntax Change the primary, secondary, or default FTOS boot configuration.
PAGE 61
• Change that information. To do so, press the . (period) key and enter new information. After you enter the information, press Enter. Figure 4-1. First Field in the boot change Command BOOT_USER # boot change primary '.' = clear field; '-' = clear non-essential field boot device : ftp Figure 4-2 shows the completed command: Figure 4-2. Completed boot change Command Example BOOT_USER # boot change primary '.
PAGE 62
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information a Enter the keyword a to select the boot code in partition A. b Enter the keyword b to select the boot code in partition B. None. BOOT_USER To view the current boot flash image, enter the show boot selection command. Related Commands boot change Change the primary, secondary or default boot image configuration show boot selection Display the current Boot Flash image selected.
PAGE 63
Figure 4-3.
PAGE 64
www.dell.com | support.dell.com Defaults Command Modes Not configured. BOOT_USER dir ce Display files in a directory Syntax dir file-url Parameters file-url Enter the location keywords and information: • • Defaults Command Modes Usage Information Example For a file on the internal Flash, enter flash:// followed by the filename. For a file on the external Flash, enter slot0:// followed by the filename. Not configured.
PAGE 65
Usage Information Only Dell Force10 TAC staff use this command. format ce Format the internal or external flash memory. Syntax format file-url Parameters file-url Enter the location keywords and information: • • Defaults Command Modes Usage Information Related Commands For a file on the internal Flash, enter flash:// followed by the filename. For a file on the external Flash, enter slot0:// followed by the filename. Not configured.
PAGE 66
www.dell.com | support.dell.com ignore startup-config s Syntax Defaults During a reload, do not load the startup-config file. ignore startup-config disabled Command Modes BOOT_USER Command History Version 7.8.1.0 Usage Information Introduced on S-Series This command might be used if a the user has authentication procedures in the startup-config other than the enable-password setting. interface management ethernet ip address ces Syntax Assign an IP address to the Management Ethernet interface.
PAGE 67
interface management ethernet mac-address s Syntax Parameters Defaults Assign a MAC address to the Management Ethernet interface. interface management ethernet mac-address mac-address mac-address Not configured. Command Modes BOOT_USER Command History Version 7.8.1.0 Usage Information Related Commands Enter a MAC address in standard format (xx:xx:xx:xx:xx:xx). Introduced on S-Series Use this command to assign a MAC address if FTOS cannot find a default MAC address.
PAGE 68
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information half-duplex Enter the keyword half-duplex to set the Management interface to half-duplex mode. full-duplex Enter the keyword full-duplex to set the Management interface to full-duplex mode. 10m Enter the keyword 10m to set the speed on the Management interface to 10 Mb/ s. 100m Enter the keyword 100m to set the speed of the Management interface to 100 Mb/s.
PAGE 69
Parameters file-url Enter the location keywords and information: For a file on the internal Flash, enter flash:// followed by the filename. For a file on the external Flash, enter slot0:// followed by the filename. • • Defaults Command Modes None. BOOT_USER restore factory-defaults s Syntax Erase all NVRAM sectors, EEPROM sectors, and user boot configurations. restore factory-defaults Command Modes BOOT_USER Command History Version 7.8.1.
PAGE 70
www.dell.com | support.dell.com Example Figure 4-5. show boot selection Command Example BOOT_USER # show boot selection ROM BOOTSTRAP SELECTOR PARMETERS: ================================ Current ROM bootstrap selection set to Bootflash partition B. Last ROM bootstrap occurred from Bootflash partition B. BOOT_USER # Related Commands boot change Change the primary, secondary or default boot image configuration boot selection Change the boot flash image on the internal Flash.
PAGE 71
Command History Example Version 7.8.1.0 Figure 4-7. Introduced on S-Series show bootvar Command Example BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : ftp file name : tt/latestlabel Management Ethernet IP address : 10.16.1.181/24 Server IP address : 10.16.1.209 username : amsterdam password : ****** SECONDARY OPERATING SYSTEM BOOT PARAMETERS: ========================================== boot device : flash file name : /E1200-3.1.
PAGE 72
www.dell.com | support.dell.com show interface management ethernet c es Syntax Display the IP address configured for the Management interface. show interface management ethernet Command Modes BOOT_USER Command History Version 7.8.1.0 Example Figure 4-9. Introduced on S-Series show interface management ethernet Command Example BOOT_USER # show interfaces management ethernet Management ethernet IP address: 10.16.1.
PAGE 73
5 Control and Monitoring Overview This chapter contains the following commands to configure and monitor the system, including Telnet, FTP, and TFTP as they apply to platforms c e s.
PAGE 74
www.dell.com | support.dell.
PAGE 75
Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Optionally, use the banner exec command to create a text string that is displayed when the user accesses the EXEC mode. The exec-banner command toggles that display. Example Force10(conf)#banner exec ? LINE c banner-text c, where 'c' is a delimiting character Force10(conf)#banner exec % Enter TEXT message. End with the character '%'.
PAGE 76
www.dell.com | support.dell.com Command History Version 8.2.1.0 Introduced keyboard-interactive keyword Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Related Commands Example A login banner message is displayed only in EXEC Privilege mode after entering the enable command followed by the password. These banners are not displayed to users in EXEC mode.
PAGE 77
Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information A MOTD banner message is displayed only in EXEC Privilege mode after entering the enable command followed by the password. These banners are not displayed to users in EXEC (non-privilege) mode. Related Commands banner exec Sets a banner to be displayed when you enter the EXEC Privilege mode.
PAGE 78
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information This command clear alarms that are no longer active. If an alarm situation is still active, it is seen in the system output. clear command history ces Syntax Command Modes Command History Clear the command history log. clear command history EXEC Privilege Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 79
configure ces Syntax Parameters Command Modes Command History Enter the CONFIGURATION mode from the EXEC Privilege mode. configure [terminal] terminal (OPTIONAL) Enter the keyword terminal to specify that you are configuring from the terminal. EXEC Privilege Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Example Figure 5-2.
PAGE 80
www.dell.com | support.dell.com debug ftpserver ces Syntax Command Modes View transactions during an FTP session when a user is logged into the FTP server. debug ftpserver EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command disable ce Return to the EXEC mode.
PAGE 81
Command History Usage Information Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced on E-Series The following commands are not supported by the do command: • • • • enable disable exit config Figure 5-3.
PAGE 82
www.dell.com | support.dell.com enable xfp-power-updates ces Syntax Enable XFP power updates for SNMP. enable xfp-power-updates interval seconds To disable XFP power updates, use the no enable xfp-power-updates command. Parameters Defaults Command Modes Command History Usage Information interval seconds Enter the keyword interval followed by the polling interval in seconds. Range: 120 to 6000 seconds Default: 300 seconds (5 minutes) Disabled CONFIGURATION Version 8.1.1.
PAGE 83
epoch e Syntax Parameters Defaults Command Modes Command History Usage Information Set the epoch scheduling time for the chassis. epoch {2.4 |3.2 | 10.4} 2.4 Enter the keyword 2.4 to set the epoch to 2.4 micro-seconds and lower the latency. This option is available on the E600i and E1200i E-Series ExaScale systems only. 3.2 Enter the keyword 3.2 to set the epoch to 3.2 micro-seconds and lower the latency. This option is available on the E600/E600i and E1200/E1200i only.
PAGE 84
www.dell.com | support.dell.com exec-banner ces Syntax Defaults Command Modes Command History Enable the display of a text string when the user enters the EXEC mode. exec-banner Enabled on all lines (if configured, the banner appears). LINE Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 85
Example Figure 5-4. FTOS time-out display Force10 con0 is now available Press RETURN to get started. Force10> exit ce s Syntax Command Modes Command History Return to the lower command mode. exit EXEC Privilege, CONFIGURATION, LINE, INTERFACE, TRACE-LIST, PROTOCOL GVRP, SPANNING TREE, MULTIPLE SPANNING TREE, MAC ACCESS LIST, ACCESS-LIST, AS-PATH ACL, COMMUNITY-LIST, PREFIX-LIST, ROUTER OSPF, ROUTER RIP, ROUTER ISIS, ROUTER BGP Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 86
www.dell.com | support.dell.com Example Figure 5-5. Example of Logging on to an FTP Server morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 Force10 (1.0) FTP server ready Name (10.31.1.
PAGE 87
ftp-server username ces Create a user name and associated password for incoming FTP server sessions. Syntax ftp-server username username password [encryption-type] password Parameters username Enter a text string up to 40 characters long as the user name. password password Enter the keyword password followed by a string up to 40 characters long as the password. Without specifying an encryption type, the password is unencrypted.
PAGE 88
www.dell.com | support.dell.com ip ftp password ces Syntax Parameters Specify a password for outgoing FTP connections. ip ftp password [encryption-type] password encryption-type (OPTIONAL) Enter one of the following numbers: • • password Defaults Command Modes Command History 0 (zero) for an unecrypted (clear text) password 7 (seven) for hidden text password Enter a string up to 40 characters as the password. Not configured. CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.
PAGE 89
ip ftp source-interface ces Syntax Parameters Specify an interface’s IP address as the source IP address for FTP connections. ip ftp source-interface interface interface Enter the following keywords and slot/port or number information: • • • • • • • Defaults Command Modes Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 90
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Related Commands You must also configure a password with the ip ftp password command. ip ftp password Set the password for FTP connections. ip telnet server enable ces Syntax Enable the Telnet server on the switch. ip telnet server enable To disable the Telnet server, execute the no ip telnet server enable command.
PAGE 91
Defaults Command Modes Command History The IP address on the system that is closest to the Telnet address is used in the outgoing packets. CONFIGURATION Version 8.2.1.0 Increased number of VLANs on ExaScale to 4094 (was 2094) Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Related Commands telnet Telnet to another device.
PAGE 92
www.dell.com | support.dell.com line ces Syntax Parameters Enable and configure console and virtual terminal lines to the system. This command accesses LINE mode, where you can set the access conditions for the designated line. line {aux 0 | console 0 | vty number [end-number]} Enter the keyword aux 0 to configure the auxiliary terminal connection. aux 0 Note: This option is supported on E-Series only.
PAGE 93
Command History Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Use this command only for empty slots or a slot where you have hot-swapped a different line card type. Before inserting a card of a different type into the pre-configured slot, execute the no linecard number command.
PAGE 94
www.dell.com | support.dell.com Command History Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Version 7.5.1.0 Introduced on C-Series E-Series original Command motd-banner ces Syntax Defaults Command Modes Command History Enable a Message of the Day (MOTD) banner to appear when you log in to the system. motd-banner Enabled on all lines. LINE Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 95
timeout source Enter the interval to wait for an echo reply before timing out. Range: 0 -3600 seconds Default: 2 seconds Enter the IPv4 or IPv6 source ip address or the source interface. For IPv6 addresses, you may enter global addresses only. • • • • • • • Enter the IP address in A.B.C.D format For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 96
www.dell.com | support.dell.com sweep-interval Enter the incremental value for sweep size. 1-15308 seconds ointerface (IPv4 only) Enter the outgoing interface for multicast packets. • • Enter the IP address in A.B.C.D format For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 97
Figure 5-8. Command Example: ping (IPv6) Force10#ping 100::1 Type Ctrl-C to abort. Sending 5, 100-byte ICMP Echos to 100::1, timeout is 2 seconds: !!!!! Success rate is 100.0 percent (5/5), round-trip min/avg/max = 0/0/0 (ms) Force10# power-off ce Turn off power to a selected line card or the standby (extra) Switch Fabric Module (SFM).
PAGE 98
www.dell.com | support.dell.com Defaults Command Modes Command History Disabled EXEC Privilege Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Version 7.5.1.0 Introduced on C-Series E-Series original Command Related Commands power-off Power off a line card or standby SFM. reload ces Syntax Command Modes Command History Reboot FTOS. reload EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 99
rpm number Enter the keyword rpm followed by a number for the RPM slot number. (Optional) Add the keyword hard or power-cycle (C-Series only) to power cycle the RPM. Range: 0 to 1 sfm standby Enter the keyword sfm standby to reset the standby SFM. Note: This option is supported on E-Series EtherScale only. sfm slot number Enter the keyword sfm followed by the failed or powered-off SFM slot number. Note: Supported on E-Series only Defaults Command Modes Command History Disabled.
PAGE 100
www.dell.com | support.dell.com send ces Syntax Parameters Send messages to one or all terminal line users. send [*] | [line ] | [aux] | [console] | [vty] * Enter the asterisk character * to send a message to all tty lines. line Send a message to a specific line. Range: 0 to 11 aux Enter the keyword aux to send a message to an Auxiliary line. Note: This option is supported on E-Series only.
PAGE 101
Command Modes Command History CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information If you do not specify parameters and enter service timestamps, it appears as service timestamps debug uptime in the running-configuration. Use the show running-config command to view the current options set for the service timestamps command.
PAGE 102
www.dell.com | support.dell.com show chassis ce View the configuration and status of modules in the system. Use this command to determine the chassis mode. Syntax show chassis [brief] Parameters brief Command Modes (OPTIONAL) Enter the keyword brief to view a summary of the show chassis output. EXEC EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.
PAGE 103
Example Figure 5-10. Command Example: show chassis brief on E-Series Force10#Force10#show chassis brief Chassis Type : E1200 Chassis Mode : TeraScale Chassis Epoch : 3.2 micro-seconds -- Line cards -Slot Status NxtBoot ReqTyp CurTyp Version Ports --------------------------------------------------------------------------0 not present 1 not present 2 not present 3 not present 4 not present 5 not present 6 not present 7 not present 8 not present 9 not present 10 not present 11 online online E48PF E48PF 6.1.
PAGE 104
www.dell.com | support.dell.com Command Mode EXEC EXEC Privilege Command History Usage Information Example H Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series One trace log message is generated for each command. No password information is saved to this file. A command-history trace log is saved to a file upon an RPM failover.
PAGE 105
Parameters Defaults Command Mode count Display the command tree with a usage counter for each command. no Display all of the commands that may be preceded by the keyword no, which is the keyword used to remove a command from the running-configuration. None EXEC EXEC Privilege Command History Usage Information Example H Version 8.2.1.0 Introduced Reload the system to reset the command-tree counters.
PAGE 106
www.dell.com | support.dell.com Command Mode EXEC EXEC Privilege Command History Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Caution: Use this command only when you are working directly with a technical support representative to troubleshoot a problem. Do not use this command unless a technical support representative instructs you to do so. show cpu-traffic-stats ces Syntax Parameters View the CPU traffic statistics.
PAGE 107
E-Series Example Figure 5-12.
PAGE 108
www.dell.com | support.dell.com Example Figure 5-13. Command Example: show debugging Force10#show debug Generic IP: IP packet debugging is on for ManagementEthernet 0/0 Port-channel 1-2 Port-channel 5 GigabitEthernet 4/0-3,5-6,10-11,20 GigabitEthernet 5/0-1,5-6,10-11,15,17,19,21 ICMP packet debugging is on for GigabitEthernet 5/0,2,4,6,8,10,12,14,16 Force10# show environment (C-Series and E-Series) ce View the system component status (for example, temperature, voltage).
PAGE 109
Examples Figure 5-14.
PAGE 110
www.dell.com | support.dell.com Figure 5-16. Command Example: show environment fan on the C300 Force10#show env fan -- Fan Status -------------------------------------------------------------------Tray 0 ------------------------------------------------------------------FanNumber Speed Status 0 4170 up 1 4140 up 2 3870 up 3 4140 up 4 3870 up 5 3810 up Force10# show environment (S-Series) s Syntax Parameters Command Modes View S-Series system component status (for example, temperature, voltage).
PAGE 111
Example Figure 5-17.
PAGE 112
www.dell.com | support.dell.com show inventory (C-Series and E-Series) ce Display the chassis type, components (including media), FTOS version including hardware identification numbers and configured protocols. Syntax show inventory [media slot] Parameters Defaults Command Modes Command History Usage Information media slot (OPTIONAL) Enter the keyword media followed by the slot number.
PAGE 113
C300 Example Figure 5-21. Example output of show inventory for C300 (C-Series) Force10# show inventory Chassis Type : C300 Chassis Mode : 1.0 Software Version : FTOS-EF-7.6.1.
PAGE 114
www.dell.com | support.dell.com Example Figure 5-24.
PAGE 115
Example 1 Figure 5-25. Example output of show inventory for S-Series Force10#show inventory System Name system Mode Software Version : S50v : 1.0 : 7.6.1.
PAGE 116
www.dell.com | support.dell.com Command Modes all (OPTIONAL) Enter the keyword all to view a table with information on all present line cards. brief (OPTIONAL) Enter the keyword brief to view an abbreviated list of line card information. EXEC EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Figure 5-27.
PAGE 117
Table 5-1 list the definitions of the fields shown in Figure 5-27. Table 5-1. Descriptions for show linecard output Field Description Line card Displays the line card slot number (only listed in show linecard all command output). Status Displays the line card’s status. Next Boot Displays whether the line card is to be brought online at the next system reload. Required Type Displays the line card type configured for the slot. The Required Type and Current Type must match.
PAGE 118
www.dell.com | support.dell.com Figure 5-29. Command Example: show linecard brief Force10#show linecard 11 brief -- Line card Status Next Boot Required Type Current Type Hardware Rev Num Ports Up Time FTOS Version Jumbo Capable Force10# Related Commands 11 -: online : online : E48PF - 48-port GE line card with SFP optics (EF) : E48PF - 48-port GE line card with SFP optics (EF) : Base - 1.0 PP0 - n/a PP1 - n/a : 48 : 11 hr, 24 min : 6.1.1.
PAGE 119
Table 5-2 defines the fields in Figure 5-30. Table 5-2. Usage Information Related Commands Descriptions for show linecard boot-information output Field Description # Displays the line card slot numbers, beginning with slot 0. The number of slots listed is dependent on your chassis: E-Series: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. Status Indicates if a line card is online, offline, or booting. If a line card is not detected in the slot, a hyphen ( - ) is displayed.
PAGE 120
www.dell.com | support.dell.com Parameters cp (OPTIONAL) Enter the keyword cp to view information on the Control Processor on the RPM. lp slot-number (OPTIONAL) Enter the keyword lp and the slot number to view information on the line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. rp1 (OPTIONAL) Enter the keyword rp1 to view information on Route Processor 1 on the RPM.
PAGE 121
Table 5-3 defines the fields displayed in Figure 5-31. Table 5-3. Descriptions for show memory output Field Description Lowest Displays the memory usage the system went to in the lifetime of the system. Indirectly, it indicates the maximum usage in the lifetime of the system: Total minus Lowest. Largest The current largest available. This relates to block size and is not related to the amount of memory on the system.
PAGE 122
www.dell.com | support.dell.com rp2 (OPTIONAL) Enter the keyword rp2 to view CPU usage of the Route Processor 2. Note: This option is supported on the E-Series only. lp linecard [1-99] (OPTIONAL) Enter the keyword lp followed by the line card number to display the CPU usage of that line card. The optional 1-99 variable sets the number of tasks to display in order of the highest CPU usage in the past five (5) seconds.
PAGE 123
Example 2 Figure 5-34.
PAGE 124
www.dell.com | support.dell.com show processes cpu (S-Series) s Syntax Display CPU usage information based on processes running in an S-Series. show processes cpu [management-unit 1-99 [details] | stack-unit 0-7 | summary | ipc | memory [stack-unit 0-7]] Parameters management-unit1-99 [details] (OPTIONAL) Display processes running in the control processor. The 1-99 variable sets the number of tasks to display in order of the highest CPU usage in the past five (5) seconds.
PAGE 125
Example 2 Figure 5-37. Command Example: show processes cpu management-unit on S-Series Force10#show processes cpu management-unit 0 CPU utilization for five seconds: 1%/0%; one minute: 10%; five minutes: 2% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 272 20 2 10000 0.00% 0.00% 0.00% 0 topoDPC 271 0 0 0 0.00% 0.00% 0.00% 0 bcmNHOP 270 0 0 0 0.00% 0.00% 0.00% 0 bcmDISC 269 0 0 0 0.00% 0.00% 0.00% 0 bcmATP-RX 268 0 0 0 0.00% 0.00% 0.00% 0 bcmATP-TX 267 30 3 10000 0.00% 0.00% 0.
PAGE 126
www.dell.com | support.dell.com Example 3 126 Figure 5-38.
PAGE 127
Example 4 Figure 5-39.
PAGE 128
www.dell.com | support.dell.com show hardware system-flow Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. show interfaces stack-unit Display information on all interfaces on a specific S-Series stack member. show processes memory (S-Series) Display CPU usage information based on processes running in an S-Series show processes ipc flow-control ces Syntax Parameters Display the Single Window Protocol Queue (SWPQ) statistics.
PAGE 129
Example 1 Figure 5-41.
PAGE 130
www.dell.com | support.dell.com Table 5-4 list the definitions of the fields shown in Figure 5-41 and Figure 5-42. Table 5-4.
PAGE 131
Example 4 Figure 5-45.
PAGE 132
www.dell.com | support.dell.com Parameters cp (OPTIONAL) Enter the keyword cp to view memory usage of the Control Processor. lp slot-number (OPTIONAL) Enter the keyword lp and the slot number to view information on the line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. lp all (OPTIONAL) Enter the keyword lp all to view CP memory usage on all active line cards.
PAGE 133
Figure 5-46.
PAGE 134
Figure 5-48. www.dell.com | support.dell.
PAGE 135
show processes memory (S-Series) s Syntax Display memory usage information based on processes running in the S-Series system. show processes memory {management-unit | stack unit {0–7 | all | summary}} Parameters Command Modes management-unit Enter the keyword management-unit for CPU memory usage of the stack management unit. stack unit 0–7 Enter the keyword stack unit followed by a stack unit ID of the member unit for which to display memory usage on the forwarding processor.
PAGE 136
www.dell.com | support.dell.com Example Figure 5-50.
PAGE 137
show processes switch-utilization e Syntax Command Mode Show switch fabric utilization. show processes switch-utilization EXEC EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale E-Series original Command Example Figure 5-51.
PAGE 138
www.dell.com | support.dell.com E-Series Example Figure 5-52. Command Example: show rpm on E-Series Force10#show RPM 0 -- RPM card 0 -Status : active Next Boot : online Card Type : RPM - Route Processor Module (LC-EF-RPM) Hardware Rev : 2.0 Num Ports : 1 Up Time : 36 min, 51 sec Last Restart : reset FTOS Version : 6.2.1.0 Jumbo Capable : yes CP Boot Flash : A: 2.4.0.6 B: 2.4.0.7 [booted] RP1 Boot Flash: A: 2.4.0.7 [booted] B: 2.4.0.5 RP2 Boot Flash: A: 2.4.0.7 [booted] B: 2.4.0.
PAGE 139
Table 5-7. Related Commands Descriptions of show rpm output Field Description CP Boot Flash Displays the two possible Boot Flash versions for the Control Processor. The [Booted] keyword next to the version states which version was used at system boot. RP1 Boot Flash Displays the two possible Boot Flash versions for the Routing Processor 1. The [Booted] keyword next to the version states which version was used at system boot.
PAGE 140
www.dell.com | support.dell.com ifcb interface Enter the keyword ifcb followed by one of the following interface IDs followed by the slot/port information to display interface control block information for that interface: • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 141
show switch links c Syntax Parameters Defaults Command Modes Command History Example View the switch fabric backplane or internal status. show switch links {backplane | internal} backplane Enter the keyword backplane to view a table with information on the link status of the switch fabric backplane for both SFMs. internal Enter the keyword internal to view a table with information on the internal status of the switch fabric modules. None EXEC Version 7.5.1.0 Introduced on C-Series Figure 5-54.
PAGE 142
www.dell.com | support.dell.com Command History Usage Example Version 7.8.1.0 Modified output: Boot Flash field will display code level for boot code 2.8.1.1 and newer, while older boot codes are displayed as "Present". Version 7.7.1.0 Modified output: Added Master Priority field. Version 7.6.1.0 Introduced for S-Series switches Figure 5-55 shows the output from the show system brief command. Figure 5-56 shows the output from the show system stack-unit command. Figure 5-55.
PAGE 143
Example Figure 5-56.
PAGE 144
www.dell.com | support.dell.com show tech-support (C-Series and E-Series) ce Display, or save to a file, a collection of data from other show commands, the information necessary for Dell Force10 technical support to perform troubleshooting. Syntax show tech-support [linecard 0-6 | page] | {display | except | find | grep | no-more | save} Parameters linecard 0-6 (OPTIONAL) Enter the keyword linecard followed by the linecard number to view information relating to a specific linecard.
PAGE 145
C-Series Example Figure 5-57. Command Example: show tech-support (partial) on C-Series Force10#show tech-support page ----------------------------------- show version ------------------------------Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: FTOS 7.5.1.0 Copyright (c) 1999-2007 by Force10 Networks, Inc.
PAGE 146
www.dell.com | support.dell.com E-Series Example Figure 5-58.
PAGE 147
• • • • • • • • • • • Related Commands show inventory show ip management-route show ip protocols show ip route summary show processes cpu show processes memory show redundancy show rpm show running-conf show sfm show version show version Display the FTOS version. show linecard Display the line card(s) status. show environment (C-Series and E-Series) Display system component status. show processes memory (C-Series and E-Series) Display memory usage based on running processes.
PAGE 148
www.dell.com | support.dell.com S-Series Examples Figure 5-59.
PAGE 149
Figure 5-60. Command Example: show tech-support (partial) on S-Series Force10#show tech-support stack-unit 0 ----------------------------------- show version ------------------------------Force10 Networks Real Time Operating System Software Force10 Operating System Version: 1.0 Force10 Application Software Version: FTOS 7.6.1.0 Copyright (c) 1999-2007 by Force10 Networks, Inc.
PAGE 150
www.dell.com | support.dell.com • • • • • • • Related Commands show ip protocols show ip route summary show processes cpu show processes memory show redundancy show running-conf show version show version Display the FTOS version. show system (S-Series) Display the current switch status. show environment (S-Series) Display system component status. show processes memory (S-Series) Display memory usage based on running processes. ssh-peer-rpm ce Open an SSH connection to the peer RPM.
PAGE 151
Parameters host Enter the name of a server. ip-address Enter the IPv4 address in dotted decimal format of the server. ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 Note: The :: notation specifies successive hexadecimal fields of zeros vrf instance (Optional) E-Series Only: Enter the keyword vrf followed by the VRF Instance name.
PAGE 152
www.dell.com | support.dell.com Command History Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) Increased number of VLANs on ExaScale to 4094 (was 2094) Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.9.1.0 Introduced VRF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and added support for IPv6 address on E-Series only Telnet to link-local addresses is not supported.
PAGE 153
terminal length ces Syntax Configure the number of lines displayed on the terminal screen. terminal length screen-length To return to the default values, enter terminal no length. Parameters screen-length Defaults Command Modes Enter a number of lines. Entering zero will cause the terminal to display without pausing. Range: 0 to 512. Default: 24 lines. 24 lines EXEC EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.
PAGE 154
www.dell.com | support.dell.com traceroute ces Syntax View a packet’s path to a specific device. traceroute {host | vrf instance | ip-address | ipv6-address} Parameters Defaults Command Modes host Enter the name of device. vrf instance (Optional) E-Series Only: Enter the keyword vrf followed by the VRF Instance name. ip-address Enter the IP address of the device in dotted decimal format. ipv6-address Enter the IPv6 address, in the x:x:x:x::x format, to which you are testing connectivity.
PAGE 155
Example Figure 5-61. Command Example: traceroute (IPv4) Force10#traceroute www.force10networks.com Translating "www.force10networks.com"...domain server (10.11.0.1) [OK] Type Ctrl-C to abort. -----------------------------------------------------------------------------------------Tracing the route to www.force10networks.com (10.11.84.18), 30 hops max, 40 byte packets -----------------------------------------------------------------------------------------TTL Hostname Probe1 Probe2 Probe3 1 10.11.199.
PAGE 156
www.dell.com | support.dell.com undebug all ces Syntax Defaults Command Modes Command History Disable all debug operations on the system. undebug all No default behavior or values EXEC Privilege Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 157
virtual-ip ce Configure a virtual IP address for the active management interface. Virtual addresses can be configured both for IPv4 and IPv6 independently. Syntax virtual-ip {ipv4-address | ipv6-address} Parameters Defaults Command Modes Command History {ipv4-address | ipv6-address} Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::) of the active management interface. No default behavior or values CONFIGURATION Version 8.4.1.0 Added support for IPv6 addressing. Version 8.1.1.
PAGE 158
www.dell.com | support.dell.com Related Commands 158 Usage Information | save Save configurations created in BOOT_USER mode (BLI). The write memory command saves the running-configuration to the file labeled startup-configuration.
PAGE 159
6 802.1ag Overview 802.
PAGE 160
www.dell.com | support.dell.com ccm disable s Disable CCM. Syntax ccm disable Enter no ccm disable to enable CCM. Defaults Command Modes Command History Disabled ECFM DOMAIN Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on S-Series ccm transmit-interval s Syntax Parameters Defaults Command Modes Command History Configure the transmit interval (mandatory). The interval specified applies to all MEPs in the domain.
PAGE 161
Syntax Parameters Defaults Command Modes Command History database hold-time minutes minutes Enter a hold-time. Range: 100-65535 minutes 100 minutes ECFM DOMAIN Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on S-Series disable s Disable Ethernet CFM without stopping the CFM process. Syntax disable Defaults Disabled Command Modes Command History ETHERNET CFM Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.
PAGE 162
www.dell.com | support.dell.com Syntax Defaults Command Modes Command History ethernet cfm Disabled CONFIGURATION Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on S-Series ethernet cfm mep s Syntax Parameters Defaults Command Modes Command History Create an MEP. ethernet cfm mep {up-mep | down-mep} domain {name | level} ma-name name mepid mep-id [up-mep | down-mep] Specify whether the MEP is up or down facing.
PAGE 163
Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on S-Series mep cross-check s Syntax Parameters Defaults Command Modes Command History Enable cross-checking for an MEP. mep cross-check mep-id mep-id Enter the MEP ID Range: 1-8191 None ECFM DOMAIN Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on S-Series mep cross-check enable s Syntax Parameters Defaults Command Modes Command History Enable cross-checking.
PAGE 164
www.dell.com | support.dell.com Command Modes Command History ETHERNET CFM Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on S-Series ping ethernet s Syntax Parameters Defaults Command Modes Command History Send a Loopback message. ping ethernet domain [name l level] ma-name m a-name remote {dest-mep-id | mac-addr mac-address} source {src-mep-id | port interface} name | level Enter the domain name or level.
PAGE 165
Example Force10# show ethernet cfm domain Domain Name: customer Level: 7 Total Service: 1 Services MA-Name VLAN My_MA CC-Int 200 Domain Name: My_Domain Level: 6 Total Service: 1 Services MA-Name 10s VLAN Your_MA X-CHK Status CC-Int 100 enabled X-CHK Status 10s enabled show ethernet cfm maintenance-points local s Syntax Parameters Defaults Command Modes Command History Example Display configured MEPs and MIPs.
PAGE 166
www.dell.com | support.dell.com Defaults Command Modes Command History Example expired Enter this keyword to view MEP entries that have expired due to connectivity failure. waiting Enter this keyword to display MEP entries waiting for response. None EXEC Privilege Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.
PAGE 167
Command Modes Command History Example EXEC Privilege Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.
PAGE 168
www.dell.com | support.dell.com Syntax Defaults Command Modes Command History Example show ethernet cfm traceroute-cache None EXEC Privilege Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.
PAGE 169
Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on S-Series traceroute cache size s Syntax Parameters Defaults Command Modes Command History Set the size of the Link Trace Cache. traceroute cache size entries entries Enter the number of entries the Link Trace Cache can hold. Range: 1 - 4095 entries 100 entries ETHERNET CFM Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.
PAGE 170
| 802.1ag www.dell.com | support.dell.
PAGE 171
7 802.3ah Overview 802.
PAGE 172
www.dell.com | support.dell.com clear ethernet oam statistics s Syntax Parameters Clear Link Layer OAM statistics. clear ethernet oam statistics interface interface interface Parameters None Defaults None Command Mode Command History Enter the interface for which you want to clear statistics, for example gig 0/1. EXEC Privilege Version 8.4.1.0 Introduced on S-Series ethernet oam (enable/disable) s Syntax Parameters Defaults Command Mode Command History Enable Ethernet OAM.
PAGE 173
ethernet oam event-log size s Syntax Parameters Defaults Command Mode Command History Specify the size of the event log. ethernet oam event-log size entries entries Enter the number of entries for the log size. Range: 0 to 200. Default: 50. 50 CONFIGURATION Version 8.4.1.0 Introduced on S-Series ethernet oam link-monitor frame s Syntax Set the frame error thresholds and window.
PAGE 174
www.dell.com | support.dell.com Parameters Defaults Command Mode Command History high {milliseconds | none} Specify the high threshold value for frame error seconds per time period, or disable the high threshold. Range: 1-900 Default: None low milliseconds Specify the low threshold for frame error seconds per time period. Range: 1-900 Default: 1 window milliseconds Specify the time period for error second per time period condition.
PAGE 175
ethernet oam link-monitor supported s Enable support for link performance monitoring on an interface. To disable support for link monitoring, enter the no ethernet oam link-monitor supported command. Support for link monitoring is enabled on an interface by default when you enable Ethernet OAM with the ethernet oam command. Syntax Defaults Command Mode Command History ethernet oam link-monitor supported Enabled INTERFACE Version 8.4.1.
PAGE 176
www.dell.com | support.dell.com Defaults Command Mode Command History Active INTERFACE Version 8.4.1.0 Introduced on S-Series ethernet oam remote-failure s Syntax Block or disable an interface when a particular critical link event occurs. ethernet oam remote-failure {critical-event | dying-gasp | link-fault} action {error-block-interface | error-disable-interface} Parameters Defaults Command Mode Command History critical-event An unspecified critical event occurred.
PAGE 177
ethernet oam remote-loopback (interface) s Syntax Parameters Defaults Command Mode Command History Enable support for OAM loopback on an interface and configure a timeout value. ethernet oam remote-loopback {supported | timeout seconds} supported Start or stop a loopback operation on a peer. timeout seconds Specify the number of seconds that the local peer waits to receive a returned frame before considering a remote peer to be non-operational. Valid values are from 1 to 10. None INTERFACE Version 8.
PAGE 178
www.dell.com | support.dell.com Example Force10# show ethernet oam discovery interface Local client __________ Administrative configurations: Mode:active Unidirection:not supported Link monitor:supported (on) Remote loopback:not supported MIB retrieval:not supported Mtu size:1500 Operational status: Port status:operational Loopback status:no loopback PDU permission:any PDU revision:1 Remote client ___________ MAC address:0030.88fe.
PAGE 179
Example Force10# show ethernet oam statistics interface Counters: _________ Information OAMPDU Tx: 3439489 Information OAMPDU Rx: 9489 Unique Event Notification OAMPDU Tx: 0 Unique Event Notification OAMPDU x: 0 Duplicate Event Notification OAMPDU Tx: 0 Duplicate Event Notification OAMPDU Rx: 0 Loopback Control OAMPDU Tx: 0 Loopback Control OAMPDU Rx: 2 Variable Request OAMPDU Tx: 0 Variable Request OAMPDU Rx: 0 Variable Response OAMPDU Tx: 0 Variable Response OAMPDU Rx: 0
PAGE 180
www.dell.com | support.dell.com show ethernet oam status s Syntax Parameters Defaults Command Mode Command History Example Display Link Layer OAM status per interface. show ethernet oam status interface interface interface Enter the interface for which you want to display status, for example gig 0/1. None EXEC Privilege Version 8.4.1.
PAGE 181
show ethernet oam summary s Syntax Defaults Command Mode Command History Example Display Link Layer OAM sessions. show ethernet oam summary None EXEC Privilege Version 8.4.1.0 Introduced on S-Series Force10# show ethernet oam summary Output format : Symbols:* - Master Loopback State, # - Slave Loopback State Capability codes:L - Link Monitor, R - Remote Loopback U - Unidirection,V - Variable Retrieval LocalRemote InterfaceMAC AddressOUIModeCapability Gi6/1/10023.84ac.b8000000DactiveL R 802.
PAGE 182
| 802.3ah www.dell.com | support.dell.
PAGE 183
8 802.1X The 802.
PAGE 184
www.dell.com | support.dell.com • If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the specified VLAN after authentication. If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS server assigned VLAN. If 802.1X is disabled on the port, it is returned to the configured access VLAN.
PAGE 185
dot1x auth-type mab-only cs Use only the host MAC address to authenticate a device with MAC authentication bypass (MAB). Syntax dot1x auth-type mab-only Defaults Command Modes Disabled INTERFACE Command History Usage Information Version 8.4.2.1 Introduced on the C-Series and S-Series The prerequisites for enabling MAB-only authentication on a port are: • • 802.1X authentication must be enabled globally on the switch and on the port (dot1x authentication command).
PAGE 186
www.dell.com | support.dell.com dot1x authentication (Interface) ces Syntax Enable dot1x on an interface; dot1x must be enabled both globally and at the interface level. dot1x authentication To disable dot1x on an interface, use the no dot1x authentication command. Defaults Command Modes Command History Related Commands Disabled INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
PAGE 187
dot1x auth-server ces Configure the authentication server to RADIUS. Syntax dot1x auth-server radius Defaults No default behavior or values Command Modes Command History CONFIGURATION Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series dot1x guest-vlan ces Syntax Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. dot1x guest-vlan vlan-id To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command.
PAGE 188
www.dell.com | support.dell.com dot1x host-mode c e ts Syntax Enable single-host or multi-host authentication. dot1x host-mode {single-host | multi-host | multi-auth} Parameters Defaults Command Modes multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. INTERFACE • • • Related Commands Enable single-host authentication. single-host Command History Usage Information single-host Version 8.4.1.
PAGE 189
dot1x max-eap-req ces Syntax Configure the maximum number of times an EAP (Extensive Authentication Protocol) request is transmitted before the session times out. dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command. Parameters Defaults Command Modes Command History number Enter the number of times an EAP request is transmitted before a session time-out. Range: 1 to 10 Default: 2 2 INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
PAGE 190
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information force-authorized Enter the keyword force-authorized to forcibly authorize a port. auto Enter the keyword auto to authorize a port based on the 802.1X operation result. force-unauthorized Enter the keyword force-unauthorized to forcibly de-authorize a port. No default behavior or values INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
PAGE 191
Parameters Defaults Command Modes (Optional) Enter the keyword interval followed by the interval time, in seconds, after which re-authentication will be initiated. Range: 1 to 31536000 (1 year) Default: 3600 (1 hour) interval seconds 3600 seconds (1 hour) INTERFACE Command History Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
PAGE 192
www.dell.com | support.dell.com dot1x server-timeout ces Syntax Configure the amount of time after which exchanges with the server time out. dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters Defaults Command Modes Command History Usage Information seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant. Default: 30 30 seconds INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.
PAGE 193
dot1x supplicant-timeout ces Syntax Configure the amount of time after which exchanges with the supplicant time out. dot1x supplicant-timeout seconds To return to the default, use the no dot1x supplicant-timeout command. Parameters Defaults Command Modes Command History seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant. Default: 30 30 seconds INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
PAGE 194
www.dell.com | support.dell.com show dot1x cos-mapping interface cs Display the CoS priority-mapping table provided by the RADIUS server and applied to authenticated supplicants on an 802.1X-enabled port. Syntax show dot1x cos-mapping interface interface [mac-address mac-address] Parameters interface Enter one of the following keywords and slot/port or number information: • • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 195
show dot1x interface ces Syntax Parameters Display the 802.1X configuration of an interface. show dot1x interface interface [mac-address mac-address] interface Enter one of the following keywords and slot/port or number information: • • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
PAGE 196
www.dell.com | support.dell.com Figure 8-3. show dot1x interface mac-address Command Example Force10#show dot1x interface gig 2/21 mac-address 00:00:01:00:07:00 802.
PAGE 197
Figure 8-4. Example show dot1x interface (with Multi-Supplicant Authentication enabled) Force10#show dot1x interface g 0/21 802.
PAGE 198
| 802.1X www.dell.com | support.dell.
PAGE 199
9 Access Control Lists (ACL) Overview Access Control Lists (ACLs) are supported on platforms c e s FTOS supports the following types of Access Control List (ACL), IP prefix list, and route map: • • • • • • • • • • • Commands Common to all ACL Types Common IP ACL Commands Standard IP ACL Commands Extended IP ACL Commands Common MAC Access List Commands Standard MAC ACL Commands Extended MAC ACL Commands IP Prefix List Commands Route Map Commands AS-Path Commands IP Community List Commands Note: For ACL com
PAGE 200
www.dell.com | support.dell.com description ces Syntax Parameters Defaults Command Modes Configure a short text string describing the ACL. description text text Enter a text string up to 80 characters long. Not enabled. CONFIGURATION-STANDARD-ACCESS-LIST CONFIGURATION-EXTENDED-ACCESS-LIST CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 201
The following example shows the use of the remark command twice within the CONFIGURATION-STANDARD-ACCESS-LIST mode. Here, the same sequence number was used for the remark and for an associated ACL rule. The remark will precede the rule in the running-config because it is assumed that the remark is for the rule with the same sequence number, or the group of rules that follow the remark. Example Figure 9-1.
PAGE 202
www.dell.com | support.dell.com c and s platforms support Ingress IP ACLs only. The following commands allow you to clear, display, and assign IP ACL configurations. • • • • • access-class clear counters ip access-group ip access-group show ip access-lists show ip accounting access-list Note: See also Commands Common to all ACL Types. access-class ces Syntax Parameters Defaults Command Modes Command History Apply a standard ACL to a terminal line.
PAGE 203
ip access-group ces Syntax Assign an IP access list (IP ACL) to an interface. ip access-group access-list-name {in | out} [implicit-permit] [vlan vlan-id] Parameters Defaults Command Modes Enter the name of a configured access list, up to 140 characters. in Enter the keyword in to apply the ACL to incoming traffic. out Enter the keyword out to apply the ACL to outgoing traffic. Note: Available only on 12-port 1-Gigabit Ethernet FLEX line card.
PAGE 204
www.dell.com | support.dell.com show ip access-lists ces Syntax Display all of the IP ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/mismatches against each ACL entry displayed. show ip access-lists [access-list-name] [interface interface] [in |out] Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters.
PAGE 205
Command Modes EXEC EXEC Privilege Command History Example Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced Figure 9-3. Command Example: show ip accounting access-lists Force10#show ip accounting access FILTER1 interface gig 1/6 Extended IP access list FILTER1 seq 5 deny ip any 191.1.0.0 /16 count (0x00 packets) seq 10 deny ip any 191.2.0.0 /16 order 4 seq 15 deny ip any 191.3.0.0 /16 seq 20 deny ip any 191.4.0.
PAGE 206
www.dell.com | support.dell.com deny ces Syntax deny {source [mask] | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To remove this filter, you have two choices: • • Parameters Defaults Command Modes Command History 206 Configure a filter to drop packets with a certain IP address. | Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {source [mask] | any | host ip-address} command.
PAGE 207
Usage Information The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The monitor option is relevant in the context of flow-based monitoring only.
PAGE 208
www.dell.com | support.dell.com Example Figure 9-4. Command Example: ip access-list standard Force10(conf)#ip access-list standard TestList Force10(config-std-nacl)# Related Commands ip access-list extended Create an extended access list. show config Display the current configuration. permit ces Syntax Configure a filter to permit packets from a specific source IP address to leave the switch.
PAGE 209
Command History Usage Information Version 8.3.1.0 Add DSCP value for ACL matching. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry.
PAGE 210
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.
PAGE 211
seq ces Syntax Parameters Defaults Command Modes Command History Assign a sequence number to a deny or permit filter in an IP access list while creating the filter. seq sequence-number {deny | permit} {source [mask] | any | host ip-address}} [count [byte] | log] [dscp value] [order] [monitor] [fragments] sequence-number Enter a number from 0 to 4294967290. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.
PAGE 212
www.dell.com | support.dell.com Usage Information Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The monitor option is relevant in the context of flow-based monitoring only. See Chapter 45, Port Monitoring. The order option is relevant in the context of the Policy QoS feature only. The following applies: The seq sequence-number is applicable only in an ACL group.
PAGE 213
• • • • • • • • • permit ether-type permit icmp permit tcp permit udp resequence access-list resequence prefix-list ipv4 seq arp seq ether-type seq Note: See also Commands Common to all ACL Types and Common IP ACL Commands. deny ces Syntax Configure a filter that drops IP packets meeting the filter criteria.
PAGE 214
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule will be applied to the monitored interface. For details, see the section “Flow-based Monitoring” in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments. Not configured.
PAGE 215
To remove this filter, use one of the following: • • Parameters Defaults Command Modes Command History Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny arp {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} command. destination-mac-address mac-address-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
PAGE 216
www.dell.com | support.dell.com Usage Information The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. The monitor option is relevant in the context of flow-based monitoring only. See Chapter 45, Port Monitoring. When you use the log option, CP processor logs details about the packets that match.
PAGE 217
Defaults Command Modes Command History Usage Information source-mac-address mac-address-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match. The MAC ACL supports an inverse mask, therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
PAGE 218
www.dell.com | support.dell.com deny icmp e Syntax deny icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} [dscp] [message-type] [count [byte] | log] [order] [monitor] [fragments] To remove this filter, you have two choices: • • Parameters Defaults Command Modes Command History 218 Configure a filter to drop all or specific ICMP messages.
PAGE 219
Usage Information Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match.
PAGE 220
www.dell.com | support.dell.com Table 9-2.
PAGE 221
host ip-address Enter the keyword host followed by the IP address to specify a host IP address. dscp Enter this keyword to deny a packet based on DSCP value.
PAGE 222
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version 8.3.1.0 Added dscp keyword. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Deprecated established keyword. Version 6.5.
PAGE 223
Related Commands deny Assign a filter to deny IP traffic. deny udp Assign a filter to deny UDP traffic. deny udp ces Syntax Configure a filter to drop UDP packets meeting the filter criteria.
PAGE 224
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule will be applied to the monitored interface. For details, see the section “Flow-based Monitoring” in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments.
PAGE 225
But an ACL rule with TCP port lt 1023 takes only one entry in the CAM: Rule# 1 Data Mask From 0000000000000000 1111110000000000 0 To #Covered 1023 1024 Total Ports: 1024 Related Commands deny Assign a deny filter for IP traffic. deny tcp Assign a deny filter for TCP traffic. ip access-list extended ces Syntax Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols.
PAGE 226
www.dell.com | support.dell.com permit ces Syntax permit {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} command.
PAGE 227
Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information.
PAGE 228
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information vlan vlan-id Enter the keyword vlan followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. ip-address Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP. opcode code-number Enter the keyword opcode followed by the number of the ARP opcode.
PAGE 229
You cannot include IP, TCP or UDP filters in an ACL configured with ARP filters. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. permit ether-type e Syntax Configure a filter that allows traffic with specified types of Ethernet packets. This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications.
PAGE 230
www.dell.com | support.dell.com Defaults Command Modes order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
PAGE 231
Parameters Defaults Command Modes Command History Usage Information source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host followed by the IP address to specify a host IP address.
PAGE 232
www.dell.com | support.dell.com The monitor option is relevant in the context of the flow-based monitoring feature only. See Chapter 45, Port Monitoring. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. permit tcp ces Syntax Configure a filter to pass TCP packets meeting the filter criteria.
PAGE 233
Defaults Command Modes Command History Usage Information port port Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535. The following list includes some common TCP port numbers: 23 = Telnet 20 and 21 = FTP 25 = SMTP 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
PAGE 234
www.dell.com | support.dell.com When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM.
PAGE 235
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host followed by the IP address to specify a host IP address. dscp Enter this keyword to deny a packet based on DSCP value.
PAGE 236
www.dell.com | support.dell.com The monitor option is relevant in the context of the flow-based monitoring feature only. See Chapter 45, Port Monitoring. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. When you use the log option, CP processor logs details about the packets that match.
PAGE 237
Parameters Defaults Command Modes ipv4 | mac Enter the keyword ipv4, or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list, up to 140 characters. StartingSeqNum Enter the starting sequence number to resequence. Range: 0 - 4294967290 Step-to-Increment Enter the step to increment the sequence number. Range: 1 - 4294967290 No default values or behavior EXEC EXEC Privilege Command History Usage Information Version 8.1.1.
PAGE 238
www.dell.com | support.dell.com Usage Information Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Introduced for E-Series When all sequence numbers have been exhausted, this feature permits re-assigning new sequence number to entries of an existing prefix list. Prior to 7.8.1.0, names are up to 16 characters long.
PAGE 239
Defaults Command Modes order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
PAGE 240
www.dell.com | support.dell.com seq ether-type e Syntax Parameters Defaults 240 | Configure an egress filter with a specific sequence number that filters traffic with specified types of Ethernet packets. This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications.
PAGE 241
Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command History Usage Information Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Added monitor option Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The monitor option is relevant in the context of the flow-based monitoring feature only. See Chapter 45, Port Monitoring.
PAGE 242
www.dell.com | support.dell.com tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter.
PAGE 243
Command History Usage Information Version 8.3.1.0 Add DSCP value for ACL matching. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Deprecated established keyword Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry.
PAGE 244
www.dell.com | support.dell.com clear counters mac access-group ces Syntax Parameters Command Modes Command History Clear counters for all or a specific MAC ACL. clear counters mac access-group [mac-list-name] mac-list-name (OPTIONAL) Enter the name of a configured MAC access list. EXEC Privilege Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
PAGE 245
show mac access-lists ces Syntax Display all of the Layer 2 ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/mismatches against each ACL entry displayed. show mac access-lists [access-list-name] [interface interface] [in | out] Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters.
PAGE 246
www.dell.com | support.dell.com Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 9-6.
PAGE 247
deny ces Syntax Configure a filter to drop packets with a the MAC address specified. deny {any | mac-source-address [mac-source-address-mask]} [count [byte]] [log] [monitor] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {any | mac-source-address mac-source-address-mask} command.
PAGE 248
www.dell.com | support.dell.com mac access-list standard ces Syntax Name a new or existing MAC access control list (MAC ACL) and enter the MAC ACCESS LIST mode to configure a standard MAC ACL. See Commands Common to all ACL Types and Common MAC Access List Commands.
PAGE 249
Use the no permit {any | mac-source-address mac-source-address-mask} command. • Parameters Defaults Command Modes Command History any Enter the keyword any to forward all packets received with a MAC address. mac-source-address Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match).
PAGE 250
www.dell.com | support.dell.com seq ces Syntax Parameters Defaults Command Modes Command History Assign a sequence number to a deny or permit filter in a MAC access list while creating the filter. seq sequence-number {deny | permit} {any | mac-source-address [mac-source-address-mask]} [count [byte]] [log] [monitor] sequence-number Enter a number between 0 and 65535. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.
PAGE 251
Extended MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. c and s platforms support Ingress MAC ACLs only. The following commands configure Extended MAC ACLs. • • • • deny mac access-list extended permit seq Note: See also Commands Common to all ACL Types and Common MAC Access List Commands. deny ces Syntax Configure a filter to drop packets that match the filter criteria.
PAGE 252
www.dell.com | support.dell.com ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: • • • Defaults Command Modes Command History ev2 - is the Ethernet II frame format. llc - is the IEEE 802.3 frame format. snap - is the IEEE 802.3 SNAP frame format. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
PAGE 253
Command Modes CONFIGURATION Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series The number of entries allowed per ACL is hardware-dependent.
PAGE 254
www.dell.com | support.dell.com Parameters any Enter the keyword any to forward all packets. host Enter the keyword host followed by a MAC address to forward packets with that host address. mac-source-address Enter the source MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask Specify which bits in the MAC address must be matched.
PAGE 255
Related Commands deny Configure a filter to drop traffic based on the MAC address. seq Configure a filter with specific sequence numbers. seq ces Syntax Parameters Configure a filter with a specific sequence number.
PAGE 256
www.dell.com | support.dell.com Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Added monitor option pre-Version 6.1.1.0 Introduced for E-Series Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead.
PAGE 257
Command History Default Related Commands Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Clears “hit” counters for all prefix lists unless a prefix list is specified. ip prefix-list Configure a prefix list.
PAGE 258
www.dell.com | support.dell.com ip prefix-list ces Syntax Parameters Command Modes Command History Usage Information Enter the PREFIX-LIST mode and configure a prefix list. ip prefix-list prefix-name prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
PAGE 259
Usage Information Sequence numbers for this filter are automatically assigned starting at sequence number 5. If the options ge or le are not used, only packets with an exact match to the prefix are filtered. Related Commands deny Configure a filter to drop packets. seq Configure a drop or permit filter with a specified sequence number. seq ces Syntax Parameters Defaults Assign a sequence number to a deny or permit filter in a prefix list while configuring the filter.
PAGE 260
www.dell.com | support.dell.com show config ces Display the current PREFIX-LIST configurations. Syntax show config Command Modes PREFIX-LIST Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-9.
PAGE 261
Example Figure 9-10. Command Example: show ip prefix-list detail Force10#show ip prefix-list detail Prefix-list with the last deletion/insertion: filter_ospf ip prefix-list filter_in: count: 3, range entries: 3, sequences: 5 - 10 seq 5 deny 1.102.0.0/16 le 32 (hit count: 0) seq 6 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 10 permit 0.0.0.0/0 le 32 (hit count: 0) ip prefix-list filter_ospf: count: 4, range entries: 1, sequences: 5 - 10 seq 5 deny 100.100.1.0/24 (hit count: 5) seq 6 deny 200.200.1.
PAGE 262
www.dell.com | support.dell.com Route Map Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The following commands allow you to configure route maps and their redistribution criteria.
PAGE 263
Command Modes ROUTE-MAP Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Introduced Usage Information The continue feature allows movement from one route-map entry to a specific route-map entry (the sequence number). If the sequence number is not specified, the continue feature simply moves to the next sequence number (also known as an implied continue).
PAGE 264
www.dell.com | support.dell.com Parameters Defaults description Enter a description to identify the route map (80 characters maximum). No default behavior or values Command Modes ROUTE-MAP Command History Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 7.7.1.0 Introduced Related Commands route-map Enable a route map match as-path ces Syntax Parameters Defaults Configure a filter to match routes that have a certain AS number in their BGP path.
PAGE 265
Command History Related Commands Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series ip community-list Configure an Community Access list. set community Specify a COMMUNITY attribute. neighbor send-community Send COMMUNITY attribute to peer or peer group. match interface ces Syntax Configure a filter to match routes whose next hop is on the interface specified.
PAGE 266
www.dell.com | support.dell.com match route-type Redistribute routes that match a route type. match tag Redistribute routes that match a specific tag. match ip address ces Syntax Parameters Defaults Configure a filter to match routes based on IP addresses specified in an access list. match ip address prefix-list-name prefix-list-name Enter the name of configured prefix list, up to 140 characters. Not configured. Command Modes ROUTE-MAP Command History Version 8.1.1.
PAGE 267
Command History Related Commands Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series match interface Redistribute routes that match the next-hop interface. match ip address Redistribute routes that match an IP address.
PAGE 268
www.dell.com | support.dell.com match metric ces Syntax Configure a filter to match on a specified value. match metric metric-value Parameters Defaults metric-value Enter a value to match. Range: zero (0) to 4294967295. Not configured. Command Modes ROUTE-MAP Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
PAGE 269
match route-type ces Syntax Parameters Defaults Configure a filter to match routes based on the how the route is defined. match route-type {external [type-1 | type-2] | internal | level-1 | level-2 | local} external [type-1| type-2] Enter the keyword external followed by either type-1 or type-2 to match only on OSPF Type 1 routes or OSPF Type 2 routes. internal Enter the keyword internal to match only on routes generated within OSPF areas.
PAGE 270
www.dell.com | support.dell.com Related Commands Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series match interface Redistribute routes that match the next-hop interface. match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address. match ip route-source Redistribute routes that match routes advertised by other routers. match metric Redistribute routes that match a specific metric.
PAGE 271
Prior to 7.8.1.0, names are up to 16 characters long. Related Commands show config Display the current configuration. set as-path ces Syntax Parameters Configure a filter to modify the AS path for BGP routes. set as-path prepend as-number [... as-number] prepend as-number Enter the keyword prepend followed by up to eight AS numbers to be inserted into the BGP path information. Range: 1 to 65535 Defaults Not configured Command Modes ROUTE-MAP Command History Version 8.1.1.
PAGE 272
www.dell.com | support.dell.com Related Commands Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series set level Specify the OSPF area for route redistribution. set metric Specify the metric value assigned to redistributed routes. set metric-type Specify the metric type assigned to redistributed routes. set tag Specify the tag assigned to redistributed routes.
PAGE 273
set community ces Syntax Allows you to assign a BGP COMMUNITY attribute. set community {community-number | local-as | no-advertise | no-export | none} [additive] To delete a BGP COMMUNITY attribute assignment, use the no set community {community-number | local-as | no-advertise | no-export | none} command. Parameters community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system.
PAGE 274
www.dell.com | support.dell.com set level ces Syntax Parameters Defaults Configure a filter to specify the IS-IS level or OSPF area to which matched routes are redistributed. set level {backbone | level-1 | level-1-2 | level-2 | stub-area} backbone Enter the keyword backbone to redistribute matched routes to the OSPF backbone area (area 0.0.0.0). level-1 Enter the keyword level-1 to redistribute matched routes to IS-IS Level 1.
PAGE 275
Usage Information Related Commands The set local-preference command changes the LOCAL_PREF attribute for routes meeting the route map criteria. To change the LOCAL_PREF for all routes, use the bgp default local-preference command. bgp default local-preference Change default LOCAL_PREF attribute for all routes. set metric ces Syntax Configure a filter to assign a new metric to redistributed routes. set metric [+ | -] metric-value To delete a setting, enter no set metric.
PAGE 276
www.dell.com | support.dell.com Command Modes ROUTE-MAP Command History Version 8.3.1.0 Implemented internal keyword Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series set automatic-tag Compute the tag value of the route. set level Specify the OSPF area for route redistribution. set metric Specify the metric value assigned to redistributed routes.
PAGE 277
set origin ces Syntax Parameters Defaults Configure a filter to manipulate the BGP ORIGIN attribute. set origin {igp | egp | incomplete} egp Enter the keyword egp to set routes originating from outside the local AS. igp Enter the keyword igp to set routes originating within the same AS. incomplete Enter the keyword incomplete to set routes with incomplete routing information. Not configured. Command Modes ROUTE-MAP Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 278
www.dell.com | support.dell.com set weight ces Syntax Configure a filter to add a non-RFC compliant attribute to the BGP route to assist with route selection. set weight weight Parameters Defaults weight Enter a number as the weight to be used by the route meeting the route map specification. Routes with a higher weight are preferred when there are multiple routes to the same destination.
PAGE 279
Parameters Command Modes map-name (OPTIONAL) Enter the name of a configured route map, up to 140 characters. EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 9-14.
PAGE 280
www.dell.com | support.dell.com deny e Syntax Parameters Create a filter to drop routes that match the route’s AS-PATH attribute. Use regular expressions to identify which routes are affected by the filter. deny as-regular-expression as-regular-expression Enter a regular expression to match BGP AS-PATH attributes. Use one or a combination of the following: • • • • • • • • • Defaults Not configured Command Modes AS-PATH ACL Usage Information Command History .
PAGE 281
Example Figure 9-15. Command Example: ip as-path access-list Force10(conf)#ip as-path access-list TestPath Force10(config-as-path)# Usage Information Command History Related Commands Use the match as-path or neighbor filter-list commands to apply the AS-PATH ACL to BGP routes. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. pre-Version 6.1.1.
PAGE 282
www.dell.com | support.dell.com show config e Syntax Display the current configuration. show config Command Mode AS-PATH ACL Command History Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series Example Figure 9-16. Command Example: show config (AS-PATH ACL) Force10(config-as-path)#show config ! ip as-path access-list snickers deny .
PAGE 283
• • • • ip community-list permit show config show ip community-lists deny e Syntax Parameters Create a filter to drop routes matching a BGP COMMUNITY number. deny {community-number | local-AS | no-advertise | no-export | quote-regexp regular-expressions-list | regexp regular-expression} community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system.
PAGE 284
www.dell.com | support.dell.com ip community-list e Syntax Enter COMMUNITY-LIST mode and create an IP community-list for BGP. ip community-list comm-list-name To delete a community-list, use the no ip community-list comm-list-name command. Parameters Command Modes Example comm-list-name Enter a text string as the name of the community-list, up to 140 characters. CONFIGURATION Figure 9-18.
PAGE 285
no-export Enter the keywords no-export to drop all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. regexp regular-expression Enter the keyword regexp followed by a regular expression. Use one or a combination of the following: • • • • • • • • • Defaults Command Modes .
PAGE 286
www.dell.com | support.dell.com show ip community-lists e Syntax Parameters Command Modes Display configured IP community lists in alphabetic order. show ip community-lists [name] name (OPTIONAL) Enter the name of the standard or extended IP community list, up to 140 characters. EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long.
PAGE 287
10 ACL VLAN Group Overview The ACL VLAN Group feature is available only on the E-Series, as indicated by this symbol under each command heading: e Since VLAN ACLs exist as multiple ACLs in the CAM, the size of the ACLs can be limited in the CAM. The ACL VLAN Group feature permits you to group VLANs and apply ACLs to the group so that ACLs exist as a single ACL in the CAM. Note: This feature is supported on IPv4 only and can only be used with the ipv4-egacl-16k CAM Profile with the acl-group microcode.
PAGE 288
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 6.3.1.0 Introduced on E-Series You can have up to 8 different ACL VLAN groups at any given time. show acl-vlan-group Display the ACL VLAN groups description e Syntax Parameters Defaults Command Modes Command History Related Commands Add a description to the ACL VLAN group.
PAGE 289
member vlan e Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Add VLAN member(s) to an ACL VLAN group. member vlan {VLAN-range} VLAN-range Enter the comma separated VLAN ID set. For example, 1-10,400-410,500 No default behavior or values CONFIGURATION (conf-acl-vl-grp) Version 6.3.1.0 Introduced on E-Series At a maximum, there can be only 32 VLAN members in all ACL VLAN groups. A VLAN can belong to only one group at any given time.
PAGE 290
www.dell.com | support.dell.com Figure 10-1. Command Example: show acl-vlan-group Force10#show acl-vlan-group Group Name TestGroupSeventeenTwenty CustomerNumberIdentifica HostGroup Egress IP Acl SpecialAccessOnlyExperts AnyEmployeeCustomerEleve Group5 Vlan Members 100,200,300 2-10,99 1,1000 Force10# Truncated Group and Access List Names Figure 10-2 shows the table style display when using the show acl-vlan-group group-name option. Note that the access list name is truncated. Figure 10-2.
PAGE 291
EXEC Privilege Command History Usage Notes Example Version 7.8.1.0 Introduced on E-Series The output for this command is shown in a line-by-line format. This allows the ACL-VLAN-Group names (or the Access List Group Names) to display in their entirety. Figure 10-4.
PAGE 292
www.dell.com | support.dell.com Command History Example Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 6.3.1.0 Introduced on E-Series Figure 10-6.
PAGE 293
11 Bidirectional Forwarding Detection (BFD) Overview Bidirectional Forwarding Detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The FTOS implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including VLAN interfaces and port-channels. BFD is supported on the C-Series and E-Series, where indicated by the c and e characters under command headings.
PAGE 294
www.dell.com | support.dell.com bfd all-neighbors Enable BFD sessions with all neighbors discovered by Layer 3 protocols IS-IS, OSPF, or BGP on router interfaces, and (optionally) reconfigure the default timer values. ce Syntax bfd all-neighbors [interval interval min_rx min_rx multiplier value role {active | passive}] Parameters interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session parameters beginning with the transmission interval.
PAGE 295
• Related Commands Neighbors that have been explicitly enabled or disabled for a BFD session with the bfd neighbor or neighbor bfd disable commands in ROUTER BGP mode do not inherit the global BFD enable/ disable values configured with the bfd all-neighbors command or configured for the peer group to which a neighbor belongs. The neighbors inherit only the global timer values (configured with the bfd all-neighbors command).
PAGE 296
www.dell.com | support.dell.com bfd enable (Interface) ce Enable BFD on an interface. Syntax bfd enable Defaults Command Modes Command History BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. INTERFACE Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series bfd interval ce Specify non-default BFD session parameters beginning with the transmission interval.
PAGE 297
Example Figure 11-1. bfd interval Command Example Force10(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4 role passive Force10(conf-if-gi-0/3)# bfd neighbor ce Establish a BFD session with a neighbor. Syntax bfd neighbor ip-address Parameters Defaults Command Modes Command History Related Commands ip-address Enter the IP address of the neighbor in dotted decimal format (A.B.C.D). None INTERFACE Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 298
www.dell.com | support.dell.com clear bfd counters ce Clear all BFD counters, or counters for a particular interface. Syntax clear bfd counters [interface] Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Related Commands 298 | For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
PAGE 299
debug bfd ce Enable BFD debugging. Syntax debug bfd {detail | event | packet} {all | interface} [mode] [count number] Parameters detail (OPTIONAL) Enter this keyword to display detailed information about BFD packets. event (OPTIONAL) Enter this keyword to display information about BFD state. The mode option is not available with this option. packet (OPTIONAL) Enter the keyword packet to display brief information about control packets. all Enter this keyword to enable debugging on all interfaces.
PAGE 300
www.dell.com | support.dell.com ip route bfd ce Enable BFD for all neighbors configured through static routes. Syntax ip route bfd [interval interval min_rx min_rx multiplier value role {active | passive}] Parameters interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session parameters beginning with the transmission interval.
PAGE 301
min_rx milliseconds Enter this keyword to specify the minimum rate at which the local system would like to receive control packets from the remote system. Range:50-100 Default:100 multiplier value Enter this keyword to specify the number of packets that must be missed in order to declare a session down. Range:3-50 Default:3 role [active | passive] Enter the role that the local system assumes: • Active—The active system initiates the BFD session. Both systems can be active for the same session.
PAGE 302
www.dell.com | support.dell.com Usage Information When you enable a BFD session with a specified BGP neighbor or peer group using the bfd neighbor command, the default BFD session parameters are used (interval: 100 milliseconds, min_rx: 100 milliseconds, multiplier: 3 packets, and role: active) if no parameters have been specified with the bfd all-neighbors command.
PAGE 303
show bfd counters Display BFD counter information. ce Syntax Parameters show bfd counters [bgp | isis | ospf | vrrp | static-route] [interface] interface Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by the slot/port information.
PAGE 304
www.dell.com | support.dell.com Example Figure 11-2. show bfd counters Command Example Force10#show bfd counters Interface GigabitEthernet 1/3 Force10# Tx 522 Rx 625 show bfd neighbors Display BFD neighbor information on all interfaces or a specified interface.
PAGE 305
Example Figure 11-3. show bfd neighbors Command Force10#show bfd neighbors * Ad Dn C I O R - Active session role Admin Down CLI ISIS OSPF Static Route (RTM) LocalAddr * 10.1.3.2 Force10# Example Figure 11-4. RemoteAddr 10.1.3.1 Interface State Rx-int Tx-int Mult Clients Gi 1/3 Up 300 250 3 C show bfd neighbors detail Command Example Force10#show bfd neighbors detail Session Discriminator: 1 Neighbor Discriminator: 1 Local Addr: 10.1.3.2 Local MAC Addr: 00:01:e8:02:15:0e Remote Addr: 10.1.3.
PAGE 306
www.dell.com | support.dell.com vrrp bfd ce Establish a VRRP BFD session. Syntax vrrp bfd {all-neighbors | neighbor ip-address} [interval interval min_rx min_rx multiplier value role {active | passive}] Parameters all-neighbors Establish BFD sessions with all BFD neighbors on an interface. neighbor ip-address Enter the IP address of the BFD neighbor. interval milliseconds (OPTIONAL) Enter this keyword to specify non-default BFD session parameters beginning with the transmission interval.
PAGE 307
12 Border Gateway Protocol IPv4 (BGPv4) Overview BGPv4 is supported as shown in the following table. FTOS version Platform support 8.1.1.0 E-Series ExaScale ex 7.8.1.0 S-Series s 7.7.1.0. C-Series c pre-7.7.1.0 E-Series TeraScale et For detailed information on configuring BGP, refer to the BGP chapter in the FTOS Configuration Guide.
PAGE 308
www.dell.com | support.dell.com The following commands enable you to configure and enable BGP.
PAGE 309
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • neighbor default-originate neighbor description neighbor distribute-list neighbor ebgp-multihop neighbor fall-over neighbor filter-list neighbor graceful-restart neighbor local-as neighbor maximum-prefix neighbor next-hop-self neighbor password neighbor peer-group (assigning peers) neighbor peer-group (creating group) neighbor peer-group passive neighbor remote-as neighbor remove-private-as neighbor route-map neighb
PAGE 310
www.dell.com | support.dell.com • • • • • • show ip bgp paths community show ip bgp peer-group show ip bgp regexp show ip bgp summary show running-config bgp timers bgp address-family ces Syntax Enable the IPv4 multicast or the IPv6 address family. address-family [ipv4 multicast| ipv6unicast] Parameters ipv4 multicast Enter BGPv4 multicast mode. ipv6 unicast Enter BGPv6 mode. Defaults Not configured. Command Modes ROUTER BGP Command History . Version 6.5.1.
PAGE 311
Command Modes ROUTER BGP ADDRESS FAMILY ROUTER BGP ADDRESS FAMILY IPv6 Usage Information At least one of the routes included in the aggregate address must be in the BGP routing table for the configured aggregate to become active. Do not add the as-set parameter to the aggregate, if routes within the aggregate are constantly changing as the aggregate will flap to keep track of the changes in the AS_PATH.
PAGE 312
www.dell.com | support.dell.com bgp asnotation ces Syntax Enables you to implement a method for AS Number representation in the CLI. bgp asnotation [asplain | asdot+ | asdot] To disable a dot or dot+ representation and return to ASPLAIN, enter no bgp asnotation. Defaults Command Modes Usage Information asplain ROUTER BGP You must enable bgp four-octet-as-support before enabling this feature. If you disable four-octet-support after using dot or dot+ format, the AS Numbers revert to asplain text.
PAGE 313
bgp bestpath as-path ignore ces Syntax Ignore the AS PATH in BGP best path calculations. bgp bestpath as-path ignore To return to the default, enter no bgp bestpath as-path ignore. Defaults Command Modes Usage Information Command History Disabled (that is, the software considers the AS_PATH when choosing a route as best). ROUTER BGP If you enable this command, use the clear ip bgp ipv4 unicast soft * command to recompute the best path. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 314
www.dell.com | support.dell.com Usage Information Command History The MED is a 4-Byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295. This command causes a missing MED to be treated as 0. During the path selection, paths with a lower MED are preferred over those with a higher MED. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 6.3.1.
PAGE 315
bgp cluster-id ces Syntax Assign a cluster ID to a BGP cluster with more than one route reflector. bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Defaults Not configured.
PAGE 316
www.dell.com | support.dell.com The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. FTOS accepts confederation EBGP peers without a LOCAL_PREF attribute. The software sends AS_CONFED_SET and accepts AS_CONFED_SET and AS_CONF_SEQ.
PAGE 317
bgp dampening ces Syntax Enable BGP route dampening and configure the dampening parameters. bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] command. Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
PAGE 318
www.dell.com | support.dell.com bgp default local-preference ces Syntax Change the default local preference value for routes exchanged between internal BGP peers. bgp default local-preference value To return to the default value, enter no bgp default local-preference. Parameters Defaults Command Modes Usage Information Related Commands Command History value Enter a number to assign to routes as the degree of preference for those routes.
PAGE 319
Version 7.7.1.0 Introduced support for C-Series Version 7.4.1.0 Introduced bgp fast-external-fallover ces Syntax Enable the fast external fallover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. bgp fast-external-fallover To disable fast external fallover, enter no bgp fast-external-fallover. Defaults Command Modes Usage Information Command History Enabled.
PAGE 320
www.dell.com | support.dell.com bgp graceful-restart ces Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, enter the no bgp graceful-restart command.
PAGE 321
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series bgp non-deterministic-med ces Syntax Compare MEDs of paths from different Autonomous Systems. bgp non-deterministic-med To return to the default, enter no bgp non-deterministic-med. Defaults Command Modes Usage Information Disabled (that is, paths/routes for the same destination but from different ASs will not have their MEDs compared).
PAGE 322
www.dell.com | support.dell.com Related Commands Command History clear ip bgp ipv4 unicast soft Clear and reapply policies for IPv4 routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced bgp regex-eval-optz-disable ces Syntax Disables the Regex Performance engine that optimizes complex regular expression with BGP.
PAGE 323
Example Figure 12-2. Command Example: no bgp regex-eval-optz-disable (conf-router_bgp)#no bgp regex-eval-optz-disable (conf-router_bgp)#do show ip protocols Routing Protocol is "ospf 22222" Router ID is 2.2.2.2 Area Routing for Networks 51 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.
PAGE 324
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series bgp soft-reconfig-backup ces Syntax Use this command only when route-refresh is not negotiated between peers to avoid having a peer resend BGP updates. bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command.
PAGE 325
Related Commands Command History capture bgp-pdu max-buffer-size Specify a size for the capture buffer. show capture bgp-pdu neighbor Display BGP packet capture information Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.5.1.0 Introduced capture bgp-pdu max-buffer-size ces Syntax Parameters Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses.
PAGE 326
www.dell.com | support.dell.com Command Modes Command History in Reapply only inbound policies. Note: If you enter soft, without an in or out option, both inbound and outbound policies are reset. out Reapply only outbound policies. Note: If you enter soft, without an in or out option, both inbound and outbound policies are reset. EXEC Privilege Version 8.4.1.0 Added BGP Soft Reconfiguration support for IPv4 unicast and IPv6 routes Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 327
clear ip bgp flap-statistics ces Syntax Parameters Clear BGP flap statistics, which includes number of flaps and the time of the last flap. clear ip bgp flap-statistics [ip-address mask | filter-list as-path-name | regexp regular-expression] ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to reset only that prefix. filter-list as-path-name (OPTIONAL) Enter the keyword filter-list followed by the name of a configured AS-PATH list.
PAGE 328
www.dell.com | support.dell.com Parameters Command Modes Usage Information ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group peer-group-name Enter the keyword peer-group followed by the name of the peer group. in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes.
PAGE 329
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series debug ip bgp events ces Syntax Display information on local BGP state changes and other BGP events. debug ip bgp [ip-address | peer-group peer-group-name] events [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] events command.
PAGE 330
www.dell.com | support.dell.com Usage Information Command History Enter no debug ip bgp command to remove all configured debug commands for BGP. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series debug ip bgp notifications ces Syntax Enables you to view information about BGP notifications received from neighbors.
PAGE 331
Command Modes Usage Information Command History EXEC Privilege This command turns on BGP soft-reconfiguration inbound debugging for IPv4 unicast routes. If no neighbor is specified, debug is turned on for all neighbors. Version 8.4.1.0 Introduced support for IPv4 multicast and IPv6 unicast routes Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp updates ces Syntax Enables you to view information about BGP updates.
PAGE 332
www.dell.com | support.dell.com Defaults Command Modes Usage Information 0 ROUTER BGP The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. Related Commands Command History bgp always-compare-med Enable comparison of all BGP MED attributes. redistribute Redistribute routes from other routing protocols into BGP. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 333
Parameters Defaults Command Modes external-distance Enter a number to assign to routes learned from a neighbor external to the AS. Range: 1 to 255. Default: 20 internal-distance Enter a number to assign to routes learned from a router within the AS. Range: 1 to 255. Default: 200 local-distance Enter a number to assign to routes learned from networks listed in the network command. Range: 1 to 255. Default: 200 external-distance = 20; internal-distance = 200; local-distance = 200.
PAGE 334
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor activate ces Syntax This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI (Address Family Identifier/Subsequent Address Family Identifier). neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command.
PAGE 335
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor advertisement-start ces Syntax Set the minimum interval before starting to send BGP routing updates. neighbor {ip-address} advertisement-start seconds To return to the default value, use the no neighbor {ip-address} advertisement-start command. Parameters Defaults ip-address Enter the IP address of the neighbor in dotted decimal format.
PAGE 336
www.dell.com | support.dell.com neighbor default-originate ces Syntax Inject the default route to a BGP peer or neighbor. neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group.
PAGE 337
neighbor distribute-list ces Syntax Distribute BGP information via an established prefix list. neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
PAGE 338
www.dell.com | support.dell.com Command Modes Usage Information Command History ROUTER BGP To prevent loops, the neighbor ebgp-multihop command will not install default routes of the multihop peer. Networks not directly connected are not considered valid for best path selection. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor fall-over ecs Syntax Enable or disable fast fall-over for BGP neighbors.
PAGE 339
as-path-name Enter the name of an established AS-PATH access list (up to 140 characters). If the AS-PATH access list is not configured, the default is permit (allow routes). in Enter the keyword in to filter inbound BGP routes. out Enter the keyword out to filter outbound BGP routes. Defaults Not configured.
PAGE 340
www.dell.com | support.dell.com Usage Information Command History This feature is advertised to BGP neighbors through a capability advertisement. In receiver only mode, BGP saves the advertised routes of peers that support this capability when they restart. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 341
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. Range: 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the E-Series software sends a message. Range: 1 to 100 percent.
PAGE 342
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor password ces Syntax Enable Message Digest 5 (MD5) authentication on the TCP connection between two neighbors. neighbor {ip-address | peer-group-name} password [encryption-type] password To delete a password, use the no neighbor {ip-address | peer-group-name} password command.
PAGE 343
neighbor peer-group (assigning peers) ces Syntax Enables you to assign one peer to a existing peer group. neighbor ip-address peer-group peer-group-name To delete a peer from a peer group, use the no neighbor ip-address peer-group peer-group-name command. Parameters ip-address Enter the IP address of the router to be included in the peer group. peer-group-name Enter the name of a configured peer group. Defaults Not configured.
PAGE 344
www.dell.com | support.dell.com To delete a peer group, use the no neighbor peer-group-name peer-group command. Parameters peer-group-name Defaults Not configured. Command Modes ROUTER BGP Usage Information Related Commands Command History Enter a text string up to 16 characters long as the name of the peer group. When a peer group is created, it is disabled (shut mode). neighbor peer-group (assigning peers) Assign routers to a peer group.
PAGE 345
Related Commands Command History neighbor soft-reconfiguration inbound Assign a subnet to a dynamically-configured BGP neighbor. Version 8.4.2.0 Added support for the match-af keyword Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor remote-as ces Syntax Create and specify the remote peer to the BGP neighbor.
PAGE 346
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information ip-address Enter the IP address of the neighbor to remove the private AS numbers. peer-group-name Enter the name of the peer group to remove the private AS numbers Disabled (that is, private AS number are not removed). ROUTER BGP Applies to EBGP neighbors only. You must configure your system to accept 4-Byte formats before entering a 4-Byte AS Number.
PAGE 347
If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 348
www.dell.com | support.dell.com neighbor route-reflector-client ces Syntax Configure the router as a route reflector and the specified neighbors as members of the cluster. neighbor {ip-address | peer-group-name} route-reflector-client To remove one or more neighbors from a cluster, use the no neighbor {ip-address | peer-group-name} route-reflector-client command. If you delete all members of a cluster, you also delete the route-reflector configuration on the router.
PAGE 349
neighbor send-community ces Syntax Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. neighbor {ip-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ip-address | peer-group-name} send-community command.
PAGE 350
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor soft-reconfiguration inbound ces Syntax Parameters Defaults Command Modes Usage Information Enable a BGP soft-reconfiguration and start storing inbound route updates.
PAGE 351
neighbor subnet ces Syntax Enable passive peering so that the members of the peer group are dynamic neighbor peer-group-name subnet subnet-number mask To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group. To allow all addresses, enter 0.0.0.0/0. mask Enter a prefix mask in / prefix-length format (/x).
PAGE 352
www.dell.com | support.dell.com When two neighbors, configured with different keepalive and holdtime values, negotiate for new values, the resulting values will be as follows: • • Command History the lower of the holdtime values is the new holdtime value, and whichever is the lower value; one-third of the new holdtime value, or the configured keepalive value is the new keepalive value. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 353
Defaults Command Modes Usage Information peer-group-name Enter the name of the peer group to disable all routers within the peer group. weight Enter a number as the weight. Range: 0 to 65535 Default: 0 0 ROUTER BGP In the FTOS best path selection process, the path with the highest weight value is preferred. Note: Reset the neighbor connection (clear ip bgp ipv4 unicast soft * command) to apply the weight to the connection and recompute the best path.
PAGE 354
www.dell.com | support.dell.com Usage Information Related Commands Command History FTOS software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable via non-BGP routes and non-default routes. redistribute Redistribute routes into BGP. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series network backdoor ces Syntax Specify this IGP route as the preferred route.
PAGE 355
static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes. route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
PAGE 356
www.dell.com | support.dell.com level-1-2 (OPTIONAL) Enter the keyword level-1-2 to independently redistributed into Level 1 and Level 2 routes. This is the default. level-2 (OPTIONAL) Enter the keyword level-2 to independently redistributed into Level 2 routes only metric metric-value (OPTIONAL) Enter the keyword metric followed by the metric value used for the redistributed route. Use a metric value that is consistent with the destination protocol.
PAGE 357
Parameters process-id Enter the number of the OSPF process. Range: 1 to 65535 match external {1 | 2} (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only. match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPF internal routes only. route-map map-name (OPTIONAL) Enter the keywords route-map followed by the name of a configured Route map. Defaults Not configured.
PAGE 358
www.dell.com | support.dell.com Command History Usage Information Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series At least one interface must be in Layer 3 mode for the router bgp command to be accepted. If no interfaces are enabled for Layer 3, an error message appears: % Error: No router id configured. show capture bgp-pdu neighbor ces Syntax Parameters Command Modes Example Display BGP packet capture information for an IPv4 address on the system.
PAGE 359
show config ces Syntax Command Modes Example View the current ROUTER BGP configuration. show config ROUTER BGP Figure 12-6. show config Command Example (conf-router_bgp)#show confi ! router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown neighbor 123.34.55.123 peer-group suzanne neighbor 123.34.55.123 shutdown (conf-router_bgp)# Command History Version 7.8.1.
PAGE 360
www.dell.com | support.dell.com Example Figure 12-7. show ip bgp Command Example (Partial) >show ip bgp BGP table version is 847562, local router ID is 63.114.8.131 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete *> * *> *> Network 0.0.0.0/0 3.0.0.0/8 Next Hop 63.114.8.33 63.114.8.33 63.114.8.33 0.0.0.0 63.114.8.35 63.114.8.33 63.114.8.33 63.114.
PAGE 361
Parameters Command Modes ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. EXEC EXEC Privilege Example Figure 12-8. Command Example: show ip bgp cluster-list (Partial) #show ip bgp cluster-list BGP table version is 64444683, local router ID is 120.1.1.
PAGE 362
www.dell.com | support.dell.com show ip bgp community ces Syntax Parameters Command Modes View information on all routes with Community attributes or view specific BGP community groups. show ip bgp [ipv4 unicast] community [community-number] [local-as] [no-export] [no-advertise] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes.
PAGE 363
Example Figure 12-9. show ip bgp community Command Example (Partial) >show ip bgp community BGP table version is 3762622, local router ID is 63.114.8.48 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network * i 3.0.0.0/8 *>i 4.2.49.12/30 * i 4.21.132.0/23 *>i 4.24.118.16/30 *>i 4.24.145.0/30 *>i 4.24.187.12/30 *>i 4.24.202.0/30 *>i 4.25.88.
PAGE 364
www.dell.com | support.dell.com Parameters Command Modes ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. community-list-name Enter the name of a configured IP community list. (max 16 chars) exact-match Enter the keyword for an exact match of the communities. EXEC EXEC Privilege Example Figure 12-10. Command Example: show ip bgp community-list #show ip bgp community-list pass BGP table version is 0, local router ID is 10.101.15.
PAGE 365
Example Figure 12-11. Command Example: show ip bgp dampened-paths >show ip bgp damp BGP table version is 210708, local router ID is 63.114.8.2 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network From Reuse Path > Table 12-5 defines the information displayed in Figure 12-11. Table 12-5.
PAGE 366
www.dell.com | support.dell.com Example Figure 12-12.
PAGE 367
show ip bgp extcommunity-list ces Syntax Parameters Command Modes View information on all routes with Extended Community attributes. show ip bgp [ipv4 unicast] extcommunity-list [list name] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. EXEC EXEC Privilege Usage Information To view the total number of COMMUNITY attributes found, use the show ip bgp summary command.
PAGE 368
www.dell.com | support.dell.com Example Figure 12-13. Command Example: show ip bgp filter-list #show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n network Origin codes: i - IGP, e - EGP, ? - incomplete Network * I 6.1.5.0/24 * I * I * I *>I * I * I * I 6.1.6.0/24 * I * I * I *>I * I * I * I 6.1.20.
PAGE 369
show ip bgp flap-statistics ces Syntax Parameters Command Modes View flap statistics on BGP routes. show ip bgp [ipv4 unicast] flap-statistics [ip-address [mask]] [filter-list as-path-name] [regexp regular-expression] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network.
PAGE 370
www.dell.com | support.dell.com Table 12-7 defines the information displayed in Figure 12-14. Table 12-7. Command History show ip bgp flap-statistics Command Example Fields Field Description Network Displays the network ID to which the route is flapping. From Displays the IP address of the neighbor advertising the flapping route. Flaps Displays the number of times the route flapped. Duration Displays the hours:minutes:seconds since the route first flapped.
PAGE 371
Table 12-8. Command History show ip bgp inconsistent-as Command Example Fields Fields Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route.
PAGE 372
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example 1 Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.5.1.0 Added detail option and output now displays default MED value Version 7.2.1.0 Added received and denied route options Version 6.3.10 The output is changed to display the total number of advertised prefixes Figure 12-16.
PAGE 373
Example 2 Figure 12-17. Command Example: show ip bgp neighbors advertised-routes >show ip bgp neighbors 192.14.1.5 advertised-routes BGP table version is 74103, local router ID is 33.33.33.33 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop *>r 1.10.1.0/24 0.0.0.0 *>r 1.11.0.0/16 0.0.0.0 ..... ..... *>I 223.94.249.0/24 223.
PAGE 374
www.dell.com | support.dell.com Table 12-9. Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
PAGE 375
show ip bgp next-hop ces Syntax Command Modes View all next hops (via learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. show ip bgp next-hop EXEC EXEC Privilege Example Figure 12-20. Command Example: show ip bgp next-hop >show ip bgp next-hop Next-hop Via 63.114.8.33 63.114.8.33, 63.114.8.34 63.114.8.34, 63.114.8.35 63.114.8.35, 63.114.8.60 63.114.8.60, > Table 12-10.
PAGE 376
www.dell.com | support.dell.com Parameters Command Modes regexp regular-expression Enter a regular expression then use one or a combination of the following characters to match: . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
PAGE 377
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series show ip bgp paths as-path ces Syntax Command Modes View all unique AS-PATHs in the BGP database show ip bgp paths as-path EXEC EXEC Privilege Example Figure 12-22.
PAGE 378
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Example Figure 12-23.
PAGE 379
Command Modes detail (OPTIONAL) Enter the keyword detail to view detailed status information of the peers in that peer group. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group. The output is the same as that found in show ip bgp summary command EXEC EXEC Privilege Example Figure 12-24.
PAGE 380
www.dell.com | support.dell.com Related Commands Command History neighbor peer-group (assigning peers) Assign peer to a peer-group. neighbor peer-group (creating group) Create a peer group. show ip bgp peer-group (multicast) View information on the BGP peers in a peer group. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.8.1.
PAGE 381
Example Figure 12-25. Command Example: show ip bgp regexp (Partial) #show ip bgp regexp ^2914+ BGP table version is 3700481, local router ID is 63.114.8.35 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>I 3.0.0.0/8 1.1.1.2 0 100 0 2914 1239 80 i *>I 4.0.0.0/8 1.1.1.2 0 100 0 2914 3356 i *>I 4.
PAGE 382
www.dell.com | support.dell.com Example Figure 12-26. #show ip bgp summary BGP router identifier 120.10.10.
PAGE 383
Table 12-16. Command History Command Example fields: show ip bgp summary Field Description Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed.
PAGE 384
www.dell.com | support.dell.com Parameters Defaults keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. Range: 1 to 65535 Default: 60 seconds holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead. Range: 3 to 65535 Default: 180 seconds No default values or behavior Command Modes ROUTER BGP Command History Version 7.8.1.0 Introduced on S-Series Version 7.7.1.
PAGE 385
• • • • • • • • • • • • • • • • • • • • • • • • neighbor default-originate neighbor distribute-list neighbor filter-list neighbor maximum-prefix neighbor next-hop-self neighbor remove-private-as neighbor route-map neighbor route-reflector-client neighbor soft-reconfiguration inbound network redistribute redistribute ospf show ip bgp ipv4 multicast show ip bgp cluster-list show ip bgp community show ip bgp community-list show ip bgp dampened-paths show ip bgp filter-list show ip bgp flap-statistics show ip
PAGE 386
www.dell.com | support.dell.com aggregate-address c et s Syntax Parameters Defaults Command Modes Usage Information Summarize a range of prefixes to minimize the number of entries in the routing table. aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.
PAGE 387
bgp dampening c et s Syntax Enable MBGP route dampening. bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the half-life period expires. Range: 1 to 45.
PAGE 388
www.dell.com | support.dell.com Command History Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast address families Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced clear ip bgp dampening c et s Syntax Parameters Command Modes Command History Clear information on route dampening.
PAGE 389
filter-list list (OPTIONAL) Enter the keyword filter-list followed by the name of a configured AS-PATH list (max 16 characters). regexp regexp (OPTIONAL) Enter the keyword regexp followed by regular expressions. Use one or a combination of the following: . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
PAGE 390
www.dell.com | support.dell.com Command History Version 8.4.1.0 Added BGP Soft Reconfiguration support for IPv4 unicast and IPv6 routes Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp dampening c et s Syntax View information on routes being dampened.
PAGE 391
Command History Version 8.4.1.0 Introduced support for IPv4 multicast and IPv6 unicast routes Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp peer-group updates c et s View information about BGP peer-group updates. debug ip bgp peer-group peer-group-name updates [in | out] To disable debugging, enter no debug ip bgp peer-group peer-group-name updates [in | out] command.
PAGE 392
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series distance bgp c et s Syntax Define an administrative distance for routes. distance bgp external-distance internal-distance local-distance To return to default values, enter no distance bgp.
PAGE 393
Parameters Defaults Command Modes Usage Information Related Commands Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group activate Enter the keyword activate to enable the neighbor/peer group in the new AFI/SAFI.
PAGE 394
www.dell.com | support.dell.com neighbor default-originate c et s Syntax Inject the default route to a BGP peer or neighbor. neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command. Parameters Defaults Command Modes Command History ip-address Enter the IP address of the neighbor in dotted decimal format.
PAGE 395
Command History neighbor filter-list Assign a AS-PATH list to a neighbor or peer group. neighbor route-map Assign a route map to a neighbor or peer group. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor filter-list c et s Syntax Configure a BGP filter based on the AS-PATH attribute.
PAGE 396
www.dell.com | support.dell.com neighbor maximum-prefix c et s Syntax Control the number of network prefixes received. neighbor ip-address | peer-group-name maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor ip-address | peer-group-name maximum-prefix maximum command. Parameters Defaults Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format.
PAGE 397
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor remove-private-as c et s Syntax Remove private AS numbers from the AS-PATH of outgoing updates. neighbor ip-address | peer-group-name remove-private-as To return to the default, use the no neighbor ip-address | peer-group-name remove-private-as command.
PAGE 398
www.dell.com | support.dell.com Usage Information When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 399
Parameters Defaults Command Modes Usage Information ipv4-address | ipv6-address Enter the IP address of the neighbor for which you want to start storing inbound routing updates. peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates. Disabled ROUTER BGP ADDRESS FAMILY (conf-router_bgp_af) This command enables soft-reconfiguration for the specified BGP neighbor.
PAGE 400
www.dell.com | support.dell.com Command Modes Usage Information Related Commands Command History ROUTER BGP Address Family (conf-router_bgp_af) FTOS resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable via non-BGP routes and non-default routes. redistribute Redistribute routes into BGP. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.
PAGE 401
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series redistribute ospf c et s Syntax Redistribute OSPF routes into BGP. redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command.
PAGE 402
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series show ip bgp community ces Syntax Parameters Command Modes View information on all routes with Community attributes or view specific BGP community groups.
PAGE 403
Parameters Command Modes community-list-name Enter the name of a configured IP community list. EXEC EXEC Privilege Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series show ip bgp dampened-paths c et s Syntax Command Modes View BGP routes that are dampened (non-active). show ip bgp ipv4 multicast dampened-paths EXEC EXEC Privilege Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
PAGE 404
www.dell.com | support.dell.com Parameters ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network. mask (OPTIONAL) Enter the network mask (in slash prefix (/x) format) of the BGP network address. filter-list as-path-name (OPTIONAL) Enter the keyword filter-list followed by the name of a configured AS-PATH ACL.
PAGE 405
show ip bgp ipv4 multicast c et s Syntax Parameters Command Modes View the current MBGP routing table for the system. show ip bgp ipv4 multicast [detail | network [network-mask] [length]] detail (OPTIONAL) Enter the keyword detail to display BGP internal information for the IPv4 Multicast address family. network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network.
PAGE 406
www.dell.com | support.dell.com Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series Version 7.8.1.0 Introduced support on S-Series show ip bgp ipv4 multicast neighbors c et s Syntax Parameters Command Modes Displays information on IPv4 multicast routes exchanged by BGP neighbors.
PAGE 407
Example 1 Figure 12-28. Command Example: show ip bgp ipv4 multicast neighbors #show ip bgp ipv4 multicast neighbors BGP neighbor is 25.25.25.25, remote AS 6400, internal link BGP version 4, remote router ID 25.25.25.
PAGE 408
www.dell.com | support.dell.com Table 12-18. Command Example fields: show ip bgp ipv4 multicast neighbors Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
PAGE 409
Parameters Command Modes peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view detailed status information of the peers in that peer group. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
PAGE 410
www.dell.com | support.dell.com Table 12-19. Command History 410 | Command Example fields: show ip bgp ipv4 multicast summary Field Description network entries Displays the number of network entries and route paths and the amount of memory used to process those entries. BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them.
PAGE 411
BGP Extended Communities (RFC 4360) BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute. It provides two major advantages over Standard Communities: • The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number communities. Communities are structured using a new “Type” field (1 or 2-octets), allowing you to provide granular control/filter routing information based on the type of extended communities.
PAGE 412
www.dell.com | support.dell.com Related Commands Command History permit Configure to add (permit) rules show ip extcommunity-list Display the Extended Community list Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series deny regex ces Syntax This features enables you to specify an extended communities to reject (deny) using a regular expressions (regex). deny regex {regex} To remove, use the no deny regex {regex} command.
PAGE 413
Command Modes Command History CONFIGURATION (conf-ext-community-list) Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series ip extcommunity-list ces Syntax Use this feature to enter the Extended Community-list mode. ip extcommunity-list word To exit from this mode, use the exit command. Parameters Defaults Command Modes Usage Information Example word Enter a community list name (maximum 16 characters).
PAGE 414
www.dell.com | support.dell.com Example Figure 12-32. Command Example: match extcommunity (config-route-map)#match extcommunity Freedombird (config-route-map)# Command History Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series permit ces Syntax Use this feature to add rules (permit) from the two types of extended communities, Route Origin (rt) or Site-of-Origin (soo).
PAGE 415
Parameters Defaults Command Modes Usage Information Example regex Enter a regular expression. Not configured CONFIGURATION (conf-ext-community-list) Duplicate commands are silently accepted. Figure 12-33. Command Example: permit regexp (conf-ext-community-list)#permit regexp 123 (conf-ext-community-list)# Related Commands deny regex Command History Deny a community using a regular expression Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
PAGE 416
www.dell.com | support.dell.com • • Related Commands Command History If rt options comes after soo, without the additive option, then rt overrides the communities set by soo If rt with additive option comes after soo, then rt adds the communities set by soo set extcommunity soo Set extended community site-of-origin in route-map. Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
PAGE 417
show ip bgp ipv4 extcommunity-list ces Syntax Parameters Defaults Command Modes Use this feature to display IPv4 routes matching the extended community list name. show ip bgp [ipv4 [multicast | unicast] | ipv6 unicast] extcommunity-list name multicast Enter the keyword multicast to display the multicast route information. unicast Enter the keyword unicast to display the unicast route information. ipv6 unicast Enter the keywords ipv6 unicast to display the IPv6 unicast route information.
PAGE 418
www.dell.com | support.dell.com show ip bgp paths extcommunity ces Syntax Command Modes Use this feature to display all BGP paths having extended community attributes. show ip bgp paths extcommunity EXEC EXEC Privilege Example Figure 12-35. Command Example: show ip bgp paths community (Partial) #show ip bgp paths extcommunity Total 1 Extended Communities Address Hash Refcount Extended Community 0x41d57024 # 12272 1 RT:7:200 SoO:5:300 SoO:0.0.0.3:1285 Table 12-20.
PAGE 419
Example Figure 12-36. Command Example: show ip extcommunity-list #show ip extcommunity-list test ip extcommunity-list test deny RT:1234:12 permit regexp 123 deny regexp 234 deny regexp 123 # Command History Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
PAGE 420
www.dell.com | support.dell.
PAGE 421
13 Content Addressable Memory (CAM) for ExaScale Overview This chapter discusses CAM commands for the E-Series ExaScale e x platform. Refer to Chapter 14, Content Addressable Memory (CAM) for information on the commands for the E-Series TeraScale platform Warning: If you are using these features for the first time, contact the Dell Force10 Technical Assistance Center (TAC) for guidance. For information on contacting Dell Force10 TAC, visit the Dell Force10 website at www.force10networks.
PAGE 422
www.dell.com | support.dell.com Important Points to Remember • • • • • • • The Default CAM-profile is supported on E-Series ExaScale with FTOS version 8.1.1.0 and later. The recommended, pre-defined CAM-profile templates are supported on E-Series ExaScale with FTOS version 8.2.1.0 and later. The CAM-profile template is applied to entire system. You must save the running-configuration to enable the change.
PAGE 423
Usage Information CAM profile changes take effect after the next chassis reboot. CAM-profile template region allocations are not automatically configured when you select a template. Us e the allocations shown in the Content Addressable Memory for ExaScale chapter in the FTOS Configuration Guide for detailed values supported in each CAM/SRAM region. enable ex Syntax Defaults Command Modes Command History Usage Information Enable CAM-profile template.
PAGE 424
www.dell.com | support.dell.com layer-2 ex Syntax Defaults Command Modes Command History Usage Information Configure the Layer 2 region for a CAM-profile template layer-2 eg-acl {value} fib {value} frrp {value} ing-acl {value} learn {value} l2pt {value} qos {value} system-flow {value} None CONFIGURATION-CAM-profile-template Version 8.2.1.0 Introduced on E-Series ExaScale You do not need to enter every parameter for a region. You can enter only the ones you need.
PAGE 425
microcode ex Assign the microcode to the created CAM-profile template Syntax microcode {default | ipv6-switched | lag-hash-align | vrf} Parameters default Distributes CAM space for a typical deployment. • • vrf Applies to the Default CAM-profile and the recommended CAM-profile templates. Recommended for any user-defined CAM-profiles. Distributes space to best manage IPv4 and IPv6 VRF packet forwarding • Applies to the VRF CAm-profile tEmplate only.
PAGE 426
www.dell.com | support.dell.com show cam-profile ex Syntax Parameters Defaults Command Modes Command History Example Display the details of the CAM-profiles on the chassis and all line cards. show cam-profile [profile microcode microcode | summary] profile (OPTIONAL) Choose a single CAM profile to display: summary (OPTIONAL) Enter this keyword to view a summary listing of the CAM-profile and on the chassis and all line cards. None EXEC Privilege Version 8.2.1.0 Figure 13-1.
PAGE 427
Example 2 Figure 13-2.
PAGE 428
www.dell.com | support.dell.com test cam-profile ex Syntax Parameters Defaults Command Modes Command History Validate a user-defined CAM-profile template. test cam-profile template template Enter the name of the CAM-profile template to validate. None CONFIGURATION-CAM-profile-template Version 8.2.1.0 Introduced on E-Series ExaScale Example Force10#test cam-profile test cam-profile 'test' can be applied to the system. Force10#test cam-profile Customer002 % Error: 'test cam-profile Customer002 failed.
PAGE 429
14 Content Addressable Memory (CAM) Overview Content Addressable Memory (CAM) commands are supported C-Series, E-Series TeraScale and S-Series, as indicated by the symbols under each command heading: c et s This chapter includes information relating to the E-Series TeraScale platform. Refer to Chapter 13, Content Addressable Memory (CAM) for ExaScale for information on the commands for the E-Series ExaScale platform. Note: Not all CAM commands are supported on all platforms.
PAGE 430
www.dell.com | support.dell.com Important Points to Remember • • • • • • • • CAM Profiles are available on FTOS versions 6.3.1.1 and later for the E-Series TeraScale. Refer to Chapter 13, Content Addressable Memory (CAM) for ExaScale for information on the commands for the E-Series ExaScale platform. FTOS versions 7.8.1.0 and later support CAM allocations on the C-Series and S-Series.
PAGE 431
cam-acl (Configuration) cs Allocate CAM for IPv4 and IPv6 ACLs Syntax cam-acl {default | l2acl number ipv4acl number ipv6acl number, ipv4qos number l2qos number, l2pt number ipmacacl number ecfmacl number [vman-qos | vman-dual-qos number} Parameters default Use the default CAM profile settings, and set the CAM as follows.
PAGE 432
www.dell.com | support.dell.com cam-acl (EXEC Privilege) cs Adjust line card CAM setting to match chassis settings. This command is deprecated as of FTOS 8.3.1.0 Syntax Command Modes Command History cam-acl {chassis |linecard} EXEC Privilege Version 8.3.1.0 COMMAND DEPRECATED Version 7.8.1.0 Introduced on the C-Series cam-optimization cs Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space.
PAGE 433
cam-profile (Config) e Syntax Parameters Set the default CAM profile and the required microcode. cam-profile profile microcode microcode profile Choose one of the following CAM profiles: • • • • • • • • • • microcode microcode Enter the keyword default to specify the default CAM profile. Enter the keyword eg-default to specify the default CAM profile for EG (dual-CAM) line cards.
PAGE 434
www.dell.com | support.dell.com Command History Usage Information Version 8.4.1.0 Added support for l2-switched-pbr microcode. Version 8.2.1.0 Added support for the ipv4-64k-ipv6 profile. Version 7.9.1.0 Added support for VRF protocols. Version 7.5.1.0 Added the l2-ipv4-inacl CAM profile Version 7.4.2.0 Added the unified-default CAM profile and lag-hash-align microcode Version 7.4.1.0 Added the lag-hash-mpls microcode Version 6.5.1.
PAGE 435
Example Figure 14-1. Command Output: show cam-acl (default) Force10#show cam-acl -- Chassis Cam ACL -Current Settings(in block sizes) L2Acl : 5 Ipv4Acl : 6 Ipv6Acl : 0 Ipv4Qos : 1 L2Qos : 1 -- Line card 4 -Current Settings(in block sizes) L2Acl : 5 Ipv4Acl : 6 Ipv6Acl : 0 Ipv4Qos : 1 L2Qos : 1 Force10# Figure 14-2.
PAGE 436
www.dell.com | support.dell.com Parameters profile (OPTIONAL) Choose a single CAM profile to display: • • • • • • • • • microcode microcode • • that require the same hashing for bi-directional traffic. Enter the keyword lag-hash-mpls to select the microcode for hashing based on • • • Command Modes Command History Usage Information 436 | CAM allocations for the IPv6 and IPv4 FIB while allocating more CAM space for the Ingress and Egress Layer 2 ACL, and IPv4 ACL regions.
PAGE 437
Example 1 Figure 14-3. Command Output: show cam-profile summary Force10#show cam-profile summary -- Chassis CAM Profile -: Current Settings : Next Boot Profile Name : Default : Default MicroCode Name : Default : Default : Current Settings : Next Boot -- Line card 1 -Profile Name : Default : Default MicroCode Name : Default : Default : Current Settings : Next Boot -- Line card 6 -Profile Name : Default : Default MicroCode Name : Default : Default Force10# Example 2 Figure 14-4.
PAGE 438
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Example acl (OPTIONAL) Enter this keyword to display Layer 2 and Layer 3 ACL CAM usage. router (OPTIONAL) Enter this keyword to display Layer 3 CAM usage. switch (OPTIONAL) Enter this keyword to display Layer 2 CAM usage. None EXEC Privilege Version 6.5.1.0 Figure 14-5.
PAGE 439
Example Figure 14-7.
PAGE 440
www.dell.com | support.dell.com QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single (or the first of several) interfaces. It is most useful when a policy is applied across multiple interfaces; it can reduce the impact to CAM usage across subsequent interfaces. Example Figure 14-9. The following examples show some sample output when using the test cam-usage command.
PAGE 441
Figure 14-10.
PAGE 442
www.dell.com | support.dell.com cam ipv4flow (EXEC Privilege) et Configure the amount of CAM space in IPv4flow sub-regions. This command is deprecated as of FTOS 8.3.1.0 Syntax Command Modes Command History cam ipv4flow {chassis all | linecard number} {default | acl value multicast-fib value pbr value qos value system-flow value trace-list value} EXEC Privilege Version 8.3.1.0 COMMAND DEPRECATED Version 6.3.1.
PAGE 443
Command History Usage Information Related Commands Version 6.3.1.0 Introduced on E-Series CAM profile changes take effect after the next chassis reboot. copy Save the running configuration. show cam-ipv4flow Display the CAM IPv4flow entries. show cam-ipv4flow et Syntax Command Modes Display details about the IPv4Flow sub-regions. show cam-ipv4flow EXEC Privilege Command History Version 6.3.1.0 Example Figure 14-11.
PAGE 444
www.dell.com | support.dell.com Related Commands cam-ipv4flow (CONFIGURATION) Configure the amount of CAM space in IPv4flow sub-regions. CAM Layer 2 ACL Commands IPv4Flow sub-partitions are supported on the E-Series TeraScale platform et The CAM Layer 2 ACL commands are: • • • cam l2acl (EXEC Privilege) cam-l2acl (CONFIGURATION) show cam-l2acl The 18-megabit user configurable CAM is divided into multiple regions such as Layer 2 FIB, Layer 3 FIB, IPv4Flow, IPv4 Ingress ACL, etc.
PAGE 445
Parameters Command Modes Command History Usage Information Related Commands default Enter this keyword to reset the Layer 2 ACL CAM sub-partition space allocations to the default values (Sysflow: 6, L2ACL: 14, PVST: 50, QoS: 12, L2PT: 13, FRRP: 5). system-flow percentage Allocate a percentage of the Layer 2 ACL CAM space for system flow entries. Enter the keyword system-flow, and specify the percentage.
PAGE 446
www.dell.com | support.dell.com Example Figure 14-12.
PAGE 447
15 Configuration Rollback Overview The Configuration Rollback feature is enabled on the C-Series c and E-Series e. Configuration Rollback enables you to archive your running configurations for future use. This feature also enables you to replace your running configuration with an archived running configuration without rebooting the chassis. Once you load an archived configuration, you have the option to confirm the replacement or revert (roll back) to your previous configuration.
PAGE 448
www.dell.com | support.dell.com archive ce Enter the CONFIGURATION ARCHIVE mode. Syntax archive To exit the CONFIGURATION ARCHIVE mode, use the exit command at the CONFIGURATION ARCHIVE mode prompt (conf-archive). Defaults Command Modes Command History No default values or behavior CONFIGURATION ARCHIVE (conf-archive) Version 7.6.1.0 Introduced on C-Series and E-Series.
PAGE 449
Parameters Defaults Command Modes Command History Usage Information Example comment comment Describe the configuration that you are archiving using up to 30 characters. No default values or behavior EXEC Privilege Version 7.7.1.0 Comment option added Version 7.6.1.0 Introduced on C-Series and E-Series Archive files are stored on flash in a hidden directory named CFGARCH. This directory name is a acronym for Configure Archive. A maximum of 15 archive files can be stored in this directory.
PAGE 450
www.dell.com | support.dell.com Command Modes Command History Related Commands EXEC Privilege Version 7.6.1.0 Introduced on C-Series and E-Series show archive Display the archive configure replace ce Replace the running configuration with a specified file. Syntax configure replace {flash://filepath | startup-config [force | time seconds]} Parameters flash://filepath Enter the path flash:.// followed by the file path of the local file system to copy your file to the local location.
PAGE 451
Related Commands configuration mode exclusive Enable exclusive configuration. configuration mode exclusive ce Enable exclusive configuration mode. Syntax configuration mode exclusive {auto | manual} To negate the configuration, use the no configuration mode exclusive {auto | manual} command. Parameters Defaults Command Modes Command History Usage Information auto Enter auto to set the exclusive mode to auto. manual Enter manual to set the exclusive mode to manual (the default).
PAGE 452
www.dell.com | support.dell.com Example Force10(conf)#configuration mode exclusive auto Force10(conf)#exit 3d23h35m: %RPM0-P:CP %SYS-5-CONFIG_I: Configured from console by console Force10#config! Locks configuration mode exclusively. Force10(conf)# Note: When your session times out and you return to EXEC mode, the lock is no longer set. Related Commands configure terminal When configuration is set to manual, use this command to set the exclusive mode.
PAGE 453
show archive ce Display the content of the archive. Syntax show archive Defaults Command Modes No default values or behavior EXEC Privilege Command History Example Version 7.6.1.0 Figure 15-3.
PAGE 454
www.dell.com | support.dell.com show configuration lock ce Show the configuration lock status. Syntax show configuration lock Defaults Command Modes Command History Example None EXEC Privilege Version 7.7.1.0 Figure 15-4.
PAGE 455
Example Figure 15-5. show run diff archive Command Example Force10#show run diff archive_7 running-config ------< policy-map-input test running-config ------< archive < maximum 3 flash:/CFGARCH_DIR/archive_7 ------> archive Force10# time-period ce Set a time period to automatically save an archive file. Syntax time-period {minutes} To stop the auto-save, use the no time-period {minutes} command.
PAGE 456
| Configuration Rollback www.dell.com | support.dell.
PAGE 457
16 Dynamic Host Configuration Protocol (DHCP) Overview Dynamic Host Configuration Protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators.
PAGE 458
www.dell.com | support.dell.com clear ip dhcp cs Reset DHCP counters. Syntax clear ip dhcp [binding {address} | conflict | server statistics] Parameters Command Mode Default Command History Usage Information binding Enter this keyword to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address. conflicts Enter this keyword to delete all of the log entries created for IP address conflicts.
PAGE 459
Parameters Command Mode Default Command History events Enter this keyword to display DHCP state changes. packet Enter this keyword to display packet transmission/reception. EXEC Privilege None Version 8.2.1.0 Introduced on C-Series and S-Series. default-router cs Assign a default gateway to clients based on address pool. Syntax default-router address [address2...
PAGE 460
www.dell.com | support.dell.com Parameters Command Mode Default Command History address Enter the a list of DNS servers that may service clients on the subnet. You may list up to 8 servers, in order of preference. DHCP None Version 8.2.1.0 Introduced on C-Series and S-Series. domain-name cs Assign a domain to clients based on address pool. Syntax domain-name name Parameters Command Mode Default Command History name Give a name to the group of addresses in a pool.
PAGE 461
Parameters Command Mode Default Command History address Enter the hardware address of the client. DHCP None Version 8.2.1.0 Introduced on C-Series and S-Series. host cs For manual (rather than automatic) configurations, assign a host to a single-address pool. Syntax host address Parameters Command Mode Default Command History address/mask Enter the host IP address and subnet mask. DHCP None Version 8.2.1.0 Introduced on C-Series and S-Series.
PAGE 462
www.dell.com | support.dell.com option policy Command Mode Default Command History Version 8.2.1.0 Introduced on C-Series and S-Series. lease cs Specify a lease time for the addresses in a pool. Syntax lease {days [hours] [minutes] | infinite} Parameters Command Mode Default Command History days Enter the number of days of the lease. Range: 0-31 hours Enter the number of hours of the lease. Range: 0-23 minutes Enter the number of minutes of the lease.
PAGE 463
netbios-node-type cs Specify the NetBIOS node type for a Microsoft DHCP client. Dell Force10 recommends specifying clients as hybrid. Syntax netbios-node-type type Parameters type Enter the NETBIOS node type. Broadcast: Enter the keyword b-node. Hybrid: Enter the keyword h-node. Mixed: Enter the keyword m-node. Peer-to-peer: Enter the keyword p-node. Command Mode Default Command History DHCP Hybrid Version 8.2.1.0 Introduced on C-Series and S-Series.
PAGE 464
www.dell.com | support.dell.com show ip dhcp binding cs Display the DHCP binding table. Syntax show ip dhcp binding Command Mode Default Command History EXEC Privilege None Version 8.2.1.0 Introduced on C-Series and S-Series. show ip dhcp configuration cs Display the DHCP configuration. Syntax show ip dhcp configuration [global | pool name] Parameters Command Mode Default Command History pool name Display the configuration for a DHCP pool.
PAGE 465
Command Mode Default EXEC Privilege None Command History Version 8.2.1.0 Introduced on C-Series and S-Series. show ip dhcp server cs Display the DHCP server statistics. Syntax show ip dhcp server statistics Command Mode Default EXEC Privilege None Command History Version 8.2.1.0 Introduced on C-Series and S-Series. Commands to Configure Secure DHCP DHCP as defined by RFC 2131 provides no authentication or security mechanisms.
PAGE 466
www.dell.com | support.dell.com Default Command History Related Commands Disabled Version 8.3.1.0 Introduced on E-Series. Version 8.2.1.0 Introduced on C-Series and S-Series Specify a port as trusted so that ARP frames are not validated against the binding table. arp inspection-trust arp inspection-trust ces Syntax Command Modes Specify a port as trusted so that ARP frames are not validated against the binding table.
PAGE 467
Command Modes Default Command History Usage Information CONFIGURATION Disabled Version 8.3.1.0 Introduced on E-Series. Version 8.2.1.0 Introduced on C-Series and S-Series for Layer 2 interfaces. Version 7.8.1.0 Introduced on C-Series and S-Series on Layer 3 interfaces. When enabled, no learning takes place until snooping is enabled on a VLAN. Upon disabling DHCP Snooping the binding table is deleted, and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled.
PAGE 468
www.dell.com | support.dell.com interface type Enter the keyword interface followed by the type of interface to which the host is connected. • • • • Command Modes For an 10/100 Ethernet interface, enter the keyword fastethernet. For a Gigabit Ethernet interface, enter the keyword gigabitethernet. For a SONET interface, enter the keyword sonet. For a Ten Gigabit Ethernet interface, enter the keyword tengigabitethernet. slot/port Enter the slot and port number of the interface.
PAGE 469
Command History Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp source-address-validation ces Syntax Parameters Command Modes Default Command History Usage Information Enable IP Source Guard. [no] ip dhcp source-address-validation [ipmac] ipmac Enable IP+MAC Source Address Validation (Not available on E-Series). INTERFACE Disabled Version 8.3.1.0 Introduced on E-Series. Version 8.2.1.0 Added keyword ipmac. Version 7.8.1.
PAGE 470
www.dell.com | support.dell.com ip dhcp relay ces Syntax Parameters Command Modes Default Command History Enable Option 82. ip dhcp relay information-option [trust-downstream] trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. CONFIGURATION Disabled Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.
PAGE 471
Command History Version 8.3.1.0 Introduced on E-Series. Version 8.2.1.
PAGE 472
www.dell.com | support.dell.
PAGE 473
17 Equal Cost Multi-Path Overview The characters that appear below command headings indicate support for the associated Dell Force10 platform, as follows: • • • C-Series: c E-Series: e S-Series: s Commands The ECMP commands are: • • • • • hash-algorithm hash-algorithm ecmp hash-algorithm seed ip ecmp-deterministic ipv6 ecmp-deterministic hash-algorithm e Syntax Change the hash algorithm used to distribute traffic flows across a Port Channel.
PAGE 474
www.dell.com | support.dell.com Parameters Defaults algorithm-number Enter the algorithm number. Range: 0 to 47 Note: For EtherScale, range 0 to 15 is valid; 16 to 47 will be considered as 15. ecmp hash algorithm value TeraScale and ExaScale Only: Enter the keyword ecmp followed by the ECMP hash algorithm value. Range: 0 to 47 lag hash algorithm value TeraScale and ExaScale Only: Enter the keyword lag followed by the LAG hash algorithm value.
PAGE 475
Force10(conf)#hash-algorithm linecard 5 ip-sa-mask ff ip-da-mask ff % Error: This command is not supported in the current microcode configuration. In addition, the linecard number ip-sa-mask value ip-da-mask value option has the following behavior to maintain bi-directionality: • • When hashing is done on both IPSA and IPDA, the ip-sa-mask and ip-da-mask values must be equal.
PAGE 476
www.dell.com | support.dell.com hash-algorithm ecmp cs Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing) group. Syntax hash-algorithm ecmp {crc-upper} | {dest-ip} | {lsb} To return to the default hash algorithm, use the no hash-algorithm ecmp command.
PAGE 477
Command Modes Command History Usage Information CONFIGURATION Version 8.3.1.0 Introduced on E-Series. Deterministic ECMP sorts ECMPs in order even though RTM provides them in a random order. However, the hash algorithm uses as a seed the lower 12 bits of the chassis MAC, which yields a different hash result for every chassis. This means that for a given flow, even though the prefixes are sorted, two unrelated chassis will select different hops.
PAGE 478
www.dell.com | support.dell.com With 8 or less ECMPs, the ordering is lexicographic and deterministic. With more than 8 ECMPs, ordering is deterministic, but it is not in lexicographic order. Command Modes 478 | Syntax Defaults Command History Usage Information ipv6 ecmp-deterministic Disabled CONFIGURATION Version 8.3.1.0 Introduced on E-Series. After enabling IPv6 Deterministic ECMP, traffic loss occurs for a few milliseconds while FTOS sorts the CAM entries.
PAGE 479
18 Far-End Failure Detection (FEFD) Overview FTOS supports Far-End Failure Detection (FEFD) on the Ethernet interfaces of the E-Series, as indicated by the e character that appears below each command heading. This feature detects and reports far-end link failures. • • • FEFD is not supported on the Management interface. During an RPM failover, FEFD is operationally disabled for approximately 8-10 seconds. By default, FEFD is disabled.
PAGE 480
www.dell.com | support.dell.com packets Enter the keyword packets to enable debugging of FEFD to view information on packets sent and received. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a SONET interface, enter the keyword sonet followed by the slot/port information.
PAGE 481
fefd-global e Syntax Enable FEFD globally on the system. fefd-global [mode {normal | aggressive}] To disable FEFD globally, use the no fefd-global [mode {normal | aggressive}] command syntax. Parameters Defaults Command Modes Usage Information mode normal (OPTIONAL) Enter the keywords mode normal to change the link state to “unknown” when a far-end failure is detected by the software on that interface. When the interface is placed in “unknown” state, the software brings down the line protocol.
PAGE 482
www.dell.com | support.dell.com Parameters Defaults Command Modes seconds Enter a number as the time between FEFD control packets. Range: 3 to 300 seconds Default: 15 seconds 15 seconds INTERFACE fefd-global interval e Syntax Configure an interval between FEFD control packets. fefd-global interval seconds To return to the default value, enter no fefd-global interval. Parameters Defaults Command Modes seconds Enter a number as the time between FEFD control packets.
PAGE 483
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a SONET interface, enter the keyword sonet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. EXEC EXEC Privilege Example Figure 18-1.
PAGE 484
www.dell.com | support.dell.
PAGE 485
19 Force10 Resilient Ring Protocol (FRRP) Overview Force10 Resilient Ring Protocol (FRRP) is supported on platforms c e s FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the Spanning Tree Protocol. The Resilient Ring Protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode.
PAGE 486
www.dell.com | support.dell.com clear frrp ce Clear the FRRP statistics counters. Syntax clear frrp [ring-id] Parameters Defaults Command Modes ring-id No default values or behavior EXEC Command History Example (Optional) Enter the ring identification number. Range: 1 to 255 Version 8.2.1.0 Introduced for the C-Series Version 7.5.1.0 Introduced Figure 19-1.
PAGE 487
Parameters Defaults Command Modes Command History Usage Information event Enter the keyword event to display debug information related to ring protocol transitions. packet Enter the keyword packet to display brief debug information related to control packets. detail Enter the keyword detail to display detailed debug information related to the entire ring protocol packets. ring-id (Optional) Enter the ring identification number.
PAGE 488
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION (conf-frrp) Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced interface ce Configure the primary, secondary, and control-vlan interfaces. Syntax interface {primary interface secondary interface control-vlan vlan-id} To return to the default, use the no interface {primary interface secondary interface control-vlan vlan-id} command.
PAGE 489
Command History Usage Information Related Commands Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced This command causes the Ring Manager to take ownership of these two ports after the configuration is validated by the IFM. Ownership is relinquished for a port only when the interface does not play a part in any control VLAN, that is, the interface does not belong to any ring.
PAGE 490
www.dell.com | support.dell.com protocol frrp ce Enter the Resilient Ring Protocol and designate a ring identification. Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters Defaults Command Modes Command History Usage Information ring-id Enter the ring identification number. Range: 1 to 255 No default values or behavior CONFIGURATION Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.
PAGE 491
Example 2 Figure 19-3.
PAGE 492
www.dell.com | support.dell.com Usage Information 492 | The hello interval is the interval at which ring frames are generated from the primary interface of the master node. The dead interval is the time that elapses before a timeout occurs.
PAGE 493
20 Force10 Service Agent Overview The Force10 Service Agent (FTSA), commonly called a call-home service, collects information from the chassis manager, constructs email messages, and sends the messages to the recipients that you configure. For details on the use of FTSA commands and the structure of FTSA messages, see the Service Agent (FTSA) chapter in the FTOS Configuration Guide. All commands in this chapter are supported on C-Series and the E-Series using TeraScale cards.
PAGE 494
www.dell.com | support.dell.
PAGE 495
action-list ce Specify an action list for the associated policy and enter the conf-call-home-actionlist-name mode. Syntax [no] action-list word Parameters Defaults Command Modes word none config-callhome-policy-name Command History Usage Information Enter the keyword action-list followed by the name of a configured policy action list. Version 7.7.1.
PAGE 496
www.dell.com | support.dell.com Related Commands call-home Start FTSA and Enter the FTSA mode. domain-name Specify the domain name to be used for the Administrator’s email address. server Configure a recipient. smtp server-address Identify the local SMTP (Simple Mail Transfer Protocol) server from which FTSA email messages will be forwarded. call-home ce This command has two functions: • • Syntax Start FTSA. Enter the CONFIGURATION (conf-callhome) mode.
PAGE 497
case-number ce Specify a case number for the associated policy. Syntax [no] case-number word Parameters Defaults Command Modes Command History Usage Information word Enter the keyword case-number followed by a case number in the format C-xxxxx or c-xxxxx, where x = 0 to 9. Range: 1 to 20 characters. none config-callhome-policy-name Version 7.7.1.0 Introduced on C-Series and E-Series This is an optional command that you access by entering the policy command.
PAGE 498
www.dell.com | support.dell.com seq cli-action ce Configure an action to execute an FTOS command for one-time operation, triggered as part of the selected action list. Syntax seq number cli-action command Parameters Defaults Command Modes Command History Related Commands seq number Use the keyword seq followed by a number that FTOS uses to execute the list of actions in numerical order. command Enter a mode command. None CALL-HOME ACTION-LIST Version 8.2.1.
PAGE 499
If the debug command has spaces, such as debug ip bgp events, put the words following debug in double quotes. Related Commands action-list Specify an action list for the associated policy and enter the conf-call-home-actionlist-name mode. seq cli-show ce Configure an action to collect the output of the designated show command a designated number of times at a designated time interval.
PAGE 500
www.dell.com | support.dell.com contact-address ce Enter your customer address (up to 100 characters) to be included in type 5 FTSA messages. Syntax contact-address string Defaults none Command Modes CALL-HOME Command History Version 7.7.1.0 Related Commands Introduced on C-Series and E-Series call-home Start FTSA and enter CONFIGURATION (conf-callhome) mode. contact-email ce Enter a customer email address (up to 60 characters) to be included in type 5 FTSA messages.
PAGE 501
contact-notes ce Enter comments (up to 100 characters) to be included in the configuration database and in type 5 FTSA messages. Syntax contact-notes string Defaults none Command Modes CALL-HOME Command History Version 7.7.1.0 Related Commands Introduced on C-Series and E-Series call-home Start FTSA and enter CONFIGURATION (conf-callhome) mode. contact-phone ce Enter a customer phone number (up to 50 characters) to be included in type-5 FTSA messages.
PAGE 502
www.dell.com | support.dell.com debug call-home ce Monitor FTSA email messages through the CLI. Syntax debug call-home To turn message monitoring off, use the no debug call-home command. Defaults Command Modes no debug call-home EXEC EXEC Privilege Command History Related Commands Version 7.6.1.0 Introduced on C-Series Version 6.3.1.0 Introduced for E-Series show debugging Display the status of FTSA (call-home) debugging.
PAGE 503
default-test ce Invoke one of three preset system-monitoring test groups. Syntax default-test {hardware | software | exception} Parameters Defaults Command Mode Command History Usage Information Related Commands hardware Enter the keyword hardware to monitor hardware conditions. See the FTOS Configuration Guide for the list of conditions monitored by this keyword. software Enter the keyword software to monitor software conditions.
PAGE 504
www.dell.com | support.dell.com domain-name ce Specify the domain name for the Administrator’s email address. Syntax domain-name domain_name To remove the domain name, use the no domain-name command. Parameters Defaults Command Modes Command History Usage Information Related Commands domain name Enter the keyword domain-name followed by the complete domain name of the Administrator’s email address, for example, domain_name.com.
PAGE 505
Related Commands admin-email Specify the Administrator’s email address. call-home Start FTSA and Enter the FTSA mode. smtp server-address Configure the SMTP server detail. enable-all ce Enable (start) the sending of FTSA email messages to all designated recipients. Syntax enable-all To disable (end) the sending of FTSA email messages to all designated recipients, use the no enable command.
PAGE 506
www.dell.com | support.dell.com Usage Information Encryption is supported through PGP (Pretty Good Privacy). Encryption cannot be enabled without a public key for the server. On E-Series chassis, this command is only supported for TeraScale cards. Note: Execute the encrypt command only after the keyadd command is executed. Related Commands call-home Start FTSA and Enter the FTSA mode. keyadd Add a public key to the server. server Configure each recipient.
PAGE 507
Defaults Command Modes Command History Usage Information No default behavior or values CONFIGURATION Server (conf-callhome-server_name) Version 7.6.1.0 Introduced on C-Series Version 6.3.1.0 Introduced for E-Series The Dell Force10 server associated with the default Dell Force10 Support recipient has a public key that is shipped as part of FTOS, so you do not need to enter the key’s filename for that server.
PAGE 508
www.dell.com | support.dell.com The default severity level of 7 is the recommended severity level. Lower values will result in partial log data sent to the server because messages with higher values are filtered out. Related Commands call-home Start FTSA and Enter the FTSA mode. log-only Select the information collection action that matches the selected test group. logging buffered Enable logging and specify which messages are logged to an internal buffer.
PAGE 509
match ce This command enables you to execute the configured action list based on one of three test list criteria. Syntax match {any | all | simultaneous} Parameters Default Command Mode Command History Related Commands all Entering this keyword will require that all conditions in the test list be matched in order to execute the associated action list. any Entering this keyword will cause a match for any item in the test list to execute the associated action list. This is the default option.
PAGE 510
www.dell.com | support.dell.com Example Type - 5 Oct 18 15:05:34.
PAGE 511
Usage Information Related Commands You can create up to five concurrent policies with this command. A policy is the association of a test list with an action list, and optionally a case number. Choose the test list (the type of monitoring to perform) with the policy-test-list command. Choose the associated action to perform with the policy-action-list command. call-home Start FTSA and Enter the FTSA mode.
PAGE 512
www.dell.com | support.dell.com Usage Information After you name the test list with this command, use the command such as default-test to choose the type of monitoring to perform. pr-number ce Enter a PR (problem report) number associated with the selected policy. The number is the issue identifier (bug ID) maintained by Dell Force10. Syntax pr-number number Parameters Defaults Command Mode Command History Related Commands number Enter a 5-digit PR number, as supplied by Dell Force10.
PAGE 513
run-cpu ce Set whether the action list associated with the selected test list should be executed, as a function of CPU utilization. Syntax run-cpu {cpu | rpm-any} {less-than | greater-than} percentage Parameters Default Command Mode Enter a CPU utilization percentage. Range: 0–100 cpu Select a CPU: CP, LP, RP1, or RP2 rpm-any Monitor all RPM CPUs for the run-cpu condition (CP, RP1, and RP2) None CALL-HOME POLICY Command History Usage percentage Version 8.2.1.
PAGE 514
www.dell.com | support.dell.com Command Mode Command History Related Commands conf-callhome-policy Version 7.8.1.0 Introduced on C-Series and E-Series policy Create a policy with a name and enter config-callhome-policy-name mode. policy-test-list Name a policy test list and enter the config-callhome-actionlist-name mode. test-condition (comparing samples) Collect multiple samples of a statistic and compare them using the specified comparator and hurdle value.
PAGE 515
If you want to use encryption for a particular recipient’s email messages, the server name must match the user ID that is in the encryption file that the recipient will use to decrypt the messages. Use the keyadd command to designate the encryption file. Related Commands call-home Start FTSA and Enter the FTSA mode. enable Enable FTSA (call home) email for the selected recipient. recipient Enter the recipient’s email address. enable Enable FTSA (call home) email for the selected recipient.
PAGE 516
www.dell.com | support.dell.com Example Figure 20-3. show debugging (FTSA) Command Example Force10(conf-callhome)#show debugging CALLHOME: Callhome service debugging is on Force10(conf-callhome)# Related Commands debug call-home Monitor FTSA email messages through the CLI. show keys ce Display the email encryption (PGP) keys. On E-Series chassis, this command is only supported for TeraScale cards.
PAGE 517
smtp server-address ce Identify the local SMTP (Simple Mail Transfer Protocol) server from which FTSA email messages will be forwarded. Syntax smtp server-address server-address [smtp-port port number] To remove the SMTP address, use the no smtp server-address command. This action will disable email messaging until you enter a new SMTP server address. Parameters server-address server address Enter the keyword server-address followed by the SMTP server address, such as smtp.yourco.com.
PAGE 518
www.dell.com | support.dell.com test-condition (comparing samples) ce Configure an action to collect and compare multiple samples of a statistic.
PAGE 519
Examples Force10(conf-call-home-testlist-test)#test-condition cpu-1-min increase number ? <0-100> Enter the boolean comparision value Force10(conf-call-home-testlist-test)#test-condition cpu-1-min increase number 80 sample 5 Force10(conf-callhome-testlist-test)#test-condition cpu-5-min decrease ? <0-100> Enter the boolean comparision value Force10(conf-callhome-testlist-test)#test-condition cpu-5-min decrease 10 In this next example, the configuration is to subtract the bit rate that was found in the secon
PAGE 520
www.dell.com | support.dell.
PAGE 521
test-condition (comparing samples) Collect multiple samples of a statistic and compare them using the specified comparator and hurdle value. test-condition message-text (deprecated) Search for a stated value in the output of the designated show command or message type. test-condition message-text (deprecated) ce Configure a search for a stated value in the output of the designated show command or message type — syslog or other error messages, sent to the console, trap, or message logged locally.
PAGE 522
www.dell.com | support.dell.
PAGE 523
test-limit ce Set the number of times that the test list should be executed. Syntax test -limit number Parameters Default Command Mode Command History Related Commands number Set the number of times the test list matches that should be attempted. Range: 0–256 none. If the test-limit number is removed or not configured, there is no limit for how many times to test for the condition. conf-callhome-policy Version 7.8.1.
PAGE 524
www.dell.com | support.dell.com test-list ce Enter the name of a configured test list to be associated with the selected policy. Syntax test-list word Parameters Defaults Command Mode Command History Usage Information word Enter the keyword test-list followed by the name of a configured test list. No default behavior or values config-callhome-policy-name Version 7.7.1.
PAGE 525
21 GARP VLAN Registration (GVRP) Overview GARP VLAN Registration (GVRP) is supported on platforms c, e, and s Commands The GVRP commands are: • • • • • • • • • • • • bpdu-destination-mac-address clear gvrp statistics debug gvrp disable garp timers gvrp enable gvrp registration protocol gvrp show config show garp timers show gvrp show gvrp statistics on page 27 The GARP (Generic Attribute Registration Protocol) mechanism allows the configuration of a GARP participant to propagate through a network quickly
PAGE 526
www.dell.com | support.dell.com Important Points to Remember • • • • • • • • • • • • • GVRP is supported on Layer 2 ports only. All VLAN ports added by GVRP are tagged. GVRP is supported on untagged ports belonging to a default VLAN, and tagged ports. GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is turned on. GVRP requires end stations with dynamic access NICs.
PAGE 527
clear gvrp statistics ces Syntax Parameters Clear GVRP statistics on an interface. clear gvrp statistics interface interface interface interface Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Related Commands For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 528
www.dell.com | support.dell.com Defaults Command Modes Command History Disabled EXEC Privilege Version 7.6.1.0 Introduced on C, E, and S-Series disable ces Syntax Globally disable GVRP. disable To re-enable GVRP, use the no disable command. Defaults Command Modes Command History Related Commands Enabled CONFIGURATION-GVRP Version 7.6.1.0 Introduced on C, E, and S-Series gvrp enable Enable GVRP on physical interfaces and LAGs.
PAGE 529
Command Modes CONFIGURATION-GVRP Command History Usage Information Version 7.6.1.0 Introduced on C, E, and S-Series Join Timer—Join messages announce the willingness to register some attributes with other participants. Each GARP application entity sends a Join message twice, for reliability, and uses a join timer to set the sending interval. Leave Timer—Leave announces the willingness to de-register with other participants.
PAGE 530
www.dell.com | support.dell.com Parameters Defaults Command Modes Enter the keyword fixed followed by the VLAN range in a comma separated VLAN ID set. normal Enter the keyword normal followed by the VLAN range in a comma separated VLAN ID set. This is the default forbidden Enter the keyword forbidden followed by the VLAN range in a comma separated VLAN ID set. Default registration is normal CONFIGURATION-INTERFACE Command History Usage Information fixed Version 7.6.1.
PAGE 531
Command Modes Command History Related Commands CONFIGURATION-GVRP Version 7.6.1.0 Introduced on C, E, and S-Series gvrp enable Enable GVRP on physical interfaces and LAGs. protocol gvrp Access GVRP protocol. show garp timers ces Syntax Defaults Command Modes Display the GARP timer settings for sending GARP messages. show garp timers No default values or behavior EXEC EXEC Privilege Command History Example Version 7.6.1.0 Figure 21-1.
PAGE 532
www.dell.com | support.dell.com Parameters brief (OPTIONAL) Enter the keyword brief to display a brief summary of the GVRP configuration. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 533
Parameters interface interface Enter the keyword interface followed by one of the interface keywords and slot/port or number information: • • • • summary Defaults Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 534
www.dell.com | support.dell.com • 534 Related Commands | An entry for a new GVRP VLAN could not be created in the GVRP database.
PAGE 535
22 High Availability (HA) Overview High Availability (HA) in FTOS is configuration synchronization to minimize recovery time in the event of a Route Processor Module (RPM) failure. The feature is available on the C-Series and E-Series where noted by these symbols under command headings: c e FTOS on the E-Series supports RPM 1 + 1 redundancy. The Primary RPM performs all routing and control operations, while the Secondary RPM is online and monitoring the Primary RPM.
PAGE 536
www.dell.com | support.dell.com patch flash://RUNTIME_PATCH_DIR e Syntax Insert an In-Service Modular Hot-Fix patch. patch flash://RUNTIME_PATCH_DIR/patch-filename To remove the patch, enter no patch flash://RUNTIME_PATCH_DIR/patch-filename Defaults Command Modes Command History Usage Information None CONFIGURATION Version 8.2.1.0 Introduced The patch filename includes the FTOS version, the platform, the cpu, and the process it affects (FTOS-platform-cpu-process-patchversion.rtp).
PAGE 537
Related Commands show processes restartable redundancy auto-failover-limit ce Specify an auto-failover limit for RPMs. When an non-recoverable fatal error is detected, an automatic RPM failover occurs. This command does not affect user-initiated (manual) failovers. Syntax redundancy auto-failover-limit [count number [period minutes] | period minutes]] To disable the auto-failover limit control, enter no redundancy auto-failover-limit.
PAGE 538
www.dell.com | support.dell.com Command History Usage Information Version 8.3.1.0 Added the all option Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on E-Series Enabling this command will keep the failed RPM in the failed state. If there are two RPMs in the system, enabling this command prevents the failed RPM from becoming a working Standby RPM. If there is only one RPM in the system, the failed RPM will not recover—this will effect the system.
PAGE 539
Example Figure 22-2. redundancy force-failover sfm (EtherScale only) Command Example Force10#redundancy force-failover sfm 0 %TSM-6-SFM_FAILOVER: Standby switch to SFM 8 Standby switch to SFM 0 Force10# redundancy primary ce Set an RPM as the primary RPM. Syntax redundancy primary [rpm0 | rpm1] To delete a configuration, enter no redundancy primary. Parameters Defaults Command Modes Command History rpm0 Enter the keyword rpm0 to set the RPM in slot R0 as the primary RPM.
PAGE 540
www.dell.com | support.dell.com Related Commands show lacp Display the lacp configuration show redundancy Display the current redundancy configuration. redundancy reset-counter e Syntax Defaults Command Modes Command History Reset failover counter and timestamp information displayed in the show redundancy command output. redundancy reset-counter Not configured EXEC Privilege Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 541
Example Figure 22-3. redundancy sfm standby Command Example Force10#show sfm all Switch Fabric State: up -- Switch Fabric Modules -Slot Status --------------------------------------------------------------------------0 active 1 active Force10#configure Force10(conf)#redundancy sfm standby Taking secondary SFM offline...
PAGE 542
www.dell.com | support.dell.com show patch e Syntax Command Modes Command History Related Commands Display the system patches loaded with the In-Service Modular Hot Fix Command. show patch EXEC Version 8.2.1.0 Introduced on E-Series Insert an In-Service Modular Hot-Fix patch. patch flash:// RUNTIME_PATCH_DIR show processes restartable e Syntax Parameters Command Modes Command History Example Display the processes and tasks configured for restartability.
PAGE 543
Command Modes EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series Figure 22-4. show redundancy Command Example Force10#show redundancy -- RPM Status ------------------------------------------------RPM Slot ID: 1 RPM Redundancy Role: Primary RPM State: Active RPM SW Version: 7.5.1.
PAGE 544
www.dell.com | support.dell.com Table 22-1. show redundancy Command Example Fields (continued) Field Description RPM Redundancy Configuration Displays the following information: • • • • • RPM Failover Record Displays the following information: • • • Last Data Sync Record which RPM is the preferred Primary on next boot (redundancy primary command) the data sync method configured (redundancy synchronize command).
PAGE 545
23 Internet Group Management Protocol (IGMP) Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading. This chapter contains the following sections: • • IGMP Commands IGMP Snooping Commands IGMP Commands FTOS supports IGMPv1/v2/v3 and is compliant with RFC-3376. Important Points to Remember • • • • • • • FTOS supports PIM-SM and PIM-SSM include and exclude modes.
PAGE 546
www.dell.com | support.dell.com • • • • • • ip igmp ssm-map ip igmp static-group ip igmp version show ip igmp groups show ip igmp interface show ip igmp ssm-map clear ip igmp groups ces Syntax Parameters Clear entries from the group cache table. clear ip igmp groups [group-address | interface] group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format.
PAGE 547
Parameters Defaults Command Modes Command History group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format. interface (OPTIONAL) Enter the following keywords and slot/port or number information: Disabled EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series legacy command Usage Information IGMP commands accept only non-VLAN interfaces—specifying a VLAN will not yield results.
PAGE 548
www.dell.com | support.dell.com ip igmp group-join-limit ces Syntax Parameters Defaults Command Modes Command History Use this feature to limit the number of IGMP groups that can be joined in a second. ip igmp group-join-limit number number Enter the number of IGMP groups permitted to join in a second. Range: 1 to 10000 No default values or behavior CONFIGURATION (conf-if-interface-slot/port) Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.6.1.
PAGE 549
ip igmp last-member-query-interval ces Syntax Change the last member query interval, which is the Max Response Time inserted into Group-Specific Queries sent in response to Leave Group messages. This interval is also the interval between Group-Specific Query messages. ip igmp last-member-query-interval milliseconds To return to the default value, enter no ip igmp last-member-query-interval. Parameters Defaults Command Modes Command History milliseconds Enter the number of milliseconds as the interval.
PAGE 550
www.dell.com | support.dell.com ip igmp query-interval ces Syntax Change the transmission frequency of IGMP general queries sent by the Querier. ip igmp query-interval seconds To return to the default values, enter no ip igmp query-interval. Parameters Defaults Command Modes Command History seconds Enter the number of seconds between queries sent out. Default: 60 seconds Range: 1 to 18000 60 seconds INTERFACE Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.
PAGE 551
ip igmp ssm-map ces Syntax Use a statically configured list to translate (*,G) memberships to (S,G) memberships. ip igmp ssm-map std-access-list source-address Undo this configuration, that is, remove SSM map (S,G) states and replace them with (*,G) states using the command ip igmp ssm-map std-access-list source-address command.
PAGE 552
www.dell.com | support.dell.com Version 7.5.1.0 Expanded to support the exclude and include options E-Series legacy command Usage Information A group in the include mode should have at least one source address defined. In exclude mode if no source address is specified, FTOS implicitly assumes all sources are included. If neither include or exclude is specified, FTOS implicitly assumes a IGMPv2 static join.
PAGE 553
Parameters group-address (OPTIONAL) Enter the group address in dotted decimal format to view information on that group only. interface (OPTIONAL) Enter the interface type and slot/port information: • • • • • • • detail Command Modes For a 100/1000 Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
PAGE 554
www.dell.com | support.dell.com show ip igmp interface ces Syntax Parameters View information on the interfaces participating in IGMP. show ip igmp interface [interface] interface (OPTIONAL) Enter the interface type and slot/port information: • • • • • • • Command Modes For a 100/1000 Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
PAGE 555
show ip igmp ssm-map ces Syntax Display is a list of groups that are currently in the IGMP group table and contain SSM mapped sources. show ip igmp ssm-map [group] Parameters Command Modes group (OPTIONAL) Enter the multicast group address in the form A.B.C.D to display the list of sources to which this group is mapped. EXEC EXEC Privilege Command History Related Commands Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.7.1.
PAGE 556
www.dell.com | support.dell.com • IGMP snooping reacts to Layer 2 topology changes triggered by MSTP by sending a general query on the interface that comes in FWD state. Important Points to Remember for IGMP Querier • • • • • The IGMP snooping Querier supports version 2. You must configure an IP address to the VLAN interface for IGMP snooping Querier to begin.
PAGE 557
ip igmp snooping fast-leave ces Syntax Enable IGMP snooping fast leave for this VLAN. ip igmp snooping fast-leave To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Command Modes Command History Not configured INTERFACE VLAN—(conf-if-vl-n) Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 558
www.dell.com | support.dell.com ip igmp snooping last-member-query-interval ces Syntax The last member query interval is the “maximum response time” inserted into Group-Specific queries sent in response to Group-Leave messages. This interval is also the interval between successive Group-Specific Query messages. Use this command to change the last member query interval.
PAGE 559
Usage Information FTOS provides the capability of statically configuring interface to which a multicast router is attached. To configure a static connection to the multicast router, enter the ip igmp snooping mrouter interface command in the VLAN context. The interface to the router must be a part of the VLAN where you are entering the command. ip igmp snooping querier ces Syntax Enable IGMP querier processing for the VLAN interface.
PAGE 560
www.dell.com | support.dell.com Example 560 Figure 23-3.
PAGE 561
24 \ Interfaces Overview This chapter defines interface commands and is divided into the following sections: • • • • Basic Interface Commands Port Channel Commands Time Domain Reflectometer (TDR) UDP Broadcast The symbols c e s under command headings indicate which Dell Force10 platforms — C-Series, E-Series, or S-Series, respectively — support the command. Although all interfaces are supported on E-Series ExaScale, some interface functionality is supported on E-Series ExaScale ex with FTOS 8.2.1.0.
PAGE 562
www.dell.com | support.dell.
PAGE 563
Parameters interface (OPTIONAL) Enter any of the following keywords and slot/port or number to clear counters from a specified interface: • • • • • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
PAGE 564
www.dell.com | support.dell.com clear dampening ces Syntax Parameters Clear the dampening counters on all the interfaces or just the specified interface. clear dampening [interface] interface (Optional) Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 565
Defaults Mode Command History Usage Information medium Interface Version 7.7.1.0 Introduced on S-Series This command only works on ports that the system recognizes as CX4 ports. The figure below shows an attempt to configure an XFP port in an S25P with the command after inserting a CX4 converter into the port: Note: When using a long CX4 cable between the C-Series and the S-Series, configure the cable using the cx4-cable-length short command only to avoid any errors.
PAGE 566
www.dell.com | support.dell.com Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires. Range: 1 to 30 seconds Default: 5 seconds Defaults Command Modes reuse-threshold Enter a number as the reuse threshold, the penalty value below which the interface state is changed to “up”.
PAGE 567
description ces Syntax Assign a descriptive text string to the interface. description desc_text To delete a description, enter no description. Parameters Defaults Command Modes desc_text No description is defined. INTERFACE Command History Usage Information • • • • Related Commands Enter a text string up to 240 characters long. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.
PAGE 568
www.dell.com | support.dell.com duplex (Management) ce Set the mode of the Management interface. Syntax duplex {half | full} To return to the default setting, enter no duplex. Parameters Defaults Command Modes Command History Usage Information Related Commands half Enter the keyword half to set the Management interface to transmit only in one direction. full Enter the keyword full to set the Management interface to transmit in both directions. Not configured INTERFACE Version 8.1.1.
PAGE 569
Usage Information This command applies to any physical interface with speed set to 10/100. Note: Starting with FTOS 7.8.1.0, when a copper SFP2 module with catalog number GP-SFP2-1T is used in the S25P model of the S-Series, its speed can be manually set with the speed command. When the speed is set to 10 or 100 Mbps, the duplex command can also be executed. Related Commands speed (for 10/100/1000 interfaces) Set the speed on the Base-T Ethernet interface.
PAGE 570
www.dell.com | support.dell.com • Ends when both the packet pointer and the buffer threshold fall below 50% of the threshold settings. The discard threshold defines when the interface starts dropping the packet on the interface. This may be necessary when a connected device does not honor the flow control frame sent by the S-Series. The discard threshold should be larger than the buffer threshold so that the buffer holds at least hold at least 3 packets.
PAGE 571
The table below displays how FTOS negotiates the flow control values between two Dell Force10 chassis connected back-to-back using 1G copper ports. Table 24-1.
PAGE 572
www.dell.com | support.dell.com interface ces Syntax Parameters Configure a physical interface on the switch. interface interface interface Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Example For 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 573
Parameters Defaults Command Modes Command History Example number Enter a number as the interface number. Range: 0 to 16383. Not configured. CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Introduced Figure 24-6. interface loopback Command Example Force10(conf)#interface loopback 1655 Force10(conf-if-lo-1655)# Related Commands interface Configure a physical interface.
PAGE 574
www.dell.com | support.dell.com If two RPMs are installed in your system, use the show redundancy command to display which RPM is the Primary RPM. Related Commands management route Configure a static route that points to the Management interface or a forwarding router. duplex (Management) Clear FIB entries on a specified line card. speed (Management interface) Clear FIB entries on a specified line card.
PAGE 575
interface range ces Syntax This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration). Using the interface range command, identical commands can be entered for a range of interface. interface range interface , interface , ... Parameters interface , interface , ... Enter the keyword interface range and one of the interfaces — slot/port, port-channel or VLAN number. Select the range of interfaces for bulk configuration.
PAGE 576
www.dell.com | support.dell.com Example Figure 24-9. Bulk Configuration Warning Message Force10(conf)#interface range so 2/0 - 1 , te 10/0 , gi 3/0 , fa 0/0 % Warning: Non-existing ports (not configured) are ignored by interface-range Example Figure 24-10. Interface Range prompt with Multiple Ports Force10(conf)#interface range gi 2/0 - 23 , gi 2/1 - 10 Force10(conf-if-range-gi-2/0-23# Example Figure 24-11.
PAGE 577
The following figure shows how to use commas to add SONET, VLAN, and port-channel interfaces to the range. Example Figure 24-14. Multiple Range Bulk Configuration with SONET, VLAN, and port channel Force10(config-if)# interface range gigabitethernet 5/1 - 23, tengigabitethernet 1/1 – 2, Vlan 2 – 100 , Port 1 – 25 Force10(config-if-range)# no shutdown Force10(config-if-range)# Related Commands interface port-channel Configure a port channel group. interface vlan Configure a VLAN interface.
PAGE 578
www.dell.com | support.dell.com Command History Example Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.2.1.1 Introduced Figure 24-15.
PAGE 579
Related Commands interface range Configure a range of command (bulk configuration) interface range macro (define) Define a macro for an interface range (bulk configuration) interface vlan ces Syntax Configure a VLAN. You can configure up to 4094 VLANs. interface vlan vlan-id To delete a VLAN, use the no interface vlan vlan-id command. Parameters Defaults Command Modes Command History Example vlan-id Enter a number as the VLAN Identifier. Range: 1 to 4094.
PAGE 580
www.dell.com | support.dell.com ipg (Gigabit Ethernet interfaces) e Syntax Set the Inter-packet gap (IPG) to 8 bytes for traffic on a Gigabit Ethernet interface. ipg 8 To return to the default setting, enter no ipg. Parameters Defaults Command Modes Command History Usage Information 8 Enter the keyword 8 to set the IPG to 8 bytes. 12 bytes INTERFACE Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.
PAGE 581
keepalive ces Syntax On SONET interfaces, send keepalive packets periodically to keep an interface alive when it is not transmitting data. keepalive [seconds] To stop sending SONET keepalive packets, enter no keepalive. Parameters Defaults Command Modes Command History Usage Information seconds (OPTIONAL) For SONET interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets. Range: 0 to 23767 Default: 10 seconds Enabled INTERFACE Version 8.1.1.
PAGE 582
www.dell.com | support.dell.com link debounce-timer e Syntax Parameters Assign the debounce time for link change notification on this interface. link debounce [milliseconds] milliseconds Enter the time to delay link status change notification on this interface. Range: 100-5000 ms • • Command Modes Command History Usage Information Default for copper is 3100 ms Default for fiber is 100 ms INTERFACE Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 583
Example Figure 24-18. systest-3 monitor Command Example of a Single Interface Monitor time: 00:00:06 Refresh Intvl.
PAGE 584
www.dell.com | support.dell.com Table 24-2. monitor Command Menu Options Key systest-3 monitor time time Description Displays the host name assigned to the system. Displays the amount of time since the monitor command was entered. Displays the amount of time the chassis is up (since last reboot). m Change the view from a single interface to all interfaces on the line card or visa-versa. c Refresh the view. b Change the counters displayed from Packets on the interface to Bytes.
PAGE 585
When you enter the no mtu command, FTOS reduces the IP MTU value to 1536 bytes. On the E-Series, to return the IP MTU value to the default, enter no ip mtu. Link MTU and IP MTU considerations for port channels and VLANs are as follows. port channels: • • All members must have the same link MTU value and the same IP MTU value. The port channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members.
PAGE 586
www.dell.com | support.dell.com The no negotiation auto command is only available if you first manually set the speed of a port to 10Mbits or 100Mbits. The negotiation auto command provides a mode option for configuring an individual port to forced-master/forced slave once auto-negotiation is enabled Note: The mode option is not available on non-10/100/1000 Base-T Ethernet line cards. Figure 24-20.
PAGE 587
The following table details the possible speed and auto-negotiation combinations for a line between two 10/100/1000 Base-T Ethernet interfaces. Table 24-4.
PAGE 588
www.dell.com | support.dell.com Usage Information The figure above sets a port as hybrid, makes the port a tagged member of VLAN 20, and an untagged member of VLAN 10, which becomes the native VLAN of the port. The port will now accept: • • untagged frames and classify them as VLAN 10 frames VLAN 20 tagged frames The next figure is an example show output with “Hybrid” as the newly added value for 802.1QTagged.
PAGE 589
Defaults Command Modes 299 seconds INTERFACE Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced The configured rate interval is displayed, along with the collected traffic data, in the output of show interfaces commands. Related Commands show interfaces Display information on physical and virtual interfaces.
PAGE 590
www.dell.com | support.dell.com Example Version 7.5.1.0 Introduced on C-Series Version 6.1.1.0 Introduced on E-Series Figure 24-26.
PAGE 591
Usage Version 6.4.1.0 Changed organization of display output Version 6.3.1.0 Added Pluggable Media Type field in E-Series TeraScale output Use this show interfaces command for details on a specific interface. Use the show interfaces linecard command for details on all interfaces on the designated line card. Note that, in an E-Series EtherScale chassis, the show interfaces command output does not include details about installed SFP or XFP transceivers. Example Figure 24-27.
PAGE 592
www.dell.com | support.dell.com Table 24-5. Lines in show interfaces Command Example (EtherScale) (continued) Line Input Statistics: Description Displays all the input statistics including: • • Number of packets and bytes into the interface Number of packets with IP headers, VLAN tagged headers and MPLS headers Note: The sum of the number of packets may not be as expected since a VLAN tagged IP packet counts as both a VLAN packet and an IP packet.
PAGE 593
Example Figure 24-28. show interfaces Command Example for 10G (TeraScale) Force10#show interfaces tengigabitethernet 0/0 TenGigabitEthernet 3/0 is up, line protocol is up Hardware is Force10Eth, address is 00:01:e8:41:77:c5 Current address is 00:01:e8:41:77:c5 Pluggable media present, XFP type is 10GBASE-SR Medium is MultiRate, Wavelength is 850.00nm XFP receive power reading is -2.
PAGE 594
www.dell.com | support.dell.com Table 24-6. Fields in show interfaces Command Example (TeraScale) Line Description Queuing strategy... States the packet queuing strategy. FIFO means first in first out.
PAGE 595
Example Figure 24-29.
PAGE 596
www.dell.com | support.dell.com Usage Information 596 On the C-Series and S-Series, the interface counter “over 1023-byte pkts” does not increment for packets in the range 9216 > x < 1023. The Management port is enabled by default (no shutdown). If necessary, use the ip address command to assign an IP address to the Management port. If two RPMs are installed in your system, use the show redundancy command to display which RPM is the Primary RPM.
PAGE 597
show interfaces configured ces Syntax Command Modes Display any interface with a non-default configuration. show interfaces configured EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Changed organization of display output Figure 24-32.
PAGE 598
www.dell.com | support.dell.com show interfaces dampening ces Syntax Parameters Display interface dampening information. show interfaces dampening [[interface] [summary] [detail]] interface (Optional) Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Example For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 599
show interfaces debounce e Syntax Parameters Display information on interfaces with debounce timer configured. show interfaces debounce interface interface Enter one of the following keywords and slot/port or number information: • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
PAGE 600
www.dell.com | support.dell.com Command History Example Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 24-34.
PAGE 601
show interfaces linecard ce Display information on all interfaces on a specific line card. Syntax show interfaces linecard slot-number Parameters Command Modes slot-number Enter a number for the line card slot. C-Series Range: 0-7 for C300; 0–3 for C150 E-Series Range: 0 to 13 on the E1200/1200i, 0 to 6 on the E600/600i, 0 to 5 on the E300 EXEC EXEC Privilege Command History Usage Example Version 8.1.1.2 Introduced support on E-Series ExaScale E600i Version 8.1.1.
PAGE 602
www.dell.com | support.dell.com show interfaces phy ces Syntax Parameters Command Modes Display auto-negotiation and link partner information. show interfaces gigabitethernet slot/port phy gigabitethernet Enter the keyword gigabitethernet followed by the slot/port information. EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on C-Series and S-Series Version 6.5.4.0 Introduced on E-Series Figure 24-36.
PAGE 603
Table 24-8. Related Commands Lines in show interfaces gigabitethernet Command Example Line Description AutoNegotiation Remote Partner’s Ability Displays the control words advertised by the remote interface during negotiation. Duplex is either half or full.
PAGE 604
www.dell.com | support.dell.com Command History Example Version 7.6.1.0 Figure 24-37.
PAGE 605
Command Modes EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.5.1.0 Introduced on E-Series Figure 24-38.
PAGE 606
www.dell.com | support.dell.com Parameters interface Enter one of the following keywords and slot/port or number information: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 607
Table 24-9. Related Commands Items in show interfaces switchport Command Example Items Description Name Displays the interface’s type, slot and port number. 802.1QTagged Displays whether if the VLAN tagged (“True”), untagged (“False”), or hybrid (“Hybrid”, which supports both untagged and tagged VLANs by port 13/0. Vlan membership Lists the VLANs to which the interface is a member. Starting with FTOS 7.6.1, this field can display native VLAN membership by port 13/0.
PAGE 608
www.dell.com | support.dell.com Example Figure 24-40. show interfaces gigabitethernet transceiver Command Example Force10#show interfaces gigabitethernet 1/0 transceiver SFP is present.
PAGE 609
Table 24-10. Diagnostic Data in show interfaces transceiver Line Description Rx Power measurement type Output depends on the vendor, typically either “Average” or “OMA” (Receiver optical modulation amplitude). Temp High Alarm threshold Factory-defined setting, typically in Centigrade. Value differs between SFPs and SFP+. Voltage High Alarm threshold Displays the interface index number used by SNMP to identify the interface. Bias High Alarm threshold Factory-defined setting.
PAGE 610
www.dell.com | support.dell.com Table 24-10. 610 | Interfaces Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power Present Tx power of the SFP. If this crosses Tx power alarm/warning thresholds, then the Tx power high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, then the Tx power low alarm/ warning flag is set to true. Rx Power Present Rx power of the SFP. This value is either average Rx power or OMA.
PAGE 611
Table 24-10. Related Commands Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Temperature Low Warning Flag This can be either true or false, depending on the Current Temperature value displayed above.
PAGE 612
www.dell.com | support.dell.com Related Commands interface Configure a physical interface on the switch. show ip interface Displays Layer 3 information about the interfaces. show interfaces Display information on a specific physical interface or virtual interface. shutdown ces Syntax Disable an interface. shutdown To activate an interface, enter no shutdown. Defaults Command Modes Command History The interface is disabled. INTERFACE Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 613
speed (for 10/100/1000 interfaces) ces Syntax Set the speed for 10/100/1000 Base-T Ethernet interfaces. Both sides of a link must be set to the same speed (10/100/1000) or to auto or the link may not come up speed {10 | 100 | 1000 | auto} To return to the default setting, use the no speed {10 | 100 | 1000} command. Parameters Defaults Command Modes Command History 10 Enter the keyword 10 to set the interface’s speed to 10 Mb/s.
PAGE 614
www.dell.com | support.dell.com Use the following information to enter specific values to set the autonegotiation speed and duplex settings for switch ports. Entering specific values allows users to limit the speed available on ports to the values that are specified. Note: The command speed auto 100 in FTOS is an exact equivalent of speed auto 100 in IOS Table 24-11.
PAGE 615
Command Modes Command History Usage Information Related Commands INTERFACE Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0 Introduced for E-Series This command is found on the Management interface only. interface ManagementEthernet Configure the Management port on the system (either the Primary or Standby RPM). duplex (Management) Set the mode of the Management interface.
PAGE 616
www.dell.com | support.dell.com Usage Information If an IP address or VRRP group is assigned to the interface, you cannot use the switchport command on the interface. To use the switchport command on an interface, only the no ip address and no shutdown statements must be listed in the show config output. When you enter the switchport command, the interface is automatically added to the default VLAN. To use the switchport backup interface command on a port, you must first enter the switchport command.
PAGE 617
framing Set framing type keepalive Enable keepalive loopback Troubleshoot a SONET loopback Port Channel Commands A Link Aggregation Group (LAG) is a group of links that appear to a MAC client as if they were a single link according to IEEE 802.3ad. In FTOS, a LAG is referred to as a Port Channel. Table 24-12.
PAGE 618
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Not configured. INTERFACE PORTCHANNEL Command History Usage Information For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 619
Related Commands description Assign a descriptive text string to the interface. interface port-channel Create a Port Channel interface. shutdown Disable/Enable the port channel. group ces Syntax Group two LAGs in a supergroup (“fate-sharing group” or “failover group”). group group_number port-channel number port-channel number To remove an existing LAG supergroup, use the no group group_number command.
PAGE 620
www.dell.com | support.dell.com Defaults Command Modes Command History Example Not configured. CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0 Introduced for E-Series Figure 24-43.
PAGE 621
Parameters Defaults Command Modes number 1 INTERFACE Command History Usage Information Enter the number of links in a LAG that must be in “oper up” status. Range: 1 to 16 Default: 1 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.
PAGE 622
www.dell.com | support.dell.com Command Modes Example INTERFACE PORTCHANNEL Figure 24-44. show config Command Sample Output for a Selected LAG Force10(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown Force10(conf-if-po-1)# Command History Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.
PAGE 623
Example Figure 24-45. show interfaces port-channel Command Example (EtherScale) Force10#show interfaces port-channel 20 Port-channel 20 is up, line protocol is up (Failover-group 1 is down) Hardware address is 00:01:e8:01:46:fa Port-channel is part of failover-group 1 Internet address is 1.1.120.
PAGE 624
www.dell.com | support.dell.com Table 24-13. show interfaces port-channel Command Example Fields (continued) Field Description Output 0... Displays the type and number of packets sent out the interface. This information is displayed over three lines. Rate information... Displays the traffic rate information into and out of the interface. Traffic rate is displayed in bits and packets per second. Time since... Displays the time since the last change in the configuration of this interface.
PAGE 625
Parameters outgoing-port-channel number Enter the keyword outgoing-port-channel followed by the number of the port channel to display flow information. • For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 626
www.dell.com | support.dell.com • • Example In the event of fragmented packets, egress port of the first fragment. In the event of fragmented packets, egress port of the subsequent fragments.
PAGE 627
Important Points to Remember • The interface and port must be enabled (configured—see the interface command) before running TDR. An error message is generated if you have not enabled the interface. The interface on the far-end device must be shut down before running TDR. Since TDR is an intrusive test on an interface that is not establishing a link, do not run TDR on an interface that is passing traffic. When testing between two devices, do not run the test on both ends of the cable.
PAGE 628
www.dell.com | support.dell.com Command Modes EXEC Command History Example Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Support added for S-Series Version 7.6.1.0 Support added for C-Series Version 6.1.1.0 Introduced Figure 24-48.
PAGE 629
• The existing command show interface has been modified to display the configured broadcast address. The commands for UDP Broadcast are: • • • • debug ip udp-helper ip udp-broadcast-address ip udp-helper udp-port show ip udp-helper debug ip udp-helper e Syntax Enable UDP debug and display the debug information on a console. debug ip udp-helper To disable debug information, use the no debug ip udp-helper command. Defaults Command Modes Debug disabled EXEC EXEC Privilege Example Figure 24-49.
PAGE 630
www.dell.com | support.dell.com Usage Information Related Commands When a UDP broadcast packet is flooded out of an interface, and the outgoing interface is configured using this command, the outgoing packet’s IP destination address is replaced with the configured broadcast address. debug ip udp-helper Enable debug and display the debug information on a console. show ip udp-helper Display the configured UDP helper(s) on all interfaces.
PAGE 631
Example Figure 24-50. show ip udp-helper Command Example Force10#show ip udp-helper -------------------------------------------------Port UDP port list -------------------------------------------------Gi 10/0 656, 658 Gi 10/1 All Related Commands debug ip udp-helper Enable debug and display the debug information on a console. ip udp-broadcast-address Configure a UDP IP address for broadcast.
PAGE 632
| Interfaces www.dell.com | support.dell.
PAGE 633
25 IPv4 Routing Overview The characters that appear below command headings indicate support for the associated Dell Force10 platform, as follows: • • • C-Series: c E-Series: e S-Series: s Commands IPv4-related commands are described in this chapter.
PAGE 634
www.dell.com | support.dell.
PAGE 635
mac-address Enter a MAC address in nnnn.nnnn.nnnn format. interface Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Usage Information Related Commands For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the Management interface, enter the keyword ManagementEthernet followed by the slot/port information. The slot range is 0-1 and the port range is 0.
PAGE 636
www.dell.com | support.dell.com 3 At time t=2 FTOS installs an ARP entry for A.B.C.D only on RP2. Beginning with version 8.3.1.0, when a Gratuitous ARP is received, FTOS installs an ARP entry on all 3 CPUs. arp retries ces Syntax Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. arp retries number Parameters Defaults Command Modes Command History Usage Information Related Commands number Enter the number of retries. Range: 5 to 20.
PAGE 637
Related Commands show interfaces Displays the ARP timeout value for all available interfaces. clear arp-cache ces Syntax Parameters Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from CAM. clear arp-cache [vrf name | interface | ip ip-address] [no-refresh] vrf name E-Series Only: Clear only the ARP cache entries tied to the VRF process.
PAGE 638
www.dell.com | support.dell.com clear host ces Syntax Parameters Command Modes Command History Remove one or all dynamically learnt host table entries. clear host name name Enter the name of the host to delete. Enter * to delete all host table entries. EXEC Privilege Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 639
clear ip route ces Syntax Parameters Command Modes Command History Related Commands Clear one or all routes in the routing table. clear ip route {* | ip-address mask | vrf vrf instance} * Enter an asterisk (*) to clear all learned IP routes. ip-address mask Enter a specific IP address and mask in dotted decimal format to clear that IP address from the routing table. vrf instance (Optional) E-Series Only: Clear only the routes tied to the VRF instance. EXEC Privilege Version 8.1.1.
PAGE 640
www.dell.com | support.dell.com debug arp ces View information on ARP transactions. Syntax debug arp [interface] [count value] To stop debugging ARP transactions, enter no debug arp. Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • count value Command Modes Command History Defaults Usage Information For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
PAGE 641
Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.10 Introduced on E-Series Figure 25-1. debug ip dhcp Command Example Force10#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.
PAGE 642
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • count value Command Modes Command History Example E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale. For a SONET interface, enter the keyword sonet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
PAGE 643
Parameters access-group name Enter the keyword access-group followed by the access list name (maximum 16 characters) to limit the debug output based on the defined rules in the ACL. count value (OPTIONAL) Enter the keyword count followed by the count value.
PAGE 644
www.dell.com | support.dell.com Example Figure 25-3. debug ip packet Command Example (Partial) IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 54, sending TCP src=23, dst=40869, seq=2112994894, ack=606901739, win=8191 ACK PUSH IP: s=10.1.2.206 (Ma 0/0), d=10.1.2.62, len 40, rcvd TCP src=0, dst=0, seq=0, ack=0, win=0 IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 226, sending TCP src=23, dst=40869, seq=2112994896, ack=606901739, win=8192 ACK PUSH IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.
PAGE 645
• • • • Internet Control Message Protocol* * but not the ICMP message type (0-255) Any Internet Protocol Transmission Control Protocol* * but not on the rst, syn, or urg bit User Datagram Protocol icmp ip tcp udp In the case of ambiguous access control list rules, the debug ip packet access-control command will be disabled. A message appears identifying the error (see Figure 25-4). Example Figure 25-4.
PAGE 646
www.dell.com | support.dell.com ip directed-broadcast ces Syntax Enables the interface to receive directed broadcast packets. ip directed-broadcast To disable the interface from receiving directed broadcast packets, enter no ip directed-broadcast. Defaults Command Modes Disabled (that is, the interface does not receive directed broadcast packets) INTERFACE Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 647
ip domain-lookup ces Syntax Enable dynamic host-name to address resolution (that is, DNS). ip domain-lookup To disable DNS lookup, use the no ip domain-lookup. Defaults Command Mode Disabled. CONFIGURATION Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series To fully enable DNS, also specify one or more domain name servers with the ip name-server command.
PAGE 648
www.dell.com | support.dell.com • enable DNS with the ip domain-lookup command. To view current bindings, use the show hosts command. Related Commands ip domain-list Configure additional names. ip fib download-igp-only e Syntax Configure the E-Series to download only IGP routes (for example, OSPF) on to line cards. When the command is configured or removed, it clears the routing table (similar to clear ip route command) and only IGP routes populate the table.
PAGE 649
Usage Information Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series You can add multiple DHCP servers by entering the ip helper-address command multiple times. If multiple servers are defined, an incoming request is sent simultaneously to all configured servers and the reply is forwarded to the DHCP client. FTOS uses standard DHCP ports, that is UDP ports 67 (server) and 68 (client) for DHCP relay services.
PAGE 650
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Not configured. CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.1.1.
PAGE 651
Defaults Command Modes 1500 bytes INTERFACE (Gigabit Ethernet and 10 Gigabit Ethernet interfaces) Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series When you enter no mtu command, FTOS reduces the ip mtu value to 1536 bytes. To return the IP MTU value to the default, enter no ip mtu. You must compensate for Layer 2 header when configuring link MTU on an Ethernet interface or FTOS may not fragment packets.
PAGE 652
www.dell.com | support.dell.com ip name-server ces Syntax Enter up to 6 IPv4 addresses of name servers. The order you enter the addresses determines the order of their use. ip name-server ipv4-address [ipv4-address2...ipv4-address6] To remove a name server, use the no ip name-server ip-address command. Parameters Defaults Command Modes Enter the IPv4 address, in dotted decimal format, of the name server to be used. ipv4-address2.. .
PAGE 653
ip redirects e Syntax Enable the interface to send ICMP redirect messages. ip redirects To return to default, enter no ip redirects. Defaults Command Modes Command History Usage Information Disabled INTERFACE Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series This command is available for physical interfaces and port-channel interfaces on the E-Series. Note: This command is not supported on default VLAN (default vlan-id command).
PAGE 654
www.dell.com | support.dell.com interface Enter the following keywords and slot/port or number information: • • • • • • • Defaults Command Modes Command History Usage Information IPv4 Routing distance (OPTIONAL) Enter a number as the distance metric assigned to the route. Range: 1 to 255 permanent (OPTIONAL) Enter the keyword permanent to specify the route is not removed, even if the interface assigned to that route goes down. The route must be up initially to install it in the routing table.
PAGE 655
Related Commands show ip route View the switch routing table. ip source-route ces Syntax Enable FTOS to forward IP packets with source route information in the header. ip source-route To drop packets with source route information, enter no ip route-source. Defaults Command Modes Command History Enabled. CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.1.1.
PAGE 656
www.dell.com | support.dell.com Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series By default this command is disabled. When enabled, all the Layer 3 unicast routed data traffic going through a VLAN member port is flooded across all the member ports of that VLAN. There might be some ARP table entries which are resolved through ARP packets which had Ethernet MAC SA different from MAC information inside the ARP packet.
PAGE 657
Usage Information By default, FTOS distributes incoming traffic based on a hash algorithm using the following criteria: • • • • Related Commands IP source address IP destination address TCP/UDP source port TCP/UDP destination port hash-algorithm ecmp load-balance (E-Series) e Syntax By default, for E-Series chassis, FTOS uses an IP 5-tuple to distribute IP traffic over members of a Port Channel as well as equal cost paths.
PAGE 658
www.dell.com | support.dell.com • • • • • IP source address IP destination address IP Protocol type TCP/UDP source port TCP/UDP destination port Note: For IPV6, only the first 32 bits (LSB) of IP Source Address and IP Destination Address are used for hash generation. The table below lists the load balance command options and how the command combinations effect the distribution of traffic. Table 25-3.
PAGE 659
Usage Information Related Commands Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series When a static route (or a protocol route) overlaps with Management static route, the static route (or a protocol route) is preferred over the Management Static route. Also, Management static routes and the Management Connected prefix are not reflected in the hardware routing tables. Separate routing tables are maintained for IPv4 and IPv6 management routes.
PAGE 660
www.dell.com | support.dell.com Command Modes Command History Usage Information Example dynamic (OPTIONAL) Enter the keyword dynamic to view dynamic entries. summary (OPTIONAL) Enter the keyword summary to view a summary of ARP entries. EXEC Privilege Version 8.2.1.0 Support 4094 VLANs on E-Series ExaScale (prior limit was 2094) Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.9.1.0 Introduced VRF on the E-Series Version 7.8.1.
PAGE 661
Figure 25-7. show arp cpu cp Command Example Force10#sho arp cpu cp Protocol Address Age(min) Hardware Address Interface VLAN CPU -------------------------------------------------------------------------------Internet 10.1.2.206 0 00:a0:80:00:15:b8 Ma 0/0 CP Internet 182.16.1.20 0 00:30:19:24:2d:70 Gi 8/0 CP Internet 100.10.10.10 0 00:30:19:4f:d3:80 Gi 8/12 CP Internet 10.1.2.209 12 00:a0:80:00:12:6c Ma 0/0 CP Force10# Table 25-4.
PAGE 662
www.dell.com | support.dell.com Syntax Command Modes show arp retries EXEC EXEC Privilege Command History Related Commands Version 8.3.1.0 Introduced arp retries Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. show hosts ces Syntax Command Modes View the host table and DNS configuration. show hosts EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
PAGE 663
Table 25-6. show hosts Command Example Fields (continued) Field Description Flags Classifies the entry as one of the following: • perm - the entry was manually configured and will not time out • temp - the entry was learned and will time out after 72 hours of inactivity. Also included in the flag is an indication of the validity of the route: • • • Related Commands ok - the entry is valid. ex - the entry expired. ?? - the entry is suspect.
PAGE 664
www.dell.com | support.dell.com Example Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 25-10. Force10#show ip cam linecard 13 port-set 0 Index Destination EC CG V C Next-Hop VId Mac-Addr Port ------ --------------- -- -- - - --------------- ---- ---------------- ------3276 6.6.6.2 0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP 3277 5.5.5.2 0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP 3278 4.4.4.2 0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP 3279 3.3.3.
PAGE 665
Example Figure 25-11. show ip cam summary Command Example Force10#show ip cam linecard 4 port-set 0 summary Total Number of Routes in the CAM is 13 Total Number of Routes which can be entered in CAM is 131072 Prefix Len Current Use ---------- ----------32 7 31 0 30 0 29 0 28 0 27 0 26 0 25 0 24 6 23 0 22 0 21 0 20 0 19 0 18 0 17 0 16 0 15 0 14 0 13 0 12 0 11 0 10 0 9 0 8 0 7 0 6 0 5 0 4 0 3 0 2 0 1 0 0 0 Force10# Table 25-8.
PAGE 666
www.dell.com | support.dell.com ip-address mask [longer-prefix] (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that route only. Enter the keyword longer-prefixes to view routes with a common prefix. summary Command Modes (OPTIONAL) Enter the keyword summary to view a table listing route prefixes and the total number routes which can be entered in to CAM. EXEC EXEC Privilege Command History Example Version 7.7.1.0 Modified: Added support for up to seven stack members.
PAGE 667
Parameters Command Mode vrf instance (OPTIONAL) E-Series Only: Enter the keyword vrf followed by the VRF INstance name to show the FIB cache entries tied to that VRF instance. slot-number Enter the number of the line card slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, 0 to 5 on a E300 ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination. You must enter the IP address is dotted decimal format (A.
PAGE 668
www.dell.com | support.dell.com Related Commands clear ip fib linecard Clear FIB entries on a specified line card. show ip fib stack-unit s Syntax Parameters Command Mode View all Forwarding Information Base (FIB) entries. show ip fib stack-unit 0-7 [ip-address [mask] [longer-prefixes] | summary] 0-7 Enter the S-Series stack unit ID, from 0 to 7. ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination.
PAGE 669
Related Commands clear ip fib linecard Clear FIB entries on a specified line card. show ip flow ces Syntax Parameters Show how a Layer 3 packet is forwarded when it arrives at a particular interface. show ip flow interface [vrf vrf instance] interface {source-ip address destination-ip address} {protocol number [tcp | udp] | icmp} {src-port number destination-port number} vrf instance E-Series Only: Show only the L3 flow as they apply to that VRF process.
PAGE 670
www.dell.com | support.dell.com S-Series produces the following error message: %Error: Unable to read IP route table C-Series produces the message: %Error: FIB cannot compute the egress port with the current trunk hash setting. Example Figure 25-15. Command Example show ip flow on E-Series Force10#show ip flow interface Gi 1/8 189.1.1.1 63.0.0.1 protocol tcp source-port 7898 destination-port 8 flow: 189.1.1.1 63.0.0.1 protocol 6 7868 8976 Ingress interface: Gi 1/20 Egress interface: Gi 1/14 to 1.7.1.
PAGE 671
Command Modes linecard slot-number (OPTIONAL) Enter the keyword linecard followed by the number of the line card slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 Note: This keyword is not available on the S-Series. configuration (OPTIONAL) Enter the keyword configuration to display the physical interfaces with non-default configurations only. EXEC EXEC Privilege Command History Example Version 8.1.1.
PAGE 672
www.dell.com | support.dell.com Figure 25-17. show ip interface brief Command Example (Partial) Force10#show ip Interface GigabitEthernet GigabitEthernet GigabitEthernet GigabitEthernet GigabitEthernet GigabitEthernet GigabitEthernet Table 25-13. int brief IP-Address 1/0 unassigned 1/1 unassigned 1/2 unassigned 1/3 unassigned 1/4 unassigned 1/5 10.10.10.
PAGE 673
Example Figure 25-18. show ip management route Command Example Force10#show ip management-route Destination ----------10.1.2.0/24 172.16.1.0/24 Gateway ------ManagementEthernet 0/0 10.1.2.4 State ----Connected Active Force10# show ipv6 management-route ce Display the IPv6 static routes configured for the management interface.
PAGE 674
www.dell.com | support.dell.com Example Figure 25-19. show ip protocols Command Example Force10#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.3 Fast-external-fallover enabled Regular expression evaluation optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0, main routing table version 0 Distance: external 20 internal 200 local 200 Neighbor(s): Address : 20.20.20.
PAGE 675
Command Modes EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.9.1.0 Introduced VRF on the E-Series Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 25-20.
PAGE 676
www.dell.com | support.dell.com Table 25-14.
PAGE 677
Related Commands Example ip prefix-list Enter the CONFIGURATION-IP PREFIX-LIST mode and configure a prefix list. show ip prefix-list summary Display a summary of the configured prefix lists. Figure 25-22.
PAGE 678
www.dell.com | support.dell.com Table 25-15. Related Commands show ip route summary Column Headings Column Heading Description Route Source Identifies how the route is configured in FTOS. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route will become the best route.
PAGE 679
Example Figure 25-24.
PAGE 680
www.dell.com | support.dell.com Table 25-16. Usage Information show ip traffic output definitions Keyword Definition ...no port broadcasts The incoming broadcast/multicast packet did not have any listener. ...socket full The applications buffer was full and the incoming packet had to be dropped. The F10 Monitoring MIB provides access to the statistics described below. Table 25-17.
PAGE 681
Command History Example Version 8.1.1.2 Introduced support for E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.0 Introduced Figure 25-25.
PAGE 682
www.dell.com | support.dell.com Command Modes Command History Example rp1 Enter the keyword rp1 to view only TCP statistics from Route Processor 1. rp2 Enter the keyword rp2 to view only TCP statistics from Route Processor 2. EXEC Privilege Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.0 Introduced Figure 25-26.
PAGE 683
Table 25-18. show tcp statistics cp Command Example Fields (continued) Field Description 10184 ack... Displays the number of acknowledgement packets and bytes received. Sent: Displays the total number of TCP packets sent and the number of urgent packets sent. 25 control packets... Displays the number of control packets sent and the number retransmitted. 11603 data packets... Displays the number of data packets sent. 24 data packets retransmitted Displays the number of data packets resent.
PAGE 684
| IPv4 Routing www.dell.com | support.dell.
PAGE 685
26 IPv6 Access Control Lists (IPv6 ACLs) Overview IPv6 ACLs and IPv6 Route Map commands are supported on platforms: c e s • • IPv6 ACL Commands IPv6 Route Map Commands Note: For IPv4 ACL commands, see Chapter 9, Access Control Lists (ACL). Important Points to Remember • • • • • • • • • • E-Series platforms require IPv6-ExtACL CAM profile to support IPv6 ACLs. C-Series platforms require manual CAM usage space allotment. Refer to cam-acl later in this document.
PAGE 686
www.dell.com | support.dell.com IPv6 ACL Commands The following commands configure IPv6 ACLs: • • • • • • • • • • • • • • • • • • • • • cam-acl clear counters ipv6 access-group deny deny icmp deny tcp deny udp ipv6 access-group ipv6 access-list permit permit icmp permit tcp permit udp remark resequence access-list resequence prefix-list ipv6 seq show cam-acl show config show ipv6 accounting access-list show running-config acl test cam-usage cam-acl ces Syntax Parameters Allocate space for IPv6 ACLs.
PAGE 687
Command Modes Command History Usage Information CONFIGURATION Version 8.4.2.0 Introduced on the E-Series TeraScale Version 8.2.1.0 Introduced on the S-Series Version 7.8.1.0 Introduced on the C-Series You must save the new CAM settings to the startup-config (write-mem or copy run start) then reload the system for the new settings to take effect. The total amount of space allowed is 16 FP Blocks. System flow requires 3 blocks and these cannot be reallocated.
PAGE 688
www.dell.com | support.dell.com 688 deny ces Syntax Configure a filter that drops IPv6 packets that match the filter criteria. deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} To remove this filter, you have two choices: • • Parameters Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command. ip-protocol-number Enter an IPv6 protocol number.
PAGE 689
deny icmp ces Syntax Configure a filter to drop all or specific ICMP messages. deny icmp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [message-type] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: • • Parameters Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny icmp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} command.
PAGE 690
www.dell.com | support.dell.com Usage Information 690 The C-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The following table lists the keywords displayed in the CLI help and their corresponding ICMP Message Type Name. Table 26-1.
PAGE 691
deny tcp ces Syntax Configure a filter that drops TCP packets that match the filter criteria.
PAGE 692
www.dell.com | support.dell.com count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation.
PAGE 693
deny udp ces Syntax Configure a filter to drop UDP packets meeting the filter criteria.
PAGE 694
www.dell.com | support.dell.com Command History Version 8.4.2.1 Introduced on the S-Series Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Version 7.4.1.0 Introduced on the E-Series TeraScale Added monitor option Usage Information The C-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM.
PAGE 695
Defaults Command Modes Command History Usage Information Example implicit-permit (OPTIONAL) Enter the keyword implicit-permit to change the default action of the IPv6 ACL from implicit-deny to implicit-permit (that is, if the traffic does not match the filters in the IPv6 ACL, the traffic is permitted instead of dropped). vlan range (OPTIONAL) Enter the keyword vlan followed by the VLAN range in a comma separated format. Range: 1 to 4094 Disabled INTERFACE Version 8.4.2.
PAGE 696
www.dell.com | support.dell.com Usage Information The number of entries allowed per ACL is hardware-dependent. Refer to your line card documentation for detailed specification on entries allowed per ACL. Related Commands show config View the current configuration. permit ce Select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP to configure a filter that match the filter criteria.
PAGE 697
host ipv6-address Enter the keyword host followed by the IPv6 address of the host in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zero.
PAGE 698
www.dell.com | support.dell.com Parameters source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter.
PAGE 699
Command History Version 8.4.2.1 Introduced on the S-Series Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Version 7.4.1.0 Introduced on the E-Series TeraScale Added monitor option Usage Information The C-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM.
PAGE 700
www.dell.com | support.dell.com Parameters source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter.
PAGE 701
For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# 1 2 3 4 5 6 7 8 Data Mask From To #Covered 0000111110100000 0000111111000000 0001000000000000 0001100000000000 0001110000000000 0001111000000000 0001111100000000 0001111101000000 1111111111100000 1111111111000000 1111100000000000 1111110000000000 1111111000000000 1111111100000000 1111111111000000 1111111111111111 4000 4032 4096 6144 7168 7680 7936 8000 4031 4095 6143 7167 7679 7935 7999 8000 32 64 2048 1024 5
PAGE 702
www.dell.com | support.dell.com remark ces Syntax Enter a description for an IPv6 ACL entry. remark remark number [description] To delete the description, use the no remark remark number command (it is not necessary to include the remark description that you are deleting). Parameters remark number Enter the remark number. Note that the same sequence number can be used for the remark and an ACL rule. Range: 0 to 4294967290 description Enter a description of up to 80 characters.
PAGE 703
resequence access-list ces Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing access-list. resequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Step-to-Increment} ipv4 |ipv6 | mac Enter the keyword ipv4, ipv6 or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list, up to 140 characters. Increased name string to accept up to 140 characters. Prior to 7.8.1.
PAGE 704
www.dell.com | support.dell.com resequence prefix-list ipv6 ces Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing prefix list. resequence prefix-list ipv6 {prefix-list-name StartingSeqNum Step-to-increment} prefix-list-name Enter the name of configured prefix list, up to 140 characters. Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. StartingSeqNum Enter the starting sequence number to resequence.
PAGE 705
seq ces Syntax Assign a sequence number to a deny or permit filter in an IPv6 access list while creating the filter. seq sequence-number {deny | permit} {ipv6-protocol-number | icmp | ip | tcp | udp} {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [operator port [port]] [count [byte]] | [log] [monitor] To delete a filter, use the no seq sequence-number command. Parameters sequence-number Enter a number from 0 to 4294967290.
PAGE 706
www.dell.com | support.dell.com destination address Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zero. message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type. Range: 0 to 255 for ICMP type; 0 to 255 for ICMP code count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
PAGE 707
show cam-acl ces Syntax Command Modes Show space allocated for IPv6 ACLs. show cam-acl EXEC EXEC Privileged Command History Related Commands Examples Version 8.4.2.1 Introduced on the S-Series Version 8.4.2.0 Introduced on the E-Series TeraScale Version 7.8.1.0 Introduced on the C-Series cam-acl Figure 26-3.
PAGE 708
www.dell.com | support.dell.com show config ces Syntax View the current IPv6 ACL configuration. show config Command Modes ACCESS-LIST Command History Version 8.4.2.1 Introduced on the S-Series Version 8.4.2.0 Introduced on the E-Series TeraScale Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Introduced on the C-Series Example Figure 26-5.
PAGE 709
Example Version 7.8.1.0 Introduced on the C-Series Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.4.1.0 Introduced on the E-Series TeraScale Figure 26-6.
PAGE 710
www.dell.com | support.dell.com test cam-usage ces Syntax Parameters Verify that enough ACL CAM space is available for the IPv6 ACLs you have created. test cam-usage service-policy input input policy name linecard {number | all} policy-map name Enter the name of the policy-map to verify. number Enter all to get information for all the line cards, or enter the line card number to get information for a specific card.
PAGE 711
Example Figure 26-8. The following example shows the output shown when using the test cam-usage command.
PAGE 712
www.dell.com | support.dell.com IPv6 Route Map Commands The following commands allow you to configure route maps and their redistribution criteria. • • • • • • • match ipv6 address match ipv6 next-hop match ipv6 route-source route-map set ipv6 next-hop show config show route-map match ipv6 address ces Syntax Configure a filter to match routes based on IPv6 addresses specified in an access list. match ipv6 address prefix-list-name To delete a match, use the no match ipv6 address prefix-list-name command.
PAGE 713
Defaults Not configured. Command Modes ROUTE-MAP Command History Version 8.4.2.1 Introduced on the S-Series Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.4.1.0 Introduced support on the E-Series TeraScale Related Commands match ipv6 address Redistribute routes that match an IP address.
PAGE 714
www.dell.com | support.dell.com route-map ces Syntax Designate a IPv6 route map name and enter the ROUTE-MAP mode. route-map map-name To delete a route map, use the no route-map map-name command. Parameters map-name Enter a text string to name the route map, up to 140 characters. Defaults Not configured Command Modes ROUTE-MAP Command History Version 8.4.2.1 Introduced on the S-Series Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.
PAGE 715
Command History Usage Information Version 8.4.2.1 Introduced on the S-Series Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.0 Introduced support on the E-Series TeraScale The set ipv6 next-hop command is the only way to set an IPv6 Next-Hop. show config ces View the current route map configuration. Syntax show config Command Modes ROUTE-MAP Command History Version 8.4.2.1 Introduced on the S-Series Version 8.2.
PAGE 716
www.dell.com | support.dell.com Example 716 Figure 26-11. Command Example: show route-map Force10#show route-map ! route-map Rmap1, permit, sequence 10 Match clauses: ip address: v4plist ipv6 address: plist1 ipv6 next-hop prefix-lists: plist2 ipv6 route-source prefix-lists: plist3 Set clauses: next-hop 1.1.1.1 ipv6 next-hop 3333:2222:: Related Commands | route-map IPv6 Access Control Lists (IPv6 ACLs) Configure a route map.
PAGE 717
27 IPv6 Basics Overview IPv6 Basic Commands are supported on platforms: c e s Note: Basic IPv6 basic commands are supported on all platforms. See Table 23-2 on page 506 in Chapter 23, IPv6 Addressing for information on the FTOS version and platform that supports IPv6 in each software feature.
PAGE 718
www.dell.com | support.dell.com clear ipv6 fib ces Syntax Parameters Command Mode Command History Clear (refresh) all FIB entries on a linecard. clear ipv6 fib linecard slot slot Enter the slot number to clear the FIB for a linecard. EXEC Privilege Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.4.1.
PAGE 719
Command History Example Version 8.4.1.0 Support added on the management Ethernet port. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series TeraScale Figure 27-1.
PAGE 720
www.dell.com | support.dell.com 720 ipv6 host ces Syntax Parameters Defaults Command Modes Command History | IPv6 Basics Assign a name and IPv6 address to be used by the host-to-IP address mapping table. ipv6 host name ip-address name Enter a text string to associate with one IP address. ipv6-address Enter an IPv6 address (X:X:X:X::X) to be mapped to the name. Not configured. CONFIGURATION Version 8.4.2.1 Introduced on the C-Series and S-Series Version 8.4.1.
PAGE 721
ipv6 nd prefix-advertisement ces Syntax Parameters Specify which IPv6 prefixes are include in Neighbor Advertisements. By default, all prefixes configured as addresses on the interface are advertised. This command allows control over the individual parameters per prefix; the default keyword can be used to use the default parameters for all prefixes.
PAGE 722
www.dell.com | support.dell.com ipv6 route ces Syntax Establish a static IPv6 route. ipv6 route ipv6-address prefix-length {interface | ipv6-address} [distance] [tag value] [permanent] To remove the IPv6 route, use the no ipv6 route ipv6-address prefix-length {interface | ipv6-address} [distance] [tag value] [permanent] command. Parameters ipv6-address prefix-length Enter the IPv6 destination address in the x:x:x:x::x format followed by the prefix length in the /x format.
PAGE 723
Example Figure 27-2.
PAGE 724
www.dell.com | support.dell.com ipv6 unicast-routing ces Syntax Enable IPv6 Unicast routing. ipv6 unicast-routing To disable unicast routing, use the no ipv6 unicast-routing command. Defaults Command Modes Enabled CONFIGURATION Command History Usage Information Version 8.4.2.1 Introduced on S-Series Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series Version 7.4.1.
PAGE 725
show ipv6 cam linecard ces Syntax Parameters Defaults Command Modes Displays the IPv6 CAM entries for the specified line card. show ipv6 cam linecard slot-number port-set {0-1} [summary | index | ipv6 address] slot-number Enter the line card slot ID number. Range: 0 to 13 on the E1200; 0 on 6 for E600, and 0 to 5 on the E300.
PAGE 726
www.dell.com | support.dell.com Examples Figure 27-3.
PAGE 727
show ipv6 cam stack-unit ces Syntax Parameters Defaults Command Modes Displays the IPv6 CAM entries for the specified stack-unit. show ipv6 cam stack-unit unit-number port-set {0-1} [summary | index | ipv6 address] unit-number Enter the stack unit’s ID number. Range: 0 to 7 port-set Enter the Port Set to summary (OPTIONAL) Enter the keyword summary to display a table listing network prefixes and the total number prefixes which can be entered into the IPv6 CAM.
PAGE 728
www.dell.com | support.dell.com show ipv6 fib linecard ce View all Forwarding Information Base entries. Syntax show ipv6 fib linecard slot-number {summary | ipv6-address} Parameters Command Mode slot-number Enter the number of the line card slot. E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300 summary (OPTIONAL) Enter the keyword summary to view a summary of entries in IPv6 cam.
PAGE 729
show ipv6 interface ces Syntax Parameters Display the status of interfaces configured for IPv6.
PAGE 730
www.dell.com | support.dell.com Example Figure 27-5.
PAGE 731
show ipv6 route ces Syntax Parameter Displays the IPv6 routes. show ipv6 route [ipv6-address prefix-length] [hostname] [all] [bgp as number] [connected] [isis tag] [list prefix-list name] [ospf process-id] [rip] [static] [summary] ipv6-address prefix-length (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128. The :: notation specifies successive hexadecimal fields of zeros.
PAGE 732
www.dell.com | support.dell.com Example 732 Figure 27-9. Command Example: show ipv6 route summary Force10#show ipv6 route summary Route Source Active Routes connected 5 static 0 Total 5 Total 5 active route(s) using 952 bytes Table 27-1.
PAGE 733
trust ipv6-diffserv ces Syntax Allows the dynamic classification of IPv6 DSCP. trust ipv6-diffserv To remove the definition, use the no trust ipv6-diffserv command. Defaults Command Modes Command History Usage Information This command has no default behavior or values. CONFIGURATION-POLICY-MAP-IN Version 8.4.2.1 Introduced on C-Series and S-Series Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
PAGE 734
| IPv6 Basics www.dell.com | support.dell.
PAGE 735
28 IPv6 Border Gateway Protocol (IPv6 BGP) Overview IPv6 Border Gateway Protocol (IPv6 BGP) is supported on platforms: e c This chapter includes the following commands: • • IPv6 BGP Commands IPv6 MBGP Commands IPv6 BGP Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths.
PAGE 736
www.dell.com | support.dell.
PAGE 737
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • neighbor update-source neighbor weight network network backdoor redistribute redistribute isis redistribute ospf router bgp show capture bgp-pdu neighbor show config show ip bgp ipv6 unicast show ip bgp ipv6 unicast cluster-list show ip bgp ipv6 unicast community show ip bgp ipv6 unicast community-list show ip bgp ipv6 unicast dampened-paths show ip bgp ipv6 unicast detail show ip bgp ipv6 unicast extcommunity-list show ip bgp ipv6 unicast filter-
PAGE 738
www.dell.com | support.dell.com Command History Usage Information . Version 8.4.2.1 Introduced on C-Series and S4810. Version 6.5.1.0 Introduced on E-Series TeraScale Enter ipv6 unicast to enter the BGP for IPv6 mode (CONF-ROUTER_BGPv6_AF). aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table.
PAGE 739
In route maps used in the suppress-map parameter, routes meeting the deny clause are not suppress; in other words, they are allowed. The opposite is true: routes meeting the permit clause are suppressed. If the route is injected via the network command, that route will still appear in the routing table if the summary-only parameter is configured in the aggregate-address command. The summary-only parameter suppresses all advertisements.
PAGE 740
www.dell.com | support.dell.com Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path. bgp bestpath med confed Enable MULTI_EXIT_DISC (MED) attribute comparison on paths learned from BGP confederations. ce Syntax bgp bestpath med confed To disable MED comparison on BGP confederation paths, enter no bgp bestpath med confed.
PAGE 741
bgp client-to-client reflection Allows you to enable route reflection between clients in a cluster. ce Syntax bgp client-to-client reflection To disable client-to-client reflection, enter no bgp client-to-client reflection. Defaults Enabled when a route reflector is configured. Command Modes ROUTER BGP Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
PAGE 742
www.dell.com | support.dell.com Related Commands bgp client-to-client reflection Enable route reflection between route reflector and clients. neighbor route-reflector-client Configure a route reflector and clients. show ip bgp ipv6 unicast cluster-list View paths with a cluster ID. bgp confederation identifier Configure an identifier for a BGP confederation.
PAGE 743
Command Modes ROUTER BGP Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Information The Autonomous Systems configured in this command are visible to the EBGP neighbors. Each Autonomous System is fully meshed and contains a few connections to other Autonomous Systems.
PAGE 744
www.dell.com | support.dell.com Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale If you enter bgp dampening, the default values for half-life, reuse, suppress, and max-suppress-time are applied.
PAGE 745
Command Modes Usage Information ROUTER BGP This is enabled by default, that is for all updates received from EBGP peers, BGP ensures that the first AS of the first AS segment is always the AS of the peer. If not, the update is dropped and a counter is incremented. Use the show ip bgp ipv6 unicast neighbors command to view the “failed enforce-first-as check counter. If enforce-first-as is disabled, it can be viewed via the show ip protocols command.
PAGE 746
www.dell.com | support.dell.com Usage Information Routers supporting 4-Byte ASNs advertise that function in the OPEN message. The behavior of a 4-Byte router will be slightly different depending on whether it is speaking to a 2-Byte router or a 4-Byte router. When creating Confederations, all the routers in the Confederation must be 4 or 2 byte identified routers. You cannot mix them. Where the 2-Byte format is 1-65535, the 4-Byte format is 1-4294967295.
PAGE 747
bgp log-neighbor-changes Enable logging of BGP neighbor resets. ce Syntax bgp log-neighbor-changes To disable logging, enter no bgp log-neighbor-changes. Defaults Enabled Command Modes ROUTER BGP Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Information Related Commands The bgp log-neighbor-changes command appears in the show config command output.
PAGE 748
www.dell.com | support.dell.com bgp recursive-bgp-next-hop Enable next-hop resolution through other routes learned by BGP. ce Syntax bgp recursive-bgp-next-hop To disable next-hop resolution, use the no bgp recursive-bgp-next-hop command. Defaults Command Modes Usage Information Enabled ROUTER BGP This command is a knob to disable BGP next-hop resolution via BGP learned routes.
PAGE 749
Related Commands Command History show ip protocols View information on all routing protocols enabled and active on the E-Series. Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale bgp router-id Assign a user-given ID to a BGP router. ce Syntax bgp router-id ip-address To delete a user-assigned IP address, enter no bgp router-id.
PAGE 750
www.dell.com | support.dell.com Related Commands Command History clear ip bgp ipv6 unicast soft in Activate inbound policies for IPv6 routes without resetting the BGP TCP session. Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast address families Version 7.8.1.0 Introduced support on S4810 Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced on E-Series TeraScale capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet.
PAGE 751
Command Modes EXEC EXEC Privilege Command History Related Commands Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. show capture bgp-pdu neighbor Configure a route reflector and clients. clear ip bgp * (asterisk) Reset all BGP sessions in the specified category on the E-Series.
PAGE 752
www.dell.com | support.dell.com Parameters as-number Enter an autonomous system (AS) number to reset neighbors belonging to that AS. If used without a qualifier, the keyword resets all neighbors belonging to that AS. Range: 1 to 65535 flap-statistics (OPTIONAL) Enter the keyword flap-statistics to clear all flap statistics belonging to that AS or a specified address family within that AS. ipv4 (OPTIONAL) Enter the keyword ipv4 to select options for that address family.
PAGE 753
multicast (OPTIONAL) Enter the keyword multicast to select the multicast option within the selected address family. Multicast is supported on IPv4 only soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session, that is, BGP Soft Reconfiguration. Note: If you enter clear ip bgp ip6-address soft, both inbound and outbound policies are reset. Command Modes Command History in (OPTIONAL) Enter the keyword in to activate only inbound policies.
PAGE 754
www.dell.com | support.dell.com Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale After you enter this command, the software deletes history routes and returns suppressed routes to active state. clear ip bgp ipv6 flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap.
PAGE 755
clear ip bgp ipv6 unicast soft c et Syntax Parameters Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6-neighbor-addr | peer-group name} ipv6 unicast soft [in | out] * Clear and reapply policies for all BGP sessions. as-number Clear and reapply policies for all neighbors belonging to the AS. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.
PAGE 756
www.dell.com | support.dell.com Command Modes Command History Usage Information in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. EXEC Privilege Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
PAGE 757
Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Enter the no debug ip bgp command to remove all configured debug commands for BGP. debug ip bgp ipv6 dampening View information on IPv6 routes being dampened. ce Syntax debug ip bgp ipv6 unicast dampening [in | out] To disable debugging, enter no debug ip bgp ipv6 unicast dampening.
PAGE 758
www.dell.com | support.dell.com Command Modes Usage Information Command History EXEC Privilege This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no neighbor is specified, debug is turned on for all neighbors. Version 8.4.1.0 Added support for IPv4 multicast and IPv6 unicast routes Version 7.8.1.0 Introduced support on S4810 Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.
PAGE 759
To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out] command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information peer-group peer-group-name (OPTIONAL) Enter the keyword peer-group followed by the name of the peer group.
PAGE 760
www.dell.com | support.dell.com Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Enter the no debug ip bgp command to remove all configured debug commands for BGP. default-metric Allows you to change the metrics of redistributed routes to locally originated routes. Use this command with the redistribute command.
PAGE 761
Command History Related Commands Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale router bgp Enter ROUTER mode on the switch. distance bgp Configure three administrative distances for routes. ce Syntax distance bgp external-distance internal-distance local-distance To return to default values, enter no distance bgp.
PAGE 762
www.dell.com | support.dell.com Syntax maximum-paths {ebgp | ibgp} number To return to the default values, enter no maximum-paths. Parameters Defaults Command Modes Command History Usage Information ebgp Enter the keyword ebgp to enable multipath support for External BGP routes. ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes. number Enter a number as the maximum number of parallel paths. Range: 1 to 16 Default: 1 1 ROUTER BGPV6-ADDRESS FAMILY Version 8.4.2.
PAGE 763
neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. ce Syntax neighbor {ipv6-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ipv6-address | peer-group-name} advertisement-interval command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
PAGE 764
www.dell.com | support.dell.com Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale neighbor default-originate Inject the default route to a BGP peer or neighbor. ce Syntax neighbor {ipv6-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ipv6-address | peer-group-name} default-originate [route-map map-name] command.
PAGE 765
Command Modes ROUTER BGP Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale neighbor distribute-list Distribute BGP information via an established prefix list.
PAGE 766
www.dell.com | support.dell.com Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros. Defaults peer-group-name Enter the name of the peer group. ttl (OPTIONAL) Enter the number of hops as the Time to Live (ttl) value. Range: 1 to 255. Default: 255 Disabled. Command Modes ROUTER BGP Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.
PAGE 767
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. ce Syntax neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} To delete a BGP filter, use the no neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
PAGE 768
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Related Commands threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the E-Series software sends a message. Range: 1 to 100 percent. Default: 75 warning-only (OPTIONAL) Enter the keyword warning-only to set the router to send a log message when the maximum value is reached.
PAGE 769
neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP). ce Syntax neighbor {ipv6-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ipv6-address | peer-group-name} next-hop-self command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
PAGE 770
www.dell.com | support.dell.com Usage Information You can assign up to 64 peers to one peer group. When you add a peer to a peer group, it inherits all the peer group’s configured parameters.
PAGE 771
neighbor remote-as Assign a indirectly connected AS to a neighbor or peer group. neighbor shutdown Disable a peer or peer group. neighbor peer-group passive Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message, but will respond to one. ce Syntax neighbor peer-group-name peer-group passive To delete a passive peer-group, use the no neighbor peer-group-name peer-group passive command.
PAGE 772
www.dell.com | support.dell.com Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale If the number parameter is the same as the AS number used in the router bgp command, the remote AS entry in the neighbor is considered an internal BGP peer entry. This command creates a peer and the newly created peer is disabled (shutdown).
PAGE 773
Syntax neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} To remove the route map, use the no neighbor {ipv6-address | peer-group-name} route-map map-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History Usage Information peer-group-name Enter the name of the peer group. map-name Enter the name of an established route map.
PAGE 774
www.dell.com | support.dell.com Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale The first time you enter this command it configures the neighbor as a route reflector and members of the route-reflector cluster. Internal BGP (IBGP) speakers do not need to be fully meshed if you configure a route reflector.
PAGE 775
Defaults Enabled (that is, BGP neighbors and peer groups are disabled.) Command Modes ROUTER BGP Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Usage Information Peers that are enabled within a peer group are disabled when their peer group is disabled. The neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer group.
PAGE 776
www.dell.com | support.dell.com neighbor subnet Enable passive peering so that the members of the peer group are dynamic ce Syntax neighbor peer-group-name subnet subnet-number mask To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group. To allow all addresses, enter 0::0/0.
PAGE 777
Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Timer values configured with the neighbor timers command override the timer values configured with the timers bgp command.
PAGE 778
www.dell.com | support.dell.com neighbor weight Assign a weight to the neighbor connection, which is used to determine the best path. ce Syntax neighbor {ipv6-address | peer-group-name} weight weight To remove a weight value, use the no neighbor {ipv6-address | peer-group-name} weight weight command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
PAGE 779
mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ipv6 address • match ipv6 next-hop • match ipv6 route-source • set ipv6 next-hop If the route map is not configured, the default is deny (to drop all routes).
PAGE 780
www.dell.com | support.dell.com Usage Information Though FTOS does not generate a route due to backdoor config, there is an option for injecting/ sourcing a local route in presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP. ce Syntax redistribute {connected | static} [route-map map-name] To disable redistribution, use the no redistribution {connected | static} command.
PAGE 781
Parameters level-1 | level-1-2 | level-2] (OPTIONAL) Enter the type (level) of routes to redistribute. metric (OPTIONAL) Assign metric to an interface for use with IPv6 information metric-type (OPTIONAL) The external link type associated with the default route advertised into a routing domain. You must specify one of the following: • • route-map map-name external internal (Default) (OPTIONAL) Enter the keyword route-map followed by the name of an established route map.
PAGE 782
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Not configured. ROUTER BGPV6-ADDRESS FAMILY Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale When you enter redistribute ospf process-id command without any other parameters, FTOS redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes.
PAGE 783
Related Commands capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet. capture bgp-pdu max-buffer-size Specify a size for the capture buffer. show config View the current ROUTER BGP configuration. ce Syntax Command Modes Example show config ROUTER BGPV6-ADDRESS FAMILY Figure 28-1.
PAGE 784
www.dell.com | support.dell.com Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale When you enable bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster.
PAGE 785
Command Modes EXEC EXEC Privilege Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale To view the total number of COMMUNITY attributes found, use the show ip bgp ipv6 unicast summary command. The text line above the route table states the number of COMMUNITY attributes found.
PAGE 786
www.dell.com | support.dell.com show ip bgp ipv6 unicast detail Display BGP internal information for IPv6 Unicast address family. ce Syntax Defaults Command Modes show ip bgp ipv6 unicast detail none EXEC EXEC Privilege Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp ipv6 unicast extcommunity-list View information on all routes with Extended Community attributes.
PAGE 787
Command Modes EXEC EXEC Privilege Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes.
PAGE 788
www.dell.com | support.dell.com Command Modes 788 | EXEC EXEC Privilege Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
PAGE 789
show ip bgp ipv6 unicast neighbors Displays information on IPv6 unicast routes exchanged by BGP neighbors. ce Syntax Parameters Command Modes show ip bgp ipv6 unicast neighbors [ipv4-neighbor-addr | ipv6-neighbor-addr] [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [network-mask]] | denied-routes [network [network-mask]]] ipv6 unicast Enter the ipv6 unicast keywords to view information only related to IPv6 unicast routes.
PAGE 790
www.dell.com | support.dell.com Example 1 Figure 28-2. Command Example: show ip bgp ipv6 unicast neighbors Force10#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
PAGE 791
Table 28-1. Command Example fields: show ip bgp ipv6 unicast neighbors Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal; otherwise the link is external. BGP version Displays the BGP version (always version 4) and the remote router ID.
PAGE 792
www.dell.com | support.dell.com show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. ce Syntax Parameters Command Modes show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view peer-group-specific information for the IPv6 address family.
PAGE 793
show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections. ce Syntax Command Modes show ip bgp ipv6 unicast summary EXEC EXEC Privilege Command History Example Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale Figure 28-4. show ip bgp summary Command Example Force10# show ip bgp summary BGP router identifier 55.55.55.
PAGE 794
www.dell.com | support.dell.com Example Figure 28-5. show ip bgp next-hop Command Example Force10#show ip bgp next-hop Next-hop Via 9000::5:2 9000::5:2, Gi 9000::6:2 9000::6:2, Gi 9000::7:2 9000::7:2, Gi 9000::8:2 9000::8:2, Gi 9000::9:2 9000::9:2, Gi 9000::a:2 9000::a:2, Gi Force10# 8/38 8/38 8/38 8/38 8/38 8/38 Cost 0 0 0 0 0 0 Flaps 0 0 0 0 0 0 Time Elapsed 00:23:22 00:23:22 00:23:22 00:23:22 00:23:16 00:23:22 show ip bgp paths View all the BGP path attributes in the BGP database.
PAGE 795
Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. ce Syntax Command Modes show ip bgp paths community EXEC EXEC Privilege Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.4.1.
PAGE 796
www.dell.com | support.dell.com Parameters regular-expression [character] Enter a regular expression then use one or a combination of the following characters to match: • • • • • • • Command Modes . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
PAGE 797
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). FTOS MBGP is implemented as per IETF RFC 1858.
PAGE 798
www.dell.com | support.dell.com To remove SAFI context, use the no address family ipv6 unicast command. Parameters Defaults Command Modes Command History Usage Information ipv6 Enter the keyword ipv6 to specify the address family as IPv6. unicast Enter the keyword unicast to specify multicast as SAFI. IPv6 Unicast ROUTER BGPV6-ADDRESS FAMILY Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.
PAGE 799
Command History Usage Information Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.0 Introduced on E-Series TeraScale At least one of the routes included in the aggregate address must be in the BGP routing table for the configured aggregate to become active. Do not add the as-set parameter to the aggregate. If routes within the aggregate are constantly changing, the aggregate will flap to keep track of the changes in the AS_PATH.
PAGE 800
www.dell.com | support.dell.com Syntax Parameters clear ip bgp ipv6 unicast * ipv6-address prefix-length [dampening | flap-statistics] peer-group] * Enter the character * to clear all peers. ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format.
PAGE 801
Command Modes Command History filter-list list (OPTIONAL) Enter the keyword filter-list followed by the name of a configured AS-PATH list (max 16 characters). regexp regexp (OPTIONAL) Enter the keyword regexp followed by regular expressions. Use one or a combination of the following: .
PAGE 802
www.dell.com | support.dell.com Command Modes Command History in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. EXEC Privilege Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.0 Introduced on E-Series TeraScale debug ip bgp ipv6 unicast updates View information about BGP updates.
PAGE 803
Parameters Defaults Command Modes Command History external-distance Enter a number to assign to routes learned from a neighbor external to the AS. Range: 1 to 255. Default: 20 internal-distance Enter a number to assign to routes learned from a router within the AS. Range: 1 to 255. Default: 200 local-distance Enter a number to assign to routes learned from networks listed in the network command. Range: 1 to 255. Default: 200 external-distance = 20; internal-distance = 200; local-distance = 200.
PAGE 804
www.dell.com | support.dell.com Usage Information By default, when a neighbor/peer group configuration is created in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI. Related Commands address family Changes the context to SAFI neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
PAGE 805
Defaults Command Modes Command History Not configured. ROUTER BGPV6-ADDRESS FAMILY Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.0 Introduced on E-Series TeraScale neighbor distribute-list Distribute BGP information via an established prefix list.
PAGE 806
www.dell.com | support.dell.com Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. access-list-name Enter the name of an established AS-PATH access list. If the AS-PATH access list is not configured, the default is permit (to allow routes).
PAGE 807
neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. ce Syntax neighbor ipv6-address | peer-group-name next-hop-self To return to the default setting, use the no neighbor ipv6-address | peer-group-name next-hop-self command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
PAGE 808
www.dell.com | support.dell.com neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group. ce Syntax neighbor ipv6-address | peer-group-name route-map map-name [in | out] To remove the route map, use the no neighbor [ipv6-address | peer-group-name] route-map map-name [in | out] command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zeros.
PAGE 809
Command Modes Command History Usage Information ROUTER BGPV6-ADDRESS FAMILY Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.0 Introduced on E-Series TeraScale The first time you enter this command it configures the neighbor as a route reflector and members of the route-reflector cluster. Internal BGP (IBGP) speakers do not need to be fully meshed if you configure a route reflector. When all clients of a route reflector are disabled, the neighbor is no longer a route reflector.
PAGE 810
www.dell.com | support.dell.com redistribute Redistribute routes into BGP. ce Syntax redistribute [connected | static] [route-map map-name] To disable redistribution, use the no redistribution [connected | static] [route-map map-name] command. Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes.
PAGE 811
Command Modes EXEC EXEC Privilege Command History Example Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.0 Introduced on E-Series TeraScale Figure 28-6. show ip bgp ipv6 unicast Force10#show ip bgp ipv6 unicast BGP table version is 8, local router ID is 5.5.10.
PAGE 812
www.dell.com | support.dell.com show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster. ce Syntax Parameters Command Modes show ip bgp ipv6 unicast cluster-list [cluster-id] cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. EXEC EXEC Privilege Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.
PAGE 813
show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list. ce Syntax Parameters Command Modes show ip bgp ipv6 unicast community-list community-list-name community-list-name Enter the name of a configured IP community list. EXEC EXEC Privilege Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.0 Introduced on E-Series TeraScale show ip bgp ipv6 unicast dampened-paths View BGP routes that are dampened (non-active).
PAGE 814
www.dell.com | support.dell.com Example Figure 28-7.
PAGE 815
Parameters ipv6-address prefix-length (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zeros. filter-list as-path-name (OPTIONAL) Enter the keyword filter-list followed by the name of a configured AS-PATH ACL. regexp regular-expression Enter a regular expression then use one or a combination of the following characters to match: • • • • • • • Command Modes .
PAGE 816
www.dell.com | support.dell.com show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating Autonomous System (AS) numbers, that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. ce Syntax Command Modes show ip bgp ipv6 unicast inconsistent-as EXEC EXEC Privilege Command History Version 8.4.2.1 Introduced on C-Series and S4810. Version 7.4.1.
PAGE 817
Example Figure 28-9. show ip bgp ipv6 unicast neighbors Command Example (Partial) Force10#show ip bgp ipv6 unicast neighbors BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
PAGE 818
www.dell.com | support.dell.com Table 28-3. show ip bgp neighbors Command Fields Lines beginning with Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one. If they are located in the same AS, then the link is internal; otherwise the link is external. BGP version Displays the BGP version (always version 4) and the remote router ID.
PAGE 819
show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. ce Syntax Parameters Command Modes show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
PAGE 820
www.dell.com | support.dell.com 820 Table 28-4. | show ip bgp summary Command Fields Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries and route paths and the amount of memory used to process those entries.
PAGE 821
29 Intermediate System to Intermediate System (IS-IS) Overview Intermediate System to Intermediate System Protocol (IS-IS) for IPv4 and IPv6is supported only on the E-Series platform, as indicated by the e character under each command heading. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system.
PAGE 822
www.dell.com | support.dell.
PAGE 823
• • • • • • • • show isis database show isis graceful-restart detail show isis hostname show isis interface show isis neighbors show isis protocol show isis traffic spf-interval adjacency-check e Syntax Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router. adjacency-check To disable adjacency check, use the no adjacency-check command.
PAGE 824
www.dell.com | support.dell.com Command Modes ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command History Usage Information Version 7.5.1.0 Introduced IPv6 ISIS support Version 6.3.1.0 Introduced You cannot disable leaking from one level to another, however you can regulate the rate flow from one level to another via an IP Prefix list. If the IP Prefix list is not configured, all routes are leaked.
PAGE 825
Command Modes Usage Information Related Commands ROUTER ISIS Use caution when you enter this command. Back up your configuration prior to using this command or your IS-IS configuration will be erased. copy Use this command to save the current configuration to another location. clear isis e Syntax Parameters Command Modes Restart the IS-IS process. All IS-IS data is cleared. clear isis [tag] {* | database | traffic} tag (Optional) Enter an alphanumeric string to specify the IS-IS routing tag area.
PAGE 826
www.dell.com | support.dell.com To disable debugging of IS-IS, enter no debug isis. Command Modes Usage Information EXEC Privilege Entering debug isis enables all debugging parameters. Use this command to display all debugging information in one output. To turn off debugging, you normally enter separate no forms of each command. Enter the no debug isis command to disable all debug messages for IS-IS at once.
PAGE 827
Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • Command Modes For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 828
www.dell.com | support.dell.com debug isis update-packets e Syntax Enable debugging on Link State PDUs (LSPs) that are detected by a router. debug isis update-packets [interface] To turn off debugging, enter the no debug isis update-packets [interface] command. Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 829
Usage Information When you use this command to redistribute routes into a routing domain, the router becomes an autonomous system (AS) boundary router. An AS boundary router does not always generate a default route into a routing domain. The router still requires its own default route before it can generate one. How a metric value assigned to a default route is advertised depends on how on the configuration of the metric-style command.
PAGE 830
www.dell.com | support.dell.com Parameters Defaults Command Modes weight The administrative distance value indicates the reliability of a routing information source. Range: 1 to 255. (A higher relative value indicates lower reliability. Routes with smaller values are given preference.) Default: 115 ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and enter a mask in either dotted decimal or /prefix format. prefix-list (OPTIONAL) Enter the name of a prefix list name.
PAGE 831
Command History Related Commands Version 7.5.1.0 Introduced IPv6 ISIS support Version 6.3.1.0 Introduced distribute-list out Suppress networks from being advertised in updates. redistribute Redistributes routes from one routing domain to another routing domain. distribute-list out e Syntax Suppress network prefixes from being advertised in outbound updates.
PAGE 832
www.dell.com | support.dell.com Syntax distribute-list redistributed-override in To return to the default, use the no distribute-list redistributed-override in command. Defaults Command Modes No default behavior or values ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command History Usage Information Version 7.8.1.0 Introduced IPv6 ISIS support Version 6.3.1.
PAGE 833
Parameters Defaults ietf Default is Graceful Restart disabled Command Modes ROUTER ISIS Command History Version 8.3.1.0 Usage Information Enter ietf to enable Graceful Restart on the IS-IS router. Introduced on the E-Series A Restart TLV included in every Graceful Restart enabled router’s HELLO PDUs. This enables the (re)starting as well as the existing ISIS peers to detect the GR capability of the routers on the connected network.
PAGE 834
www.dell.com | support.dell.com Parameters Defaults interval Enter the keyword interval to set the wait time. Range: 5-120 seconds Default: 5 seconds retry-times Enter the keyword retry-times to set the number of times the request interval is extended until a CSNP is received from the helping router. Range: 1-10 attempts Default: 1 see above Command Modes ROUTER ISIS Command History Version 8.3.1.
PAGE 835
Parameters adjacency Enter the keyword adjacency so that the restarting router receives the remaining time value from its peer and adjusts its T3 value accordingly if user has configured this option. Enter the keyword manual to specify a time value that the restarting router uses. Range: 50-120 seconds default: 30 seconds manual Defaults manual, 30 seconds Command Modes ROUTER ISIS Command History Version 8.3.1.
PAGE 836
www.dell.com | support.dell.com hello padding e Syntax Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs. hello padding [multi-point | point-to-point] To return to default, use no hello padding [multi-point | point-to-point]. Parameters Defaults Command Modes Usage Information Related Commands multi-point (OPTIONAL) Enter the keyword multi-point to pad only LAN hello PDUs.
PAGE 837
Defaults Command Modes Usage Information In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsp-errors). ROUTER ISIS IS-IS normally purges LSPs with an incorrect data link checksum, causing the LSP source to regenerate the message. A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption. This could cause disruption to your system operation.
PAGE 838
www.dell.com | support.dell.com Usage Information You must configure a network entity title (the net command) to specify the area address and the router system ID. You must enable routing on one or more interfaces to establish adjacencies and establish dynamic routing. Only one IS-IS routing process can be configured to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time.
PAGE 839
Parameters Defaults Command Modes Usage Information seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. Range: 0 to 65535 Default: 10 level-1 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 1. level-2 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 2.
PAGE 840
www.dell.com | support.dell.com isis hello-multiplier e Syntax Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down. isis hello-multiplier multiplier [level-1 | level-2] To return to the default values, enter no isis hello-multiplier [multiplier] [level-1 | level-2]. Parameters Defaults Command Modes Usage Information Related Commands multiplier Specifies an integer that sets the multiplier for hello holding time.
PAGE 841
isis ipv6 metric e Syntax Assign metric to an interface for use with IPv6 information. isis ipv6 metric default-metric [level-1 | level-2] To return to the default values, enter no ipv6 isis metric [default-metric] [level-1 | level-2] command. Parameters Defaults Command Modes Command History Usage Information default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations.
PAGE 842
www.dell.com | support.dell.com Command Modes Usage Information INTERFACE Dell Force10 recommends configuring metrics on all interfaces. Without configuring this command, the IS-IS metrics are similar to hop-count metrics. isis network point-to-point e Syntax Enable the software to treat a broadcast interface as a point-to-point interface. isis network point-to-point To disable the feature, enter no isis network point-to-point. Defaults Command Modes Not enabled.
PAGE 843
isis priority e Syntax Set priority of the designated router you select. isis priority value [level-1 | level-2] To return to the default values, enter the no isis priority [value] [level-1 | level-2] command. Parameters Defaults Command Modes Usage Information value This value sets the router priority. The higher the value, the higher the priority. Range: 0 to 127 Default: 64 level-1 (OPTIONAL) Specify the priority for Level 1. This is the default.
PAGE 844
www.dell.com | support.dell.com log-adjacency-changes e Syntax Generate a log messages for adjacency state changes. log-adjacency-changes To disable this function, enter no log-adjacency-changes. Defaults Command Modes Usage Information Adjacency changes are not logged. ROUTER ISIS This command enables you to monitor adjacency state changes, which is useful when you monitor large networks. Messages are logged in the system error message facility.
PAGE 845
Usage Information LSP throttling slows down the frequency at which LSPs are generated during network instability. Even though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of LSP generations until the topology regains its stability.
PAGE 846
www.dell.com | support.dell.com Defaults 900 seconds Command Modes ROUTER ISIS Command History Version 7.5.1.0 Usage Information Expanded to support LSP Throttling Enhancement The refresh interval determines the rate at which route topology information is transmitted preventing the information from becoming obsolete. The refresh interval must be less than the LSP lifetime specified with the max-lsp-lifetime command.
PAGE 847
Defaults Command Modes Usage Information 1200 seconds ROUTER ISIS Change the maximum LSP lifetime with this command. The maximum LSP lifetime must always be greater than the LSP refresh interval. The seconds parameter enables the router to keep LSPs for the specified length of time. If the value is higher, the overhead is reduced on slower-speed links. Related Commands lsp-refresh-interval Use this command to set the link-state packet (LSP) refresh interval.
PAGE 848
www.dell.com | support.dell.com Defaults Command Modes Usage Information wide Allows you to configure the E-Series to generate and accept only new-style TLVs. Metric range: 0 to 16777215 level-1 Enables the metric style on Level 1. level-2 Enables the metric style on Level 2. narrow; if no Level is specified, Level-1 and Level-2 are configured. ROUTER ISIS If you enter the metric-style wide command, the FTOS generates and accepts only new-style TLVs.
PAGE 849
Defaults Command Modes Not configured. ROUTER ISIS passive-interface e Syntax Suppress routing updates on an interface. This command stops the router from sending updates on that interface. passive-interface interface To delete a passive interface configuration, enter the no passive-interface interface command.
PAGE 850
www.dell.com | support.dell.com metric metric-value (OPTIONAL) Assign a value to the redistributed route. Range: 0 to 16777215 Default: 0. You should use a value that is consistent with the destination protocol. metric-type {external | internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
PAGE 851
redistribute bgp e Syntax Redistribute routing information from a BGP process. (new command in Release 6.3.1) redistribute bgp AS number [level-1| level-1-2 | level-2] [metric metric-value] [metric-type {external| internal}] [route-map map-name] To return to the default values, enter the no redistribute bgp command with the appropriate parameters. Parameters AS number Enter a number that corresponds to the Autonomous System number.
PAGE 852
www.dell.com | support.dell.com Usage Information BGP to IS-IS redistribution supports “match” options using route maps. The metric value, level, and metric-type of redistributed routes can be set by the redistribution command. More advanced “set” options can be performed using route maps. redistribute ospf e Syntax Redistribute routing information from an OSPF process.
PAGE 853
Command History Usage Information Version 7.5.1.0 Introduced IPv6 ISIS support Version 6.3.1.0 Introduced How a metric value assigned to a redistributed route is advertised depends on how on the configuration of the metric-style command. If the metric-style command is set for narrow mode and the metric value in the redistribute ospf command is set to a number higher than 63, the metric value advertised in LSPs will be 63.
PAGE 854
www.dell.com | support.dell.com Command Mode ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Usage Information Set the overload bit when a router experiences problems, such as a memory shortage due to an incomplete link state database which can result in an incomplete or inaccurate routing table. If you set the overload bit in its LSPs, other routers ignore the unreliable router in their SPF calculations until the router has recovered. Command History Version 7.8.1.
PAGE 855
Parameters Command Modes level-1 (OPTIONAL) Displays the Level 1 IS-IS link-state database. level-2 (OPTIONAL) Displays the Level 2 IS-IS link-state database. local (OPTIONAL) Displays local link-state database information. detail (OPTIONAL) Detailed link-state database information of each LSP displays when specified. If not specified, a summary displays. summary (OPTIONAL) Summary of link-state database information displays when specified. lspid (OPTIONAL) Display only the specified LSP.
PAGE 856
www.dell.com | support.dell.com Table 29-1. Command Example Fields Field Description IS-IS Level-1/Level-2 Link State Database Displays the IS-IS link state database for Level 1 or Level 2. LSPID Displays the LSP identifier. The first six octets are the System ID of the originating router. The next octet is the pseudonode ID. If this byte is not zero, then the LSP describes system links. If this byte is zero (0), then the LSP describes the state of the originating router.
PAGE 857
Example Figure 29-5.
PAGE 858
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interface, enter the keyword loopback followed by a number from zero (0) to 16383.
PAGE 859
detail (OPTIONAL) Displays detailed information about neighbors. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • Command Modes For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 860
www.dell.com | support.dell.com show isis protocol e Syntax Command Modes Display IS-IS routing information. show isis protocol EXEC EXEC Privilege Example Figure 29-9. Command Example: show isis protocol Force10#show isis protocol IS-IS Router: System Id: F100.E120.0013 IS-Type: level-1-2 Manual area address(es): 49.0000.0001 Routing for area address(es): 49.0000.
PAGE 861
Example Figure 29-10.
PAGE 862
www.dell.com | support.dell.com Parameters Defaults Command Modes level-l (OPTIONAL) Enter the keyword level-1 to apply the configuration to Level-1 SPF calculations. level-2 (OPTIONAL) Enter the keyword level-2 to apply the configuration to Level-2 SPF calculations. interval seconds Enter the maximum number of seconds between SPF calculations.
PAGE 863
30 Link Aggregation Control Protocol (LACP) Overview This chapter contains commands for Dell Force10’s implementation of Link Aggregation Control Protocol (LACP) for the creation of dynamic link aggregation groups (LAGs — called port-channels in FTOS parlance). For static LAG commands, see the section Port Channel Commands in the Interfaces chapter), based on the standards specified in the IEEE 802.
PAGE 864
www.dell.com | support.dell.com Defaults Command Modes Without a Port Channel specified, the command clears all Port Channel counters. EXEC EXEC Privilege Command History Related Commands Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced on E-Series show lacp Display the lacp configuration debug lacp ces Syntax Debug LACP (configuration, events etc.
PAGE 865
lacp long-timeout ce Configure a long timeout period (30 seconds) for an LACP session. Syntax lacp long-timeout To reset the timeout period to a short timeout (1 second), use the no lacp long-timeout command. Defaults Command Modes Command History Usage Information Related Commands 1 second INTERFACE (conf-if-po-number) Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.5.1.
PAGE 866
www.dell.com | support.dell.com lacp system-priority ces Syntax Parameters Defaults Command Modes Command History Configure the LACP system priority. lacp system-priority priority-value priority-value Enter the system-priority value. The higher the value, the lower the priority. Range: 1 to 65535 Default: 32768 32768 CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.
PAGE 867
Table 30-1. LACP Modes Mode active Function An interface is in an active negotiating state in this mode. LACP runs on any link configured in the active state and also automatically initiates negotiation with other ports by initiating LACP packets. passive An interface is not in an active negotiating state in this mode. LACP runs on any link configured in the passive state. Ports in a passive state respond to negotiation requests from other ports that are in active states.
PAGE 868
www.dell.com | support.dell.com Example 1 Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced Figure 30-1. show lacp port-channel-number command Force10#show lacp 1 Port-channel 1 admin up, oper up, mode lacp Actor System ID: Priority 32768, Address 0001.e800.a12b Partner System ID: Priority 32768, Address 0001.e801.
PAGE 869
31 Layer 2 Overview This chapter describes commands to configure Layer 2 features. It contains the following sections: • • MAC Addressing Commands Virtual LAN (VLAN) Commands Some MAC addressing commands are supported only on the E-Series, some on all three Dell Force10 platforms and some on two Dell Force10 platforms.
PAGE 870
www.dell.com | support.dell.com • show mac learning-limit clear mac-address-table dynamic ces Syntax Parameters Clear the MAC address table of all MAC address learned dynamically. clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} address mac-address Enter the keyword address followed by a MAC address in nn:nn:nn:nn:nn:nn format. all Enter the keyword all to delete all MAC address entries in the MAC address table.
PAGE 871
Defaults Command Modes Command History Usage Information Not configured. INTERFACE (available on physical interfaces only) Version 7.4.1.0 Introduced on E-Series You must place the interface in Layer 2 mode (using the switchport command) prior to configuring the mac accounting destination command. mac-address-table aging-time ces Syntax Parameters Defaults Command Modes Specify an aging time for MAC addresses to be removed from the MAC Address Table.
PAGE 872
www.dell.com | support.dell.com Parameters mac-address Enter the 48-bit hexidecimal address in nn:nn:nn:nn:nn:nn format. output interface Enter the keyword output followed by one of the following interfaces: • • • • vlan vlan-id Defaults Command Modes Command History Related Commands For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 873
Usage Information For information on the specific trap sent and the corresponding Syslog refer to Appendix , . mac-address-table station-move time-interval e Syntax Parameters Defaults Command Modes Command History Usage Information Reduce the amount of time FTOS takes to detect aged entries and station moves.
PAGE 874
www.dell.com | support.dell.com mac cam fib-partition e Syntax Reapportion the amount of Content Addressable Memory (CAM) available for MAC address learning (FIB) versus the amount available for MAC ACLs on a line card. mac cam fib-partition {25 | 50 | 75 | 100} slot-number To return to the default setting, enter no mac cam fib-partition. Parameters Defaults Command Modes Usage Information Related Commands 25 Enter the keyword 25 to set aside 25% of the CAM for MAC address learning.
PAGE 875
Defaults station-move (OPTIONAL) Enter the keyword station-move to allow a station move on learned MAC addresses. sticky (OPTIONAL) C-Series and S-Series only: Enter the keyword sticky to enable sticky MAC-address learning, which converts dynamically-learned MAC addresses on a port or port-channel interface to “sticky” MAC addresses that prevent trusted devices from moving to a different interface. On C-Series, the default behavior is no-station-move + static.
PAGE 876
www.dell.com | support.dell.com When you enable sticky MAC-address learning (sticky), dynamically-learned MAC addresses of trusted devices are added to the running configuration and “stick” to the port or VLAN on which they are learned even if an interface goes down and comes back up.
PAGE 877
mac learning-limit station-move-violation ces Syntax Specify the actions for a station move violation. mac learning-limit station-move-violation {log | shutdown-both | shutdown-offending | shutdown-original} To disable a configuration, use the no mac learning-limit station-move-violation command, followed by the configured keyword. Parameters Defaults Command Modes Command History Usage Information Related Commands log Enter the keyword log to generate a syslog message on a station move violation.
PAGE 878
www.dell.com | support.dell.com show cam mac linecard (count) e Syntax Parameters Display the CAM size and the portions allocated for MAC addresses and for MAC ACLs. show cam mac linecard slot port-set port-pipe count [vlan vlan-id] [interface interface] linecard slot (REQUIRED) Enter the keyword linecard followed by a slot number to select the linecard for which to gather information. E-Series range: 0 to 6.
PAGE 879
Command Modes EXEC EXEC Privilege Command History Example Version 7.6.1.0 Figure 31-1. Introduced on C-Series show cam maccheck linecard Command Output Example Force10#show cam maccheck linecard 2 port-set 0 Dumping entries. From 0 to 16383. Progress . marks 100 memory table entries. ............................
PAGE 880
www.dell.com | support.dell.com show cam mac linecard (dynamic or static) ce Display the CAM size and the portions allocated for MAC addresses and for MAC ACLs. Syntax show cam mac linecard slot port-set port-pipe [address mac_addr | dynamic | interface interface | static | vlan vlan-id] Parameters linecard slot (REQUIRED) Enter the keyword linecard followed by a slot number to select the linecard for which to gather information.
PAGE 881
Example Figure 31-4.
PAGE 882
www.dell.com | support.dell.com interface interface (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • • • vlan vlan-id Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 883
interface interface (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 884
www.dell.com | support.dell.com Table 31-1. show mac-address-table Information (continued) Column Heading Description Interface Displays the interface type and slot/port information. The following abbreviations describe the interface types: • • • • State gi—Gigabit Ethernet followed by a slot/port. po—Port Channel followed by a number. Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale so—Sonet followed by a slot/port. te—10-Gigabit Ethernet followed by a slot/port.
PAGE 885
Command History Example Version 8.3.1.0 Added the vlan option on the E-Series. Version 7.7.1.0 Introduced on C-Series and S-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 31-7. show mac-address-table aging-time Command Example Force10#show mac-address-table aging-time Mac-address-table aging time : 1800 Force10# Related Commands show mac-address-table Display the current MAC address configuration.
PAGE 886
www.dell.com | support.dell.com show mac accounting destination e Syntax Parameters Display destination counters for Layer 2 traffic (available on physical interfaces only). show mac accounting destination [mac-address vlan vlan-id] [interface interface [mac-address vlan vlan-id] [vlan vlan-id]] [vlan vlan-id] mac-address (OPTIONAL) Enter the MAC address in the nn:nn:nn:nn:nn:nn format to display information on that MAC address.
PAGE 887
show mac cam e Syntax Command Modes Display the CAM size and the portions allocated for MAC addresses and for MAC ACLs. show mac cam EXEC EXEC Privilege Command History Example pre-Version 6.2.1.1 Figure 31-9. Introduced on E-Series show mac cam Command Example Force10#show mac cam Slot Type MAC CAM Size MAC FIB Entries 0 E24PD 64K entries 48K (75%) 2 E24PD2 128K entries 64K (50%) 11 EX2YD 64K entries 16K (25%) Note: All CAM entries are per portpipe. Force10# Table 31-3.
PAGE 888
www.dell.com | support.dell.com interface interface (OPTIONAL) Enter the keyword interface with the following keywords and slot/port or number information: • • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For SONET interfaces, enter the keyword sonet followed by the slot/ port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
PAGE 889
Virtual LAN (VLAN) Commands The following commands configure and monitor Virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP, ACLs and SNMP are not supported on a VLAN. Occasionally, while sending broadcast traffic over multiple Layer 3 VLANs, the VRRP state of a VLAN interface may continually switch between Master and Backup.
PAGE 890
www.dell.com | support.dell.com default vlan-id ces Syntax Specify a VLAN as the Default VLAN. default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id syntax. Parameters Defaults Command Modes Command History Usage Information vlan-id Enter the VLAN ID number of the VLAN to become the new Default VLAN. Range: 1 to 4094. Default: 1 The Default VLAN is VLAN 1. CONFIGURATION Version 7.6.1.0 Introduced on S-Series Version 7.5.
PAGE 891
Defaults Command Modes Command History Disabled—VLAN counters are disabled in hardware (all linecards/port-pipes) by default. CONFIGURATION Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.
PAGE 892
www.dell.com | support.dell.com name ces Syntax Assign a name to the VLAN. name vlan-name To remove the name from the VLAN, enter no name. Parameters Defaults Command Modes vlan-name Not configured. INTERFACE VLAN Command History Usage Information Enter up to 32 characters as the name of the VLAN. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.
PAGE 893
show vlan ces Syntax Parameters Display the current VLAN configurations on the switch. show vlan [brief | id vlan-id | name vlan-name] brief (OPTIONAL) Enter the keyword brief to display the following information: • • • • • Command Modes VLAN ID VLAN name (left blank if none is configured.) Spanning Tree Group ID MAC address aging time IP address id vlan-id (OPTIONAL) Enter the keyword id followed by a number from 1 to 4094. Only information on the VLAN specified is displayed.
PAGE 894
www.dell.com | support.dell.com Table 31-4. show vlan Information Column Heading Description (Column 1 — no heading) asterisk symbol (*) = Default VLAN G = GVRP VLAN P = primary VLAN C = community VLAN I = isolated VLAN NUM Displays existing VLAN IDs. Status Displays the word Inactive for inactive VLANs and the word Active for active VLANs.
PAGE 895
Figure 31-13. Example of Output of show vlan brief Force10#show vlan br VLAN Name ---- -------------------------------1 2 3 Force10# Figure 31-14. STG ---0 0 0 MAC Aging --------1800 1800 1800 IP Address -----------------unassigned 2.2.2.2/24 3.3.3.
PAGE 896
www.dell.com | support.dell.com Usage Information When you use the no tagged command, the interface is automatically placed in the Default VLAN as an untagged interface unless the interface is a member of another VLAN. If the interface belongs to several VLANs, you must remove it from all VLANs to change it to an untagged interface. Tagged interfaces can belong to multiple VLANs, while untagged interfaces can only belong to one VLAN at a time. Related Commands interface vlan Configure a VLAN.
PAGE 897
Related Commands interface vlan Configure a VLAN. tagged Specify which interfaces in a VLAN are tagged. untagged ces Syntax Add a Layer 2 interface to a VLAN as an untagged interface. untagged interface To remove an untagged interface from a VLAN, use the no untagged interface command.
PAGE 898
| Layer 2 www.dell.com | support.dell.
PAGE 899
32 Link Layer Detection Protocol (LLDP) Overview Link Layer Detection Protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The FTOS implementation of LLDP is based on IEEE standard 801.1ab.
PAGE 900
www.dell.com | support.dell.com The information distributed by LLDP is stored by its recipients in a standard Management Information Base (MIB). The information can be accessed by a network management system through a management protocol such as SNMP. See the Link Layer Discovery Protocol chapter of the FTOS Configuration Guide for details on implementing LLDP/LLDP-MED. advertise dot1-tlv ces Syntax Advertise dot1 TLVs (Type, Length, Value).
PAGE 901
Defaults Command Modes Command History No default values or behavior CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series advertise management ces Syntax Advertise management TLVs (Type, Length, Value).
PAGE 902
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • Defaults Command Modes Command History For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tenGigabitEthernet followed by the slot/port information.
PAGE 903
Parameters interface Enter the following keywords and slot/port or number information: For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword gigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword tenGigabitEthernet followed by the slot/port information. Note: The FastEthernet option is not supported on S-Series.
PAGE 904
www.dell.com | support.dell.com show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration hello ces Syntax Configure the rate at which the LLDP control packets are sent to its peer. hello seconds To revert to the default, use the no hello seconds command. Parameters Defaults Command Modes Command History seconds Enter the rate, in seconds, at which the control packets are sent to its peer.
PAGE 905
multiplier ces Syntax Set the number of consecutive misses before LLDP declares the interface dead. multiplier integer To return to the default, use the no multiplier integer command. Parameters Defaults Command Modes Command History integer Enter the number of consecutive misses before the LLDP declares the interface dead. Range: 2 - 10 4 x hello CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
PAGE 906
www.dell.com | support.dell.com Usage Information Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series LLDP must be enabled globally from CONFIGURATION mode, before it can be configured on an interface. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
PAGE 907
show lldp statistics ces Syntax Defaults Command Modes Command History Example Display the LLDP statistical information. show lldp statistics No default values or behavior EXEC Privilege Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series Figure 32-2.
PAGE 908
www.dell.com | support.dell.
PAGE 909
advertise med guest-voice ces Syntax Configure the system to advertise a separate limited voice service for a guest user with their own IP telephony handset or other appliances that support interactive voice services. advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
PAGE 910
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) \ Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
PAGE 911
Related Commands debug lldp interface Debug LLDP show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration advertise med power-via-mdi cs Configure the system to advertise the Extended Power via MDI TLV. Syntax advertise med power-via-mdi To return to the default, use the no advertise med power-via-mdi command. Defaults Command Modes Command History Usage Information Related Commands unconfigured CONFIGURATION (conf-lldp) Version 7.7.1.
PAGE 912
www.dell.com | support.dell.com Command Modes Command History Related Commands CONFIGURATION (conf-lldp) Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series and E-Series debug lldp interface Debug LLDP show lldp neighbors Display the LLDP neighbors show lldp neighbors Display the LLDP running configuration advertise med streaming-video ces Configure the system to advertise streaming video services for broadcast or multicast-based video.
PAGE 913
advertise med video-conferencing ces Syntax Configure the system to advertise dedicated video conferencing and other similar appliances that support real-time interactive video. advertise med video-conferencing {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med video-conferencing {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
PAGE 914
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands DSCP_value Enter the DSCP value (C-Series and E-Series only). Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
PAGE 915
advertise med voice-signaling ces Syntax Configure the system to advertise when voice control packets use a separate network policy than voice data. advertise med voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command. Parameters Defaults Command Modes Command History Related Commands vlan-id Enter the VLAN ID.
PAGE 916
www.dell.com | support.dell.
PAGE 917
33 Multicast Listener Discovery (MLD) Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading.
PAGE 918
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • group-address For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 919
Command History Version 7.4.1.0 Introduced ipv6 mld explicit-tracking e Syntax Enable MLD explicit tracking of receivers. ipv6 mld explicit-tracking To disable explicit tracking, use the no ipv6 mld explicit-tracking command. Defaults Command Modes Command History Usage Information Disabled INTERFACE (conf-if) Version 7.4.1.0 Introduced If snooping is enabled on the VLAN, this command has no effect. Enable ipv6 mld snooping explicit tracking instead.
PAGE 920
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History seconds Enter the querier timeout in seconds. Range: 60 - 300 Default: 255 255 seconds INTERFACE (conf-if) Version 7.4.1.0 Introduced ipv6 mld query-interval e Syntax Change the transmission frequency of the MLD host. ipv6 mld query-interval {seconds} To return to the default interval, use the no ipv6 mld query-interval command.
PAGE 921
ipv6 mld static-group e Syntax Configure an MLD static group to exclude or include mode. ipv6 mld static-group group-address {exclude [source-address] | include source-address} To return to default, use the no ipv6 mld static-group group-address {exclude [source-address] | include source-address} command. Parameters group-address (OPTIONAL) Enter the multicast group address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero.
PAGE 922
www.dell.com | support.dell.com Parameters Command Modes explicit Enter this keyword to display explicit tracking information. link-local Enter this keyword to display link-local groups. group-address Enter the group address for which you want to display information. interface interface Enter the keyword interface followed by the interface type. detail View detailed group information. summary View a summary of group information. EXEC EXEC Privilege Command History Example Version 7.4.1.
PAGE 923
Parameters interface [interface] Enter the keyword interface to display the configured MDL interfaces. Optionally, enter the keyword interface followed by one of the keywords below, with slot/port or number information, to display information for that specific interface: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 924
www.dell.com | support.dell.com MLD Snooping Commands The MLD Snooping commands are: • • • • • • • • ipv6 mld snooping enable ipv6 mld snooping flood ipv6 mld snooping ipv6 mld snooping explicit-tracking ipv6 mld snooping mrouter ipv6 mld snooping querier show ipv6 mld snooping groups show ipv6 mld snooping mrouter ipv6 mld snooping enable e Syntax Defaults Command Modes Command History Enable MLD Snooping globally. ipv6 mld snooping enable Disabled CONFIGURATION (conf) Version 7.4.1.
PAGE 925
ipv6 mld snooping e Syntax Enable MLD Snooping (v1 and v2) on a VLAN. ipv6 mld snooping To disable MLD Snooping, use the no ipv6 mld snooping command. Defaults Command Modes Command History Enabled on all VLAN interfaces INTERFACE VLAN (conf-if-vl-n) Version 7.4.1.0 Introduced ipv6 mld snooping explicit-tracking e Syntax Enable explicit MLD Snooping tracking on an interface. ipv6 mld snooping explicit-tracking To disable, use the no ipv6 mld snooping explicit-tracking command.
PAGE 926
www.dell.com | support.dell.com Command Modes Command History INTERFACE VLAN (conf-if-vl-n) Version 7.4.1.0 Introduced ipv6 mld snooping querier e Syntax Enable the MLD querier processing for the VLAN interface. ipv6 mld snooping querier To disable the querier feature, use the no ipv6 mld snooping querier command. Defaults Command Modes Command History Usage Information Disabled INTERFACE VLAN (conf-if-vl-n) Version 7.4.1.
PAGE 927
Example Figure 33-3. show ipv6 mld snooping groups summary Command Example Force10#show ipv6 mld snooping groups summary MLD snooping connected groups summary: (*,G) routes :12 Force10# show ipv6 mld snooping mrouter e Syntax Parameters Defaults Command Modes Display information on the MLD Snooping router. show ipv6 mld snooping mrouter [vlan] vlan (OPTIONAL) Enter the keyword vlan followed by the VLAN number to display information on that specific VLAN.
PAGE 928
www.dell.com | support.dell.
PAGE 929
34 Multicast Source Discovery Protocol (MSDP) Overview MSDP (Multicast Source Discovery Protocol) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections. FTOS supports MSDP commands on the E-Series only, as indicated by the e character that appears below each command heading.
PAGE 930
www.dell.com | support.dell.com Defaults Command Modes Command History Not configured EXEC Privilege Version 6.2.1.1 Introduced clear ip msdp sa-cache e Syntax Parameters Defaults Command Modes Command History Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries. clear ip msdp sa-cache [group-address | rejected-sa | local] group-address Enter the group IP address in dotted decimal format (A.B.C.D.
PAGE 931
Command History Version 6.2.1.1 Introduced ip msdp cache-rejected-sa e Syntax Enable a MSDP cache for the rejected source-active entries. ip msdp cache-rejected-sa {number} To clear the MSDP rejected source-active entries, use the no ip msdp cache-rejected-sa {number} command followed by the ip msdp cache-rejected-sa {number} command. Parameters Defaults Command Modes Command History Related Commands number Enter the number of rejected SA entries to cache.
PAGE 932
www.dell.com | support.dell.com ip msdp log-adjacency-changes e Syntax Enable logging of MSDP adjacency changes. ip msdp log-adjacency-changes To disable logging, use the no ip msdp log-adjacency-changes command. Defaults Command Modes Command History Not configured CONFIGURATION Version 6.2.1.1 Introduced ip msdp mesh-group e Configure a peer to be a member of a mesh group.
PAGE 933
Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • Defaults Command Modes Command History For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
PAGE 934
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information description name (OPTIONAL) Enter the keyword description followed by a description name (max 80 characters) to designate a description for the MSDP peer. sa-limit number (OPTIONAL) Enter the maximum number of SA entries in SA-cache. Range: 1 to 500000 Default: 500000 As above CONFIGURATION Version 7.5.1.0 Added option for SA upper limit and description option Version 6.2.1.
PAGE 935
ip msdp sa-filter e Syntax Permit or deny MSDP source active (SA) messages based on multicast source and/or group from the specified peer. ip msdp sa-filter {in | out} peer-address list [access-list name] Remove this configuration using the command no ip msdp sa-filter {in | out} peer address list [access-list name] Parameters Defaults Command Modes Command History in Enter the keyword in to enable incoming SA filtering. out Enter the keyword out to enable outgoing SA filtering.
PAGE 936
www.dell.com | support.dell.com Related Commands ip msdp peer Configure the MSDP peer clear ip msdp peer Clear the MSDP peer. show ip msdp Display the MSDP information ip msdp shutdown e Syntax Parameters Defaults Command Modes Command History Administratively shut down a configured MSDP peer. ip msdp shutdown {peer address} peer address Enter the peer address in a dotted decimal format (A.B.C.D.) Not configured CONFIGURATION Version 6.2.1.1 Introduced ip multicast-msdp e Syntax Enable MSDP.
PAGE 937
Command Modes EXEC EXEC Privilege Command History Example 1 Version 6.2.1.1 Figure 34-1. Introduced show ip msdp peer Command Example Force10#show ip msdp peer 100.1.1.1 Peer Addr: 100.1.1.1 Local Addr: 100.1.1.2(639) Connect Source: none State: Established Up/Down Time: 00:00:08 Timers: KeepAlive 60 sec, Hold time 75 sec SourceActive packet count (in/out): 0/0 SAs learned from this peer: 0 SA Filtering: Input (S,G) filter: none Output (S,G) filter: none Force10# Example 2 Figure 34-2.
PAGE 938
www.dell.com | support.dell.com Example 938 Figure 34-4. show ip msdp sa-cache rejected-sa Command Example Force10#sh ip msdp sa-cache rejected-sa MSDP Rejected SA Cache 200 rejected SAs UpTime GroupAddr SourceAddr 00:00:13 225.1.2.1 10.1.1.3 00:00:13 225.1.2.2 10.1.1.4 00:00:13 225.1.2.3 10.1.1.3 00:00:13 225.1.2.4 10.1.1.4 00:00:13 225.1.2.5 10.1.1.3 00:00:13 225.1.2.6 10.1.1.4 00:00:13 225.1.2.7 10.1.1.3 00:00:13 225.1.2.8 10.1.1.4 00:00:13 225.1.2.9 10.1.1.3 00:00:13 225.1.2.10 10.1.1.
PAGE 939
35 Multiple Spanning Tree Protocol (MSTP) Overview Multiple Spanning Tree Protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s.
PAGE 940
www.dell.com | support.dell.com debug spanning-tree mstp ces Syntax Enable debugging of Multiple Spanning Tree Protocol and view information on the protocol. debug spanning-tree mstp [all | bpdu interface {in | out} | events] To disable debugging, enter no debug spanning-tree mstp. Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug Bridge Protocol Data Units.
PAGE 941
description ces Syntax Enter a description of the Multiple Spanning Tree description {description} To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description to identify the Multiple Spanning Tree (80 characters maximum). No default behavior or values SPANNING TREE (The prompt is “config-mstp”.) pre-7.7.1.
PAGE 942
www.dell.com | support.dell.com forward-delay ces Syntax The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. forward-delay seconds To return to the default setting, enter no forward-delay. Parameters Defaults Command Modes Command History Related Commands seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State.
PAGE 943
Related Commands forward-delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. max-age Change the wait time before MSTP refreshes protocol configuration information. max-age ces Syntax Set the time interval for the Multiple Spanning Tree bridge to maintain configuration information before refreshing that information. max-age seconds To return to the default values, enter no max-age.
PAGE 944
www.dell.com | support.dell.com max-hops ces Syntax Configure the maximum hop count. max-hops number To return to the default values, enter no max-hops. Parameters Defaults Command Modes Command History Usage Information range Enter a number for the maximum hop count. Range: 1 to 40 Default: 20 20 hops MULTIPLE SPANNING TREE Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 6.5.1.
PAGE 945
Command History Usage Information Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series By default, all VLANs are mapped to MST instance zero (0) unless you use the vlan range command to map it to a non-zero instance. name ces Syntax The name you assign to the Multiple Spanning Tree region.
PAGE 946
www.dell.com | support.dell.com protocol spanning-tree mstp ces Syntax Enter the MULTIPLE SPANNING TREE mode to enable and configure the Multiple Spanning Tree group. protocol spanning-tree mstp To disable the Multiple Spanning Tree group, enter no protocol spanning-tree mstp command. Defaults Command Modes Command History Example Not configured. CONFIGURATION Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.
PAGE 947
revision ces Syntax The revision number for the Multiple Spanning Tree configuration revision range To return to the default values, enter no revision. Parameters Defaults Command Modes range 0 MULTIPLE SPANNING TREE Command History Usage Information Enter the revision number for the MST configuration. Range: 0 to 65535 Default: 0 Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 6.5.1.
PAGE 948
www.dell.com | support.dell.com show spanning-tree mst configuration ces Syntax Command Modes View the Multiple Spanning Tree configuration. show spanning-tree mst configuration EXEC EXEC Privilege Command History Example Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 35-4.
PAGE 949
show spanning-tree msti ces Syntax Parameters Command Modes View the Multiple Spanning Tree instance. show spanning-tree msti [instance-number [brief]] [guard] instance-number [Optional] Enter the Multiple Spanning Tree Instance number Range: 0 to 63 brief [Optional] Enter the keyword brief to view a synopsis of the MST instance. guard [Optional] Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state.
PAGE 950
www.dell.com | support.dell.com Example 2 Figure 35-6. show spanning-tree msti with EDS and LBK Force10#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e801.
PAGE 951
spanning-tree ces Syntax Enable Multiple Spanning Tree Protocol on the interface. spanning-tree To disable the Multiple Spanning Tree Protocol on the interface, use no spanning-tree Parameters Defaults Command Modes Command History spanning-tree Enter the keyword spanning-tree to enable the MSTP on the interface. Default: Enable Enable INTERFACE Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.
PAGE 952
www.dell.com | support.dell.com Command History Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 6.5.1.0 Introduced on E-Series spanning-tree mstp ces Syntax Parameters Command Modes Command History Usage Information Configures a Layer 2 MSTP interface as an edge port with (optionally) a Bridge Protocol Data Unit (BPDU) guard, or enables the root guard or loop guard feature on the interface.
PAGE 953
Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a blocking state and prevents traffic from flowing through it. For example, when Portfast BPDU guard and loop guard are both configured: • • If a BPDU is received from a remote device, BPDU guard places the port in an err-disabled blocking state and no traffic is forwarded on the port.
PAGE 954
www.dell.com | support.dell.
PAGE 955
36 Multicast Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading.
PAGE 956
www.dell.com | support.dell.com clear ip mroute ces Syntax Parameters Command Modes Command History Clear learned multicast routes on the multicast forwarding table. To clear the PIM tree information base, use clear ip pim tib command. clear ip mroute {group-address [source-address] | *} group-address [source-address] Enter multicast group address and source address (if desired), in dotted decimal format, to clear information on a specific group. * Enter * to clear all multicast routes.
PAGE 957
ip mroute show ip pim tib ces Syntax Show the PIM Tree Information Base. Assign a static mroute. ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the command ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance].
PAGE 958
www.dell.com | support.dell.com ip multicast-lag-hashing e Syntax ip multicast-lag-hashing To revert to the default, enter no ip multicast-lag-hashing. Defaults Command Modes Command History Usage Information Related Commands 958 Distribute multicast traffic among Port Channel members in a round-robin fashion. | Multicast Disabled CONFIGURATION Version 6.3.1.0 Introduced for E-Series By default, one Port Channel member is chosen to forward multicast traffic.
PAGE 959
ip multicast-limit ces Syntax Parameters Defaults Command Modes Command History Usage Information Use this feature to limit the number of multicast entries on the system. ip multicast-limit limit limit Enter the desired maximum number of multicast entries on the system. E-Series Range: 1 to 50000 E-Series Default: 15000 C-Series Range: 1 to 10000 C-Series Default: 4000 S-Series Range: 1 to 2000 S-Series Default: 400 As above CONFIGURATION Version 7.8.1.0 Introduced on C-Series Version 7.6.1.
PAGE 960
www.dell.com | support.dell.com ip multicast-mode l2 c Syntax Enable Layer 2 multicast switching. ip multicast-mode l2 To return to the default Layer 3 multicast forwarding on the router, enter the no ip multicast-mode l2 command after you remove the static multicast MAC address (no mac-address-table static multicast multicast-mac-address command). Defaults Command Modes Command History Usage Information Related Commands Disabled CONFIGURATION Version 8.4.2.5 Introduced on C-Series.
PAGE 961
mac-address-table static c Configure a static multicast MAC address, associate the multicast MAC address with the VLAN used to switch Layer 2 multicast traffic, and add output ports that will receive multicast streams on the VLAN. To delete a configured static multicast MAC address from the MAC address table on the router, enter the no mac-address-table static multicast-mac-address command.
PAGE 962
www.dell.com | support.dell.com mac-flood-list e Syntax Parameters Defaults Command Modes Command History Usage Information Provide an exception to the restrict-flood configuration so that multicast frames within a specified MAC address range to be flooded on all ports in a VLAN. mac-flood-list mac-address mask vlan vlan-list [min-speed speed] mac-address Enter a multicast MAC address in hexadecimal format. mac-mask Enter the MAC Address mask.
PAGE 963
mtrace e Syntax Parameters Command Modes Command History Trace a multicast route from the source to the receiver. mtrace {source-address/hostname} {destination-address/hostname} {group-address} source-address/ hostname Enter the source IP address in dotted decimal format (A.B.C.D). destination-address/ hostname Enter the destination (receiver) IP address in dotted decimal format (A.B.C.D). group-address Enter the multicast group address in dotted decimal format (A.B.C.D). EXEC Privilege Version 7.
PAGE 964
www.dell.com | support.dell.com queue backplane multicast e Syntax Parameters Defaults Command Modes Command History Example Reallocate the amount of bandwidth dedicated to multicast traffic. queue backplane multicast bandwidth-percentage percentage percentage Enter the percentage of backplane bandwidth to be dedicated to multicast traffic. Range: 5-95 80% of the scheduler weight is for unicast traffic and 20% is for multicast traffic by default. CONFIGURATION Version 7.7.1.0 Figure 36-1.
PAGE 965
restrict-flooding et Syntax Parameters Defaults Command Modes Command History Usage Information Prevent Layer 2 multicast traffic from being flooded on ports below a specified link speed. restrict-flooding multicast min-speed speed min-speed min-speed Enter the minimum link speed that a port must have to receive flooded multicast traffic. Range: 1000 None INTERFACE VLAN Version 7.7.1.
PAGE 966
www.dell.com | support.dell.com show ip mroute ces Syntax Parameters Command Modes View the Multicast Routing Table. show ip mroute [static | group-address [source-address] | active [rate] | count | snooping [vlan vlan-id] [group-address [source-address]] | summary] static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address [source-address] (OPTIONAL) Enter the multicast group-address to view only routes associated with that group.
PAGE 967
Example 2 Figure 36-3. show ip mroute snooping Command Example Force10#show ip mroute snooping IPv4 Multicast Snooping Table (*, 224.0.0.0), uptime 17:46:23 Incoming vlan: Vlan 2 Outgoing interface list: GigabitEthernet 4/13 (*, 225.1.2.1), uptime 00:04:16 Incoming vlan: Vlan 2 Outgoing interface list: GigabitEthernet 4/11 GigabitEthernet 4/13 (165.87.1.7, 225.1.2.
PAGE 968
www.dell.com | support.dell.com show ip rpf ces Syntax Command Modes View reverse path forwarding. show ip rpf EXEC EXEC Privilege Command History Usage Information E-Series legacy command Static mroutes are used by network administrators to control the reachability of the multicast sources. If a PIM registered multicast source is reachable via static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reachability.
PAGE 969
show mac-address-table static multicast c Syntax Parameters Command Modes Display information on the current configuration of Layer 2 multicast switching on a router. show mac-address-table static multicast [multicast-mac-address [vlan vlan-id] | vlan vlan-id | count [vlan vlan-id]] multicast-mac-address [vlan vlan-id] Enter the static multicast MAC address in nn:nn:nn:nn:nn:nn format and (optionally) the VLAN ID of a VLAN used to switch Layer 2 multicast traffic on the router.
PAGE 970
www.dell.com | support.dell.com Table 36-2. show mac-address-table static multicast Information Column Heading Description L2MCIndex Displays the Layer 2 multicast index used to represent a group of outbound interfaces. The L2 multicast index is a hardware-specific index that is used an internal command and useful for debugging purposes. Range: 0 - 1023.
PAGE 971
show queue backplane multicast e Syntax Defaults Command Modes Display the backplane bandwidth configuration about how much bandwidth is dedicated to multicast versus unicast. show queue backplane multicast bandwidth-percentage None EXEC EXEC Privilege Command History Example Version 7.7.1.0 Figure 36-8.
PAGE 972
www.dell.com | support.dell.com IPv6 Multicast Commands IPv6 Multicast commands are: • • • • • • clear ipv6 mroute ipv6 multicast-limit ip multicast-routing show ipv6 mroute show ipv6 mroute mld show ipv6 mroute summary clear ipv6 mroute e Syntax Parameters Clear learned multicast routes on the multicast forwarding table. To clear the PIM tib, use clear ip pim tib command.
PAGE 973
ipv6 multicast-limit e Syntax Parameters Defaults Command Modes Command History Usage Information Limit the number of multicast entries on the system. ipv6 multicast-limit limit limit Enter the desired maximum number of multicast entries on the system. Range: 1 to 50000 Default: 15000 15000 routes CONFIGURATION Version 8.3.1.0 Introduced The maximum number of multicast entries allowed on each line card is determined by the CAM profile.
PAGE 974
www.dell.com | support.dell.com show ipv6 mroute e Syntax Parameters View IPv6 multicast routes. show ipv6 mroute [group-address [source-address]] [active rate] [count group-address [source source-address]] group-address [source-address] (OPTIONAL) Enter the IPv6 multicast group-address to view only routes associated with that group. Optionally, enter the IPv6 source-address to view routes with that group-address and source-address.
PAGE 975
Example Figure 36-10. show ipv6 mroute active Command Example Force10#show ipv6 mroute active 10 Active Multicast Sources - sending >= 10 pps Group: ff05:300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff05:3300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff3e:300::4000:1 Source: 165:87:31::20 Rate: 100 pps Group: ff3e:3300::4000:1 Source: 165:87:31::20 Rate: 100 pps Force10# Example Figure 36-11.
PAGE 976
www.dell.com | support.dell.com show ipv6 mroute mld e Syntax Parameters Display the Multicast MLD information. show ipv6 mroute [mld [group-address | all | vlan vlan-id]] mld (OPTIONAL) Enter the keyword mld to display Multicast MLD information. group-address (OPTIONAL) Enter the multicast group address in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero. Defaults Command Modes all (OPTIONAL) Enter the keyword all to view all the MLD information.
PAGE 977
show ipv6 mroute summary e Syntax Defaults Command Modes Display a summary of the Multicast routing table. show ipv6 mroute summary No default values or behavior EXEC EXEC Privilege Command History Version 7.4.1.0 Example Figure 36-14.
PAGE 978
| Multicast www.dell.com | support.dell.
PAGE 979
37 Neighbor Discovery Protocol (NDP) Overview Neighbor Discovery Protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4. It defines mechanisms for solving the following problems: • • • • • • • • • Router discovery: Hosts can locate routers residing on a link. Prefix discovery: Hosts can discover address prefixes for the link.
PAGE 980
www.dell.com | support.dell.com • • • ipv6 nd suppress-ra ipv6 neighbor show ipv6 neighbors clear ipv6 neighbors e Syntax Parameters Delete all entries in the IPv6 neighbor discovery cache, or neighbors of a specific interface. Static entries will not be removed using this command. clear ipv6 neighbors [ipv6-address] [interface] ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format to remove a specific IPv6 neighbor.
PAGE 981
ipv6 nd max-ra-interval e Syntax Configure the interval between the IPv6 router advertisement (RA) transmissions on an interface. ipv6 nd max-ra-interval {interval} min-ra-interval {interval} To restore the default interval, use the no ipv6 nd max-ra-interval command. Parameters Defaults Command Modes max-ra-interval {interval} Enter the keyword max-ra-interval followed by the interval in seconds.
PAGE 982
www.dell.com | support.dell.com ipv6 nd other-config-flag e Set the other stateful configuration flag in the IPv6 router advertisement. The description of this flag from RFC 2461 (http://tools.ietf.org/html/rfc2461) is: O: 1-bit “Other stateful configuration” flag. When set, hosts use the administered (stateful) protocol for autoconfiguration of other (non-address) information. The use of this flag is described in: Thomson, S. and T. Narten, “IPv6 Address Autoconfiguration”, RFC 2462, December 1998.
PAGE 983
ipv6 nd ra-lifetime e Configure the router lifetime value in the IPv6 router advertisements on an interface. The description of router lifetime from RFC 2461(http://tools.ietf.org/html/rfc2461) is: Router Lifetime: 16-bit unsigned integer. The lifetime associated with the default router in units of seconds. The maximum value corresponds to 18.2 hours. A Lifetime of 0 indicates that the router is not a default router and SHOULD NOT appear on the default router list.
PAGE 984
www.dell.com | support.dell.com Defaults Command Modes Enabled INTERFACE ipv6 neighbor e Syntax Configure a static entry in the IPv6 neighbor discovery. ipv6 neighbor {ipv6-address} {interface interface} {hardware_address} To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6 neighbor {ipv6-address} {interface interface} command. Parameters ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format.
PAGE 985
cpu Enter the keyword cpu followed by either rp1 or rp2 (Route Processor 1 or 2), optionally followed by an IPv6 address to display the IPv6 neighbor entries stored on the designated RP. interface interface • • • • • Defaults Command Modes For a Fast Ethernet interface, enter the keyword fastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 986
www.dell.com | support.dell.
PAGE 987
38 Object Tracking Object Tracking supports IPv4 and IPv6, and is available on platforms: c e s Overview Object tracking allows you to define objects of interest, monitor their state, and report to a client when a change in an object’s state occurs.
PAGE 988
www.dell.com | support.dell.com debug track ces Syntax Parameters Defaults Command Modes Enables debugging for tracked objects. debug track [all | notifications | object-id] all Enables debugging on the state and notifications of all tracked objects. notifications Enables debugging on the notifications of all tracked objects. object-id Enables debugging on the state and notifications of the specified tracked object. Range: 1 to 65535.
PAGE 989
delay ces Syntax Configure the time delay used before communicating a change in the status of a tracked object to clients. delay {[up seconds] [down seconds]} To return to the default setting, enter no delay. Parameters Defaults Command Modes Command History Related Commands Usage Information seconds Enter the number of seconds the object tracker waits before sending a notification about the change in the UP and/or DOWN state of a tracked object to clients. Range: 0 to 180 Default: 0 seconds.
PAGE 990
www.dell.com | support.dell.com description ces Syntax description {text} To remove the description, enter the no description {text} command. Parameters Defaults Command Modes Command History Related Commands 990 Enter a description of a tracked object. | Object Tracking text Enter a description to identify a tracked object (80 characters maximum). No default behavior or values OBJECT TRACKING (conf_track_object-id) Version 8.4.1.
PAGE 991
show running-config track ces Syntax Parameters Command Modes Command History Related Commands Example Display the current configuration of tracked objects. show running-config track [object-id] object-id (OPTIONAL) Display information on the specified tracked object. Range: 1 to 65535. EXEC Privilege Version 8.4.1.0 Introduced show track Display information about tracked objects, including configuration, current state, and clients which track the object.
PAGE 992
www.dell.com | support.dell.com show track ces Syntax Parameters Command Modes Command History Related Commands 992 | Object Tracking Display information about tracked objects, including configuration, current tracked state (UP or DOWN), and the clients which are tracking an object. show track [object-id [brief] | interface [brief] [vrf vrf-name] | ip route [brief] [vrf vrf-name] | resolution | vrf vrf-name [brief] | brief] object-id (OPTIONAL) Display information on the specified tracked object.
PAGE 993
Example Figure 38-1. Command Example: show track Force10#show track Track 1 IP route 23.0.0.
PAGE 994
www.dell.com | support.dell.com Table 38-2. Command Example Description: show track brief ResID Number of the tracked object Resource Type of tracked object Parameter Detailed description of the tracked object State Up or Down state of the tracked object Last Change Time since the last change in the state of the tracked object threshold metric ces Syntax Configure the metric threshold used to determine the UP and/or DOWN state of a tracked IPv4 or IPv6 route.
PAGE 995
• • If the scaled metric for a route entry is less than or equal to the UP threshold, the state of a route is UP. If the scaled metric for a route is greater than or equal to the DOWN threshold or the route is not entered in the routing table, the state of a route is DOWN. You configure the UP and DOWN thresholds for each tracked route with the threshold metric command. The default UP threshold is 254; the default DOWN threshold is 255.
PAGE 996
www.dell.com | support.dell.com Defaults Command Modes Enter an IPv4 address in dotted decimal format. Valid IPv4 prefix lengths are from /0 to /32. vrf vrf-name (Optional) E-Series only: You can configure a VPN routing and forwarding (VRF) instance to specify the virtual routing table to which the tracked route belongs. None CONFIGURATION Command History Version 8.4.1.
PAGE 997
Parameters Defaults Command Modes Command History Related Commands Usage Information object-id Enter the ID number of the tracked object. Range: 1 to 65535. ip-address/ prefix-len Enter an IPv4 address in dotted decimal format. Valid IPv4 prefix lengths are from /0 to / 32. vrf vrf-name (Optional) E-Series only: You can configure a VPN routing and forwarding (VRF) instance to specify the virtual routing table to which the tracked route belongs. None CONFIGURATION Version 8.4.1.
PAGE 998
www.dell.com | support.dell.com track interface ip routing ces Syntax Configure object tracking on the routing status of an IPv4 Layer 3 interface. track object-id interface interface ip routing To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. interface Enter one of the following values: • • • • • • Defaults Command Modes CONFIGURATION Version 8.4.1.
PAGE 999
track interface line-protocol ces Syntax Configure object tracking on the line-protocol state of a Layer 2 interface. track object-id interface interface line-protocol To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535.
PAGE 1000
www.dell.com | support.dell.com track resolution ip route ces Syntax Configure the protocol-specific resolution value used to scale an IPv4 route metric. track resolution ip route {isis resolution-value | ospf resolution-value} To return to the default setting, enter no track object-id. Parameters Defaults Command Modes Enter the ID number of the tracked object. Range: 1 to 65535.
PAGE 1001
IPv6 Object Tracking Commands The IPv6 object tracking commands are: • • • • • show track ipv6 route track interface ipv6 routing track ipv6 route metric threshold track ipv6 route reachability track resolution ipv6 route The following object tracking commands apply to IPv4 and IPv6: • • • • • • debug track delay description show running-config track threshold metric track interface line-protocol show track ipv6 route ces Syntax Parameters Command Modes Display information about all tracked IPv6 route
PAGE 1002
www.dell.com | support.dell.com Example Figure 38-3.
PAGE 1003
track interface ipv6 routing ces Syntax Configure object tracking on the routing status of an IPv6 Layer 3 interface. track object-id interface interface ipv6 routing To return to the default setting, enter no track object-id. Parameters object-id Enter the ID number of the tracked object. Range: 1 to 65535. interface Enter one of the following values: • • • • • • Defaults Command Modes E-Series: 1 to 32 for EtherScale; 1 to 255 for TeraScale; 1 to 512 for ExaScale.
PAGE 1004
www.dell.com | support.dell.com track ipv6 route metric threshold ces Syntax Configure object tracking on the threshold of an IPv4 route metric. track object-id ipv6 route ipv6-address/prefix-len metric threshold To return to the default setting, enter no track object-id. Parameters Defaults Command Modes Enter the ID number of the tracked object. Range: 1 to 65535. ipv6-address/ prefix-len Enter an IPv6 address in X:X:X:X::X format. Valid IPv6 prefix lengths are from /0 to / 128.
PAGE 1005
track ipv6 route reachability ces Syntax Configure object tracking on the reachability of an IPv6 route. track object-id ipv6 route ip-address/prefix-len reachability To return to the default setting, enter no track object-id. Parameters Defaults Command Modes Command History Related Commands Usage Information object-id Enter the ID number of the tracked object. Range: 1 to 65535. ipv6-address/ prefix-len Enter an IPv6 address in X:X:X:X::X format. Valid IPv6 prefix lengths are from /0 to /128.
PAGE 1006
www.dell.com | support.dell.com track resolution ipv6 route ces Syntax Configure the protocol-specific resolution value used to scale an IPv6 route metric. track resolution ipv6 route {isis resolution-value | ospf resolution-value} To return to the default setting, enter no track object-id. Parameters Defaults Command Modes object-id Enter the ID number of the tracked object. Range: 1 to 65535.
PAGE 1007
39 Open Shortest Path First (OSPFv2 and OSPFv3) Overview Open Shortest Path First version 2 for IPv4 is supported on platforms c e s Open Shortest Path First version 3 (OSPFv3) for IPv6 is supported on platforms c e Note: The C-Series supports OSPFv3 with FTOS version 7.8.1.0 and later. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS).
PAGE 1008
www.dell.com | support.dell.
PAGE 1009
• • • • • • • • • • • • • • show ip ospf database nssa-external show ip ospf database opaque-area show ip ospf database opaque-as show ip ospf database opaque-link show ip ospf database router show ip ospf database summary show ip ospf interface show ip ospf neighbor show ip ospf routes show ip ospf statistics show ip ospf topology show ip ospf virtual-links summary-address timers spf area default-cost ces Syntax Set the metric for the summary default route generated by the area border router (ABR) into
PAGE 1010
www.dell.com | support.dell.com area nssa ces Syntax Specify an area as a Not So Stubby Area (NSSA). area area-id nssa [default-information-originate] [no-redistribution] [no-summary] To delete an NSSA, enter no area area-id nssa. Parameters Defaults Command Mode Command History area-id Specify the OSPF area in dotted decimal format (A.B.C.D) or enter a number from 0 and 65535. no-redistribution (OPTIONAL) Specify that the redistribute command should not distribute routes into the NSSA.
PAGE 1011
Usage Information Related Commands Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Only the routes within an area are summarized, and that summary is advertised to other areas by the ABR. External routes are not summarized. area stub Create a stub area. router ospf Enter the ROUTER OSPF mode to configure an OSPF instance. area stub ces Syntax Configure a stub area, which is an area not connected to other areas.
PAGE 1012
www.dell.com | support.dell.com To delete a parameter of a virtual link, use the no area area-id virtual-link router-id [[authentication-key [encryption-type] key] | [message-digest-key keyid md5 [encryption-type] key]] [dead-interval seconds] [hello-interval seconds] [retransmit-interval seconds] [transmit-delay seconds] command syntax. Parameters area-id Specify the transit area for the virtual link in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535.
PAGE 1013
You cannot enable both authentication options. Choose either the authentication-key or message-digest-key option. auto-cost ces Syntax Specify how the OSPF interface cost is calculated based on the reference bandwidth method. auto-cost [reference-bandwidth ref-bw] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [reference-bandwidth] command. Parameters Defaults Command Modes ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second.
PAGE 1014
www.dell.com | support.dell.com Syntax Parameters clear ip ospf process-id statistics [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to clear statistics for a specific process. If no Process ID is entered, all OSPF processes are cleared.
PAGE 1015
Command Modes Command History Example EXEC Privilege Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 39-1. Command example: debug ip ospf process-id packet Force10#debug ip ospf 1 packet OSPF process 90, packet debugging is on Force10# 08:14:24 : OSPF(100:00): Xmt. v:2 t:1(HELLO) l:44 rid:192.1.1.1 aid:0.0.0.1 chk:0xa098 aut:0 auk: keyid:0 to:Gi 4/3 dst:224.
PAGE 1016
www.dell.com | support.dell.com Table 39-1.
PAGE 1017
Related Commands redistribute Redistribute routes from other routing protocols into OSPF. default-metric ces Syntax Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. default-metric number To return to the default values, enter no default-metric [number]. Parameters Defaults Command Modes Command History Related Commands number Enter a number as the metric. Range: 1 to 16777214. Disabled. ROUTER OSPF Version 7.8.1.
PAGE 1018
www.dell.com | support.dell.com distance ces Syntax Define an administrative distance for particular routes to a specific IP address. distance weight [ip-address mask access-list-name] To delete the settings, use the no distance weight [ip-address mask access-list-name] command. Parameters Defaults Command Modes Command History weight Specify an administrative distance. Range: 1 to 255. Default: 110 ip-address (OPTIONAL) Enter a router ID in the dotted decimal format.
PAGE 1019
Command Modes Command History Usage Information ROUTER OSPF Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series To specify a distance for routes learned from other routing domains, use the redistribute command. distribute-list in ces Syntax Apply a filter to incoming routing updates from OSPF to the routing table.
PAGE 1020
www.dell.com | support.dell.com distribute-list out ces Syntax Apply a filter to restrict certain routes destined for the local routing table after the SPF calculation. distribute-list prefix-list-name out [bgp | connected | isis | rip | static] To remove a filter, use the no distribute-list prefix-list-name out [bgp | connected | isis | rip | static] command. Parameters prefix-list-name Enter the name of a configured prefix list.
PAGE 1021
fast-convergence ces Syntax This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route computation so that convergence takes less time. fast-convergence {number} To cancel fast-convergence, enter no fast convergence. Parameters Defaults Command Modes Command History Usage Information number Enter the convergence level desired. The higher this parameter is set, the faster OSPF converge takes place. Range: 1-4 None. ROUTER OSPF Version 7.8.1.
PAGE 1022
www.dell.com | support.dell.com When flood-2328 is enabled, this command configures FTOS to flood LSAs on all interfaces. graceful-restart grace-period ces Syntax Specifies the time duration, in seconds, that the router’s neighbors will continue to advertise the router as fully adjacent regardless of the synchronization state during a graceful restart. graceful-restart grace-period seconds To disable the grace period, enter no graceful-restart grace-period.
PAGE 1023
graceful-restart mode ces Syntax Enable the graceful restart mode. graceful-restart mode [planned-only | unplanned-only] To disable graceful restart mode, enter no graceful-restart mode. Parameters Defaults Command Modes Command History planned-only (OPTIONAL) Enter the keywords planned-only to indicate graceful restart is supported in a planned restart condition only.
PAGE 1024
www.dell.com | support.dell.com ip ospf auth-change-wait-time ces Syntax OSPF provides a grace period while OSPF changes its interface authentication type. During the grace period, OSPF sends out packets with new and old authentication scheme till the grace period expires. ip ospf auth-change-wait-time seconds To return to the default, enter no ip ospf auth-change-wait-time. Parameters Defaults Command Modes Command History seconds Enter seconds Range: 0 to 300 zero (0) seconds INTERFACE Version 7.6.
PAGE 1025
Parameters Defaults Command Modes Command History Usage Information cost Enter a number as the cost. Range: 1 to 65535. The default cost is based on the reference bandwidth. INTERFACE Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series If this command is not configured, cost is based on the auto-cost command. When you configure OSPF over multiple vendors, use the ip ospf cost command to ensure that all routers use the same cost.
PAGE 1026
www.dell.com | support.dell.com ip ospf hello-interval ces Syntax Specify the time interval between the hello packets sent on the interface. ip ospf hello-interval seconds To return to the default value, enter no ip ospf hello-interval. Parameters Defaults Command Modes Command History Usage Information Related Commands seconds Enter a the number of second as the delay between hello packets. Range: 1 to 65535. Default: 10 seconds. 10 seconds INTERFACE Version 7.6.1.
PAGE 1027
After the reply is received and the new key is authenticated, you must delete the old key. Dell Force10 recommends keeping only one key per interface. Note: The MD5 secret is stored as plain text in the configuration file with service password encryption. ip ospf mtu-ignore ces Syntax Disable OSPF MTU mismatch detection upon receipt of database description (DBD) packets. ip ospf mtu-ignore To return to the default, enter no ip ospf mtu-ignore.
PAGE 1028
www.dell.com | support.dell.com ip ospf priority ces Syntax Set the priority of the interface to determine the Designated Router for the OSPF network. ip ospf priority number To return to the default setting, enter no ip ospf priority. Parameters Defaults Command Modes Command History Usage Information number Enter a number as the priority. Range: 0 to 255. The default is 1. 1 INTERFACE Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
PAGE 1029
ip ospf transmit-delay ces Syntax Set the estimated time elapsed to send a link state update packet on the interface. ip ospf transmit-delay seconds To return to the default value, enter no ip ospf transmit-delay. Parameters Defaults Command Modes Command History seconds Enter the number of seconds as the transmission time. This value should be greater than the transmission and propagation delays for the interface. Range: 1 to 3600. Default: 1 second. 1 second INTERFACE Version 7.6.1.
PAGE 1030
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information on-startup announce-time Enter the time (in seconds) following boot-up during which the maximum cost (65535) for transmitting OSPF traffic on router interfaces is announced in LSAs and the router functions as a stub router. Range: 5 to 86400 seconds.
PAGE 1031
Example Figure 39-2. Command Example: max-metric router-lsa Force10(conf)#router ospf 10 Force10(conf-router_ospf)#log-adjacency-changes Force10(conf-router_ospf)#network 4.1.1.0/24 area 0 Force10(conf-router_ospf)#network 1.1.1.0/24 area 1 Force10(conf-router_ospf)#max-metric router-lsa on-startup wait-for-bgp Force10(conf-router_ospf)#exit Force10(conf)#show ip ospf Routing Process ospf 10 with ID 100.1.1.
PAGE 1032
www.dell.com | support.dell.com mib-binding ces Syntax Enable this OSPF process ID to manage the SNMP traps and process SNMP queries. mib-binding To mib-binding on this OSPF process, enter no mib-binding. Defaults Command Modes Command History Usage Information None. ROUTER OSPF Version 7.8.1.0 Introduced to all platforms. This command is either enabled or disabled. If no OSPF process is identified as the MIB manager, the first OSPF process will be used.
PAGE 1033
If you delete all the network area commands for Area 0, the show ip ospf command output will not list Area 0. passive-interface ces Syntax Suppress both receiving and sending routing updates on an interface. passive-interface {default | interface} To enable both the receiving and sending routing, enter the no passive-interface interface command. To return all OSPF interfaces (current and future) to active, enter the no passive-interface default command.
PAGE 1034
www.dell.com | support.dell.com • • The ABR status for the router is updated. Save passive-interface interface into the running configuration. passive-interface default • • • • All present and future OSPF interface are marked as passive. Any adjacency are explicitly terminated from all OSPF interfaces. All previous passive-interface interface commands are removed from the running configuration. All previous no passive-interface interface commands are removed from the running configuration.
PAGE 1035
Command Modes Command History Usage Information Related Commands ROUTER OSPF Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series To redistribute the default route (0.0.0.0/0), configure the default-information originate command. default-information originate Generate a default route into the OSPF routing domain.
PAGE 1036
www.dell.com | support.dell.com redistribute isis ces Syntax Redistribute IS-IS routing information throughout the OSPF instance. redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value | metric-type type-value] [route-map map-name] [tag tag-value] To disable redistribution, use the no redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value | metric-type type-value] [route-map map-name] [tag tag-value] command.
PAGE 1037
Defaults Command Modes Command History Example This command has no default behavior or values. ROUTER OSPF Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 39-3. Command Example: router-id Force10(conf)#router ospf 100 Force10(conf-router_ospf)#router-id 1.1.1.
PAGE 1038
www.dell.com | support.dell.com Example Figure 39-4. Command Example: router ospf Force10(conf)#router ospf 2 Force10(conf-router_ospf)# Usage Information You must have an IP address assigned to an interface to enter the ROUTER OSPF mode and configure OSPF. Once the OSPF process and the VRF are tied together, the OSPF Process ID cannot be used again in the system. show config ces Syntax Command Modes Display the non-default values in the current OSPF configuration.
PAGE 1039
Usage Information Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. If you delete all the network area commands for Area 0, the show ip ospf command output will not list Area 0. Example Figure 39-6.
PAGE 1040
www.dell.com | support.dell.com EXEC Privilege Command History Usage Information Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.8.1.0 Introduced process-id option, in support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process.
PAGE 1041
Usage Information Example If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. Figure 39-8. Command Example: show ip ospf process-id database database-summary Force10#show ip ospf database database-summary ! OSPF Router with ID (200.1.1.1) (Process ID 1) Area ID 0 Example Router Net 4 3 Figure 39-9.
PAGE 1042
www.dell.com | support.dell.com show ip ospf database asbr-summary ces Syntax Parameters Display information about AS Boundary LSAs. show ip ospf process-id database asbr-summary [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
PAGE 1043
Table 39-4. Command Output Descriptions: show ip ospf database asbr-summary Item Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: • • • Related Commands TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits.
PAGE 1044
www.dell.com | support.dell.com Usage Information Example Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. Figure 39-11. Command Example: show ip ospf database external Force10#show ip ospf 1 database external OSPF Router with ID (20.20.20.
PAGE 1045
Table 39-5. external Related Commands Command Example Descriptions: show ip ospf process-id database Item Description LS Seq Number Identifies the link state sequence number. This number enables you to identify old or duplicate LSAs. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. Metrics Type Displays the external type. TOS Displays the TOS options.
PAGE 1046
www.dell.com | support.dell.com Usage Information Example If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. Figure 39-12. Command Example: show ip ospf process-id database network Force10#show ip ospf 1 data network OSPF Router with ID (20.20.20.5) (Process ID 1) Network (Area 0.0.0.
PAGE 1047
Related Commands show ip ospf database Displays OSPF database information. show ip ospf database nssa-external ces Syntax Parameters Display NSSA-External (type 7) LSA information. show ip ospf database nssa-external [link-state-id] [adv-router ip-address] link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
PAGE 1048
www.dell.com | support.dell.com EXEC Privilege Command History Usage Information Example Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. Figure 39-13.
PAGE 1049
Table 39-7. Command Example Descriptions: show ip ospf process-id database opaque-area Related Commands Item Description Opaque Type Displays the Opaque type field (the first 8 bits of the Link State ID). Opaque ID Displays the Opaque type-specific ID (the remaining 24 bits of the Link State ID). show ip ospf database Displays OSPF database information. show ip ospf database opaque-as ces Syntax Parameters Display the opaque-as (type 11) LSA information.
PAGE 1050
www.dell.com | support.dell.com Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
PAGE 1051
Usage Information Example Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. Figure 39-14. Command Example: show ip ospf process-id database router (Partial) Force10#show ip ospf 100 database router OSPF Router with ID (1.1.1.
PAGE 1052
www.dell.com | support.dell.com Table 39-8. Command Example Descriptions: show ip ospf process-id database router Item Description LS Age Displays the LSA age. Options Displays the optional capabilities available on router. The following options can be found in this item: • • • Related Commands TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
PAGE 1053
Command Modes EXEC EXEC Privilege Command History Usage Information Example Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. Figure 39-15.
PAGE 1054
www.dell.com | support.dell.com Table 39-9. summary Command Example Descriptions: show ip ospf process-id database Items Description LS Age Displays the LSA age. Options Displays the optional capabilities available on router. The following options can be found in this item: • • • Related Commands TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
PAGE 1055
Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the null interface, enter the keyword null followed by zero (0).
PAGE 1056
www.dell.com | support.dell.com Example Figure 39-16. Command Example: show ip ospf process-id interface Force10>show ip ospf int GigabitEthernet 13/17 is up, line protocol is up Internet Address 192.168.1.2/30, Area 0.0.0.1 Process ID 1, Router ID 192.168.253.2, Network Type BROADCAST, Cost: 1 Transmit Delay is 1 sec, State DR, Priority 1 Designated Router (ID) 192.168.253.2, Interface address 192.168.1.2 Backup Designated Router (ID) 192.168.253.1, Interface address 192.168.1.
PAGE 1057
Parameters Command Modes process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. EXEC EXEC Privilege Command History Usage Information Example Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
PAGE 1058
www.dell.com | support.dell.com EXEC Privilege Command History Usage Information Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed.
PAGE 1059
(OPTIONAL) Enter the keyword interface followed by one of the following interface keywords and slot/port or number information: interface name For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series and S-Series Range: 1-128 • • E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 1060
www.dell.com | support.dell.com Table 39-12.
PAGE 1061
The show ip ospf process-id statistics command displays the error packet count received on each interface as: • • • • • • • • Example The hello-timer remaining value for each interface The wait-timer remaining value for each interface The grace-timer remaining value for each interface The packet count received and transmitted for each neighbor Dead timer remaining value for each neighbor Transmit timer remaining value for each neighbor The LSU Q length and its highest mark for each neighbor The LSR Q lengt
PAGE 1062
www.dell.com | support.dell.com Usage Information Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series If you are using Multi-Process OSPF, you must enter the Process ID to view information regarding a specific OSPF process. If you do not enter the Process ID, only the first configured process is listed. This command can be used to isolate problems with inter-area and external routes.
PAGE 1063
Table 39-14. Command Example Descriptions: show ip ospf process-id virtual-links Items Description “Virtual Link...” This line specifies the OSPF neighbor to which the virtual link was created and the link’s status. “Run as...” This line states the nature of the virtual link. “Transit area...” This line identifies the area through which the virtual link was created, the interface used, and the cost assigned to that link. “Transmit Delay...
PAGE 1064
www.dell.com | support.dell.com With “not-advertise” parameter configured, this command can be used to filter out some external routes. For example, you want to redistribute static routes to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.0. Then you can configure summary-address 1.1.0.0 255.255.0.0 not-advertise to filter out all the routes fall in range 1.1.0.0/16. Related Commands area range Summarizes routes within an area.
PAGE 1065
OSPFv3 Commands Open Shortest Path First version 3 (OSPFv3) for IPv6 is supported on the c and e platforms. Note: The C-Series supports OSPFv3 with FTOS version 7.8.1.0 and later. The fundamental mechanisms of OSPF (flooding, DR election, area support, SPF calculations, etc.) remain unchanged. However, OSPFv3 runs on a per-link basis instead of on a per-IP-subnet basis. Most changes were necessary to handle the increased address size of IPv6.
PAGE 1066
www.dell.com | support.dell.com area authentication et Configure an IPsec authentication policy for OSPFv3 packets in an OSPFv3 area. Syntax area area-id authentication ipsec spi number {MD5 | SHA1} [key-encryption-type] key Parameters Default Command Modes Command History Usage Information area area-id Area for which OSPFv3 traffic is to be authenticated. For area-id, you can enter a number or an IPv6 prefix.
PAGE 1067
area encryption et Configure an IPsec encryption policy for OSPFv3 packets in an OSPFv3 area. Syntax area area-id encryption ipsec spi number esp encryption-algorithm [key-encryption-type] key authentication-algorithm [key-encryption-type] key Parameters Default Command Modes Command History Usage Information area area-id Area for which OSPFv3 traffic is to be encrypted. For area-id, you can enter a number or an IPv6 prefix.
PAGE 1068
www.dell.com | support.dell.com The configuration of IPsec encryption on an interface-level takes precedence over an area-level configuration. If you remove an interface configuration, an area encryption policy that has been configured is applied to the interface. To remove an IPsec encryption policy from an interface, enter the no area area-id encryption spi number command. Related Commands - ipv6 ospf encryption Configure an IPsec encryption policy on an OSPFv3 interface.
PAGE 1069
Command History Example Version 7.8.1.0 Added support for C-Series Version 7.4.1.0 Introduced Figure 39-23. debug ipv6 ospf packet Command Example Force10#debug ipv6 ospf packet OSPFv3 packet related debugging is on for all interfaces 05:21:01 : OSPFv3: Sending, Ver:3, Type:1(Hello), Len:40, Router ID:223.255.255.254, Area ID:0, Inst:0, on Po 255 05:21:03 : OSPFv3: Received, Ver:3, Type:1(Hello), Len:40, Router ID:223.255.255.
PAGE 1070
www.dell.com | support.dell.com (OPTIONAL) Enter the keyword metric-type followed by the OSPFv3 link state type of 1 or 2 for default routes. The values are: metric-type type-value 1 = Type 1 external route 2 = Type 2 external route Default: 2 route-map map-name Defaults Command Modes Command History Related Commands (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Disabled ROUTER OSPFv3 Version 7.8.1.0 Added support for C-Series Version 7.4.1.
PAGE 1071
graceful-restart mode et Syntax Specify the type of events that trigger an OSPFv3 graceful restart. graceful-restart mode [planned-only | unplanned-only] To disable the configured graceful-restart mode, enter no graceful-restart mode. Parameters Defaults Command Modes (OPTIONAL) Enter the keywords planned-only to indicate graceful restart is supported in a planned restart condition only.
PAGE 1072
www.dell.com | support.dell.com Command History Version 7.4.1.0 Introduced ipv6 ospf authentication et Configure an IPsec authentication policy for OSPFv3 packets on an IPv6 interface. Syntax ipv6 ospf authentication {null | ipsec spi number {MD5 | SHA1} [key-encryption-type] key} Parameters Default Command Modes Command History Usage Information null Causes an authentication policy configured for the area to not be inherited on the interface.
PAGE 1073
ipv6 ospf encryption et Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface. Syntax ipv6 ospf encryption {null | ipsec spi number esp encryption-algorithm [key-encryption-type] key authentication-algorithm [key-encryption-type] key} Parameters null Causes an encryption policy configured for the area to not be inherited on the interface. ipsec spi number Security Policy index (SPI) value that identifies an IPsec security policy. Range: 256 to 4294967295.
PAGE 1074
www.dell.com | support.dell.com Related Commands - area encryption Configure an IPsec encryption policy for an OSPFv3 area. show crypto ipsec policy Display the configuration of IPsec encryption policies. show crypto ipsec sa ipv6 Display the security associations set up for OSPFv3 interfaces in encryption policies. ipv6 ospf cost ce Explicitly specify the cost of sending a packet on an inter.
PAGE 1075
Command History Usage Information Related Commands Version 7.8.1.0 Added support for C-Series Version 7.4.1.0 Introduced By default, the dead interval is four times longer than the default hello-interval. ipv6 ospf hello-interval Specify the time interval between hello packets ipv6 ospf graceful-restart helper-reject et Syntax Configure an OSPFv3 interface to not act upon the Grace LSAs that it receives from a restarting OSPFv3 neighbor.
PAGE 1076
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 7.8.1.0 Added support for C-Series Version 7.4.1.0 Introduced The time interval between hello packets must be the same for routers in a network. ipv6 ospf dead-interval Set the time interval since the last hello-packet was received from a router. ipv6 ospf priority ce Set the priority of the interface to determine the Designated Router for the OSPFv3 network.
PAGE 1077
Command History Version 7.8.1.0 Added support for C-Series Version 7.4.1.0 Introduced passive-interface ce Disable (suppress) sending routing updates on an interface. Syntax passive-interface interface To enable sending routing updates on an interface, use the no passive-interface interface command.
PAGE 1078
www.dell.com | support.dell.com Parameters bgp as number Enter the keyword bgp followed by the autonomous system number. Range: 1 to 65535 connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static redistribute manually configured routes. metric metric-value Enter the keyword metric followed by the metric value.
PAGE 1079
Command History Usage Information Version 7.8.1.0 Added support for C-Series Version 7.4.1.0 Introduced You can configure an arbitrary value in the IP address for each router. However, each router ID must be unique. If this command is used on an OSPFv3 process that is already active (has neighbors), all the neighbor adjacencies are brought down immediately and new sessions are initiated with the new router ID.
PAGE 1080
www.dell.com | support.dell.com Example Figure 39-24.
PAGE 1081
show crypto ipsec sa ipv6 et Display the IPsec security associations (SAs) used on OSPFv3 interfaces. Syntax show crypto ipsec sa ipv6 [interface interface] Parameters interface interface (OPTIONAL) Displays information about the SAs used on a specified OSPFv3 interface, where interface is one of the following values: • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter GigabitEthernet slot/port. For a Port Channel interface, enter port-channel number.
PAGE 1082
www.dell.com | support.dell.com Example Figure 39-25.
PAGE 1083
show ipv6 ospf database ce Display information in the OSPFv3 database, including link-state advertisements (LSAs). Syntax show ipv6 ospf database [database-summary | grace-lsa] Parameters Defaults Command Modes database-summary (OPTIONAL) Enter the keywords database-summary to view a summary of database LSA information. grace-lsa (OPTIONAL) E-Series TeraScale only: Enter the keywords grace-lsa to display the Type-11 Grace LSAs sent and received on an OSPFv3 router.
PAGE 1084
www.dell.com | support.dell.com Example Figure 39-27. show ipv6 ospf database database-summary Command Force10#show ipv6 ospf database database-summary OSPFv3 Router with ID (1.1.1.
PAGE 1085
Parameters interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Example For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 1086
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: C-Series Range: 1-128 E-Series Range: 1 to 32 for EtherScale, 1 to 255 for TeraScale and 1 to 512 for ExaScale.
PAGE 1087
40 Policy-based Routing (PBR) Overview Policy-based Routing (PBR) enables you to apply routing policies to specific interfaces. To enable PBR, you create a redirect list and then apply it to the interface. Once the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. PBR is supported by FTOS on the C-Series, E-Series, and S-Series platforms.
PAGE 1088
www.dell.com | support.dell.com description ces Syntax Add a description to this redirect list. description {description} To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description to identify the IP redirect list (80 characters maximum). No default behavior or values REDIRECT-LIST Version 8.4.2.1 Introduced on the C-Series and S-Series Version 8.4.2.
PAGE 1089
If the next hop address is reachable, traffic is forwarded to the specified next hop. Otherwise the normal routing table is used to forward traffic. When a redirect-group is applied to an interface and the next-hop is reachable, the rules are added into the PBR CAM region. When incoming traffic hits an entry in the CAM, the traffic is redirected to the corresponding next-hop IP address specified in the rule. Note: Apply redirect list to physical, VLAN, or LAG interfaces only.
PAGE 1090
www.dell.com | support.dell.com permit ces Syntax Configure a rule for the redirect list. permit {ip-protocol-number | protocol-type} {source mask | any | host ip-address} {destination mask | any | host ip-address} [bit] [operators] To remove the rule, use one of the following: If you know the filter sequence number, use the no seq sequence-number syntax.
PAGE 1091
redirect ces Syntax Configure a rule for the redirect list. redirect {ip-address | sonet slot/port} {ip-protocol-number | protocol-type [bit]} {source mask | any | host ip-address} {destination mask | any | host ip-address} [operator] To remove this filter, use one of the following: • • Parameters Use the no seq sequence-number command syntax if you know the filter’s sequence number.
PAGE 1092
www.dell.com | support.dell.com Command History Version 8.4.2.1 Introduced on the C-Series and S-Series Version 8.4.2.0 Introduced on the E-Series TeraScale Version 7.4.1.0 Added the bit variable for TCP protocols only Version 6.5.3.0 Introduced on the E-Series ExaScale seq ces Syntax Configure a filter with an assigned sequence number for the redirect list.
PAGE 1093
bit (OPTIONAL) For TCP protocol type only, enter one or a combination of the following TCP flags: • • • • • • operator (OPTIONAL) For TCP and UDP parameters only.
PAGE 1094
www.dell.com | support.dell.com show cam pbr ces Syntax Parameters Defaults Command Modes Command History Example Display the PBR CAM content. show cam pbr {[interface interface] | linecard slot-number port-set number]} [summary] interface interface Enter the keyword interface followed by the name of the interface. linecard slot-number Enter the keyword linecard followed the slot number.
PAGE 1095
show ip redirect-list ces Syntax Parameters Command Modes View the redirect list configuration and the interfaces it is applied to. show ip redirect-list redirect-list-name redirect-list-name Enter the name of a configured Redirect list. EXEC EXEC Privilege Example Figure 40-2. show ip redirect-list Command Example Force10#show ip redirect-list test_sonet IP redirect-list rcl0: Defined as: seq 5 permit ip any host 182.16.2.10 seq 10 redirect 182.16.1.
PAGE 1096
www.dell.com | support.dell.
PAGE 1097
41 PIM-Dense Mode (PIM-DM) Overview PIM-DM is supported on E-Series ExaScale ex in FTOS 8.1.1.0. and later. PIM-DM is supported on E-Series TeraScale et, C-Series c, and S-Series s platforms in FTOS 8.4.2.0. and later.
PAGE 1098
www.dell.com | support.dell.com ip pim dense-mode ces Syntax Enable PIM Dense-Mode (PIM-DM) Multicast capability for the specified interface. ip pim dense-mode To disable PIM-DM, use the no ip pim dense-mode command. Defaults Command Modes Command History Example Disabled INTERFACE Version 8.4.2.1 Introduced on the C-Series and S-Series Version 8.4.2.0 Introduced on the E-Series TeraScale Version 8.1.1.0 Introduced on the E-Series ExaScale Version 6.5.1.0 Introduced Figure 41-1.
PAGE 1099
42 PIM-Sparse Mode (PIM-SM) Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading. PIM is supported on E-Series ExaScale ex with FTOS 8.1.1.0. and later.
PAGE 1100
www.dell.com | support.dell.com • • • • • • • • • show ip pim interface show ip pim neighbor show ip pim rp show ip pim snooping interface show ip pim snooping neighbor show ip pim snooping tib show ip pim summary show ip pim tib show running-config pim clear ip pim rp-mapping ces Syntax Parameters Command Modes Command History Used by the bootstrap router (BSR) to remove all or particular Rendezvous Point (RP) Advertisement.
PAGE 1101
clear ip pim snooping tib ces Syntax Parameters Command Modes Command History Related Commands Clear tree information discovered by PIM-SM snooping from the PIM database. clear ip pim snooping tib [vlan vlan-id] [group-address] vlan vlan-id (OPTIONAL) Enter a VLAN ID to clear TIB information learned through PIM-SM snooping about a specified VLAN. Valid VLAN IDs: 1 to 4094. group-address (OPTIONAL) Enter a multicast group address in dotted decimal format (A.B.C.
PAGE 1102
www.dell.com | support.dell.com Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series ip pim bsr-border ces Syntax Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. ip pim bsr-border To return to the default value, enter no ip pim bsr-border. Defaults Command Modes Command History Usage Information Disabled INTERFACE Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.
PAGE 1103
Defaults Command Modes Not configured. CONFIGURATION Command History Version 7.8.1.0 Introduced on S-Series Version 6.1.1.0 Added support for VLAN interface ip pim dr-priority ces Syntax Change the Designated Router (DR) priority for the interface. ip pim dr-priority priority-value To remove the DR priority value assigned, use the no ip pim dr-priority command. Parameters Defaults Command Modes Command History Usage Information priority-value Enter a number.
PAGE 1104
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information restart-time (OPTIONAL) Enter the keyword restart-time followed by the number of seconds estimated for the PIM speaker to restart. Range: 30 to 300 seconds Default: 180 seconds stale-entry-time (OPTIONAL) Enter the keyword stale-entry-time followed by the number of seconds for which entries are kept alive after restart. Range: 30 to 300 seconds Default: 60 seconds as above CONFIGURATION Version 8.2.1.
PAGE 1105
Example Figure 42-1. ip pim join-filter Command Example Force10(conf)# ip access-list extended iptv-channels Force10(config-ext-nacl)# permit ip 10.1.2.3/24 225.1.1.0/24 Force10(config-ext-nacl)# permit ip any 232.1.1.0/24 Force10(config-ext-nacl)# permit ip 100.1.1.0/16 any Force10(config-if-gi-1/1)# ip pim join-filter iptv-channels in Force10(config-if-gi-1/1)# ip pim join-filter iptv-channels out Related Commands ip access-list extended Configure an access list based on IP addresses or protocols.
PAGE 1106
www.dell.com | support.dell.com Usage Information Do not enter this command before creating the access-list. ip pim query-interval ces Syntax Change the frequency of PIM Router-Query messages. ip pim query-interval seconds To return to the default value, enter no ip pim query-interval seconds command. Parameters Defaults Command Modes Command History seconds Enter a number as the number of seconds between router query messages. Default: 30 seconds Range: 0 to 65535 30 seconds INTERFACE Version 8.1.
PAGE 1107
ip pim rp-address ces Syntax Configure a static PIM Rendezvous Point (RP) address for a group or access-list. ip pim rp-address address {group-address group-address mask} override To remove an RP address, use the no ip pim rp-address address {group-address group-address mask} override command. Parameters Defaults Command Modes Command History Usage Information address Enter the RP address in dotted decimal format (A.B.C.D).
PAGE 1108
www.dell.com | support.dell.com ip pim rp-candidate ces Syntax Configure a PIM router to send out a Candidate-RP-Advertisement message to the Bootstrap (BS) router or define group prefixes that are defined with the RP address to PIM BSR. ip pim rp-candidate {interface [priority] To return to the default value, enter no ip pim rp-candidate {interface [priority] command.
PAGE 1109
ip pim snooping ex Syntax Enable PIM-SM snooping globally on a switch or on a VLAN interface. ip pim snooping [enable] To disable PIM-SM snooping enter the no form of the command. Defaults Command Modes Disabled. CONFIGURATION: To configure PIM-SM snooping globally, enter the ip pim snooping enable command in global configuration mode. VLAN INTERFACE: To configure PIM-SM snooping on a VLAN interface, enter the ip pim snooping command in VLAN interface configuration mode.
PAGE 1110
www.dell.com | support.dell.com ip pim sparse-mode ces Syntax Enable PIM sparse mode and IGMP on the interface. ip pim sparse-mode To disable PIM sparse mode and IGMP, enter no ip pim sparse-mode. Defaults Command Modes Command History Usage Information Disabled. INTERFACE Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series on port-channels and S-Series C-Series supports a maximum of 31 PIM interfaces.
PAGE 1111
ip pim spt-threshold ce Configure PIM router to switch to shortest path tree when the traffic reaches the specified threshold value. Syntax ip pim spt-threshold value | infinity To return to the default value, enter no ip pim spt-threshold. Parameters Defaults Command Modes Command History Usage Information value (OPTIONAL) Enter the traffic value in kilobits per second. Default: 10 packets per second. A value of zero (0) will cause a switchover on the first packet.
PAGE 1112
www.dell.com | support.dell.com Related Commands ip pim snooping Enable PIM-SM snooping. show ip pim bsr-router ces Syntax Command Modes View information on the Bootstrap router. show ip pim bsr-router EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series Figure 42-2.
PAGE 1113
Table 42-1. show ip pim interface Command Example Fields Field Description Address Lists the IP addresses of the interfaces participating in PIM. Interface List the interface type, with either slot/port information or ID (VLAN or Port Channel), of the interfaces participating in PIM. Ver/Mode Displays the PIM version number and mode for each interface participating in PIM. • • v2 = PIM version 2 S = PIM Sparse mode Nbr Count Displays the number of PIM neighbors discovered over this interface.
PAGE 1114
www.dell.com | support.dell.com Table 42-2. show ip pim neighbor Command Example Fields Field Description Ver Displays the PIM version number. • DR prio/Mode v2 = PIM version 2 Displays the Designated Router priority and the mode. • • • 1 = default Designated Router priority (use ip pim dr-priority) DR = Designated Router S = Sparse mode show ip pim rp ces Syntax Parameters Command Modes View all multicast groups-to-RP mappings.
PAGE 1115
Example 3 Figure 42-7. show ip pim rp group-address Command Example 3 Force10#sh ip pim rp 229.1.2.1 Group RP 229.1.2.1 165.87.20.4 Force10# show ip pim snooping interface ex Syntax Parameters Command Modes Display information on VLAN interfaces with PIM-SM snooping enabled. show ip pim snooping interface [vlan vlan-id] vlan vlan-id (OPTIONAL) Enter a VLAN ID to display information about a specified VLAN configured for PIM-SM snooping. Valid VLAN IDs: 1 to 4094.
PAGE 1116
www.dell.com | support.dell.com show ip pim snooping neighbor ex Syntax Parameters Command Modes Display information on PIM neighbors learned through PIM-SM snooping. show ip pim snooping neighbor [vlan vlan-id] vlan vlan-id (OPTIONAL) Enter a VLAN ID to display information about PIM neighbors that was discovered by PIM-SM snooping on a specified VLAN. Valid VLAN IDs: 1 to 4094. EXEC EXEC Privilege Command History Example Version 8.4.1.1 Figure 42-9.
PAGE 1117
show ip pim snooping tib ex Syntax Parameters Command Modes Display information from the tree information base (TIB) discovered by PIM-SM snooping about multicast group members and states. show ip pim snooping tib [vlan vlan-id] [group-address [source-address]] vlan vlan-id (OPTIONAL) Enter a VLAN ID to display TIB information discovered by PIM-SM snooping on a specified VLAN. Valid VLAN IDs: 1 to 4094. group-address (OPTIONAL) Enter the group address in dotted decimal format (A.B.C.
PAGE 1118
www.dell.com | support.dell.com Table 42-5. show ip pim snooping tib Command Example Fields Field Description (S, G) Displays the entry in the PIM multicast snooping database. uptime Displays the amount of time the entry has been in the PIM multicast route table. expires Displays the amount of time until the entry expires and is removed from the database. RP Displays the IP address of the RP/source for this entry.
PAGE 1119
show ip pim summary ces Syntax Command Modes View information about PIM-SM operation. show ip pim summary EXEC EXEC Privilege Command History Example Version 8.4.1.1 Support for the display of PIM-SM snooping status was added on E-Series ExaScale Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series Figure 42-11.
PAGE 1120
www.dell.com | support.dell.com show ip pim tib ces Syntax Parameters Command Modes View the PIM tree information base (TIB). show ip pim tib [group-address [source-address]] group-address (OPTIONAL) Enter the group address in dotted decimal format (A.B.C.D). source-address (OPTIONAL) Enter the source address in dotted decimal format (A.B.C.D). EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series Figure 42-12.
PAGE 1121
Table 42-6.
PAGE 1122
www.dell.com | support.dell.
PAGE 1123
Parameters bsr (OPTIONAL) Enter the keyword bsr to invoke debugging of IPv6 PIM Candidate RP/BSR activities. events (OPTIONAL) Enter the keyword events to invoke debugging of IPv6 PIM events. group group (OPTIONAL) Enter the keyword group followed by the group address to invoke debugging on that specific group. packet (OPTIONAL) Enter the keyword packet to invoke debugging of IPv6 PIM packets.
PAGE 1124
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
PAGE 1125
ipv6 pim join-filter e Syntax Parameters Defaults Command Modes Command History Example Permit or deny PIM Join/Prune messages on an interface using an access list. This command prevents the PIM-SM router from creating state based on multicast source and/or group. ipv6 pim join-filter access-list access-list Enter the name of an extended access list. in Enter this keyword to apply the access list to inbound traffic. out Enter this keyword to apply the access list to outbound traffic.
PAGE 1126
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information None CONFIGURATION Version 8.3.1.0 Introduced Do not enter this command before creating the access-list. ipv6 pim register-filter e Syntax Parameters Defaults Command Modes Command History Example Configure the source DR so that it does not send register packets to the RP for the specified sources and groups.
PAGE 1127
Defaults Command Modes Command History Usage Information No default values or behavior CONFIGURATION Version 7.4.1.0 Introduced The RP addresses are stored in the order in which they are entered. RP addresses learnt via BSR take priority over static RP addresses. Without the override option, RPs advertised by the BSR updates take precedence over the statically configured RPs. ipv6 pim rp-candidate e Syntax Parameters Specify an interface as an RP candidate.
PAGE 1128
www.dell.com | support.dell.com ipv6 pim sparse-mode e Syntax Enable IPv6 PIM sparse mode on the interface. ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, enter no ipv6 pim sparse-mode. Defaults Command Modes Command History Usage Information Disabled INTERFACE Version 7.4.1.0 Introduced The interface must be enabled (no shutdown command) and not have the switchport command configured. Multicast must also be enabled globally. PIM is supported on the port-channel interface.
PAGE 1129
show ipv6 pim bsr-router e Syntax Command Modes View information on the bootstrap router (v2). show ipv6 pim bsr-router EXEC EXEC Privilege Command History Version 7.4.1.0 Example Figure 42-13.
PAGE 1130
www.dell.com | support.dell.com Parameters Command Modes detail (OPTIONAL) Enter the keyword detail to displayed PIM neighbor detailed information. EXEC EXEC Privilege Command History Version 7.4.1.0 Example Figure 42-15.
PAGE 1131
Example 2 Figure 42-17. show ipv6 pim rp mapping Command Example Force10#show ipv6 pim rp mapping PIM Group-to-RP Mappings Group(s): ff00::/8 RP: 14::1, v2 Info source: 14::1, via bootstrap, priority 192 Uptime: 00:03:37, expires: 00:01:53 Group(s): ff00::/8, Static RP: 14::2, v2 Force10# show ipv6 pim tib e Syntax Parameters View the IPv6 PIM multicast-routing database (tree information base—tib).
PAGE 1132
| PIM-Sparse Mode (PIM-SM) www.dell.com | support.dell.
PAGE 1133
43 PIM-Source Specific Mode (PIM-SSM) Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading. PIM is supported on E-Series ExaScale ex with FTOS 8.1.1.0. and later.
PAGE 1134
www.dell.com | support.dell.com ip pim ssm-range ces Syntax Parameters Defaults Command Modes Command History Usage Information Specify the SSM group range using an access-list. ip pim ssm-range {access_list_name} access_list_name Enter the name of the access list. Default SSM range is 232/8 and ff3x/32 CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series. Version 7.5.1.0 Introduced on E-Series.
PAGE 1135
Version 7.7.1.0 Introduced on C-Series. Version 7.5.1.0 Introduced on E-Series.
PAGE 1136
www.dell.com | support.dell.com When the SSM ACL is removed, the default range is restored. When SSM range is configured, FTOS supports SSM for configured group range as well as default SSM range. show ipv6 pim ssm-range e Syntax Command Modes Display the non-default groups added using the SSM range feature. show ipv6 pim ssm-range EXEC EXEC Privilege Command History Example Version 7.4.1.0 Figure 43-1.
PAGE 1137
44 Power over Ethernet (PoE) Overview FTOS supports Power over Ethernet (PoE), as described by IEEE 802.3af, on C-Series and S-Series systems (S25V and S50V models), as indicated by the c and s characters, respectively, that appear below each command heading.
PAGE 1138
www.dell.com | support.dell.com Command Modes CONFIGURATION Command History Usage Information Version 7.7.1.0 Introduced on S-Series Setting a value above 320 causes a warning to be displayed that the device might lose power redundancy. power inline cs Enable power to be supplied to a device connected to a port. Syntax [no] power inline {auto [max_milliwatts] | static [max_milliwatts]} To disable power to a port that has been enabled for PoE, use the no power inline command.
PAGE 1139
Parameters Defaults Command Modes Enter the keyword critical to set the PoE priority of the port to the highest level. high Enter the keyword high to set the PoE priority of the port to the second highest level. low Enter the keyword low to set the PoE priority of the port to the lowest level. none INTERFACE Command History Usage Information critical Version 7.7.1.
PAGE 1140
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 8.4.1.0 Inline Power Used removed from output. Version 7.7.1.0 Introduced on S-Series Version 4.2.1.
PAGE 1141
Example Force10(conf-if-range-gi-0/1-48)#do show power inline Interface Admin Inline Power Inline Power Class Allocated Consumed (Watts) (Watts) --------------------------------------Gi 0/1 auto 0.00 0.00 NO_DEVICE Gi 0/2 auto 7.00 3.20 2 Table 44-2. User Priority ---------Low Low show power inline Command Output Field Description Interface Displays the line card slot and port number. Admin Displays the PoE mode of the port. The mode can be either auto or static. See power budget.
PAGE 1142
www.dell.com | support.dell.com Table 44-4 describes the nine possible power supply conditions. Table 44-3. Power Supply Conditions AC Fail S-Series Example The PSU is unplugged. Active The PSU is supplying power to the chassis. Fail The PSU has failed. Not Present The PSU is not installed in the chassis. Over Current Shutdown The PSU has turned off due to an high input current condition. Over Temperature Shutdown The PSU has turned off due to an high temperature condition.
PAGE 1143
45 Port Monitoring Overview The Port Monitoring feature enables you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. The Remote Port Mirroring feature allows you to monitor traffic on multiple source ports on different switches and transport mirrored packets on a dedicated L2 VLAN to multiple destination ports on different switches.
PAGE 1144
www.dell.com | support.dell.com Important Points to Remember • • • • • • • • • • • On the E-Series, Port Monitoring is supported on TeraScale and ExaScale platforms. Port Monitoring is supported on physical ports only. Logical interfaces, such as Port Channels and VLANs, are not supported. FTOS supports as many monitor sessions on a system as the number of port-pipes. A SONET port can only be configured as a monitored port.
PAGE 1145
flow-based enable e Syntax Enable flow-based monitoring. flow-based enable To disable flow-based monitoring, use the no flow-based enable command. Defaults Command Modes Command History Usage Information Related Commands Disabled, that is flow-based monitoring is not applied MONITOR SESSION (conf-mon-sess-session-ID) Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.4.1.
PAGE 1146
www.dell.com | support.dell.com mode remote-port-mirroring ex Syntax Defaults Command Modes Command History Example Configure a L2 VLAN as the VLAN used to transport mirrored traffic in a remote-port mirroring session. mode remote-port-mirroring No default values or behaviors VLAN INTERFACE Version 8.4.1.2 Figure 45-1. Introduced on the E-Series ExaScale.
PAGE 1147
monitor session ces Syntax Create a session for monitoring traffic with port monitoring or remote port mirroring. monitor session session-ID To delete a session, use the no monitor session session-ID command. To delete all monitor sessions, use the no monitor session all command. Parameters Defaults Command Modes session-ID No default values or behaviors MONITOR SESSION (conf-mon-sess-session-ID) Command History Example Enter a session identification number. Range: 0 to 65535 Version 8.4.1.
PAGE 1148
www.dell.com | support.dell.com show config ces Syntax Defaults Command Modes Command History Display the current monitor session configuration. show config No default values or behavior MONITOR SESSION (conf-mon-sess-session-ID) Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.
PAGE 1149
show monitor session ces Syntax Display the monitor information of a particular session or all sessions. show monitor session {session-ID} To display monitoring information for all sessions, use the show monitor session command. Parameters Defaults Command Modes session-ID (OPTIONAL) Enter a session identification number. Range: 0 to 65535 No default values or behavior EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.
PAGE 1150
www.dell.com | support.dell.com show running-config monitor session ces Syntax Display the running configuration of all monitor sessions or a specific session. show running-config monitor session {session-ID} To display the running configuration for all monitor sessions, use just the show running-config monitor session command. Parameters Defaults Command Modes session-ID (OPTIONAL) Enter a session identification number.
PAGE 1151
source (port monitoring) ces Syntax Configure a port monitor source. source interface destination interface direction {rx | tx | both} To disable a monitor source, use the no source interface destination interface direction {rx | tx | both} command. Parameters interface Enter the one of the following keywords and slot/port information: • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 1152
www.dell.com | support.dell.com source (remote port mirroring) ex Configure one or more source ports, the ingress/egress traffic to be mirrored, and the reserved L2 VLAN used to transport mirrored traffic.
PAGE 1153
Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command History Example Version 8.4.1.2 Figure 45-5. Introduced on the E-Series ExaScale. Command Example: Configuring a Source Port Force10(conf-mon-sess-11)#source gigabitethernet 10/0 destination remote-vlan 2 direction rx Force10(conf-mon-sess-11)# Usage Information You can configure physical ports, port-channels, and VLANs as sources in remote port mirroring and use them in the same source session.
PAGE 1154
www.dell.com | support.dell.com source remote vlan (remote port mirroring) ex Associate the reserved L2 VLAN used to transport mirrored traffic in remote port mirroring with a destination session and configure the destination ports to which an analyzer is connected. Syntax source remote vlan vlan-id destination {single-interface | range {interface-list | interface-range | mixed-interface-list}} Parameters vlan-id VLAN ID of the reserved L2 VLAN used for remote port mirroring.
PAGE 1155
Usage Information You can configure any port as a destination port. You cannot configure a VLAN, port-channel, or SONET interface as a destination port You can configure additional destination ports in an active session. You can tunnel the mirrored traffic from multiple remote-port source sessions to the same destination port. You can configure a destination port to send only tagged or untagged traffic to the analyzer.
PAGE 1156
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.4.1.2 Introduced on the E-Series ExaScale. To reconfigure destination ports in a remote-port mirroring session as untagged ports, enter the untagged destination command. untagged destination Configure destination ports to remove the reserved VLAN tag from mirrored traffic.
PAGE 1157
46 Private VLAN (PVLAN) Overview Starting with FTOS 7.8.1.0, the Private VLAN (PVLAN) feature of FTOS is available for the C-Series and S-Series: c s Commands • • • • • • • ip local-proxy-arp private-vlan mode private-vlan mapping secondary-vlan show interfaces private-vlan show vlan private-vlan show vlan private-vlan mapping switchport mode private-vlan See also the following commands. The command output is augmented in FTOS 7.8.1.
PAGE 1158
www.dell.com | support.dell.com Community VLAN: A community VLAN is a secondary VLAN of the primary VLAN: • • Ports in a community VLAN can talk to each other. Also, all ports in a community VLAN can talk to all promiscuous ports in the primary VLAN and vice-versa. Devices on a community VLAN can communicate with each other via member ports, while devices in an isolated VLAN cannot.
PAGE 1159
Command History Version 7.8.1.0 Related Commands Introduced on C-Series and S-Series private-vlan mode Set the mode of the selected VLAN to community, isolated, or primary. private-vlan mapping secondary-vlan Map secondary VLANs to the selected primary VLAN. show arp Display the ARP table. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN.
PAGE 1160
www.dell.com | support.dell.com show vlan private-vlan mapping Display primary-secondary VLAN mapping. switchport mode private-vlan Set the PVLAN mode of the selected port. private-vlan mapping secondary-vlan cs Map secondary VLANs to the selected primary VLAN. Syntax [no] private-vlan mapping secondary-vlan vlan-list To remove specific secondary VLANs from the configuration, use the no private-vlan mapping secondary-vlan vlan-list command syntax.
PAGE 1161
Command Modes EXEC EXEC Privilege Command History Usage Information Examples Version 7.8.1.0 Introduced on C-Series and S-Series This command has two types of display — a list of all PVLAN interfaces or for a specific interface. Examples of both types of output are shown below. Figure 46-1.
PAGE 1162
www.dell.com | support.dell.com Parameters Defaults Command Modes community (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces. interface (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces. isolated (OPTIONAL) Enter the keyword isolated to display VLANs configured as isolated VLANs, along with their interfaces.
PAGE 1163
Force10# show vlan private-vlan community Primary Secondary Type Active Ports ------- --------- --------- ------ -----------------------10 primary Yes Gi 2/1,3 101 community Yes Gi 2/7-10 20 primary Yes Po 10, 12-13 Gi 3/1 201 community No 202 community Yes Gi 3/11-12 Force10# show vlan private-vlan interface Gi 2/1 Primary Secondary Type Active Ports ------- --------- --------- ------ -----------------------10 primary Yes Gi 2/1 If the VLAN ID is that of a primary VLAN, then the entire private VLAN outpu
PAGE 1164
www.dell.com | support.dell.com show vlan private-vlan mapping Display primary-secondary VLAN mapping. switchport mode private-vlan Set the PVLAN mode of the selected port. show vlan private-vlan mapping cs Display primary-secondary VLAN mapping. Syntax show vlan private-vlan mapping Defaults Command Modes none EXEC EXEC Privilege Command History Usage Information Version 7.8.1.
PAGE 1165
Defaults Command Modes Command History Usage Information Example promiscuous Enter promiscuous to configure the selected port or port channel as an promiscuous interface, as described above. trunk Enter trunk to configure the selected port or port channel as a trunk port in a PVLAN, as described above. disabled INTERFACE Version 7.8.1.0 Introduced on C-Series and S-Series The assignment of the various PVLAN port types to port and port channel (LAG) interfaces is demonstrated below. Figure 46-6.
PAGE 1166
| Private VLAN (PVLAN) www.dell.com | support.dell.
PAGE 1167
47 Per-VLAN Spanning Tree plus (PVST+) Overview The FTOS implementation of PVST+ (Per-VLAN Spanning Tree plus) is based on the IEEE 802.1d standard Spanning Tree Protocol, but it creates a separate spanning tree for each VLAN configured.
PAGE 1168
www.dell.com | support.dell.com To enable PVST+, enter no disable. Defaults Command Modes Command History Related Commands PVST+ is disabled CONFIGURATION (conf-pvst) Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series protocol spanning-tree pvst Enter PVST+ mode. description ces Syntax Enter a description of the PVST+ description {description} To remove the description, use the no description {description} command.
PAGE 1169
extend system-id ces Syntax Defaults Command Modes Command History Example Use Extend System ID to augment the Bridge ID with a VLAN ID so that PVST+ differentiate between BPDUs for each VLAN. If for some reason on VLAN receives a BPDU meant for another VLAN, PVST+ will then not detect a loop, and both ports can remain in forwarding state. extend system-id Disabled PROTOCOL PVST Version 8.3.1.
PAGE 1170
www.dell.com | support.dell.com protocol spanning-tree pvst ces Syntax Enter the PVST+ mode to enable PVST+ on a device. protocol spanning-tree pvst To disable PVST+, use the disable command. Defaults Command Modes Command History Example This command has no default value or behavior. CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced Figure 47-1.
PAGE 1171
show spanning-tree pvst ces Syntax Parameters View the Per-VLAN Spanning Tree configuration. show spanning-tree pvst [vlan vlan-id] [brief] [guard] vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID. Range: 1 to 4094 brief (OPTIONAL) Enter the keyword brief to view a synopsis of the PVST+ configuration information.
PAGE 1172
www.dell.com | support.dell.com Example 1 Figure 47-2. show spanning-tree pvst brief Command Force10#show spanning-tree pvst vlan 3 brief VLAN 3 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 4096, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 16384, Address 0001.e805.e306 Configured hello time 2, max age 20, forward delay 15 Example 2 Interface Name ---------Gi 1/0 Gi 1/1 Gi 1/16 Gi 1/17 PortID -------128.130 128.131 128.146 128.
PAGE 1173
Example 3 Figure 47-4.
PAGE 1174
www.dell.com | support.dell.com spanning-tree pvst ces Configure a PVST+ interface with one of these settings: edge port with optional Bridge Port Data Unit (BPDU) guard, port disablement if an error condition occurs, port priority or cost for a VLAN range, loop guard, or root guard.
PAGE 1175
Command History Usage Information Version 8.5.1.0 Introduced the loopguard and rootguard options on the E-Series ExaScale. Version 8.4.2.1 Introduced the loopguard and rootguard options on the E-Series TeraScale, C-Series, and S-Series. Version 8.2.1.0 Introduced hardware shutdown-on-violation option Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Added the optional Bridge Port Data Unit (BPDU) guard Version 6.2.1.
PAGE 1176
www.dell.com | support.dell.com spanning-tree pvst err-disable ces Syntax Defaults Command Modes Command History Usage Information Place ports in an err-disabled state if they receive a PVST+ BPDU when they are members an untagged VLAN. spanning-tree pvst err-disable cause invalid-pvst-bpdu Enabled; ports are placed in err-disabled state if they receive a PVST+ BPDU when they are members of an untagged VLAN. INTERFACE Version 8.2.1.
PAGE 1177
vlan bridge-priority ces Syntax Set the PVST+ bridge-priority for a VLAN or a set of VLANs. vlan vlan-range bridge-priority value To return to the default value, enter no vlan bridge-priority command. Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). Range: 1 to 4094 bridge-priority value Enter the keyword bridge-priority followed by the bridge priority value in increments of 4096.
PAGE 1178
www.dell.com | support.dell.com vlan forward-delay ces Syntax vlan vlan-range forward-delay seconds To return to the default setting, enter no vlan forward-delay command. Parameters Defaults Command Modes Command History Related Commands 1178 Set the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. | vlan vlan-range Enter the keyword vlan followed by the VLAN number(s).
PAGE 1179
vlan hello-time ces Syntax Set the time interval between generation of PVST+ Bridge Protocol Data Units (BPDUs). vlan vlan-range hello-time seconds To return to the default value, enter no vlan hello-time command. Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). Range: 1 to 4094 hello-time seconds Enter the keyword hello-time followed by the time interval, in seconds, between transmission of BPDUs.
PAGE 1180
www.dell.com | support.dell.com vlan max-age ces Syntax vlan vlan-range max-age seconds To return to the default, use the no vlan max-age command. Parameters Defaults Command Modes Command History Related Commands 1180 Set the time interval for the PVST+ bridge to maintain configuration information before refreshing that information. | vlan vlan-range Enter the keyword vlan followed by the VLAN number(s).
PAGE 1181
48 Quality of Service (QoS) Overview FTOS commands for Quality of Service (QoS) include traffic conditioning and congestion control. QoS commands are not universally supported on all Dell Force10 platforms. Support is indicated by the c e and s characters under command headings.
PAGE 1182
www.dell.com | support.dell.com Per-Port QoS Commands Per-port QoS (“port-based QoS”) allows users to defined QoS configuration on a per-physical-port basis. The commands include: • • • • • • • dot1p-priority rate limit rate police rate shape service-class dynamic dot1p show interfaces rate strict-priority queue dot1p-priority ces Syntax Assign a value to the IEEE 802.1p bits on the traffic received by this interface. dot1p-priority priority-value To delete the IEEE 802.
PAGE 1183
Usage Information The dot1p-priority command changes the priority of incoming traffic on the interface. The system places traffic marked with a priority in the correct queue and processes that traffic according to its queue. When you set the priority for a Port Channel, the physical interfaces assigned to the Port Channel are configured with the same value. You cannot assign a dot1p-priority command to individual interfaces in a Port Channel.
PAGE 1184
www.dell.com | support.dell.com If you receive the error message: %Error: Specified VLANs overlap with existing config. after configuring VLANs in the rate police command, check to see if the same VLANs are used in rate limit command on other interfaces. To clear the problem, remove the rate limit configuration(s), and re-configure the rate police command. After the rate police command is configured, return to the other interfaces and re-apply the rate limit configuration.
PAGE 1185
C-Series and S-Series On one interface, you can configure the rate police command for a VLAN or you can configure the rate police command for an interface. For each physical interface, you can configure three rate police commands specifying different VLANS. E-Series On one interface, you can configure the rate limit or rate police command for a VLAN or you can configure the rate limit or the rate police command for the interface.
PAGE 1186
www.dell.com | support.dell.com Related Commands rate-shape Shape traffic output as part of the designated policy. service-class dynamic dot1p ces Syntax Honor all 802.1p markings on incoming switched traffic on an interface (from INTERFACE mode) or on all interfaces (from CONFIGURATION mode). A CONFIGURATION mode entry supersedes INTERFACE mode entries. service-class dynamic dot1p To return to the default setting, enter no service-class dynamic dot1p.
PAGE 1187
On the C-Series and S-Series all traffic is by default mapped to the same queue, Queue 0. If you honor dot1p on ingress, then you can create service classes based the queueing strategy using the command service-class dynamic dot1p from INTERFACE mode. You may apply this queuing strategy to all interfaces by entering this command from CONFIGURATION mode. • • All dot1p traffic is mapped to Queue 0 unless service-class dynamic dot1p is enabled on an interface or globally.
PAGE 1188
www.dell.com | support.dell.com Command Mode EXEC EXEC Privilege Command History Example pre-Version 6.1.1.1 Figure 48-1.
PAGE 1189
Figure 48-2.
PAGE 1190
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information No default behavior or value CONFIGURATION Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Once a unicast queue is configured as strict-priority, that particular queue, on the entire chassis, is treated as strict-priority queue. Traffic for a strict priority is scheduled before any other queues are serviced.
PAGE 1191
• • • • • • • • • • • • • • • show cam layer2-qos show cam layer3-qos show qos class-map show qos policy-map show qos policy-map-input show qos policy-map-output show qos qos-policy-input show qos qos-policy-output show qos statistics show qos wred-profile test cam-usage threshold trust wred wred-profile bandwidth-percentage e Syntax Assign a percentage of weight to class/queue. bandwidth-percentage percentage To remove the bandwidth percentage, use the no bandwidth-percentage command.
PAGE 1192
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information Related Commands weight Enter the weight assignment to queue. Range: 1 to 1024 (in increments of powers of 2: 2, 4, 8, 16, 32, 64, 128, 256, 512, or 1024) No default behavior or values CONFIGURATION (conf-qos-policy-out) Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series This command provides a minimum bandwidth guarantee to traffic flows in a particular queue.
PAGE 1193
Related Commands ip access-list extended Configure an extended IP ACL. ip access-list standard Configure a standard IP ACL. match ip access-group Configure the match criteria based on the access control list (ACL) match ip precedence Identify IP precedence values as match criteria match ip dscp Configure the match criteria based on the DSCP value match mac access-group Configure a match criterion for a class map, based on the contents of the designated MAC ACL.
PAGE 1194
www.dell.com | support.dell.com match ip access-group ces Syntax Configure match criteria for a class map, based on the access control list (ACL). match ip access-group access-group-name [set-ip-dscp value] To remove ACL match criteria from a class map, enter no match ip access-group access-group-name [set-ip-dscp value] command.
PAGE 1195
Related Commands policy-map-input Create an input policy map. policy-map-output Create an output policy map. qos-policy-input Create an input QOS-policy on the router. qos-policy-output Create an output QOS-policy on the router. wred-profile Create a WRED profile. match ip dscp ces Syntax Use a DSCP (Differentiated Services Code Point) value as a match criteria.
PAGE 1196
www.dell.com | support.dell.com Related Commands class-map Identify the class map. match ip precedence ces Syntax Use IP precedence values as a match criteria. match ip precedence ip-precedence-list [[multicast] set-ip-dscp value] To remove IP precedence as a match criteria, enter no match ip precedence ip-precedence-list [[multicast] set-ip-dscp value] command.
PAGE 1197
match mac access-group ces Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Configure a match criterion for a class map, based on the contents of the designated MAC ACL. match mac access-group {mac-acl-name} mac-acl-name Enter a MAC ACL name. Its contents will be used as the match criteria in the class map. No default values or behavior class-map Version 8.2.1.0 Available on the C-Series and S-Series. Version 7.5.1.
PAGE 1198
www.dell.com | support.dell.com match mac vlan ces Syntax Configure a match criterion for a class map based on a VLAN ID. match mac vlan {vlan-id | vlan-list | vlan-range | mixed-vlan-list} Parameters Defaults Command Modes Command History Usage Information vlan-id Enter the VLAN ID. Valid VLAN IDs are from 1 to 4094 vlan-list S25 and S50 only: Enter two or more VLAN IDs separated by a comma: vlan-id,vlan-id,vlan-id,...
PAGE 1199
policy-aggregate ces Syntax Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface. policy-aggregate qos-policy-name To remove a policy aggregate configuration, use no policy-aggregate qos-policy-name command.
PAGE 1200
www.dell.com | support.dell.com configurations in per-queue output QoS policies are ignored. Scheduling and queuing configurations (WRED and Bandwidth) in the per-queue output QoS policy still apply to each queue. Related Commands policy-map-input Create an input policy map policy-map-output Create an output policy map (E-Series Only) policy-map-input ces Syntax Create an input policy map.
PAGE 1201
Parameters Defaults Command Modes Command History Usage Information Related Commands policy-map-name Enter the name for the policy map in character format (16 characters maximum). No default behavior or values CONFIGURATION Version 8.2.1.0 Policy name character limit increased from 16 to 32. Version 7.6.1.0 Introduced on C-Series and S-Series pre-Version 6.1.1.1 Introduced on E-Series Output policy map is used to assign traffic to different flows using QoS policy.
PAGE 1202
www.dell.com | support.dell.com When changing a “service-queue” configuration in a QoS policy map, all QoS rules are deleted and re-added automatically to ensure that the order of the rules is maintained. As a result, the Matched Packets value shown in the “show qos statistics” command is reset. Note: On ExaScale, FTOS cannot classify IGMP packets on a Layer 2 interface using Layer 3 policy map. The packets always take the default queue, Queue 0, and cannot be rate-policed.
PAGE 1203
Defaults Command Modes No default behavior or values CONFIGURATION Command History Version 7.7.1.0 Introduced on E-Series queue egress e Syntax Assign a WRED Curve to all eight egress Multicast queues or designate the percentage for the Multicast bandwidth queue.
PAGE 1204
www.dell.com | support.dell.com The no form of the command without multicast-bandwidth and wred-profile, will remove both the wred-profile and multicast-bandwidth configuration. On 10 Gigabit ports only, the multicast bandwidth option will work only if the total unicast bandwidth is more than the multicast bandwidth. If strict priority is applied along with multicast-bandwidth, the effect of strict priority is on all ports where unicast and multicast bandwidth are applied.
PAGE 1205
rate-limit e Syntax Parameters Specify the rate-limit functionality on outgoing traffic as part of the selected policy. rate-limit [kbps] committed-rate [burst-KB] [peak [kbps] peak-rate [burst-KB]] kbps Enter this keyword to specify the rate limit in Kilobits per second (Kbps). On the E-Series, Dell Force10 recommends using a value greater than or equal to 512 as lower values does not yield accurate results. The default granularity is Megabits per second (Mbps).
PAGE 1206
www.dell.com | support.dell.com burst-KB (OPTIONAL) Enter the burst size in KB. Range: 16 to 200000 KB Default: 50 KB peak peak-rate (OPTIONAL) Enter the keyword peak followed by the peak rate in Mbps. Range: 0 to 10000 Mbps Default: Same as designated for committed-rate Defaults Command Modes Command History Related Commands Burst size is 50 KB. peak-rate is by default the same as committed-rate. Granularity for committed-rate and peak-rate is Mbps unless the kbps option is used.
PAGE 1207
On 40-port 10G line cards, if the traffic is shaped between 64 and 1000kbs, for some values the shaped rate is much less than the value configured. Do not use values in this range for 10G interfaces. Related Commands rate shape Shape the traffic output of the selected interface. qos-policy-output Create a QoS output policy. service-policy input ces Syntax Apply an input policy map to the selected interface.
PAGE 1208
www.dell.com | support.dell.com service-policy output ces Syntax Apply an output policy map to the selected interface. service-policy output policy-map-name To remove the output policy map from the interface, use the no service-policy output policy-map-name command. Parameters Defaults policy-map-name Enter the name for the policy map in character format (16 characters maximum). You can identify an existing policy map or name one that does not yet exist.
PAGE 1209
Command History Usage Information Related Commands Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series There are eight (8) queues per interface on the E-Series and four (4) queues per interface on the C-Series and S-Series. This command assigns a class map or QoS policy to different queues. class-map Identify the class map. service-policy input Apply an input policy map to the selected interface.
PAGE 1210
www.dell.com | support.dell.com show cam layer2-qos e Syntax Parameters Display the Layer 2 QoS CAM entries. show cam layer2-qos {[linecard number port-set number] | [interface interface]} [summary] linecard number Enter the keyword linecard followed by the line card slot number. E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. port-set number Enter the keyword port-set followed by the line card’s port pipe.
PAGE 1211
show cam layer3-qos e Syntax Display the Layer 3 QoS CAM entries. show cam layer3-qos {[linecard number port-set number] | [interface interface]} [summary] Parameters linecard number Enter the keyword linecard followed by the line card slot number. E-Series Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. port-set number Enter the keyword port-set followed by the line card’s port pipe.
PAGE 1212
www.dell.com | support.dell.com Example Figure 48-6. show cam layer3-qos linecard port-set Command Output Force10#show cam layer3-qos linecard 13 port-set 0 Cam Port Dscp Proto Tcp Src Dst SrcIp DstIp DSCP Queue Index Flag Port Port Marking ---------------------------------------------------------------------------------------24511 1 0 TCP 0x5 2 5 1.0.0.1/24 2.0.0.2/24 TRUST-DSCP 24512 1 0 UDP 0x2 2 5 8.0.0.8/24 8.0.0.8/24 23 3 Force10# Example Figure 48-7.
PAGE 1213
Example Figure 48-9. show qos class-map Command Output Force10#show qos class-map Class-map match-any CM Match ip access-group ACL Related Commands class-map Identify the class map show qos policy-map ces Syntax Parameters View the QoS policy map information.
PAGE 1214
www.dell.com | support.dell.com Example 1 Figure 48-10. show qos policy-map detail (IPv4) Command Output Force10#show qos policy-map detail gigabitethernet 0/0 Interface GigabitEthernet 4/1 Policy-map-input policy Trust diffserv Queue# Class-map-name 0 1 CM1 2 CM2 3 CM3 4 CM4 5 CM5 6 CM6 7 CM7 Force10# Example 2 Figure 48-11.
PAGE 1215
Command Modes EXEC EXEC Privilege Command History Example 1 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 E-Series Only: Added Trust IPv6 diffserv Version 6.2.1.1 Introduced on E-Series Figure 48-13.
PAGE 1216
www.dell.com | support.dell.com Example Figure 48-15. show qos policy-map-output Command Output Force10#show qos policy-map-output Policy-map-output PolicyMapOutput Aggregate Qos-policy-name AggPolicyOut Queue# Qos-policy-name 0 qosPolicyOutput Force10# show qos qos-policy-input ces Syntax Parameters Defaults Command Modes View the input QoS policy details. show qos qos-policy-input [qos-policy-name] qos-policy-name Enter the QoS policy name.
PAGE 1217
Example Figure 48-17. show qos qos-policy-output Command Output Force10#show qos qos-policy-output Qos-policy-output qosOut Rate-limit 50 50 peak 50 50 Wred yellow 1 Wred green 1 show qos statistics ces Syntax Parameters View QoS statistics.
PAGE 1218
www.dell.com | support.dell.com Usage Information The show qos statistics command can be used on the C-Series, but the wred-profile keyword must be omitted in the syntax. The show qos statistics output differs from the ED and EE series line cards and the EF series line cards. The QoS statistics for the EF series generates two extra columns, Queued Pkts and Dropped Pkts, see Example 2. Note: The show qos statistics command displays Matched Packets and Matched Bytes.
PAGE 1219
Example 2 Figure 48-19. show qos statistics Command Output (EF Series of E-Series) Force10#show qos statistics gig 0/1 Queue# Queued Bytes (Cumulative) 0 0 0 0 0 0 0 0 0 1 2 3 4 5 6 7 Queued Pkts (Cumulative) 0 0 0 0 0 0 0 0 Matched Pkts Matched Bytes Dropped Pkts 1883725 1883725 1883725 1883725 1883725 1883724 1883720 1883720 1883725000 1883725000 1883725000 1883725000 1883725000 1883724000 1883720000 1883720000 0 0 0 0 0 0 0 0 Force10# Table 48-5.
PAGE 1220
www.dell.com | support.dell.com Table 48-6.
PAGE 1221
port-set portpipe number linecard all Defaults Command Modes (OPTIONAL) Enter the keywords linecard all to indicate all line cards. No default values or behavior EXEC Command History Example Enter the keyword port-set followed by the line card’s port pipe number. Range: 0 or 1 Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series Figure 48-22.
PAGE 1222
www.dell.com | support.dell.com Table 48-7. Usage Information test cam-usage Command Example Fields Field Description Estimated CAM per Port Indicates the number of free CAM entries required (for the classification rules) to apply the input policy map on a single interface. Note: The CAM entries for the default rule are not included in this column; a CAM entry for the default rule is always dedicated to a port and is always available for that interface.
PAGE 1223
Table 48-8. Related Commands Pre-defined WRED Profile Threshold Values Pre-defined WRED Profile Name Minimum Threshold Maximum Threshold wred_drop 0 0 wred_ge_y 1024 2048 wred_ge_g 2048 4096 wred_teng_y 4096 8192 wred_teng_g 8192 16384 wred-profile Create a WRED profile. trust ces Syntax Parameters Defaults Command Modes Command History Usage Information Specify dynamic classification (DSCP) or dot1p to trust.
PAGE 1224
www.dell.com | support.dell.com Table 48-9.
PAGE 1225
wred-ecn Use Explicit Congestion Notification (ECN) to indicate network congestion, rather than dropping packets. Syntax wred-ecn Use the no wred-ecn command to stop marking packets. Defaults Command Modes No default behavior or values CONFIGURATION (conf-qos-policy-out) Command History Usage Information Version 8.3.8.0 Introduced on S4810 When wred-ecn is enabled, and the number of packets in the queue is below the minimum threshold, packets are transmitted per the usual WRED treatment.
PAGE 1226
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION pre-Version 6.1.1.1 Introduced on E-Series Use the default pre-defined profiles or configure your own profile. You can not delete the pre-defined profiles or their default values. This command enables the WRED configuration mode—(conf-wred).
PAGE 1227
Command History Usage Information Related Commands Version 6.2.1.1 Introduced If a Policy QoS is applied on an interface when clear queue statistics egress is issued, it will clear the egress counters in show queue statistics and vice-versa. This behavior is due to the values being read from the same hardware registers.
PAGE 1228
www.dell.com | support.dell.com Parameters unicast | multicast (OPTIONAL) Enter the keyword multicast to display only Multicast queue statistics. Enter the keyword unicast to display only Unicast queue statistics. Default: Both Unicast and Multicast queue statistics are displayed. Interface (OPTIONAL) Enter one of the following interfaces to display the interface specific queue statistics.
PAGE 1229
Example 1 Figure 48-23.
PAGE 1230
www.dell.com | support.dell.com Example 2 Figure 48-24.
PAGE 1231
Example 3 Figure 48-25. show queue statistics egress brief Command Output Force10#show queue statistics egress brief LC Portpipe PortPipe 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 1 1 1 1 1 1 1 1 1 1 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 Force10# Table 48-13.
PAGE 1232
www.dell.com | support.dell.com Parameters Defaults Command Modes unicast [src-card ID [dst-card ID]] (OPTIONAL) Enter the keyword unicast to display Unicast queue statistics. Optionally, enter the source card identification (src-card ID) and the destination card identification (dst-card ID) to display the unicast statistics from the source card to the destination card.
PAGE 1233
Figure 48-26.
PAGE 1234
www.dell.com | support.dell.com Table 48-15.
PAGE 1235
Example 2 Figure 48-27.
PAGE 1236
www.dell.com | support.dell.com Example 3 Figure 48-28.
PAGE 1237
49 Router Information Protocol (RIP) Overview Router Information Protocol (RIP) is a Distance Vector routing protocol. FTOS supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2) on C-Series and E-Series and S-Series systems, as indicated by the characters that appear below each command heading: • • • C-Series: c E-Series: e S-Series: s Note: The C-Series platform supports RIP with FTOS version 7.6.1.0 and later. The S-Series platform supports RIP with FTOS version 7.8.1.0 and later. Prior to 7.6.
PAGE 1238
www.dell.com | support.dell.com • • • • • • • • • • • output-delay passive-interface redistribute redistribute isis redistribute ospf router rip show config show ip rip database show running-config rip timers basic version auto-summary ces Syntax Restore the default behavior of automatic summarization of subnet routes into network routes. This command applies only to RIP version 2. auto-summary To send sub-prefix routing information, enter no auto-summary. Default Enabled.
PAGE 1239
Syntax debug ip rip [interface | database | events [interface] | packet [interface] | trigger] To turn off debugging output, use the no debug ip rip command. Parameters interface (OPTIONAL) Enter the interface type and ID as one of the following: • • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 1240
www.dell.com | support.dell.com Defaults Disabled. metric: 1 Command Modes ROUTER RIP Command History Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage Information The default route must be present in the switch routing table for the default-information originate command to take effect. default-metric ces Syntax Change the default metric for routes.
PAGE 1241
Defaults No default behavior or values Command Modes ROUTER RIP Command History Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-7.7.1.0 Introduced on E-Series router rip Enter ROUTER mode on the switch. Related Commands distance ces Syntax Assign a weight (for prioritization) to all routes in the RIP routing table or to a specific route. Lower weights (“administrative distance”) are preferred.
PAGE 1242
www.dell.com | support.dell.com Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 1243
isis (OPTIONAL) Enter the keyword isis to filter only IS-IS routes. Note: This option is only available on E-Series. Defaults ospf (OPTIONAL) Enter the keyword ospf to filter all OSPF routes. static (OPTIONAL) Enter the keyword static to filter manually configured routes. Not configured. Command Modes ROUTER RIP Command History Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.
PAGE 1244
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands INTERFACE Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series If you want the interface to receive both versions of RIP, enter ip rip receive version 1 2. ip rip send version Sets the RIP version to be used for sending RIP traffic on an interface. version Sets the RIP version to be used for the switch software.
PAGE 1245
Defaults Command Modes Enabled INTERFACE Command History Related Commands Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series ip poison-reverse Set the prefix for RIP routing updates. maximum-paths ces Syntax Set RIP to forward packets over multiple paths. maximum-paths number To return to the default values, enter no maximum-paths. Parameters Defaults number Enter the number of paths. Range: 1 to 16.
PAGE 1246
www.dell.com | support.dell.com Command History Usage Information Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series When a neighbor router is identified, unicast data exchanges occur. Multiple neighbor routers are possible. Use the passive-interface command in conjunction with the neighbor command to ensure that only specific interfaces are receiving and sending data.
PAGE 1247
offset Enter a number from zero (0) to 16 to be applied to the incoming route metric matching the access list specified. If you set an offset value to zero (0), no action is taken. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Defaults For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 1248
www.dell.com | support.dell.com Usage Information This command is intended for low-speed interfaces. passive-interface ces Syntax Suppress routing updates on a specified interface. passive-interface interface To delete a passive interface, use the no passive-interface interface command. Parameters interface Enter the following information: • • • • • Defaults For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 1249
Parameters Defaults connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed. static Enter the keyword static to specify that information from static routes is redistributed. Not configured. Command Modes ROUTER RIP Command History Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage Information Related Commands To redistribute the default route (0.0.0.
PAGE 1250
www.dell.com | support.dell.com Usage Information IS-IS is not supported on S-Series systems. redistribute ospf ces Syntax Redistribute routing information from an OSPF process. redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] To disable redistribution, enter no redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] command.
PAGE 1251
Usage Information Example To enable RIP, you must assign a network address using the network command. Figure 49-1. router rip Command Example Force10(conf)#router rip Force10(conf-router_rip)# Related Commands network Enable RIP. exit Return to the CONFIGURATION mode. show config ces Display the changes you made to the RIP configuration. Default values are not shown. Syntax show config Command Modes ROUTER RIP Command History Version 7.8.1.0 Introduced on S-Series Version 7.6.1.
PAGE 1252
www.dell.com | support.dell.com Example Figure 49-3. show ip rip database Command Example (partial) Force10#show ip rip database Total number of routes in RIP database: 1624 204.250.54.0/24 [50/1] via 192.14.1.3, 00:00:12, GigabitEthernet 9/15 204.250.54.0/24 auto-summary 203.250.49.0/24 [50/1] via 192.13.1.3, 00:00:12, GigabitEthernet 9/14 203.250.49.0/24 auto-summary 210.250.40.0/24 [50/2] via 1.1.18.2, 00:00:14, Vlan 18 [50/2] via 1.1.130.2, 00:00:12, Port-channel 30 210.250.40.0/24 auto-summary 207.
PAGE 1253
Command History Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series timers basic ces Syntax Manipulate the RIP timers for routing updates, invalid, holddown times and flush time. timers basic update invalid holddown flush To return to the default settings, enter no timers basic. Parameters Defaults update Enter the number of seconds to specify the rate at which RIP routing updates are sent. Range: zero (0) to 4294967295.
PAGE 1254
www.dell.com | support.dell.com version ces Syntax version {1 | 2} To return to the default version setting, enter no version. Parameters Default 1 Enter the keyword 1 to specify RIP version 1. 2 Enter the keyword 2 to specify RIP version 2. The FTOS sends RIPv1 and receives RIPv1 and RIPv2. Command Modes ROUTER RIP Command History Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.
PAGE 1255
50 Remote Monitoring (RMON) Overview FTOS RMON is implemented on all Dell Force10 switching platforms (C-Series, E-Series, and S-Series), as indicated by the characters that appear below each command heading: • • • C-Series: c E-Series: e S-Series: s FTOS RMON is based on IEEE standards, providing both 32-bit and 64-bit monitoring, and long-term statistics collection.
PAGE 1256
www.dell.com | support.dell.com • • • • • • • • rmon hc-alarm show rmon show rmon alarms show rmon events show rmon hc-alarm show rmon history show rmon log show rmon statistics rmon alarm ces Syntax Set an alarm on any MIB object. rmon alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon alarm number command.
PAGE 1257
Command History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series rmon collection history ces Syntax Enable the RMON MIB history group of statistics collection on an interface. rmon collection history {controlEntry integer} [owner name] [buckets number] [interval seconds] To remove a specified RMON history group of statistics collection, use the no rmon collection history {controlEntry integer} command.
PAGE 1258
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value. Then enter an integer value from 1 to 65535 that identifies the RMON Statistic Table. The integer value must be a unique in the RMON Statistic Table. owner name (OPTIONAL) Enter the keyword owner followed by the owner name to record the owner of the RMON group of statistics.
PAGE 1259
rmon hc-alarm ces Syntax Set an alarm on any MIB object. rmon hc-alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon hc-alarm number command. Parameters Defaults Command Modes Command History number Enter the alarm integer number from 1 to 65535. The value must be unique in the RMON Alarm Table. variable The MIB object to monitor.
PAGE 1260
www.dell.com | support.dell.com Command Modes Command History Example EXEC Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series Figure 50-1. show rmon Command Example Force10# show rmon RMON status total memory used 218840 bytes.
PAGE 1261
Example 2 Figure 50-3. show rmon alarms brief Command Example Force10#show rmon alarm br index SNMP OID -------------------------------------------------------------------1 1.3.6.1.2.1.1.3 2 1.3.6.1.2.1.1.3 3 1.3.6.1.2.1.1.3 4 1.3.6.1.2.1.1.3 5 1.3.6.1.2.1.1.3 6 1.3.6.1.2.1.1.3 7 1.3.6.1.2.1.1.3 8 1.3.6.1.2.1.1.3 9 1.3.6.1.2.1.1.3 10 1.3.6.1.2.1.1.3 11 1.3.6.1.2.1.1.3 12 1.3.6.1.2.1.1.3 13 1.3.6.1.2.1.1.3 14 1.3.6.1.2.1.1.3 15 1.3.6.1.2.1.1.3 16 1.3.6.1.2.1.1.3 17 1.3.6.1.2.1.1.3 18 1.3.6.1.2.1.1.3 19 1.
PAGE 1262
www.dell.com | support.dell.com Example 2 Figure 50-5. show rmon event brief Command Example Force10#show rmon event br index description -------------------------------------------------------------------1 1 2 2 3 3 4 4 5 5 6 6 7 7 8 8 9 9 10 10 11 11 12 12 13 13 14 14 15 15 16 16 17 17 18 18 19 19 20 20 21 21 22 22 Force10# show rmon hc-alarm ces Syntax Parameters Defaults Command Modes Command History Example 1 Display the contents of RMON High-Capacity Alarm Table.
PAGE 1263
Example 2 Figure 50-7. show rmon hc-alarm index Command Example Force10#show rmon hc-alarm 1 RMON high-capacity alarm entry 1 object: 1.3.6.1.2.1.1.3 sample interval: 5 sample type: absolute value. value: 185638 alarm type: rising or falling alarm. alarm rising threshold value: positive. rising threshold: 1001, RMON event index: 1 alarm falling threshold value: positive. falling threshold: 999, RMON event index: 6 alarm sampling failed 0 times. alarm owner: 1 alarm storage type: non-volatile.
PAGE 1264
www.dell.com | support.dell.com Example 2 Figure 50-9.
PAGE 1265
show rmon statistics ces Syntax Parameters Defaults Command Modes Command History Example 1 Display the contents of RMON Ethernet Statistics table. show rmon statistics [index] [brief] index (OPTIONAL) Enter the index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet Statistics table in an easy-to-read format. No default behavior EXEC Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.1.1.
PAGE 1266
www.dell.com | support.dell.com Example 2 1266 Figure 50-13.
PAGE 1267
51 Rapid Spanning Tree Protocol (RSTP) Overview The FTOS implementation of RSTP (Rapid Spanning Tree Protocol) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged LAN that is comprised of LANs interconnected by bridges.
PAGE 1268
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands priority-value Enter a number as the bridge priority value in increments of 4096. Range: 0 to 61440. Default: 32768 32768 CONFIGURATION RSTP (conf-rstp) Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.
PAGE 1269
Example Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series Figure 51-1. debug spanning-tree rstp bpdu Command Example Force10#debug spanning-tree rstp bpdu gigabitethernet 2/0 ? in Receive (in) out Transmit (out) description ces Syntax Enter a description of the Rapid Spanning Tree description {description} To remove the description, use the no description {description} command.
PAGE 1270
www.dell.com | support.dell.com forward-delay ces Syntax Configure the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. forward-delay seconds To return to the default setting, enter no forward-delay. Parameters Defaults Command Modes Command History Related Commands seconds Enter the number of seconds that FTOS waits before transitioning RSTP to the forwarding state.
PAGE 1271
Usage Information The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256. Millisecond hello times are encoded using values less than 256; the millisecond hello time equals (x/1000)*256. When millisecond hellos are configured, the default hello interval of 2 seconds is still used for edge ports; the millisecond hello interval is not used.
PAGE 1272
www.dell.com | support.dell.com protocol spanning-tree rstp ces Syntax Enter the RSTP mode to configure RSTP. protocol spanning-tree rstp To exit the RSTP mode, enter exit Defaults Command Modes Not configured CONFIGURATION RSTP (conf-rstp) Command History Example Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series Figure 51-2.
PAGE 1273
show spanning-tree rstp ces Syntax Parameters Command Modes Display the RSTP configuration. show spanning-tree rstp [brief] [guard] brief (OPTIONAL) Enter the keyword brief to view a synopsis of the RSTP configuration information. guard (OPTIONAL) Enter the keyword guard to display the type of guard enabled on an RSTP interface and the current port state. EXEC EXEC Privilege Command History Example 1 Version 8.5.1.0 Support for the optional guard keyword was added on the E-Series ExaScale.
PAGE 1274
www.dell.com | support.dell.com Example 2 Figure 51-5. show spanning-tree rstp with EDS and LBK Force10#show spanning-tree rstp br Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 0001.e801.
PAGE 1275
spanning-tree rstp ces Syntax Parameters Defaults Command Modes Command History Configure an RSTP interface with one of these settings: port cost, edge port with optional Bridge Port Data Unit (BPDU) guard, port priority, loop guard, or root guard. spanning-tree rstp {cost port-cost | edge-port [bpduguard [shutdown-on-violation]] | priority priority | {loopguard | rootguard}} cost port-cost Enter the keyword cost followed by the port cost value.
PAGE 1276
www.dell.com | support.dell.com Usage Information The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, is misconfigured, or is subject to a DOS attack. This option places the port into an error disable state if a BPDU appears, and a message is logged so that the administrator can take corrective action. Note: A port configured as an edge port, on an RSTP switch, will immediately transition to the forwarding state.
PAGE 1277
tc-flush-standard ces Syntax Enable the MAC address flushing upon receiving every topology change notification. tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Command Modes Command History Usage Information Disabled CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.5.1.0 Introduced for E-Series By default FTOS implements an optimized flush mechanism for RSTP.
PAGE 1278
www.dell.com | support.dell.
PAGE 1279
52 Security Overview Except for the Trace List feature (E-Series only), most of the commands in this chapter are available on all three Dell Force10 platforms — C-Series, E-Series, and S-Series (the S-Series models that run FTOS), as noted by the following icons that appear under each command icon: c e s Commands This chapter contains various types of security commands in FTOS, in the following sections: • • • • • • • • • AAA Accounting Commands Authorization and Privilege Commands Authentication and Pass
PAGE 1280
www.dell.com | support.dell.com • • accounting show accounting aaa accounting ces Syntax Enable AAA Accounting and create a record for monitoring the accounting function. aaa accounting {system | exec | commands level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} To disable AAA Accounting, use the no aaa accounting {system | exec | command level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} command.
PAGE 1281
Related Commands enable password Change the password for the enable command. login authentication Enable AAA login authentication on terminal lines. password Create a password. tacacs-server host Specify a TACACS+ server host. aaa accounting suppress ces Syntax Prevent the generation of accounting records of users with user name value of NULL.
PAGE 1282
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Introduced for C-Series Version 6.3.1.0 Introduced on E-Series aaa accounting Enable AAA Accounting and create a record for monitoring the accounting function. show accounting ces Syntax Defaults Command Modes Display the active accounting sessions for each online user. show accounting No default configuration or behavior EXEC Command History Example Version 7.6.1.0 Introduced for S-Series Version 7.5.1.
PAGE 1283
Parameters exec Enter this keyword to apply an EXEC level authorization method list. commands level Enter this keyword to apply an EXEC and CONFIGURATION level authorization method list. method-list Enter a method list that you defined using the command aaa authorization exec or aaa authorization commands. Defaults None Command Modes LINE Command History Usage Information Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series Version 6.3.1.
PAGE 1284
www.dell.com | support.dell.com aaa authorization config-commands e Syntax Set parameters that restrict (or permit) a user’s access to EXEC level commands. aaa authorization config-commands Disable authorization checking for CONFIGURATION level commands using the command no aaa authorization config-commands. Defaults Command Modes Command History Usage Information Enabled when you configure aaa authorization commands CONFIGURATION Version 7.5.1.
PAGE 1285
privilege level (CONFIGURATION mode) ces Syntax Change the access or privilege level of one or more commands. privilege mode {level level | reset} To delete access to a level and command, use the no privilege mode level level command.
PAGE 1286
www.dell.com | support.dell.com Command History Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.
PAGE 1287
method Enter one of the following methods: • enable - use the password defined by the enable password command in the CONFIGURATION mode. • line - use the password defined by the password command in the LINE mode. • none - no authentication. radius - use the RADIUS server(s) configured with the radius-server • tacacs+ - use the TACACS+ server(s) configured with the tacacs-server • host command. host command. ...
PAGE 1288
www.dell.com | support.dell.com method Enter one of the following methods: • enable - use the password defined by the enable password command in the CONFIGURATION mode. • line - use the password defined by the password command in the LINE mode. • local - use the user name/password defined by the in the local configuration. • none - no authentication.
PAGE 1289
access-class ces Syntax Restrict incoming connections to a particular IP address in a defined IP access control list (ACL). access-class access-list-name To delete a setting, use the no access-class command. Parameters Defaults Command Modes Command History Related Commands access-list-name Enter the name of an established IP Standard ACL. Not configured. LINE Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.2.1.
PAGE 1290
www.dell.com | support.dell.com Usage Information Use this command to define a password for a level and use the privilege level (CONFIGURATION mode) command to control access to command modes. Passwords must meet the following criteria: • • Start with a letter, not a number. Passwords can have a regular expression as the password. To create a password with a regular expression in it, you must use CNTL + v prior to entering regular expression.
PAGE 1291
Parameters level level (OPTIONAL) Enter the keyword level followed by a number as the level of access. Range: 1 to 15 encryption-type (OPTIONAL) Enter the number 5 or 0 as the encryption type. Enter a 5 followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Force10 router. Use this parameter only with a password that you copied from the show running-config file of another Dell Force10 router.
PAGE 1292
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands LINE Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.2.1.0 Introduced on E-Series If you configure the aaa authentication login default command, then the login authentication default command automatically is applied to all terminal lines. aaa authentication login Select login authentication methods.
PAGE 1293
password-attributes ces Syntax Configure the password attributes (strong password). password-attributes [min-length number] [max-retry number] [character-restriction [upper number] [lower number] [numeric number] [special-char number]] To return to the default, use the no password-attributes [min-length number] [max-retry number] [character-restriction [upper number] [lower number] [numeric number] [special-char number]] command.
PAGE 1294
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series Caution: Encrypting passwords with this command does not provide a high level of security. When the passwords are encrypted, you cannot return them to plain text unless you re-configure them. To remove an encrypted password, use the no password password command.
PAGE 1295
Command Modes Command History Example EXEC Privilege Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 52-4. show users Command Example Force10#show user Line 0 console 0 * 3 vty 1 Force10# User admin admin Host(s) idle idle Location 172.31.1.4 Table 1 describes the information in the show users command example.
PAGE 1296
www.dell.com | support.dell.com Usage Information The software measures the period of inactivity defined in this command as the period between consecutive keystrokes. For example, if your password is “password” you can enter “p” and wait 29 seconds to enter the next letter. username ces Syntax Establish an authentication system based on user names.
PAGE 1297
Related Commands password Specify a password for users on terminal lines. show running-config View the current configuration. RADIUS Commands The RADIUS commands supported by FTOS. are: • • • • • • • debug radius ip radius source-interface radius-server deadtime radius-server host radius-server key radius-server retransmit radius-server timeout debug radius ces Syntax View RADIUS transactions to assist with troubleshooting. debug radius To disable debugging of RADIUS, enter no debug radius.
PAGE 1298
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • • Defaults Command Mode Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16838.
PAGE 1299
radius-server host ces Syntax Parameters Configure a RADIUS server host. radius-server host {hostname | ipv4-address | ipv6-address} [auth-port port-number] [retransmit retries] [timeout seconds] [key [encryption-type] key] hostname Enter the name of the RADIUS server host. ipv4-address | ipv6-address Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X), of the RADIUS server host. auth-port port-number (OPTIONAL) Enter the keyword auth-port followed by a number as the port number.
PAGE 1300
www.dell.com | support.dell.com The global default values for timeout, retransmit, and key optional parameters are applied, unless those values are specified in the radius-server host or other commands. If you configure timeout, retransmit, or key values, you must include those keywords when entering the no radius-server host command syntax to return to the global default values. Related Commands login authentication Set the database to be checked when a user logs in.
PAGE 1301
radius-server retransmit ces Syntax Configure the number of times the switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable. radius-server retransmit retries To configure zero retransmit attempts, enter no radius-server retransmit. To return to the default setting, enter radius-server retransmit 3.
PAGE 1302
www.dell.com | support.dell.com TACACS+ Commands FTOS supports TACACS+ as an alternate method for login authentication. • • • • debug tacacs+ ip tacacs source-interface tacacs-server host tacacs-server key debug tacacs+ ces Syntax View TACACS+ transactions to assist with troubleshooting. debug tacacs+ To disable debugging of TACACS+, enter no debug tacacs+. Defaults Command Modes Command History Disabled. EXEC Privilege Version 7.6.1.0 Introduced for S-Series Version 7.5.1.
PAGE 1303
Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • • Defaults Command Mode Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16838. For the Null interface, enter the keywords null 0.
PAGE 1304
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information timeout seconds (OPTIONAL) Enter the keyword timeout followed by the number of seconds the switch waits for a reply from the TACACS+ server. Range: 0 to 1000 Default: 10 seconds key key (OPTIONAL) Enter the keyword key followed by a string up to 42 characters long as the authentication key. This authentication key must match the key specified in the tacacs-server key for the TACACS+ daemon.
PAGE 1305
Command History Usage Information Version 7.7.1.0 Authentication key length increased to 42 characters Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.2.1.1 Introduced on E-Series The key configured with this command must match the key configured on the TACACS+ daemon. Port Authentication (802.1X) Commands The 802.
PAGE 1306
www.dell.com | support.dell.com • • • • • • If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the specified VLAN after authentication. If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS server assigned VLAN. If 802.1X is disabled on the port, it is returned to the configured access VLAN.
PAGE 1307
dot1x auth-fail-vlan ces Syntax Configure a authentication failure VLAN for users and devices that fail 802.1X authentication. dot1x auth-fail-vlan vlan-id [max-attempts number] To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlan-id [max-attempts number] command. Parameters Defaults Command Modes Command History Usage Information vlan-id Enter the VLAN Identifier.
PAGE 1308
www.dell.com | support.dell.com dot1x guest-vlan ces Syntax Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. dot1x guest-vlan vlan-id To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command. Parameters Defaults Command Modes vlan-id Not configured CONFIGURATION (conf-if-interface-slot/port) Command History Usage Information Enter the VLAN Identifier. Range: 1 to 4094 Version 7.6.1.0 Introduced on C-Series, E-Series, and S-Series 802.
PAGE 1309
Command Modes Command History Related Commands INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series interface range Configure a range of interfaces dot1x port-control ces Syntax Parameters Defaults Command Modes Command History Usage Information Enable port control on an interface. dot1x port-control {force-authorized | auto | force-unauthorized} force-authorized Enter the keyword force-authorized to forcibly authorize a port.
PAGE 1310
www.dell.com | support.dell.com dot1x reauthentication ces Syntax Enable periodic re-authentication of the client. dot1x reauthentication [interval seconds] To disable periodic re-authentication, use the no dot1x reauthentication command. Parameters Defaults Command Modes 3600 seconds (1 hour) INTERFACE Command History Related Commands (Optional) Enter the keyword interval followed by the interval time, in seconds, after which re-authentication will be initiated.
PAGE 1311
Parameters Defaults Command Modes Command History seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant. Default: 30 30 seconds INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series dot1x supplicant-timeout ces Syntax Configure the amount of time after which exchanges with the supplicant time out. dot1x supplicant-timeout seconds To return to the default, use the no dot1x supplicant-timeout command.
PAGE 1312
www.dell.com | support.dell.com show dot1x interface ces Syntax Display the 802.1X information on an interface. show dot1x interface interface Parameters interface Enter one of the following keywords and slot/port or number information: • • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
PAGE 1313
• • • • • • • • • • • • • • • • • debug ip ssh ip scp topdir ip ssh authentication-retries ip ssh connection-rate-limit ip ssh hostbased-authentication ip ssh key-size ip ssh password-authentication ip ssh pub-key-file ip ssh rhostsfile ip ssh rsa-authentication (Config) ip ssh rsa-authentication (EXEC) ip ssh server show crypto show ip ssh show ip ssh client-pub-keys show ip ssh rsa-authentication ssh crypto key generate ces Syntax Parameters Defaults Command Modes Command History Example Generate key
PAGE 1314
www.dell.com | support.dell.com Usage Information The host keys are required for key-exchange by the SSH server. If the keys are not found when the server is enabled (ip ssh server enable), the keys are automatically generated. This command requires user interaction and will generate a prompt prior to overwriting any existing host keys. Note: Only a user with superuser permissions should generate host-keys. Related Commands ip ssh server Enable the SSH server.
PAGE 1315
Command History Usage Information Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series To configure the switch as a SCP server, use the ip ssh server command. Related Commands ip ssh server Enable SSH and SCP server on the switch. ip ssh authentication-retries ces Syntax Configure the maximum number of attempts that should be used to authenticate a user.
PAGE 1316
www.dell.com | support.dell.com Command History Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series ip ssh hostbased-authentication ces Syntax Enable hostbased-authentication for the SSHv2 server. ip ssh hostbased-authentication enable To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbased-authentication enable command.
PAGE 1317
Command Modes Command History Usage Information CONFIGURATION Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series The server-generated key is used for SSHv1 key-exchange. ip ssh password-authentication ces Syntax Enable password authentication for the SSH server. ip ssh password-authentication enable To disable password-authentication, use the no ip ssh password-authentication enable.
PAGE 1318
www.dell.com | support.dell.com Example Figure 52-7. ip ssh pub-key-file Command Example Force10#conf Force10(conf)# ip ssh pub-key-file flash://knownhosts Force10(conf)# Usage Information This command specifies the file to be used for the host-based authentication. The file creates/ overwrites the file flash://ADMIN_DIR/ssh/knownhosts and deletes the user specified file.
PAGE 1319
This file contains hostnames and usernames, for which hosts and users, rhost-authentication can be allowed. Note: For rhostfile and pub-key-file, the administrator must FTP the file to the switch. ip ssh rsa-authentication (Config) ces Syntax Enable RSA authentication for the SSHv2 server. ip ssh rsa-authentication enable To disable RSA authentication, use the no ip ssh rsa-authentication enable command.
PAGE 1320
www.dell.com | support.dell.com Usage Information If you want to log in without being prompted for a password, log in through RSA authentication. To do that, you must first add the SSHv2 RSA public keys to the list of authorized keys. This command adds the specified RSA keys to the following file: flash://ADMIN_DIR/ssh/authorized-keys-username (where username is the user associated with this terminal).
PAGE 1321
show crypto ces Syntax Display the public part of the SSH host-keys. show crypto key mypubkey {rsa | rsa1} Parameters Defaults Command Modes Enter the keyword key to display the host public key. mypubkey Enter the keyword mypubkey to display the host public key. rsa Enter the keyword rsa to display the host SSHv2 RSA public key. rsa1 Enter the keyword rsa1 to display the host SSHv1 RSA public key. No default behavior or values EXEC Command History Example Key Version 7.6.1.
PAGE 1322
www.dell.com | support.dell.com Example Figure 52-11. show ip ssh Command Example Force10#show ip ssh SSH server : SSH server version : Password Authentication : Hostbased Authentication : RSA Authentication Vty Encryption 0 3DES 1 3DES 2 3DES Force10 Related Commands enabled. v1 and v2. enabled. disabled. : disabled. Remote IP 172.16.1.162 172.16.1.162 172.16.1.162 ip ssh server Configure an SSH server. show ip ssh client-pub-keys Display the client-public keys.
PAGE 1323
Parameters Defaults Command Modes Command History Example my-authorized-keys Display the RSA authorized keys. No default behavior or values EXEC Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 52-13.
PAGE 1324
www.dell.com | support.dell.com Defaults Command Modes (OPTIONAL) Enter the keyword -p followed by the port number. Range: 1 to 65536 Default: 22 -v {1 | 2} (OPTIONAL) Enter the keyword -v followed by the SSH version 1 or 2. Default: The version from the protocol negotiation As above. EXEC Privilege Command History Example -p port-number Version 7.9.1.0 Introduced VRF Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Added IPv6 support; Introduced for C-Series pre-Version 6.1.1.
PAGE 1325
Parameters Command Modes trace-list-name (OPTIONAL) Enter the name of a configured trace list. EXEC Privilege deny e Syntax Configure a filter that drops IP packets meeting the filter criteria.
PAGE 1326
www.dell.com | support.dell.com deny tcp e Syntax Configure a filter that drops TCP packets meeting the filter criteria.
PAGE 1327
deny udp e Syntax Configure a filter to drop UDP packets meeting the filter criteria.
PAGE 1328
www.dell.com | support.dell.com ip trace-group e Syntax Assign a trace list globally to process all incoming packets to the switch. ip trace-group trace-list-name To delete an trace list configuration, use the no ip trace-group trace-list-name command. Parameters Defaults Command Modes Usage Information trace-list-name Enter the name of a configured trace list. Not enabled. CONFIGURATION You can assign one Trace list to the chassis.
PAGE 1329
permit e Syntax Configure a filter to pass IP packets meeting the filter criteria. permit {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} [count [byte]| log] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} command.
PAGE 1330
www.dell.com | support.dell.com • Parameters Use the no permit tcp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. source Enter the IP address of the network or host from which the packets were sent. mask (OPTIONAL) Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host followed by the IP address to specify a host IP address.
PAGE 1331
To remove this filter, you have two choices: • • Parameters Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no permit udp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. source Enter the IP address of the network or host from which the packets were sent. mask (OPTIONAL) Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all routes are subject to the filter.
PAGE 1332
www.dell.com | support.dell.com Parameters sequence-number Enter a number from 0 to 65535. deny Enter the keyword deny to configure a filter to drop packets meeting this condition. permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. ip-protocol-number Enter a number from 0 to 255 to filter based on the protocol identified in the IP protocol header. ip Enter the keyword ip to configure a generic IP access list.
PAGE 1333
Command History Related Commands Version 7.4.1.0 Deprecated established keyword—not supported on TeraScale line cards. deny Configure a filter to drop packets. permit Configure a filter to forward packets. show config e View the current IP trace list configuration. Syntax show config Command Modes TRACE LIST Example Figure 52-16.
PAGE 1334
www.dell.com | support.dell.com Secure DHCP Commands DHCP as defined by RFC 2131 provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks.
PAGE 1335
ip dhcp snooping cs Enable DHCP Snooping globally. Syntax [no] ip dhcp snooping Command Modes Default Command History Usage Information Related Commands CONFIGURATION Disabled Version 7.8.1.0 Introduced on C-Series and S-Series When enabled, no learning takes place until snooping is enabled on a VLAN. Upon disabling DHCP Snooping the binding table is deleted, and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs.
PAGE 1336
www.dell.com | support.dell.com interface type Enter the keyword interface followed by the type of interface to which the host is connected. • • • • Command Modes For an 10/100 Ethernet interface, enter the keyword fastethernet. For a Gigabit Ethernet interface, enter the keyword gigabitethernet. For a SONET interface, enter the keyword sonet. For a Ten Gigabit Ethernet interface, enter the keyword tengigabitethernet. slot/port Enter the slot and port number of the interface.
PAGE 1337
Command History Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp source-address-validation cs Enable IP Source Guard. Syntax [no] ip dhcp source-address-validation Command Modes Default Command History INTERFACE Disabled Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp snooping vlan cs Enable DHCP Snooping on one or more VLANs.
PAGE 1338
www.dell.com | support.dell.com Command History 1338 Related Commands | Security Version 7.8.1.0 clear ip dhcp snooping Introduced on C-Series and S-Series Clear the contents of the DHCP binding table.
PAGE 1339
53 Service Provider Bridging Overview Service Provider Bridging is composed of VLAN Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the FTOS Configuration Guide Service Provider Bridging chapter. This chapter includes CLI information for FTOS Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. L2PT is available in FTOS for the C-Series c, E-Series e, and S-Series s. L2PT is supported on E-Series ExaScale ex with FTOS 8.2.1.0.
PAGE 1340
www.dell.com | support.dell.com debug protocol-tunnel ces Syntax Enable debugging to ensure incoming packets are received and rewritten to a new MAC address. debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] To disable debugging, use the no debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] command.
PAGE 1341
Command History Example Version 8.2.1.0 Introduced on the C-Series, E-Series and E-Series ExaScale. Version 7.4.1.0 Introduced Figure 53-1. Protocol-tunneling Command Example Force10#conf Force10(conf)#interface vlan 2 Force10(conf-if-vl-2)#vlan-stack compatible Force10(conf-if-vl-2)#member Gi1/2-3 Force10(conf-if-vl-2)#protocol-tunnel stp Force10(conf-if-vl-2)# Usage Information Related Commands Note: When VLAN-Stacking is enabled, no protocol packets are tunneled.
PAGE 1342
www.dell.com | support.dell.com Command History Usage Information Version 7.4.1.0 Introduced FTOS must have the default CAM profile with the default microcode before you enable L2PT. protocol-tunnel rate-limit ces Syntax Enable traffic rate limiting per box. protocol-tunnel rate-limit rate To reset the rate limit to the default, use the no protocol-tunnel rate-limit rate command. Parameters Defaults Command Modes Command History Example rate Enter the rate in frames per second.
PAGE 1343
Command History Example Version 8.2.1.0 Introduced on the C-Series, E-Series and E-Series ExaScale. Version 7.4.1.0 Introduced Figure 53-3. show protocol-tunnel Command Example Force10#show protocol-tunnel System Rate-Limit: 1000 Frames/second Interface Vlan Protocol(s) Gi1/2 2 STP, PVST Gi1/3 3 STP, PVST Po35 4 STP, PVST Force10# Example Figure 53-4.
PAGE 1344
| Service Provider Bridging www.dell.com | support.dell.
PAGE 1345
54 sFlow Overview sFlow commands are supported on these platforms: c e s. FTOS sFlow monitoring system includes an sFlow Agent and an sFlow Collector. The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
PAGE 1346
www.dell.com | support.dell.
PAGE 1347
sflow collector ces Syntax Parameters Defaults Command Modes Command History Usage Information Configure a collector device to which sFlow datagrams are forwarded. sflow collector {ipv4-address | ipv6-address} agent-addr {ipv4-address | ipv6-address} [number [max-datagram-size number]] | [max-datagram-size number] sflow collector ipv4-address | ipv6-address Enter the IPv4 (A.B.C.D) or IPv6 address (X:X:X:X::X) of the sFlow collector device. agent-addr ipv4-address | ipv6-address Enter the IPv4 (A.B.
PAGE 1348
www.dell.com | support.dell.com As part of the sFlow-MIB, if the SNMP request originates from a configured collector, FTOS will return the corresponding configured agent IP in MIB requests. FTOS checks to ensure that two entries are not configured for the same collector IP with a different agent IP. Should that happen, FTOS generates the following error: %Error: Different agent-addr attempted for an existing collector sflow enable (Global) ces Syntax Enable sFlow globally.
PAGE 1349
Usage Information When sFlow is enable on an interface, flow sampling is done on any traffic going out of the interface. Note: Once a physical port is a member of a LAG, it will inherit the sFlow configuration from the LAG port. Related Commands sflow enable (Global) Turn sFlow on globally sflow extended-gateway enable e Syntax Enable packing information on an extended gateway.
PAGE 1350
www.dell.com | support.dell.com sflow extended-router enable e Syntax Enable packing information on a router and switch. sflow extended-router [extended-switch] enable To disable packing information, use the no sflow extended-router [extended-switch] enable command. Parameters Defaults Command Modes Command History Usage Information Related Commands extended-switch Enter the keyword extended-switch to collect extended switch information.
PAGE 1351
Usage Information Related Commands FTOS 7.8.1.0 and later enhances the sFlow implementation for real time traffic analysis on the E-Series to provide extended gateway information in cases where the destination IP addresses are learned by different routing protocols, and for cases where the destination is reachable over ECMP. sflow extended-gateway enable Enable packing information on an extended gateway. sflow extended-router enable Enable packing information on a router.
PAGE 1352
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information Related Commands interval value Enter the interval value in seconds. Range: 15 to 86400 seconds Default: The global counter polling interval The same value as the current global default counter polling interval INTERFACE Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
PAGE 1353
Usage Information Related Commands Sample-rate is the average number of packets skipped before the sample is taken. This command changes the global default sampling rate. You can configure an interface to use a different sampling rate than the global sampling rate. If the value entered is not a correct power of 2, the command generates an error message with the previous and next power of 2 value. Select one of these two packet numbers and re-enter the command.
PAGE 1354
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Command Modes For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
PAGE 1355
EXEC Privilege Command History Example Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series Figure 54-3.
PAGE 1356
| sFlow www.dell.com | support.dell.
PAGE 1357
55 SNMP and Syslog Overview This chapter contains commands to configure and monitor SNMP v1/v2/v3 and Syslog.
PAGE 1358
www.dell.com | support.dell.com Important Points to Remember • • • • • • Typically, 5-second timeout and 3-second retry values on an SNMP server are sufficient for both LAN and WAN applications.
PAGE 1359
show snmp engineID ces Syntax Command Modes Display the identification of the local SNMP engine and all remote engines that are configured on the router. show snmp engineID EXEC EXEC Privilege Command History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Example Figure 55-2. show snmp engineID Command Force10#show snmp engineID Local SNMP engineID: 0000178B02000001E80214A8 Remote Engine ID IP-addr 80001F88043132333435 172.31.1.
PAGE 1360
www.dell.com | support.dell.com Related Commands snmp-server group Configure an SNMP server group show snmp user ces Syntax Command Modes Display the information configured on each SNMP user name. show snmp user EXEC EXEC Privilege Example Figure 55-4. show snmp user Command Example Force10#show snmp user User name: v1v2creadu Engine ID: 0000178B02000001E80214A8 storage-type: nonvolatile active Authentication Protocol: None Privacy Protocol: None Force10# Command History Version 7.6.1.
PAGE 1361
Example Figure 55-5. snmp ifmib ifalias long Command Example !------command run on host connected to switch: --------------! > snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2. This is a port connected to IF-MIB::ifAlias.
PAGE 1362
www.dell.com | support.dell.com Example Figure 55-6. snmp-server community Command Example Force10#config Force10(conf)# snmp-server community public ro Force10(conf)# snmp-server community guest ro security-name guestuser Force10(conf)# The security-name parameter maps the community string to an SNMPv3 user/security name as defined by the community MIB.
PAGE 1363
Defaults Command Modes Command History No default values or behavior CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command snmp-server enable traps ces Syntax Enable and configure SNMP traps. snmp-server enable traps [notification-type] [notification-option] To disable traps, use the no snmp-server enable traps [notification-type] [notification-option] command.
PAGE 1364
www.dell.com | support.dell.com Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information Related Commands FTOS supports up to 16 SNMP trap receivers. If this command is not configured, no traps controlled by this command are sent. If you do not specify a notification-type and notification-option, all traps are enabled. snmp-server community Enable SNMP and set the community string.
PAGE 1365
Related Commands show snmp engineID Display SNMP engine and all remote engines that are configured on the router show running-config snmp Display the SNMP running configuration snmp-server group ces Syntax Configure a new SNMP group or a table that maps SNMP users to SNMP views.
PAGE 1366
www.dell.com | support.dell.com Defaults Command Modes Command History As defined above CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information The following example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview. Note: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP; TCP, ICMP rules are not valid for SNMP.
PAGE 1367
(OPTIONAL) Enter the keyword version to specify the security model followed by the security model version number 1, 2c, or 3. version 1 | 2c | 3 • • • Version 1 is the least secure version version 3 is the most secure of the security modes. Version 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. Default: Version 1 auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption.
PAGE 1368
www.dell.com | support.dell.com When multiple snmp-server host commands are given for the same host and type of notification (trap or inform), each succeeding command overwrites the previous command. Only the last snmp-server host command will be in effect. For example, if you enter an snmp-server host inform command for a host and then enter another snmp-server host inform command for the same host, the second command will replace the first.
PAGE 1369
snmp-server packetsize ces Syntax Set the largest SNMP packet size permitted when the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command. snmp-server packetsize byte-count Parameters Defaults Command Modes Command History byte-count Enter one of the following values 8, 16, 24 or 32. Packet sizes are 8000 bytes, 16000 bytes, 32000 bytes, and 64000 bytes. 8 CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.
PAGE 1370
www.dell.com | support.dell.com snmp-server user ces Syntax Configure a new user to an SNMP group.
PAGE 1371
Defaults Command Modes Command History access-list-name (Optional) Enter the standard IPv4 access list name (a string up to 16 characters long). ipv6 access-list-name (Optional) Enter the keyword ipv6 followed by the IPv6 access list name (a string up to 16 characters long) access-list-name ipv6 access-list-name (Optional) Enter both an IPv4 and IPv6 access list name. As above CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.
PAGE 1372
www.dell.com | support.dell.com snmp-server view ces Syntax Configure an SNMPv3 view. snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command. Parameters Defaults Command Modes Command History view-name Enter the name of the view (not to exceed 20 characters). oid-tree Enter the OID sub tree for the view (not to exceed 20 characters).
PAGE 1373
Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information If the interface is expected to flap during normal usage, you could disable this command.
PAGE 1374
www.dell.com | support.dell.com default logging buffered ces Syntax Defaults Command Modes Command History Return to the default setting for messages logged to the internal buffer. default logging buffered size = 40960; level = 7 or debugging CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands logging buffered Set the logging buffered parameters.
PAGE 1375
Related Commands logging monitor Set the logging monitor parameters. terminal monitor Send system messages to the terminal/monitor. default logging trap ces Syntax Defaults Command Modes Command History Return to the default settings for logging messages to the Syslog servers. default logging trap level = 6 or informational CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.
PAGE 1376
www.dell.com | support.dell.com logging buffered ces Syntax Enable logging and specify which messages are logged to an internal buffer. By default, all messages are logged to the internal buffer. logging buffered [level] [size] To return to the default values, enter default logging buffered. To disable logging stored to an internal buffer, enter no logging buffered.
PAGE 1377
Command History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands clear logging Clear logging buffer. default logging console Returns the logging console parameters to the default setting. show logging Display logging settings and system messages in the internal buffer. logging facility ces Syntax Configure the Syslog facility, used for error messages sent to Syslog servers.
PAGE 1378
www.dell.com | support.dell.com Command History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands logging Enable logging to a Syslog server. logging on Enables logging. logging history ces Syntax Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured). logging history level To return to the default values, enter no logging history.
PAGE 1379
Command Modes Command History CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information Related Commands When the number of messages reaches the limit you set with the logging history size command, older messages are deleted as newer ones are added to the table. show logging history Display information logged to the history buffer. logging monitor ces Syntax Specify which messages are logged to Telnet applications.
PAGE 1380
www.dell.com | support.dell.com Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information Related Commands When you enter no logging on, messages are logged only to the console. logging Enable logging to Syslog server. logging buffered Set the logging buffered parameters. logging console Set the logging console parameters. logging monitor Set the logging parameters for the terminal connections.
PAGE 1381
Usage Information Related Commands Syslog messages contain the IP address of the interface used to egress the router. By configuring the logging source-interface command, the Syslog packets contain the IP address of the interface configured. logging Enable the logging to another device. logging synchronous ces Syntax Synchronize unsolicited messages and FTOS output.
PAGE 1382
www.dell.com | support.dell.com logging trap ces Syntax Specify which messages are logged to the Syslog server based the message severity. logging trap [level] To return to the default values, enter default logging trap. To disable logging, enter no logging trap. Parameters level Defaults Command Modes Command History Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 6.
PAGE 1383
Command History Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Figure 55-11. show logging Command Example (Partial) Force10#show logging Syslog logging: enabled Console logging: level debugging Monitor logging: level debugging Buffer logging: level debugging, 5604 Messages Logged, Size (524288 bytes) Trap logging: level informational Oct 8 09:25:37: %RPM1:RP1 %BGP-5-ADJCHANGE: Connection with neighbor 223.80.255.254 closed.
PAGE 1384
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Usage Information Version 7.6.1.0 Introduced for S-Series This command displays internal software driver information, which may be useful during troubleshooting switch initialization errors, such as a downed Port-Pipe. terminal monitor ces Syntax Configure the FTOS to display messages on the monitor/terminal. terminal monitor To return to default settings, enter terminal no monitor. Defaults Command Modes Disabled.
PAGE 1385
56 SONET Overview FTOS supports RFC 2558 “Definitions of Managed Objects for the SONET/SDH Interface” and RFC 2615 “PPP-over-SONET/SDH” only on the E-Series platform, as indicated by this character under each command heading in this chapter: e Commands This chapter contains the commands to configure Packet Over SONET/SDH (POS/SDH) interfaces and features, including Point-to-Point Protocol (PPP) encapsulation.
PAGE 1386
www.dell.com | support.dell.com • • • show interfaces sonet-port-recover detection-interval speed ais-shut e Syntax Enable an alarm indication signal (AIS) when the SONET interface is shutdown. ais-shut To disable the AIS, enter no ais-shut. Defaults Command Modes Disabled. INTERFACE alarm-report e Syntax Specify which POS/SDH alarms to report to the remote SNMP server.
PAGE 1387
Table 56-1. Alarm Definitions Alarm Description lais Line Alarm Indication Signal lrdi Line Remote Defect Indication pais Path Alarm Indication Signal plop Path loss of Pointer prdi Path Remote Defect Indication sd-ber sf-ber Related Commands LBIP BER in excess of Signal Degradation threshold. The default SD alarm value is 10^-6, this value can not be changed. LBIP BER in excess of Signal Failure threshold. The default SF alarm value is 10^-3, this value can not be changed.
PAGE 1388
www.dell.com | support.dell.com Parameters Command Modes Usage Information authentication (OPTIONAL) Enter the keyword authentication to display PPP authentication exchanges (Challenge Authentication Protocol (CHAP) packet exchanges and Password Authentication Protocol (PAP) exchanges) and traffic. error (OPTIONAL) Enter the keyword error to display PPP error statistics and protocol errors. negotiation (OPTIONAL) Enter the keyword negotiation to display PPP settings negotiated at startup.
PAGE 1389
down-when-looped e Syntax Set the interface to send a system message when it detects a loopback condition and goes down. down-when-looped To disable notification, enter no down-when-looped. Defaults Command Modes Enabled INTERFACE encap e Syntax Configure encapsulation for a PPP interface. encap ppp To remove encapsulation, enter no encap. Parameters Defaults Command Modes Usage Information ppp Enter the keyword ppp for Point-to-Point Protocol encapsulation. Not configured.
PAGE 1390
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information c2 value Enter the keyword c2 followed by value to set the path signal byte. Range: 0x00 to 0xFF hexadecimal (0-255 decimal) Default: 0xCF in hexidecimal (207 in decimal) j0 value Enter the keyword j0 to set the section trace byte.
PAGE 1391
interface sonet e Syntax Parameters Defaults Command Modes Example Enter the INTERFACE mode to configure a POS/SDH interface. interface sonet slot/port slot/port Enter the slot/port information. Not configured CONFIGURATION Figure 56-1. interface sonet Command Example Force10(conf)#interface sonet 8/2 Force10(conf-if-so-8/2)# Usage Information Related Commands You cannot delete POS/SDH interfaces. By default, POS/SDH interfaces are disabled (shutdown).
PAGE 1392
www.dell.com | support.dell.com Syntax loopback {internal | line} To delete a loopback setting, use the no loopback {internal | line} command. Parameters Defaults Command Modes Usage Information internal Enter the keyword internal to test the physical interface by sending incoming traffic back through the interface. line Enter the keyword line to test connectivity to the network by sending incoming traffic back to the network. Not configured.
PAGE 1393
After you enable PPP authentication, you must configure remote hostnames and passwords to initiate authentication on the E-Series. Related Commands ppp chap hostname Configure a hostname for CHAP authentication. ppp chap password Configure a password for CHAP authentication. ppp chap rem-hostname Configure a remote hostname for CHAP authentication. ppp chap rem-password Configure a remote password for CHAP authentication. ppp pap hostname Configure a hostname for PAP authentication.
PAGE 1394
www.dell.com | support.dell.com Usage Information Related Commands For peers to successfully negotiate authentication on both sides of the link, you must configure a hostname, password, remote hostname and remote password for CHAP authentication. ppp authentication Enable CHAP or PAP or both authentication. ppp chap hostname Configure a hostname for CHAP authentication. ppp chap rem-hostname Configure a remote hostname for CHAP authentication.
PAGE 1395
Related Commands ppp authentication Enable CHAP or PAP or both authentication. ppp chap rem-hostname Configure a remote host name for CHAP authentication. ppp chap hostname Configure a hostname for CHAP authentication. ppp chap password Configure a password for CHAP authentication. ppp next-hop e Syntax Assign an IP address as the next hop for this interface. ppp next-hop ip-address To delete a next hop address, enter no ppp next-hop.
PAGE 1396
www.dell.com | support.dell.com ppp pap password e Syntax Configure a password for PAP authentication. ppp pap password password To delete a password, enter no ppp pap password. Parameters Defaults Command Modes Usage Information Related Commands password Enter a character string up to 32 characters long. Not configured. INTERFACE For peers to successfully negotiate authentication, you must configure a hostname, password, remote hostname and remote password for PAP authentication.
PAGE 1397
Syntax ppp pap rem-password password To delete a remote PAP password, enter no ppp pap rem-password. Parameters Defaults Command Modes Usage Information Related Commands password Enter a character string up to 32 characters long. Not configured. INTERFACE For peers to successfully negotiate authentication, you must configure a hostname, password, remote hostname and remote password for PAP authentication. ppp authentication Enable CHAP or PAP or both authentication.
PAGE 1398
www.dell.com | support.dell.com Command History Example Version 7.4.2.0 Added support for Ten Gigabit Ethernet Figure 56-2.
PAGE 1399
Table 56-2. Lines in show controllers interface Command Example (continued) Line Description LOS Displays the loss of signal (LOS) error. This error is detected when an all-zeros pattern on the incoming interface signal lasts 19 plus or minus 3 microseconds or longer. This defect might also be reported if the received signal level drops below the specified threshold. BIP(B1) Displays the bit interleaved parity error for the B1 byte.
PAGE 1400
www.dell.com | support.dell.com Parameters interface Enter the one of the following interface keywords and slot/port information: • • Command Modes For a SONET interface, enter the keyword sonet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. EXEC EXEC Privilege Example Figure 56-4.
PAGE 1401
Table 56-3. Related Commands Fields in the show interfaces sonet with PPP Encapsulation (continued) Field Description IPCP State: States if IPCP was successfully negotiated. Internet address... States whether an IP address is assigned to the interface. If one is, that address is displayed. Peer address Displays the PPP peer’s IP address. MTU 1554... Displays link and IP MTU. LineSpeed Displays interface’s line speed. ARP type:...
PAGE 1402
www.dell.com | support.dell.com Command History Usage Information Version 7.7.1.0 Introduced When enabled, FTOS continuously polls status registers on SONET line cards. A port hang is declared when backpressure is detected on the port, and the port is brought down and then back up to clear the condition. To keep a port in shutdown use the hardware monitor mac action-on-error port-shutdown command. speed e Syntax Set the speed of the SONET interface.
PAGE 1403
57 S-Series Stacking Commands Overview All commands in this chapter are specific to the S-Series platform, as indicated by the s character that appears below each command heading. The commands are always available and operational, whether or not the S-Series has a stacking module inserted. You can use the commands to pre-configure a switch, so that the configuration settings are invoked when the switch is attached to other S-Series units.
PAGE 1404
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands CONFIGURATION Version 8.3.1.0 Added the all option Version 7.7.1.0 Introduced on S-Series Enabling this command keeps the failed switch in the failed state. It will not reboot until it is manually rebooted. When enabled, it is not displayed in the running-config. When disabled, it is displayed in the running-config. show redundancy Display the current redundancy status.
PAGE 1405
Example Figure 57-1. Using the reset stack-unit Command on the Stack Standby Unit Force10#show system brief Stack MAC : 00:01:e8:51:4e:f8 -- Stack Info -Unit UnitType Status ReqTyp CurTyp Version Ports --------------------------------------------------------------------------0 Member online S50N S50N 4.7.7.117 52 1 Member online S50N S50N 4.7.7.117 52 2 Member online S50N S50N 4.7.7.117 52 3 Member online S50N S50N 4.7.7.117 52 4 Standby online S50N S50N 4.7.7.117 52 5 Member online S50N S50N 4.7.7.
PAGE 1406
www.dell.com | support.dell.com Example Figure 57-2. show redundancy Command Output Force10#show redundancy -- SSeries Redundancy Configuration ------------------------------------------------Auto reboot : Enabled -- Stack-unit Status ------------------------------------------------Mgmt ID: 0 Stack-unit ID: 0 Stack-unit Redundancy Role: Primary Stack-unit State: Active Stack-unit SW Version: 7.7.1.
PAGE 1407
Command Modes EXEC EXEC Privilege Command History Example Version 7.7.1.0 Figure 57-3. Introduced on S-Series show system stack-ports Command Example Force10# show system stack-ports Topology: Ring Interface Link Speed Admin Link (Gb/s) Status Status ---------------------------------------------------------------------------0/49 1/49 12 up up 0/50 12 up down 0/51 2/49 24 up up 1/49 0/49 12 up up 1/50 2/51 12 up up 2/49 0/51 24 up up 2/51 1/50 12 up up 2/52 12 up down Force10# Example Figure 57-4.
PAGE 1408
www.dell.com | support.dell.com Table 57-1. show interfaces description Command Example Fields Field Description Link Speed Link Speed of the stack port (12 or 24) in Gb/s Admin Status The only currently listed status is Up. Connection The stack port ID to which this unit’s stack port is connected Related Commands reset stack-unit Reset the designated S-Series stack member.
PAGE 1409
stack-unit provision s Syntax Parameters Defaults Command Modes Command History Related Commands Pre-configure a logical stacking ID of a switch that will join the stack. This is an optional command that is executed on the management unit. stack-unit 0-7 provision {S25N|S25P|S25V|S50N|S50V} 0-7 Enter a stack member identifier, from 0 to 7, of the switch that you want to add to the stack. S25N|S25P|S25V|| S50N|S50V Enter the S-Series model identifier of the switch to be added as a stack member.
PAGE 1410
www.dell.com | support.dell.com Example stack-unit renumber Command Example S50V_7.7#stack-unit 0 renumber 2 Renumbering master unit will reload the stack. Proceed to renumber [confirm yes/ no]: Related Commands reload Reboot FTOS. reset stack-unit Reset the designated S-Series stack member. show system (S-Series) Display the current status of all stack members or a specific member.
PAGE 1411
58 Storm Control Overview The FTOS Storm Control feature allows users to limit or suppress traffic during a traffic storm (Broadcast/Unknown Unicast Rate Limiting, or Multicast on the C-Series and S-Series).
PAGE 1412
www.dell.com | support.dell.com • • • Do not apply per-VLAN QoS on an interface that has storm control enabled (either on an interface or globally). When broadcast storm control is enabled on an interface or globally on ingress, and DSCP marking for a DSCP value 1 is configured for the data traffic, the traffic will go to queue 1 instead of queue 0.
PAGE 1413
Example Figure 58-2. show storm-control broadcast Command Example (C-Series) Force10#show storm-control broadcast gigabitethernet 3/24 Broadcast storm control configuration Interface Direction Packets/Second ----------------------------------------------Gi 3/24 Ingress 1000 Force10# show storm-control multicast cs Display the storm control multicast configuration.
PAGE 1414
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration. • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. For a SONET interface, enter the keyword sonet followed by the slot/port information.
PAGE 1415
Parameters Defaults Command Modes Command History Usage Information percentage decimal_value in | out E-Series Only: Enter the percentage of broadcast traffic allowed in or out of the network. Optionally, you can designate a decimal value percentage, for example, 55.5%. Percentage: 0 to 100 0 % blocks all related traffic 100% allows all traffic into the interface Decimal Range: 0.1 to 0.
PAGE 1416
www.dell.com | support.dell.com Command Modes Command History INTERFACE (conf-if-interface-slot/port) Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 E-Series Only: Added percentage decimal value option Version 6.5.1.0 Introduced on E-Series storm-control multicast (Configuration) cs Configure the packets per second (pps) of multicast traffic allowed in to the C-Series and S-Series networks only.
PAGE 1417
Command History Version 7.6.1.0 Introduced on C-Series and S-Series storm-control unknown-unicast (Configuration) ces Syntax Configure the percentage of unknown-unicast traffic allowed in or out of the network.
PAGE 1418
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History 1418 | Storm Control percentage decimal_value in E-Series Only: Enter the percentage of broadcast traffic allowed in to the network. Optionally, you can designate a decimal value percentage, for example, 55.5%. Percentage: 0 to 100 0 % blocks all related traffic 100% allows all traffic into the interface Decimal Range: 0.1 to 0.
PAGE 1419
59 Spanning Tree Protocol (STP) Overview The commands in this chapter configure and monitor the IEEE 802.
PAGE 1420
www.dell.com | support.dell.com bpdu-destination-mac-address cs Use the Provider Bridge Group address in Spanning Tree or GVRP PDUs. Syntax bpdu-destination-mac-address [stp | gvrp] provider-bridge-group Parameters Defaults Command Modes Command History stp Force STP, RSTP, and MSTP to use the Provider Bridge Group address as the destination MAC address in its BPDUs. gvrp Forces GVRP to use the Provider Bridge GVRP Address as the destination MAC address in its PDUs.
PAGE 1421
Parameters Command Modes Command History Usage Information Related Commands stp-id Enter zero (0). The switch supports one Spanning Tree group with a group ID of 0. protocol Enter the keyword for the type of STP to debug, either mstp, pvst, or rstp. all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu (OPTIONAL) Enter the keyword bpdu to debug Bridge Protocol Data Units. config (OPTIONAL) Enter the keyword config to debug configuration information.
PAGE 1422
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands Enabled (that is, Spanning Tree Protocol is disabled.) SPANNING TREE Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series protocol spanning-tree Enter SPANNING TREE mode. forward-delay ces Syntax The amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State.
PAGE 1423
Defaults Command Modes Command History Related Commands 2 seconds SPANNING TREE Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series forward-delay Change the wait time before STP transitions to the Forwarding state. max-age Change the wait time before STP refreshes protocol configuration information.
PAGE 1424
www.dell.com | support.dell.com Command Modes CONFIGURATION Command History Example Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 59-1. protocol spanning-tree Command Example Force10(conf)#protocol spanning-tree 0 Force10(config-stp)# Usage Information STP is not enabled when you enter the SPANNING TREE mode. To enable STP globally on the switch, enter no disable from the SPANNING TREE mode.
PAGE 1425
show spanning-tree 0 ces Syntax Parameters Display the Spanning Tree group configuration and status of interfaces in the Spanning Tree group. show spanning-tree 0 [active | brief | guard | interface interface | root | summary] 0 Enter 0 (zero) to display information about that specific Spanning Tree group. active (OPTIONAL) Enter the keyword active to display only active interfaces in Spanning Tree group 0.
PAGE 1426
www.dell.com | support.dell.com Example Figure 59-3. show spanning-tree 0 Command Example Force10#show spann 0 Executing IEEE compatible Spanning Tree Protocol Bridge Identifier has priority 32768, Address 0001.e800.0a56 Configured hello time 2, max age 20, forward delay 15 We are the root of the spanning tree Current root has priority 32768 address 0001.e800.
PAGE 1427
Table 59-1. show spanning-tree 0 Command Information Field Description “Times” List the number of seconds since the last: • • • • hello time topology change notification aging “Port 1...” Displays the Interface type slot/port information and the status of the interface (Disabled or Enabled). “Port path...” Displays the path cost, priority, and identifier for the interface. “Designated root...” Displays the priority and MAC address of the root bridge of the STG that the interface belongs.
PAGE 1428
www.dell.com | support.dell.com spanning-tree 0 ces Syntax Parameters Assigns a Layer 2 interface to STP instance 0 and configures a port cost or port priority, or enables loop guard, root guard, or the Portfast feature on the interface. spanning-tree stp-id {cost cost | {loopguard | rootguard} | portfast [bpduguard [shutdown-on-violation]] | priority priority} stp-id Enter the STP instance ID. Range: 0 cost cost Enter the keyword cost followed by a number as the cost.
PAGE 1429
Usage Information If you enable portfast bpduguard on an interface and the interface receives a BPDU, the software disables the interface and sends a message stating that fact. The port is in ERR_DISABLE mode, yet appears in the show interface commands as enabled. If shutdown-on-violation is not enabled, BPDUs will still be sent to the RPM CPU.
PAGE 1430
www.dell.com | support.dell.
PAGE 1431
60 Time and Network Time Protocol (NTP) Overview The commands in this chapter configure time values on the system, either using FTOS, or the hardware, or using the Network Time Protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For details, see the “Network Time Protocol” section of the Management chapter in the FTOS Configuration Guide.
PAGE 1432
www.dell.com | support.dell.com calendar set ces Syntax Parameters Set the time and date for the switch hardware clock. calendar set time month day year time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format, for example, 17:15:00 is 5:15 pm. month Enter the name of one of the 12 months in English. You can enter the name of a day to change the order of the display to time day month year. day Enter the number of the day. Range: 1 to 31.
PAGE 1433
Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series In the switch, the hardware clock is separate from the software and is called the calendar. This hardware clock runs continuously. After the hardware clock (the calendar) is set, the FTOS automatically updates the software clock after system bootup.
PAGE 1434
www.dell.com | support.dell.com The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots. Dell Force10 recommends that you use an outside time source, such as NTP, to ensure accurate time on the switch. Related Commands ntp update-calendar Set the switch using the NTP settings. clock summer-time date ces Syntax Set a date (and time zone) on which to convert the switch to daylight savings time on a one-time basis.
PAGE 1435
Command History Related Commands Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series calendar set Set the hardware clock. clock summer-time recurring Set a date (and time zone) on which to convert the switch to daylight savings time each year. show clock Display the current clock settings. clock summer-time recurring ces Syntax Set the software clock to convert to daylight savings time on a specific day each year.
PAGE 1436
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands end-time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format, example, 17:15:00 is 5:15 pm. offset (OPTIONAL) Enter the number of minutes to add during the summer-time period. Range: 1 to 1440. Default: 60 minutes. Not configured. CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.
PAGE 1437
clock update-calendar ces Syntax Set the switch hardware clock based on the software clock. clock update-calendar Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Related Commands Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Use this command only if you are sure that the hardware clock is inaccurate and the software clock is correct.
PAGE 1438
www.dell.com | support.dell.com ntp authenticate ces Syntax Enable authentication of NTP traffic between the switch and the NTP time serving hosts. ntp authenticate To disable NTP authentication, enter no ntp authentication. Defaults Command Modes Command History Usage Information Related Commands Not enabled. CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
PAGE 1439
Usage Information After configuring the ntp authentication-key command, configure the ntp trusted-key command to complete NTP authentication. FTOS versions 8.2.1.0 and later use an encryption algorithm to store the authentication key that is different from previous FTOS versions; beginning in version 8.2.1.0, FTOS uses DES encryption to store the key in the startup-config when you enter the command ntp authentication-key.
PAGE 1440
www.dell.com | support.dell.com ntp multicast client e Syntax Configure the switch to receive NTP information from the network via multicast. ntp multicast client [multicast-address] To disable multicast reception, use the no ntp multicast client [multicast-address] command. Parameters Defaults Command Modes Command History multicast-address (OPTIONAL) Enter a multicast address. Enter either an IPv4 address in dotted decimal format or an IPv6 address in X:X:X:X::X format.
PAGE 1441
Since a large number of polls to NTP hosts can impact network performance, Dell Force10 recommends that you limit the number of hosts configured. Related Commands show ntp associations Displays NTP servers configured and their status. ntp source ces Syntax Specify an interface’s IP address to be included in the NTP packets. ntp source interface To delete the configuration, enter no ntp source.
PAGE 1442
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands CONFIGURATION Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series The number parameter in the ntp trusted-key command must be the same number as the number parameter in the ntp authentication-key command. If you change the ntp authentication-key command, you must also change the ntp trusted-key command.
PAGE 1443
Example Figure 60-3. show calendar Command Example Force10#show calendar 16:33:30 UTC Tue Jun 26 2001 Force10# Related Commands show clock Display the time and date from the switch software clock. show clock ces Syntax Parameters Command Modes Display the current clock settings. show clock [detail] detail (OPTIONAL) Enter the keyword detail to view the source information of the clock. EXEC EXEC Privilege Command History Example Version 7.6.1.0 Support added for S-Series Version 7.5.1.
PAGE 1444
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 60-6. show ntp associations Command Example Force10#show ntp associations remote ref clock st when poll reach delay offset disp ========================================================================== 10.10.120.5 0.0.0.0 16 - 256 0 0.00 0.000 16000.0 *172.16.1.33 127.
PAGE 1445
Command Modes EXEC EXEC Privilege Command History Example Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 60-7. show ntp status Command Example Force10#sh ntp status Clock is synchronized, stratum 2, reference is 100.10.10.10 frequency is -32.000 ppm, stability is 15.156 ppm, precision is 4294967290 reference time is BC242FD5.C7C5C000 (10:15:49.
PAGE 1446
www.dell.com | support.dell.
PAGE 1447
61 Uplink Failure Detection (UFD) Overview Uplink Failure Detection (UFD) provides detection of the loss of upstream connectivity and, if used with NIC teaming, automatic recovery from a failed link. Uplink Failure Detection is supported on platform: s (S50 only).
PAGE 1448
www.dell.com | support.dell.com clear ufd-disable s S50 only Syntax Parameters Re-enable one or more downstream interfaces on the switch/router that are in a UFD-disabled error state so that an interface can send and receive traffic. clear ufd-disable {interface interface | uplink-state-group group-id} interface interface Specifies one or more downstream interfaces.
PAGE 1449
debug uplink-state-group s S50 only Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Enable debug messages for events related to a specified uplink-state group or all groups. debug uplink-state-group [group-id] group-id Enables debugging on the specified uplink-state group. Valid group-id values are 1 to 16. None EXEC Privilege Version 8.4.2.3 Introduced on the S-Series S50.
PAGE 1450
www.dell.com | support.dell.com downstream s S50 only Syntax Parameters Assign a port or port-channel to the uplink-state group as a downstream interface.
PAGE 1451
Command History Usage Information Related Commands Version 8.4.2.3 Introduced on the S-Series S50. To disable auto-recovery on downstream links, enter the no downstream auto-recover command. downstream Assign a port or port-channel to the uplink-state group as a downstream interface. uplink-state-group Create an uplink-state group and enabling the tracking of upstream links.
PAGE 1452
www.dell.com | support.dell.com enable s S50 only Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Re-enable upstream-link tracking for an uplink-state group after it has been disabled. enable group-id Enables debugging on the specified uplink-state group. Valid group-id values are 1 to 16. Upstream-link tracking is automatically enabled in an uplink-state group. UPLINK-STATE-GROUP Version 8.4.2.3 Introduced on the S-Series S50.
PAGE 1453
Related Commands show uplink-state-group Display status information on a specified uplink-state group or all groups. uplink-state-group Create an uplink-state group and enabling the tracking of upstream links. show uplink-state-group s S50 only Syntax Parameters Defaults Command Modes Display status information on a specified uplink-state group or all groups. show uplink-state-group [group-id] [detail] group-id Displays status information on a specified uplink-state group or all groups.
PAGE 1454
www.dell.com | support.dell.com Example Figure 61-3.
PAGE 1455
uplink-state-group s S50 only Syntax Parameters Defaults Command Modes Command History Usage Information Create an uplink-state group and enabling the tracking of upstream links on a switch/router. uplink-state-group group-id group-id Enter the ID number of an uplink-state group. Range: 1-16. None CONFIGURATION Version 8.4.2.3 Introduced on the S-Series S50. After you enter the command, you enter uplink-state-group configuration mode to assign upstream and downstream interfaces to the group.
PAGE 1456
www.dell.com | support.dell.com upstream s S50 only Syntax Parameters Assign a port or port-channel to the uplink-state group as an upstream interface.
PAGE 1457
62 VLAN Stacking Overview With the VLAN-Stacking feature (also called Stackable VLANs and QinQ), available on all Dell Force10 platforms (C-Series c, E-Series e, and S-Series s) that are supported by this version of FTOS, you can “stack” VLANs into one tunnel and switch them through the network transparently. VLAN Stacking is supported on E-Series ExaScale ex with FTOS 8.2.1.0. and later.
PAGE 1458
www.dell.com | support.dell.com • • • • Assigning an IP address to a Stackable VLAN is supported when all the members are only Stackable VLAN trunk ports. IP addresses on a Stackable VLAN-enabled VLAN is not supported if the VLAN contains Stackable VLAN access ports. This facility is provided for SNMP management over a Stackable VLAN enabled VLAN containing only Stackable VLAN trunk interfaces. Layer 3 routing protocols on such a VLAN are not supported.
PAGE 1459
Usage Information Related Commands You must first enable DEI for this configuration to take effect. dei enable dei mark cs Set the DEI value on egress according to the color currently assigned to the packet. Syntax dei mark {green | yellow} {0 | 1} Parameters Defaults Command Mode Command History Usage Information Related Commands 0|1 Enter the bit value you want to map to a color. green | yellow Choose a color: Green: High priority packets that are the least preferred to be dropped.
PAGE 1460
www.dell.com | support.dell.com Command History Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.6.1.0 Support added for C-Series and S-Series E-Series original Command Usage Information Related Commands You must enable the Stackable VLAN (using the vlan-stack compatible command) on the VLAN prior to adding a member to the VLAN. vlan-stack compatible Enable Stackable VLAN on a VLAN. show interface dei-honor cs Display the dei honor configuration.
PAGE 1461
Command History Example Version 8.3.1.0 Introduced on C-Series and S-Series. Force10#show interface dei-mark Default CFI/DEI Marking: 0 Interface Drop precedence CFI/DEI -----------------------------------------------Gi 0/1 Green 0 Gi 0/1 Yellow 1 Gi 8/9 Yellow 0 Gi 8/40 Yellow 0 Related Commands dei mark vlan-stack access ces Syntax Specify a Layer 2 port or port channel as an access port to the Stackable VLAN network. vlan-stack access To remove access port designation, enter no vlan-stack access.
PAGE 1462
www.dell.com | support.dell.com Version 7.6.1.0 Support added for C-Series and S-Series E-Series original Command Usage Information You must remove the members prior to disabling the Stackable VLAN feature. To view the Stackable VLANs, use the show vlan command in the EXEC Privilege mode. Stackable VLANs contain members, designated by the M in the Q column of the command output. Figure 62-1.
PAGE 1463
vlan-stack protocol-type ces Syntax Parameters Defaults Command Modes Command History Define the Stackable VLAN Tag Protocol Identifier (TPID) for the outer VLAN tag (also called the VMAN tag). If you do not configure this command, FTOS assigns the value 0x9100. vlan-stack protocol-type number number Enter the hexadecimal number as the Stackable VLAN tag. On the E-Series: FTOS accepts the Most Significant Byte (MSB) and then appends zeros for the Least Significant Byte (LSB).
PAGE 1464
www.dell.com | support.dell.com Related Commands portmode hybrid Set a port (physical ports only) to accept both tagged and untagged frames. A port configured this way is identified as a hybrid port in report displays. vlan-stack trunk Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network. vlan-stack trunk ces Syntax Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network.
PAGE 1465
Example 1 Figure 62-2.
PAGE 1466
| VLAN Stacking www.dell.com | support.dell.
PAGE 1467
63 Virtual Routing and Forwarding (VRF) Overview Virtual Routing and Forwarding (VRF) allows multiple instances of a routing table to co-exist on the same router at the same time. Virtual Routing and Forwarding (VRF) is supported on the E-Series TeraScale and ExaScale platforms.
PAGE 1468
www.dell.com | support.dell.com Example Force10(conf)#cam-profile test Force10(conf-cam-prof-test)#microcode vrf Force10(conf-cam-prof-test)#enable CAM profile 'abc' is currently enabled. Do you want to disable it and continue? [yes/no]: y Updating the cam-profile will need a chassis reboot. System configuration has been modified.
PAGE 1469
cam-profile ipv4-vrf et (E-Series Terascale only) Set the VRF CAM profile for IPv4 only. Syntax cam-profile ipv4-vrf microcode ipv4-vrf Command Modes Command History CONFIGURATION Version 8.2.1.0 Introduced on the E-Series Terascale. Example Force10(conf)#cam-profile ipv4-vrf microcode ipv4-vrf Force10(conf)#do reload Must reload the system after setting the CAM Profile.
PAGE 1470
www.dell.com | support.dell.com cam-profile ipv4-v6-vrf et (E-Series Terascale only) Set the VRF CAM profile for IPv4 and IPv6. Syntax cam-profile ipv4-v6-vrf microcode ipv4-v6-vrf Command Modes Command History CONFIGURATION Version 8.2.1.0 Introduced on the E-Series Terascale.
PAGE 1471
cam-profile ipv4-vrf e Syntax Command Modes Command History (E-Series Exascale only) Set the VRF CAM profile for IPv4 only. cam-profile ipv4-vrf microcode ipv4-vrf CONFIGURATION Version 8.2.1.0 Introduced on the E-Series Example Force10(conf)#cam-profile ipv4-vrf microcode ipv4-vrf Force10(conf)#do reload Must reload the system after setting the CAM Profile.
PAGE 1472
www.dell.com | support.dell.com ip vrf e Create a non-default VRF instance by specifying the VRF name and ID. Note: Starting in FTOS 8.4.2.1, when VRF microcode is loaded on an E-Series ExaScale or TeraScale router, the ip vrf {default-vlan | vrf-name} command is deprecated, and is replaced by the ip vrf vrf-name vrf-id command. Syntax ip vrf vrf-name vrf-id To remove a VRF, enter no ip vrf vrf-name. Parameters Command Modes Command History vrf-name Enter the name of the VRF instance.
PAGE 1473
ip vrf forwarding e Syntax Parameters Assign this interface to the VLAN specified. ip vrf forwarding vrf-name vrf-name Enter the name of the VRF instance to which this interface will belong. If no name is entered, default-vrf is assigned. Command Modes Command History Usage Information INTERFACE Version 8.2.1.0 Introduced on the E-Series There must be no prior Layer 3 configuration on the interface when configuring VRF. VRF must be enabled prior to implementing this command. Starting in release 8.4.1.
PAGE 1474
www.dell.com | support.dell.com ip vrf-vlan-block e Configure the total number of VLANs that can be configured per VRF. Note: Starting in FTOS 8.4.2.1, when VRF microcode is loaded on an E-Series ExaScale or TeraScale router, the ip vrf-vlan-block number command is deprecated. Syntax ip vrf-vlan-block number To remove the VLAN block configuration, enter no vrf-vlan-block. Parameters Command Modes Command History number Total number of VLANs allotted for VRF instances.
PAGE 1475
show ip vrf e Syntax Display the interfaces assigned to VRF instances. show ip vrf [vrf-name] Parameters Command Modes vrf-name Enter the name of a non-default VRF instance. To display information on all VRF instances (including the default VRF 0), do not enter a value. EXEC Command History Version 8.2.1.
PAGE 1476
www.dell.com | support.dell.com start-vlan-id e Set the starting VLAN ID for a VRF instance. Note: Starting in FTOS 8.4.2.1, when VRF microcode is loaded on an E-Series ExaScale or TeraScale router, the start vlan-id vlan-start-id command is deprecated. Syntax Parameters Command Modes Command History start-vlan-id vlan-start-id vlan-start-id The starting VLAN ID number for this VRF instance.
PAGE 1477
64 Virtual Router Redundancy Protocol (VRRP) Virtual Router Redundancy Protocol (VRRP) is available on platforms: c e s IPv6 VRRP (VRRP version 3) is available on platforms: c e s Overview This chapter has the following sections: • • IPv4 VRRP Commands on page 1477 IPv6 VRRP Commands on page 1491 IPv4 VRRP Commands The IPv4 VRRP commands are: • • • • • • • • • • • • • • advertise-interval authentication-type clear counters vrrp debug vrrp description disable hold-time preempt priority show config show v
PAGE 1478
www.dell.com | support.dell.com advertise-interval ces Syntax Parameters Defaults Command Modes Command History Usage Information Set the time interval between VRRP advertisements. advertise-interval time time Enter a number of in seconds for IPv4 or centiseconds for IPv6. Range: 1 to 255, in increments of 25 for IPv6. IPv4 Default: 1 second. IPv6 Default: 100 centiseconds 1 second for IPv4 and 100 centiseconds for IPv6 INTERFACE-VRRP Version 8.3.2.
PAGE 1479
clear counters vrrp ces Syntax Parameters Command Modes Command History Clear the counters recorded for IPv4 VRRP operations. clear counters vrrp [vrid | vrf instance] vrid (OPTIONAL) Enter the number of the VRRP group ID. Range: 1 to 255 vrf instance (OPTIONAL) E-Series only: Enter the name of a VRF instance (32 characters maximum) to clear the counters of all VRRP groups in the specified VRF. EXEC Privilege Version 8.4.1.0 Support was added for VRRP groups in non-default VRF instances. Version 7.
PAGE 1480
www.dell.com | support.dell.com Usage Information If no options are specified, debug is active on all interfaces and all VRRP groups. description ces Syntax Parameters Defaults Command Modes Command History Configure a short text string describing the VRRP group. description text text Enter a text string up to 80 characters long. Not enabled. VRRP Version 8.3.2.0 Introduced for IPv6 on E-Series TeraScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
PAGE 1481
hold-time ces Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the initialization of the VRRP MASTER, the new switch can stabilize its routing tables. hold-time time time Enter a number of seconds for IPv4 or centiseconds for IPv6. Range: 0 to 65535, in multiples of 25 for IPv6 Default: 0 zero (0) seconds VRRP Version 8.3.2.
PAGE 1482
www.dell.com | support.dell.com priority ces Syntax Specify a VRRP priority value for the VRRP group. This value is used by the VRRP protocol during the MASTER election process. priority priority Parameters Defaults Command Modes priority 100 VRRP Command History Usage Information Enter a number as the priority. Enter 255 only if the router’s virtual address is the same as the interface’s primary IP address (that is, the router is the OWNER). Range: 1 to 255. Default: 100. Version 8.3.2.
PAGE 1483
show vrrp ces Syntax Parameters Display information on the IPv4 and IPv6 VRRP groups that are active. If no VRRP groups are active, the FTOS returns the message: No Active VRRP group. show vrrp [ipv6] [vrid] [vrf instance | interface] [brief] ipv6 (OPTIONAL) Enter the keyword ipv6 to display information on IPv6 VRRP groups. vrid (OPTIONAL) Enter a Virtual Router identifier to display information on only the specified VRRP group. Range: 1 to 255.
PAGE 1484
www.dell.com | support.dell.com Table 64-1. Command Example Description: show vrrp brief Item Description Interface Lists the interface type, slot and port on which the VRRP group is configured. Grp Displays the VRRP group ID. Pri Displays the priority value assigned to the interface. If the track command is configured to track that interface and the interface is disabled, the cost is subtracted from the priority value assigned to the interface.
PAGE 1485
Figure 64-3. Command Example: show vrrp Force10>show vrrp -----------------GigabitEthernet 12/3, VRID: 1, Net: 10.1.1.253 VRF: 0 default-vrf State: Master, Priority: 105, Master: 10.1.1.253 (local) Hold Down: 0 sec, Preempt: TRUE, AdvInt: 1 sec Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0 Virtual MAC address: 00:00:5e:00:01:01 Virtual IP address: 10.1.1.
PAGE 1486
www.dell.com | support.dell.com Table 64-2. Command Example Description: show vrrp Adv rcvd:... This line displays counters for the following: • • • Displays the virtual MAC address of the VRRP group. Virtual IP address Displays the virtual IP address of the VRRP router to which the interface is connected. Authentication:... States whether authentication is configured for the VRRP group. If it is, the authentication type and the password are listed. Tracking states...
PAGE 1487
track ces Syntax Parameters Monitor an interface or a configured object and, optionally, reconfigure the cost value subtracted from the VRRP group priority if the tracked interface or object goes down. You can assign up to 12 tracked interfaces and up to 20 tracked objects per virtual group.
PAGE 1488
www.dell.com | support.dell.com virtual-address ces Syntax Parameters Defaults Command Modes Command History Usage Information Configure up to 12 IP addresses of virtual routers in the VRRP group. You must set at least one virtual address for the VRRP group to start sending VRRP packets. For IPv4 addresses multiple addresses can be entered in the same command line. For IPv6 addresses, each address must be entered separately. virtual-address address1 [...
PAGE 1489
vrrp-group ces Syntax Assign an interface to a VRRP group. vrrp-group vrid Parameters Defaults Command Modes vrid Not configured. INTERFACE Command History Usage Information Enter the virtual-router ID number of the VRRP group. VRID range (C-Series and S-Series): 1-255. VRID range (E-Series): 1-255 when VRF microcode is not loaded and 1-15 when VRF microcode is loaded. Version 8.4.2.1 When VRF microcode is loaded in CAM, the range of valid VRID values on the E-Series changed to 1-15. Version 8.4.
PAGE 1490
www.dell.com | support.dell.com Figure 64-4 shows how the actual VRID used by a VRRP group is displayed: • • Below the command line - when VRF microcode is loaded and you enter the vrrp-group or vrrp-ipv6-group command in VRRP-group configuration mode. In show vrrp command output. Important: You must configure the same VRID on neighboring routers (Dell Force10 or non-Dell Force10) in the same VRRP group in order for all routers to interoperate. Figure 64-4.
PAGE 1491
IPv6 VRRP Commands The IPv6 VRRP commands are: • • • • clear counters vrrp ipv6 debug vrrp ipv6 show vrrp ipv6 vrrp-ipv6-group The following commands apply to IPv4 and IPv6: • • • • • • • • • advertise-interval description disable hold-time preempt priority show config track virtual-address clear counters vrrp ipv6 ecs Syntax Parameters Command Modes Command History Clear the counters recorded for IPv6 VRRP groups.
PAGE 1492
www.dell.com | support.dell.com debug vrrp ipv6 ecs Syntax Parameters debug vrrp ipv6 interface [vrid] {all | packets | state | timer} interface Enter the following keywords and slot/port or number information: • • • • Command Modes Command History Usage Information 1492 Allows you to enable debugging of VRRP. | For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
PAGE 1493
show vrrp ipv6 ecs Syntax Parameters View the IPv6 VRRP groups that are active. If no VRRP groups are active, the FTOS returns “No Active VRRP group.” show vrrp ipv6 [vrid] [interface] [brief] vrid (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. Range: 1 to 255.
PAGE 1494
www.dell.com | support.dell.com Table 64-3. Command Example Description: show vrrp ipv6 State: master... Displays the interface’s state: • Na/If (not available), • master (MASTER virtual router) • backup (BACKUP virtual router) the interface’s priority and the IP address of the MASTER. Hold Down:... This line displays additional VRRP configuration information: • • Hold Down displays the hold down timer interval in seconds.
PAGE 1495
vrrp-ipv6-group ecs Syntax Assign an interface to a VRRP group. vrrp-ipv6-group vrid Parameters Defaults Command Modes vrid Not configured. INTERFACE Command History Usage Information Enter the virtual-router ID number of the VRRP group. VRID range (C-Series and S-Series): 1-255. VRID range (E-Series): 1-255 when VRF microcode is not loaded and 1-15 when VRF microcode is loaded. Version 8.4.2.1 The range of valid VRID values on the E-Series when VRF microcode is loaded in CAM changed to 1-15.
PAGE 1496
www.dell.com | support.dell.
PAGE 1497
65 C-Series Diagnostics and Debugging Overview This chapter contains the following sections: • • • • • • • • • • • • Inter-process Communication Commands RPM Management Port Commands Data Path Debugging Commands Interface Troubleshooting Commands Advanced ASIC Debugging Commands ACL and System-Flow Debug Commands Interface Management Debug Commands Layer 2 Debug Command Trace Logging Commands Offline Diagnostic Commands PoE Hardware Status Commands Buffer Tuning Commands Inter-process Communication Comman
PAGE 1498
www.dell.com | support.dell.com Parameters linecard Enter the keyword linecard to clear counters on a line card. rpm Enter the keyword rpm to clear counters on an RPM. number Enter a number after the following keywords: • • Defaults None. Command Mode EXEC After the keyword rpm: Range: 0-1 After the keyword linecard: Range: 0-7 for the C300 EXEC Privilege Command History Version7.5.1.
PAGE 1499
hardware monitor linecard e Syntax Parameters Defaults Command Mode Command History Configure the system to take an action upon a line card hardware error. hardware monitor linecard asic {btm [action-on-error {card-problem | card-reset | card-shutdown}] | fpc [action-on-error | parity-correction]} action-on-error Enter the keyword action-on-error to further specify actions that should be taken in the event of a hardware error.
PAGE 1500
www.dell.com | support.dell.com Command Mode Command History Usage Information CONFIGURATION Version 7.7.1.0 Introduced This command enables a hardware watchdog mechanism that automatically reboots an FTOS switch/ router with a single unresponsive RPM. This is a last resort mechanism intended to prevent a manual power cycle. show hardware cpu party-bus c Syntax Parameters View advanced debugging counters for the party-bus port on the CPU of the specified line card or RPM.
PAGE 1501
Example Figure 65-1. show hardware linecard Command Example Force10#show hardware linecard 1 cpu party-bus statistic ACTIVE EMAC DEVICE:2 STATISTICS Num of Pkts. Tx Requested = 2788452, Number of Pkts Transmitted = 2788452 Num of Pkts.
PAGE 1502
www.dell.com | support.dell.com Command History Example Version 7.5.1.0 Figure 65-2. Introduction show hardware rpm mac counters Command Example Force10#show hardware rpm 0 mac counters Received and Transmitted Packets without Errors SLOT ID# Rx Counter TxCounter RSM SLOTS: 0 1 17 1 0 0 LCM SLOTS: 0 0 0 1 17 1 2 0 0 3 0 0 4 0 0 5 0 0 6 0 0 Table 65-1. Slot ID # show hardware rpm mac counters Output Description Port number on the party-bus control switch.
PAGE 1503
RPM Management Port Commands show hardware rpm cpu management c Syntax Parameters View standard Ethernet receive and transmit counters as well as auto-negotiation debugging information for the external management interface. show hardware rpm number cpu management statistics number Defaults None. Command Mode EXEC Enter the RPM slot number. Range: 0-1 EXEC Privilege Command History Version 7.5.1.
PAGE 1504
www.dell.com | support.dell.com Example Figure 65-4.
PAGE 1505
Data Path Debugging Commands Data path refers to external data and control packets that are sent to an RPM or line card, or processed by FP and forwarded through the system. • • show hardware drops show hardware cpu data-plane show hardware drops c Syntax Parameters View internal packet-drop counters on a line card or RPM. show hardware {linecard number | rpm number} drops [unit number] [port number] linecard Enter the keyword linecard to view information about a line card.
PAGE 1506
www.dell.com | support.dell.com Example Figure 65-5.
PAGE 1507
Figure 65-7.
PAGE 1508
www.dell.com | support.dell.com Example 1 Figure 65-8.
PAGE 1509
show hardware interface phy c Syntax Parameters View MAC- and PHY-related registers and link status information, including the transmitted and received auto-negotiation control words. show hardware interface interface phy [registers] phy Enter the keyword phy to display sent and received auto-negotiation and Layer 1 link status information. registers (OPTIONAL) Use the registers keyword to display a dump of the PHY registers in hexadecimal.
PAGE 1510
www.dell.com | support.dell.com Example Figure 65-10.
PAGE 1511
Table 65-2. Usage Information show hardware rpm number mac Output Description 1000Base-T Control 1000Base-T requires auto-negotiation. The IEEE Ethernet standard does not support setting the speed to 1000 Mbps with the speed command without auto-negotiation. C-Series line cards support both full-duplex and half-duplex 1000BaseT.
PAGE 1512
www.dell.com | support.dell.com Advanced ASIC Debugging Commands • • • • clear hardware unit show cpu-interface-stats show hardware unit show revision clear hardware unit c Syntax Parameters Clear debugging information on the internal Gigabit Ethernet interfaces on the CSF and FP ASICs. clear hardware {linecard number | rpm number} unit number counters linecard Enter the keyword linecard to clear information about a line card. rpm Enter the keyword rpm to clear information about an RPM.
PAGE 1513
Defaults Command Modes No default behavior or values EXEC EXEC Privilege Command History Version 7.6.1.0 Example Figure 65-12. Introduced on C-Series show cpu-interface-stats lp Command Example (Partial) Force10#show cpu-interface-stats lp 1 -- Dataplane PP1 interface statistics -Link state : Up Recv Interrupts/Polls: 0 Recv Packets : 9807 Transmit ... -- Dataplane PP0 interface statistics -Link state : Up Recv Interrupts/Polls: 0 Recv Packets : 9807 Transmit Recv Desc Error : 0 Transmit ...
PAGE 1514
www.dell.com | support.dell.com Example 1514 Figure 65-13. show cpu-interface-stats cp Command Example (Partial) Force10#show cpu-interface-stats cp -- Partybus ethernet statistics -Link state : Down Recv Interrupts/Polls: 438532 Recv Packets : 440125 Transmit Packets : ... -- Dataplane ethernet statistics -Link state : Down Recv Interrupts/Polls: 9875 Recv Packets : 9875 Transmit Packets : ...
PAGE 1515
show hardware unit c Syntax Parameters View advanced debugging information on the internal Gigabit Ethernet interfaces on the CSF and FP ASICs. show hardware {linecard number | rpm number} unit number {counters | details | port-stats | register} linecard Enter the keyword linecard to view information about a line card. rpm Enter the keyword rpm to view information about an RPM.
PAGE 1516
www.dell.com | support.dell.com Example Figure 65-14. show revision Command Example Force10#show revision -- RPM 0 -C300 RPM FPGA : 3.8 Required FPGA version : 3.8 -- Secondary RPM -C300 RPM FPGA : 3.8 Required FPGA version : 3.8 -- Line card 3 -48 Port 1G LCM FPGA : 2.6 Required FPGA version : 2.6 -- Line card 7 -48 Port 1G LCM FPGA : 2.6 Required FPGA version : 2.
PAGE 1517
Related Commands show hardware system-flow layer2 linecard port-set View system-flow entries. show hardware acl c Syntax Parameters View Layer 2 or Layer 3 access control list entries. show hardware {layer2 | layer 3} acl linecard number port-set number layer2 Enter the keyword layer2 to view Layer 2 access control list entries for the specified line card. layer3 Enter the keyword layer3 to view Layer 3 access control list entries for the Forwarding Processor of the specified line card.
PAGE 1518
www.dell.com | support.dell.com Usage Information Warning: Use this command only when you are working directly with a technical support representative to troubleshoot a problem. Do not use this command unless a technical support representative instructs you to do so. show hardware system-flow layer2 linecard port-set c Syntax View system-flow entries.
PAGE 1519
debug ifm trace-flags c Syntax Turn on IFM internal trace-flags. debug ifm trace-flags trace-flag Disable this command using the no debug ifm trace-flags command. Parameters trace-flag Defaults None. Command Mode EXEC Enter a hexadecimal number representing the trace-flag. EXEC Privilege Command History Usage Information Version 4.2.1.0 Introduction Turning on a trace flag does not result in an output to the console/terminal.
PAGE 1520
www.dell.com | support.dell.com interface Enter one of the following keywords and slot/port or number information: • • • • • • • number Defaults None. Command Mode EXEC For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interfaces, enter the keyword loopback followed by a number from 0 to 16383.
PAGE 1521
port interface The keywords port interface show Layer 2 information for a port on a particular line card. stg The keyword stg shows the state of each port in a particular Spanning Tree Group on a line card. vlan The keyword vlan shows Layer 2 information in the MAC Agent for a VLAN on a particular line card. interface Enter one of the following keywords and slot/port or number information: • • number Enter a number after the following keywords: • • • • • Defaults None.
PAGE 1522
www.dell.com | support.dell.com debug cpu-traffic-stats c Syntax Enable the collection of CPU traffic statistics. debug cpu-traffic-stats [linecard {all | number}] To disable debugging, execute the no debug cpu-traffic-stats command. Parameters Defaults Command Modes (OPTIONAL) Enter the keyword linecard to view CPU traffic statistics for a particular line card. all Enter the keyword all to specify all line cards.
PAGE 1523
Command Mode EXEC EXEC Privilege Command History Usage Information H Version 4.2.1.0 Introduction One trace log message is generated for each command. No password information is saved to this file. A command-history trace log is saved to a file upon an RPM failover. This file can be analyzed by the Dell Force10 TAC to help identify the root cause of an RPM failover. show console lp c Syntax View the buffered console log for a line card.
PAGE 1524
www.dell.com | support.dell.com Command History Example H Version 7.5.1.0 Figure 65-15.
PAGE 1525
Parameters Defaults Command Modes Command History Usage Information Example rpm slot Enter the keyword rpm followed by the RPM slot number. Range: 0 or 1 errorlog (OPTIONAL) Enter the keyword errorlog to dump the FPGA Error Log. linecard slot registers Enter the keyword linecard followed by the line card slot number and the keyword registers to dump the line card’s FPGA registers.
PAGE 1526
www.dell.com | support.dell.com Example 1526 Figure 65-17. show hardware rpm fpga stats (C-Series Command Example) orce10#show hardware rpm 1 fpga stats DUMPING FPGA INTERRUPT STATISTICS FAN Interrupts received - 0 PSU Interrupts received - 0 Card Presence Interrupts received - 0 I2C[0] Interrupts received - 0 I2C[0] Interrupts handled - 0 I2C[1] Interrupts received - 337 I2C[1] Interrupts handled - 337 I2C[2] Interrupts received - 0 I2C[2] Interrupts handled - 0 I2C[3] Interrupts received - 1209 ...
PAGE 1527
Offline Diagnostic Commands The commands in this section are: • diag linecard • offline • online • show diag The offline diagnostics test suite is useful for isolating faults and debugging hardware. The tests results are written to a file in flash memory and can be displayed on screen. Detailed statistics for all tests are collected.
PAGE 1528
www.dell.com | support.dell.com offline c Syntax Place a line card or SFM in an offline state. offline {linecard number | sfm standby} Parameters linecard Enter the keyword linecard to place the linecard in an offline state. sfm standby Enter the keywords sfm standby to place the RPM in an offline state. number After the keyword linecard: Range: 0-7 for the C300 Defaults None. Command Mode EXEC EXEC Privilege Command History H Version 7.5.1.
PAGE 1529
show diag c Syntax View diagnostics information. show diag {information | linecard number | summary | detail} Parameters information Enter the keyword information to view diagnostics processes by line card. linecard Enter the keyword linecard for diagnostics information for a particular line card. number Enter a line card number. Range: 0-7 for the C300 summary Enter the keyword summary brief diagnostics information. detail Enter the keyword detail for detailed diagnostics information.
PAGE 1530
www.dell.com | support.dell.com Example Figure 65-18.
PAGE 1531
queue0 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 0. Dedicated Buffer Range: 0-2013 Dynamic Buffer Range: FP: 0-2013 CSF: 0-131200 (in multiples of 80) Packet Pointer Range: 0-2047 queue1 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 1.
PAGE 1532
www.dell.com | support.dell.com Defaults Command Mode Command History Usage Information linecard slot Enter the keyword linecard followed by the line card slot number. port-set port-pipe Enter the keyword port-set followed by the port-pipe number. Range: 0-3 on C-Series, 0-1 on S-Series buffer-policy buffer-profile Enter the keyword buffer-policy followed by the name of a buffer profile you created. None BUFFER PROFILE H Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
PAGE 1533
Usage Information When you remove a buffer-profile using the command no buffer-profile [fp | csf] from CONFIGURATION mode, the buffer-profile name still appears in the output of show buffer-profile [detail | summary]. After a line card reset, the buffer profile correctly returns to the default values, but the profile name remains.
PAGE 1534
www.dell.com | support.dell.com show buffer-profile cs Display the buffer profile that is applied to an interface. Syntax show buffer-profile {detail | summary} {csf | fp-uplink} Parameters Defaults Command Mode Command History Example detail Display the buffer allocations of the applied buffer profiles. summary Display the buffer-profiles that are applied to line card port-pipes in the system.
PAGE 1535
Command History Example H Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Figure 65-20.
PAGE 1536
www.dell.com | support.dell.
PAGE 1537
66 E-Series ExaScale Debugging and Diagnostics Overview This document is for E-Series ExaScale E1200i and the E600i only and support begins with FTOS versions 8.1.1.0 and 8.1.1.2 respectively as denoted by the platform symbol ex. FTOS supports an extensive suite of protocol-specific debug commands for packet- and event-level debugging. These commands are described throughout this document. In addition, FTOS supports commands for diagnosing suspected hardware issues.
PAGE 1538
www.dell.com | support.dell.com In addition to these debug commands, FTOS supports diagnostics, monitoring, and fault isolation commands to assist in gathering information. Important Points to Remember • • • • Unless otherwise noted, these commands are available on TeraScale systems only. The trace-log file captures failure information on most failure events. The RPM-SFM runtime loopback test failure initiates an SFM walk.
PAGE 1539
Example Figure 66-1.
PAGE 1540
www.dell.com | support.dell.com diag sfm ex Syntax Parameters Defaults Command Modes Command History Usage Information Execute a manual dataplane loopback test. diag sfm all-loopback all-loopback (OPTIONAL) Enter the keyword all-loopback to execute a dataplane loopback test from the RPMs and all line cards. No default behavior or value EXEC Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.
PAGE 1541
Using permit rules with the count option, you can track, on a per-flow basis, whether CPU-generated packets were transmitted successfully. In addition, you can block certain CPU-generated and soft-forwarded traffic. This feature also allows you to configure an extended ACL that matches ICMP packets using the count option, apply the ACL to an egress physical interface, and then ping through that interface to the remote device. Note: Only Layer 3 traffic goes through the ACL—i.e. BPDUs will not be captured.
PAGE 1542
www.dell.com | support.dell.com logging coredump kernel server ex Syntax Designate the logging core-dump files to be saved to a remote server rather than flash. logging coredump kernel server To save the logging core-dump files to flash (the default), use the no logging coredump kernel server command. Defaults Command Modes Saved on flash CONFIGURATION Command History Related Commands Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.
PAGE 1543
For example: f10lp6.core.gz • Related Commands Multiple core-dumps — If multiple line cards crash, the core-dump files will upload simultaneously. However, a second core-dump from the same line card slot will overwrite the first core-dump. — During a line card core-dump, the line card interface remains up while the core-dump is being written to the directory. Use the port-shutdown option to shutdown the physical interfaces during the core dump, allowing for a failover to a backup system.
PAGE 1544
www.dell.com | support.dell.com Since this command is for diagnostic purposes, you can power off more than one SFM causing a switch fabric module to go down. A warning message is issued at the command line and requires user confirmation to proceed with the command. Example Figure 66-3. power-off sfm command with switch fabric down warning message Force10#power-off sfm 1 WARNING!! SFM1 is active.
PAGE 1545
Example Figure 66-5.
PAGE 1546
www.dell.com | support.dell.com Command History Example Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Figure 66-6. show console lp 0 command Example Force10#show console lp MINI FIFO CONTROL = MINI FIFO RPM POINTER = MINI FIFO CPU POINTER = Default case.
PAGE 1547
Example Figure 66-8. reset sfm Command Example Force10#reset sfm 1 % Error: SFM1 is active. Resetting it will impact data traffic. Force10# Note: Resetting an SFM in a power-off state is not permitted. Use the command power-on sfm to bring the SFM back to a power-on state. Related Commands power-off/on sfm Power on/off an SFM show diag sfm ex Syntax Defaults Command Modes Command History Example Display the results and status of the last chassis runtime/onetime loopback test.
PAGE 1548
www.dell.com | support.dell.com show processes ipc ex Syntax Display IPC messaging used internally between FTOS processes. show processes ipc [recv-stats | send-stats] [cp | rp1 | rp2 | lp linecard-number] Parameters Defaults Command Modes recv-stats (OPTIONAL) Enter the keyword recv-stat to display the receiver-side details of the IPC messages. send-stats (OPTIONAL) Enter the keyword send-stats to display the sender-side details of the IPC messages.
PAGE 1549
Example Figure 66-11. show processes ipc send-stats Command Example Force10#show processes ipc send-stats IPC Send Statistics on CP Memory Used by Send DB on this processor: 2303000 bytes SeqNo - Last sent guaranteed IPC pkt sequence no from this source to destination Success - No of successfull guaranteed IPC packets sent from source to destination 1st-R - No of first retry attempts 2nd-R - No of second retry attempts Fails - No of guaranteed IPC pkts that could not be transmitted RTT(ms) - Avg.
PAGE 1550
www.dell.com | support.dell.com Example Figure 66-12.
PAGE 1551
Important Points to Remember • A sending task enqueues messages into the SWP queue3 for a receiving task and waits for an acknowledgement. If no response is received within a period of time, the SWP time-out mechanism re-submits the message at the head of the FIFO queue.
PAGE 1552
www.dell.com | support.dell.com Example Figure 66-14. show revision command Example (partial) Force10#show revision -- RPM 0 panda bedrock helio tabby willow -: : : : : ASIC - 0x72632000 0x34 0x13 0x7 0x13 -- Line card 0 -lc pic 0 : 1.0 lc pic 1 : 1.0 marvel serdes : 0x0 aquarius : 0x15 galle : 0x11 lynx : 0x7 mini : 0x22 pandora : 0xd -- Line card 1 -lc pic 0 : 1.1 lc pic 1 : 1.
PAGE 1553
Command History Usage Information Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.
PAGE 1554
www.dell.com | support.dell.com Example Figure 66-15. partial output of the show tech-support Command Example Force10#show tech-support ----------------------------------- show version ------------------------------Force10 Networks Real Time Operating System Software System image file is "flash://FTOS-EF-6.5.4.1.bin" Chassis Type: E600 Control Processor: IBM PowerPC 750FX (Rev D2.2) with 536870912 bytes of memory. Route Processor 1: IBM PowerPC 750FX (Rev D2.2) with 1073741824 bytes of memory.
PAGE 1555
show environment (C-Series and E-Series) Display system component status. show processes memory (C-Series and E-Series) Display memory usage based on running processes. Offline Diagnostic Commands Offline diagnostics are not supported in FTOS version 8.1.1.0. The offline diagnostics test suite is useful for isolating faults and debugging hardware. The tests results are written to a file in flash memory and can be displayed on screen. Detailed statistics for all tests are collected.
PAGE 1556
www.dell.com | support.dell.com Defaults Command Modes level1 Enter the keyword Level1 to verify that the devices are accessible via the designated paths (line integrity tests) and test the internal registers of the devices. level2 Enter the keyword level2 to perform on-board loopback tests on various data paths (data Port-Pipe and Ethernet). terminate Enter the keyword terminate to stop the offline diagnostics tests. All Levels (alllevels) EXEC EXEC Privilege Command History Version 8.1.1.
PAGE 1557
Defaults Command Mode No default behavior or values EXEC EXEC Privilege Command History Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i show diag Not supported in FTOS version 8.1.1.0 ex Syntax Parameters Defaults Command Mode Display current diagnostics information. show diag {information} [linecard number [detail | periodic | summary]] information Enter the keyword information to view current diagnostics information in the system.
PAGE 1558
www.dell.com | support.dell.com Hardware Commands These commands display information from a hardware sub-component or ASIC. Warning: These commands should be used only when you are working directly with Dell Force10 TAC (Technical Assistance Center) while troubleshooting a problem. Do not use these command without the assistance of a Dell Force10 TAC representative. To contact Dell Force10 TAC for assistance: E-mail Direct Support: support@Force10networks.com Web: www.force10networks.
PAGE 1559
Parameters Defaults Command Modes rpm Enter the keyword rpm to clear BTM error counters or status registers on the RPM. linecard number Enter the keyword linecard followed by the line card slot number to clear BTM error counters or status registers on the specified line card. Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on an E300 port-set pipe-number Enter the keyword port-set followed by the number of the line card or RPM’s Port-Pipe.
PAGE 1560
www.dell.com | support.dell.com Command History Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i hardware monitor linecard ex Syntax Parameters Defaults Command Mode Command History Configure the system to take an action upon a line card hardware error.
PAGE 1561
Defaults Command Mode Command History Disabled CONFIGURATION Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i show control-traffic ex Syntax Parameters Defaults Command Modes Show information related to CP, RP1 or RP2, and ACL-FPGA related control traffic. show control-traffic rpm [0-1] {cp | rp1 | rp2 | acl-fpga} {counters | statistics} cp Enter the keyword cp to view IPC information on the CPs counters or statistics.
PAGE 1562
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i show control-traffic linecard ex Syntax Parameters Defaults Command Modes Display information relating to packet counts for the selected line card’s control traffic.
PAGE 1563
Defaults Command Modes qos-counters (OPTIONAL) Enter the keyword qos-counters to display the RP-Switch qos-counters. qos-configuration (OPTIONAL) Enter the keyword qos-configuration to display the RP-Switch qos-configuration. cp-port (OPTIONAL) Enter the keyword cp-port to display the RP-Switch information for the CP port. rp1-port (OPTIONAL) Enter the keyword rp1-port to display the RP-Switch information for the RP1 port.
PAGE 1564
www.dell.com | support.dell.com Example 1564 Figure 66-16.
PAGE 1565
Example Figure 66-17. show cpu-interface-stats cp command Example (Partial) Force10#show cpu-interface-stats cp -- Partybus ethernet statistics -Link state : Down Recv Interrupts/Polls: 438532 Recv Packets : 440125 Transmit Packets : 290784 ... -- Dataplane ethernet statistics -Link state : Down Recv Interrupts/Polls: 9875 Recv Packets : 9875 Transmit Packets : 9841 ... -- OOB ethernet statistics -Link state : Up Recv Interrupts/Polls: 15439 Recv Packets : 19298 Transmit Packets : 11 ...
PAGE 1566
www.dell.com | support.dell.com Parameters rpm Enter the keyword rpm to display RPM error counters, status registers, or packet queue from the BTM. linecard number Enter the keyword linecard followed by the line card slot number to display BTM error counters, status registers, or packet queue on the specified line card. Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on an E300 port-set pipe-number Enter the keyword port-set followed by the number of the line card’s Port-Pipe.
PAGE 1567
show hardware fpc forward ex Syntax Parameters Defaults Command Modes Display receive and transmit counters, error counters and status registers for the forwarding functional area of the FPC (flexible packet classification engine). show hardware linecard number port-set pipe-number fpc forward {counters | drops | spi {err-counters | spichannel# counters} | status} linecard number Enter the keyword linecard followed by the line card slot number.
PAGE 1568
www.dell.com | support.dell.com Example 1568 Figure 66-18.
PAGE 1569
Example Figure 66-19.
PAGE 1570
www.dell.com | support.dell.com show hardware fpc lookup detail ex Syntax Parameters Defaults Command Modes Display diagnostic and debug information related to the lookup functional area of the Flexible Packet Classification (FPC). show hardware linecard number port-set pipe-number fpc lookup detail linecard number Enter the keyword linecard followed by the line card slot number.
PAGE 1571
Example Force10#show hardware linecard 0 port-set 0 fpc lookup detailed Summary of Error Registers ------- -- ----- --------0 Counters Enabled : Cyclone 1.5 ChassisMap Cyclone 1.5 MixedMode T2L party Status partyType ---------- : 0x00000000 : 0x00000000 : No Errors ErrorCount ---------- Summary of Last 16 CamSearches ========================================================= I CamKey P T R P E N n a a P o g W d r b I r r r e i l D t e I x t e I s n y T d s d y e p x 21554 50697065.5f302045.72726f72.
PAGE 1572
www.dell.com | support.dell.com Example Figure 66-20.
PAGE 1573
Command History Example Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Figure 66-21.
PAGE 1574
www.dell.com | support.dell.com Example Figure 66-22. show interfaces tengigabitethernet Command Example Force10#show interfaces tengigabitethernet 4/0 link-status Port Status Loss of Signal : FALSE (XFP has power) RX Signal Lock Error : TRUE (Lock detected) PCS Link State : Down Link Faults Remote : None (No Fault) Local : Fault (Fault present) Idle Error : False (Not received) Illegal Symbol : False (Not received) Error Symbol : False (Not received) Force10# Table 66-3.
PAGE 1575
Example Figure 66-23.
PAGE 1576
www.dell.com | support.dell.com Table 66-4. Lines in show interfaces gigabitethernet Command Example Line Description Phy Specific Control Values are: 0 - Manual MDI 1 - Manual MDIX 2 - N/A 3 - Auto MDI/MDIX Phy Specific Status Displays PHY-specific status information. Cable length represents a rough estimate in meters: 0 - < 50 meters 1 - 50 - 80 meters 2 - 80 - 110 meters 3 - 110 - 140 meters 4 - 140 meters.
PAGE 1577
Example Figure 66-24. show interfaces gigabitethernet transceiver Command Example Force10#show interfaces gigabitethernet 1/0 transceiver SFP is present.
PAGE 1578
www.dell.com | support.dell.com Parameters Defaults Command Modes ingress Enter the keyword ingress to view IPC information on the ingress (LC-to-RPM) path. egress Enter the keyword egress to view IPC information on the egress (RPM-to-LC) path. counters (OPTIONAL) Enter the keyword counters to display the IPC counters. drops (OPTIONAL) Enter the keyword drops to display IPC drop-related error counters. No default behavior or values EXEC EXEC Privilege Command History Version 8.1.1.
PAGE 1579
Parameters Defaults Command Modes rpm-switch Enter the keyword rpm-switch to display the RPM Switch’s IPC related information. counters (OPTIONAL) Enter the keyword counters to display the IPC counters. drops (OPTIONAL) Enter the keyword drops to display IPC drop-related error counters. configuration (OPTIONAL) Enter the keyword configuration to display the RP-Switch related IPC configuration. qos-counters (OPTIONAL) Enter the keyword qos-counters to display the RP-Switch qos-counters.
PAGE 1580
www.dell.com | support.dell.com Command History 1580 Usage Information | Version 8.1.1.2 Introduced on E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale E1200i This command displays internal software driver information which may be useful during troubleshooting line card initialization errors, such as downed Port-Pipe.
PAGE 1581
67 E-Series Debugging and Diagnostics Overview FTOS supports an extensive suite of protocol-specific debug commands for packet- and event-level debugging. These commands are described throughout this document. In addition, FTOS supports commands for diagnosing suspected hardware issues.
PAGE 1582
www.dell.com | support.dell.com • show tech-support In addition to these debug commands, FTOS supports diagnostics, monitoring, and fault isolation commands to assist in gathering information. Important Points to Remember • • • • Unless otherwise noted, these commands are available on TeraScale systems only. The trace-log file captures failure information on most failure events. The RPM-SFM runtime loopback test failure initiates an SFM walk.
PAGE 1583
Usage Information The runtime dataplane loopback test, by default, runs in the background. Every 10 seconds, the primary RPM and each line card sends packets through the SFMs and back again (loopback) to monitor the overall health status of the dataplane at a system level. This command disables that automatic runtime loopback test. Execute the show diag sfm command to view the diagnostics results (see Figure 67-1). Note: Only the Primary RPM can perform runtime dataplane loopback test.
PAGE 1584
www.dell.com | support.dell.com dataplane-diag disable sfm-walk Diable the automatic SFM walk show diag sfm Display the loopback test results dataplane-diag disable sfm-walk e Syntax Disable the automatic SFM walk that is launched after an RPM-SFM runtime loopback test failure. dataplane-diag disable sfm-walk To re-enable the automatic SFM walk, use the no dataplane-diag disable sfm-walk command.
PAGE 1585
Related Commands diag sfm Initiate a manual dataplane loopback test. show diag sfm Display the loopback test results Note: This command is not supported on the E600i chassis. diag linecard e Syntax Parameters Defaults Command Modes Command History Related Commands Run a diagnosis on a linecard. diag linecard [slot] [alllevels | level0 | level1 | level2 | terminate] slot Enter the slot number of the card you with to diagnose.
PAGE 1586
www.dell.com | support.dell.com If the test passes when the switch fabric is down and there are at least (max-1) SFMs in the chassis, then the system will bring the switch fabric back up automatically. Like the runtime loopback test, the manual loopback test failure will not bring the switch fabric down. Note: Line card-SFM loopback test failure, during the manual test, will trigger an SFM walk. Related Commands reset sfm Reset the SFM and bring it back online.
PAGE 1587
Command History Usage Information Version 7.6.1.0 Introduced on E-Series CPU ACLs are useful for troubleshooting packet flow that has bypassed the hardware-based distributed forwarding path and is traveling directly to the RPM CPU. This command is useful in debugging the CPU originated control traffic. You can use the egress ACL with count option to verify if the control traffic sent by the CPU made it to the line card egress or not.
PAGE 1588
www.dell.com | support.dell.com Should a crash occur, the large crash kernel file may take more than ten minutes to upload and may require more space on the flash than is available. The HA module is aware of a core-dump in process and will wait until the upload is complete before rebooting the RPM. Note: Application core-dumps are also automatically uploaded to flash. If there is not enough available space for the kernel core-dump on the flash, the kernel upload will terminate.
PAGE 1589
Defaults Command Modes Disabled (core-dump logging is off) CONFIGURATION Command History Usage Information Version 7.6.1.0 Introduced the port-shutdown and no-port-shutdown variables Version 6.5.4.0 Introduced The line card core-dump is stored on flash in a directory: • Storage Directory Name: flash:CORE_DUMP_DIR — Line Card core-dump naming convention is: f10lpSlot_Number.core.gz For example: f10lp6.core.
PAGE 1590
www.dell.com | support.dell.com power-off/on sfm e Syntax Parameters Defaults Command Modes Command History Usage Information Power on or off a specified SFM. power-{off | on} sfm slot-number power-off Enter the keyword power-off to power off the SFM. power-on Enter the keyword power-on to power on the SFM sfm slot-number Enter the keyword sfm followed by the slot number of the SFM to power on/off. Range: 0 to 7 No default values or behavior EXEC Version 6.5.4.
PAGE 1591
Example Figure 67-4. show sfm all Command Example Force10#show sfm all Switch Fabric State: Switch Mode: SFM down (Not enough working SFMs) -- Switch Fabric Modules -Slot Status --------------------------------------------------------------------------0 power off (SFM powered off by user) 1 power off (SFM powered off by user) 2 power off (SFM powered off by user) 3 active 4 active 5 active Force10# Related Commands show sfm Display the current SFM status.
PAGE 1592
[by admin from vty0 (peer RPM)] —with brackets, when the command is executed to primary rpm via standby rpm using telnet-peer-rpm command. www.dell.com | support.dell.com • Each command contains up to 50 characters in the display output. FTOS compares the first 50 characters of each command and if the characters are the same (i.e. the same command was issued), then the display output indicates the duplicate entry with “Repeated X times” (see Figure 67-5).
PAGE 1593
reset linecard e Syntax Parameters Defaults Command Modes Command History Related Commands Reset a specific line card module (power-off and then power-on). reset linecard slot-number slot-number Enter the slot number of the SFM to reset. Range: 0 to 6 No default values or behavior EXEC Privilege Version 6.5.4.
PAGE 1594
www.dell.com | support.dell.com Example Figure 67-8. reset sfm error message Force10#reset sfm 1 % Error: SFM1 is active. Resetting it will impact data traffic. Force10# Note: Resetting an SFM in a power-off state is not permitted. Use the command power-on sfm to bring the SFM back to a power-on state.
PAGE 1595
show processes ipc e Syntax Display IPC messaging used internally between FTOS processes. show processes ipc [recv-stats | send-stats] [cp | rp1 | rp2 | lp linecard-number] Parameters Defaults Command Modes recv-stats (OPTIONAL) Enter the keyword recv-stat to display the receiver-side details of the IPC messages. send-stats (OPTIONAL) Enter the keyword send-stats to display the sender-side details of the IPC messages.
PAGE 1596
www.dell.com | support.dell.com Example Figure 67-11.
PAGE 1597
Example Figure 67-12.
PAGE 1598
www.dell.com | support.dell.com Important Points to Remember • A sending task enqueues messages into the SWP queue3 for a receiving task and waits for an acknowledgement. If no response is received within a period of time, the SWP time-out mechanism re-submits the message at the head of the FIFO queue.
PAGE 1599
Example Figure 67-14. show revision Command Example (Partial) Force10#show revision -- RPM 0 panda bedrock helio tabby willow -: : : : : ASIC - 0x72632000 0x34 0x13 0x7 0x13 -- Line card 0 -lc pic 0 : 1.0 lc pic 1 : 1.0 marvel serdes : 0x0 aquarius : 0x15 galle : 0x11 lynx : 0x7 mini : 0x22 pandora : 0xd -- Line card 1 -lc pic 0 : 1.1 lc pic 1 : 1.
PAGE 1600
www.dell.com | support.dell.com Command Modes When using the pipe command ( | ), enter one of these keywords to filter command output. Refer to CLI Basics in the FTOS Command Reference Guide for details on filtering commands save: Enter the save keyword (following the pipe) to save the command output.
PAGE 1601
Example Figure 67-15. show tech-support (E-Series Command Example) Partial Output Force10#show tech-support ----------------------------------- show version ------------------------------Force10 Networks Real Time Operating System Software System image file is "flash://FTOS-EF-6.5.4.1.bin" Chassis Type: E600 Control Processor: IBM PowerPC 750FX (Rev D2.2) with 536870912 bytes of memory. Route Processor 1: IBM PowerPC 750FX (Rev D2.2) with 1073741824 bytes of memory.
PAGE 1602
www.dell.com | support.dell.com show environment (C-Series and E-Series) Display system component status. show processes memory (C-Series and E-Series) Display memory usage based on running processes. Offline Diagnostic Commands The offline diagnostics test suite is useful for isolating faults and debugging hardware. The tests results are written to a file in flash memory and can be displayed on screen. Detailed statistics for all tests are collected.
PAGE 1603
Defaults Command Modes All Levels (alllevels) EXEC EXEC Privilege Command History Version 6.5.4.0 Introduced offline e Syntax Place a line card in an offline state. offline {linecard number} Parameters Defaults Command Mode linecard number Enter the keyword linecard followed by the line card slot number. Range: 0 to 13 on a E1200, 0 to 6 on a E600, and 0 to 5 on a E300. No default behavior or values EXEC EXEC Privilege Command History H Version 6.5.4.
PAGE 1604
www.dell.com | support.dell.com show diag e Syntax Display current diagnostics information. show diag {information} [linecard number [detail | periodic | summary]] Parameters Defaults Command Mode information Enter the keyword information to view current diagnostics information in the system. linecard number (OPTIONAL) Enter the keyword linecard followed by the line card slot number. Range: 0 to 13 on a E1200, 0 to 6 on a E600, and 0 to 5 on a E300.
PAGE 1605
• • • • • • • • show hardware fpc forward show hardware fpc lookup detail show hardware rpm cp show hardware rpm mac counters show hardware rpm rp1/rp2 show interfaces link-status show logging driverlog show running-config hardware-monitor See also in Chapter 24, Interfaces”: • • show interfaces phy show interfaces transceiver clear hardware btm e Syntax Parameters Defaults Command Modes Clear the Buffer Traffic Manager (BTM) error counters and status registers.
PAGE 1606
www.dell.com | support.dell.com Example Figure 67-16. clear hardware linecard Command Example Force10#clear hardware linecard 2 port-set 0 btm ingress errors Force10#clear hardware rpm 1 port-set 0 btm ingress errors Force10#clear hardware rpm 0 port-set 0 btm ingress errors % Error: RPM 0 is not active.
PAGE 1607
Defaults Command Mode Command History None CONFIGURATION Version 7.7.1.0 Introduced hardware monitor mac e Syntax Defaults Command Mode Command History Configure the system to shut down all ports on a line card upon a MAC hardware error. hardware monitor mac action-on-error port-shutdown None CONFIGURATION Version 7.7.1.0 Introduced hardware watchdog e Syntax Defaults Command Mode Command History Usage Information Set the watchdog timer to trigger a reboot and restart the system.
PAGE 1608
www.dell.com | support.dell.com 1608 Defaults Command Modes No default behavior or values EXEC EXEC Privilege Command History Version 7.6.1.0 Example Figure 67-17.
PAGE 1609
Example Figure 67-18. show cpu-interface-stats cp command Example (Partial) Force10#show cpu-interface-stats cp -- Partybus ethernet statistics -Link state : Down Recv Interrupts/Polls: 438532 Recv Packets : 440125 Transmit Packets : 290784 ... -- Dataplane ethernet statistics -Link state : Down Recv Interrupts/Polls: 9875 Recv Packets : 9875 Transmit Packets : 9841 ... -- OOB ethernet statistics -Link state : Up Recv Interrupts/Polls: 15439 Recv Packets : 19298 Transmit Packets : 11 ...
PAGE 1610
www.dell.com | support.dell.com Parameters Defaults Command Modes rpm Enter the keyword rpm to display RPM error counters, status registers, or packet queue from the BTM. linecard number Enter the keyword linecard followed by the line card slot number to display BTM error counters, status registers, or packet queue on the specified line card.
PAGE 1611
show hardware fpc forward e Display receive and transmit counters, error counters and status registers for the forwarding functional area of the FPC (flexible packet classification engine). Syntax show hardware linecard number port-set pipe-number fpc forward {counters | drops | spi {err-counters | spichannel# counters} | status} Parameters Defaults Command Modes linecard number Enter the keyword linecard followed by the line card slot number.
PAGE 1612
www.dell.com | support.dell.com Example Figure 67-21.
PAGE 1613
show hardware fpc lookup detail e Syntax Parameters Defaults Command Modes Display diagnostic and debug information related to the lookup functional area of the Flexible Packet Classification (FPC). show hardware linecard number port-set pipe-number fpc lookup detail linecard number Enter the keyword linecard followed by the line card slot number.
PAGE 1614
www.dell.com | support.dell.com Example Figure 67-22. show hardware linecard Command Example Force10#show hardware linecard 0 port-set 0 fpc lookup detailed Summary of Error Registers ------- -- ----- --------0 Counters Enabled : Cyclone 1.5 ChassisMap Cyclone 1.
PAGE 1615
Defaults Command Modes management-port (OPTIONAL) Enter the keywords management-port to display information about the management-port interface of the control processor on the specified RPM. party-bus (OPTIONAL) Enter the keywords party-bus to display control processor information on the party-bus of the specified RPM. counters (OPTIONAL) Enter the keyword counters to display the standard Ethernet counters.
PAGE 1616
www.dell.com | support.dell.com show hardware rpm mac counters e Syntax Parameters Defaults Command Modes Display receive- and transmit-counters for the party-bus control switch on the IPC subsystem of the RPM. show hardware rpm slot-number mac counters [port port-number] slot-number Enter the RPM slot number 0 or 1. port port-number (OPTIONAL) Enter the keyword port followed by the port number of the parity-bus control switch.
PAGE 1617
show hardware rpm rp1/rp2 e Syntax Parameters Defaults Command Modes Display advanced debugging information for the RPM processors. show hardware rpm slot-number {rp1 | rp2} {data-plane | party-bus} {counters | statistics} slot-number Enter the RPM slot number 0 or 1. rp1 | rp2 Enter either the keyword rp1 or rp2 to designate which route processor debug information to display.
PAGE 1618
www.dell.com | support.dell.com Example Figure 67-25.
PAGE 1619
Command History Usage Information Version 6.5.4.0 Introduced This command displays internal software driver information which may be useful during troubleshooting line card initialization errors, such as downed Port-Pipe. show running-config hardware-monitor e Syntax Defaults Command Modes Display the hardware-monitor action-on-error settings. show running-config hardware-monitor No default values or behavior EXEC Privilege Command History Version 7.8.1.0 Example Figure 67-26.
PAGE 1620
www.dell.com | support.dell.
PAGE 1621
68 S-Series Debugging and Diagnostics This chapter contains three sections: • • • Offline Diagnostic Commands Buffer Tuning Commands Hardware Commands Offline Diagnostic Commands The offline diagnostics test suite is useful for isolating faults and debugging hardware. While tests are running, FTOS results are saved as a text file (TestReport-SU-X.txt) in the flash directory. This show file command is available only on master and standby.
PAGE 1622
www.dell.com | support.dell.com Defaults Command Modes level1 Enter the keyword Level1 to run Level 1 diagnostics. Level 1 diagnostics is a smaller set of diagnostic tests with support for automatic partitioning. They perform status/self test for all the components on the board and test their registers for appropriate values. In addition, they perform extensive tests on memory devices (e.g., SDRAM, flash, NVRAM, EEPROM, and CPLD) wherever possible. There are no tests on 10G links.
PAGE 1623
online stack-unit s Syntax Place a stack unit in the online state. online stack-unit number Parameters Defaults Command Mode Command History number Enter the stack unit number. Range: 0 to 7 None EXEC Privilege H Related Commands Version 7.7.1.0 Introduced on S-Series show environment (S-Series) View S-Series system component status (for example, temperature, voltage).
PAGE 1624
www.dell.com | support.dell.com queue0 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 0. Dedicated Buffer Range: 0-2013 Dynamic Buffer Range: FP: 0-2013 CSF: 0-131200 (in multiples of 80) Packet Pointer Range: 0-2047 queue1 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 1.
PAGE 1625
linecard slot Enter the keyword linecard followed by the line card slot number. port-set port-pipe Enter the keyword port-set followed by the port-pipe number. Range: 0-3 on C-Series, 0-1 on S-Series buffer-policy buffer-profile Enter the keyword buffer-policy followed by the name of a buffer profile you created. None Command Mode Usage Information BUFFER PROFILE If you attempt to apply a buffer profile to a non-existent port-pipe, FTOS displays the following message.
PAGE 1626
www.dell.com | support.dell.com Command History H Related Commands Usage Information Version 7.8.1.0 Added global keyword. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series buffer (Buffer Profile) Allocate an amount of dedicated buffer space, dynamic buffer space, or packet pointers to queues 0 to 3. The buffer-profile global command fails if you have already applied a custom buffer-profile on an interface.
PAGE 1627
Defaults Command Mode None INTERFACE Command History Example Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Figure 68-1. show buffer-profile Command Example Force10#show buffer-profile summary fp-uplink Linecard Port-set Buffer-profile 0 0 test1 4 0 test2 Force10# Related Commands buffer-profile (Configuration) Create a buffer profile that can be applied to an interface. show buffer-profile interface cs Display the buffer profile that is applied to an interface.
PAGE 1628
www.dell.com | support.dell.com Example Figure 68-2. show buffer-profile interface Command Example Force10#show buffer-profile detail csf linecard 4 port-set 0 Linecard 4 Port-set 0 Buffer-profile test Queue# Dedicated Buffer Buffer Packets (Bytes) 0 36960 718 1 18560 358 2 18560 358 3 18560 358 4 9600 64 5 9600 64 6 9600 64 7 9600 63 Force10# Related Commands buffer-profile (Configuration) Create a buffer profile that can be applied to an interface.
PAGE 1629
Defaults Command Modes Command History Related Commands cpu data-plane statistics Enter the keywords cpu data-plane statistics to clear the data plane statistics. cpu party-bus statistics Enter the keywords cpu party-bus statistics to clear the management statistics. stack-port 0–52 Enter the keyword stack-port followed by the port number of the stacking port to clear the statistics of the particular stacking port.
PAGE 1630
www.dell.com | support.dell.com Syntax Defaults Command Mode Command History Usage Information hardware watchdog Enabled CONFIGURATION Version 7.8.1.0 Introduced This command enables a hardware watchdog mechanism that automatically reboots an FTOS switch/ router with a single unresponsive unit. This is a last resort mechanism intended to prevent a manual power cycle.
PAGE 1631
show hardware stack-unit s Syntax Parameters Display the data plane or management plane input and output statistics of the designated component of the designated stack member.
PAGE 1632
www.dell.com | support.dell.com Example 1 Figure 68-3.
PAGE 1633
Example 4 Figure 68-6.
PAGE 1634
www.dell.com | support.dell.com Example 5 1634 Figure 68-7. show hardware stack-unit unit 1 register Command Example Force10#show hardware stack-unit 0 unit 1 register 0x0068003c AGINGCTRMEMDEBUG.mmu0 = 0x00000000 0x0068003d AGINGEXPMEMDEBUG.mmu0 = 0x00000000 0x00680017 ASFCONFIG.mmu0 = 0x0000000e 0x0060004c ASFPORTSPEED.ge0 = 0x00000000 0x0060104c ASFPORTSPEED.ge1 = 0x00000000 0x0060204c ASFPORTSPEED.ge2 = 0x00000000 0x0060304c ASFPORTSPEED.ge3 = 0x00000000 0x0060404c ASFPORTSPEED.
PAGE 1635
Example 4 Figure 68-8.
PAGE 1636
www.dell.com | support.dell.com show hardware system-flow s Syntax Parameters Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. show hardware system-flow layer2 stack-unit 0-7 port-set 0-1 [counters] acl | qos For the selected stack member and stack member port-pipe, display which system flow entry the packet hits and what queue the packet takes as it dumps the raw system flow tables.
PAGE 1637
Example 2 Figure 68-10.
PAGE 1638
www.dell.com | support.dell.
PAGE 1639
A ICMP Message Types This chapter lists and describes the possible ICMP Message Type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table A-1.
PAGE 1640
www.dell.com | support.dell.com Table A-1.
PAGE 1641
B SNMP Traps This chapter lists the traps sent by FTOS. Each trap is listed by the fields Message ID, Trap Type, and Trap Option, and the next is the message(s) associated with the trap. Table B-1. SNMP Traps and Error Messages Message ID Trap Type Trap Option COLD_START SNMP COLDSTART %SNMP-5-SNMP_COLD_START: SNMP COLD_START trap sent.
PAGE 1642
www.dell.com | support.dell.com Table B-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option CHM_CARD_DOWN ENVMON NONE %CHMGR-1-CARD_SHUTDOWN: %sLine card %d down - %s %CHMGR-2-CARD_DOWN: %sLine card %d down - %s CHM_CARD_UP ENVMON NONE %CHMGR-5-LINECARDUP: %sLine card %d is up CHM_CARD_MISMATCH ENVMON NONE %CHMGR-3-CARD_MISMATCH: Mismatch: line card %d is type %s - type %s required.
PAGE 1643
Table B-1.
PAGE 1644
www.dell.com | support.dell.com Table B-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option %CHMGR-5-CPU_THRESHOLD_CLR: Cpu %s usage drops below threshold. Cpu5SecUsage (%d) CHM_MEM_THRESHOLD ENVMON NONE %CHMGR-5-MEM_THRESHOLD: Memory %s usage above threshold. MemUsage (%d) CHM_MEM_THRESHOLD_CLR ENVMON NONE %CHMGR-5-MEM_THRESHOLD_CLR: Memory %s usage drops below threshold.
PAGE 1645
Index Symbols IFM (interface management) 139 Numerics cam-profile template 802.3x pause frames 420 567 A aaa accounting suppress 1275 aaa authentication login 1281 ABR 1003, 1004 Access Control Lists (ACLs) 199 access control lists. See ACL.
PAGE 1646
www.dell.com | support.dell.
PAGE 1647
clear config 820 clear config (ISIS) 820 clear counters 560 clear counters ip access-group (common IP ACL) 202 clear counters ip trace-group 1318 clear counters mac access-group 244 clear counters vrrp 1473, 1485 clear dampening 562 clear frrp 484 clear gvrp statistics interface 525 clear hardware btm 1552, 1599 clear hardware cpu party-bus 1491 clear hardware rpm mac counters 1492, 1553, 1600 clear hardware stack-unit 1622 clear hardware system-flow 1510, 1623 clear hardware unit 1506 clear host 634 clear
PAGE 1648
www.dell.com | support.dell.
PAGE 1649
default logging console 1368 default logging monitor 1368 default logging trap 1369, 1376 Default VLAN 885 default vlan-id 885 default-action 500 default-gateway 63 default-gateway command 63 default-information originate 1010 BGP 331 IS-IS 824 OSPF 1010 RIP 1233 default-information originate (ISIS) 824 default-information originate (OSPF IPv6) default-information originate (RIP) 1233 default-metric BGP 331, 756 OSPF 1011 RIP 1234 default-metric (BGP IPv6) 756 default-metric (BGP) 331 default-metric (OSPF)
PAGE 1650
www.dell.com | support.dell.
PAGE 1651
application core-dump 1535, 1581 files, number supported on external flash 33 find parameter 20 flood-2328 (OSPF) 1015 flow (cam-profile template) 421 flow control values 569 flow control, asymmetric 568 flow control, duplex 567 flow-based enable 1139 flowcontrol 567 Force10 Service Agent (FTSA) 491 format 65 format (C-Series and E-Series) 37 format command 65 format flash (S-Series) 38 forward-delay 1416 forward-delay (MSTP) 936 forward-delay (RSTP) 1264 forward-delay (STP) 1416 Forwarding Information Base
PAGE 1652
www.dell.com | support.dell.com 1652 hello-time (STP) 1416 hitless 533 hitless dynamic LACP states 859 hitless protocol 533 hitless upgrade 536 HMAC (Hash Message Authentication Code) hold-time 1475 hold-time (VRRP) 1475 hostname 87 hostname dynamic 832 hostname dynamic (ISIS) 832 820 I ICMP 651 IEEE 802.
PAGE 1653
ip ospf hello-interval 1020 ip ospf message-digest-key 1020 ip ospf mtu-ignore 1021 ip ospf network 1021 ip ospf priority 1022 ip ospf retransmit-interval 1022 ip ospf transmit-delay 1023 ip pim dr-priority 1097, 1118 ip pim query-interval 1100, 1119 ip pim rp-address 1101 ip poison-reverse 1237 ip poison-reverse (RIP) 1237 ip prefix-list 258 ip proxy-arp 648 ip radius source-interface 1291 ip redirect-group 1082 ip redirect-list 1083 description 1082 ip redirects 649 ip rip receive version 1237 ip rip send
PAGE 1654
www.dell.com | support.dell.
PAGE 1655
mac access-list standard (standard MAC ACL) 248 mac accounting destination 866 MAC ACL, extended 252 MAC address station-move trap 868 mac cam fib-partition 870 mac learning limit (dynamic or no-station-move) 870 mac learning-limit 870 mac learning-limit learn-limit-violation 872 mac learning-limit reset 873 mac learning-limit station-move-violation 873 mac-address-table aging-time 867 mac-address-table static 867 mac-address-table station-move 868 mac-address-table station-move refresh-arp 869 mac-address-
PAGE 1656
www.dell.com | support.dell.
PAGE 1657
OSPF 1026 network backdoor 353, 775 network backdoor (BGP IPv6) 775 network backdoor (BGP) 353 Network Time Protocol (NTP) 1425 Network Time Protocol. See NTP. NIC Teaming 869 no-more 20 no-more parameter 20 non-contiguous subnet masks 206 Not So Stubby Area. See NSSA.
PAGE 1658
www.dell.com | support.dell.
PAGE 1659
rate shape (QoS) 1179 rate-interval 586 rate-limit 1199 rate-police 1200 rate-shape (policy QoS) 1200 recipient 510 redirect 1085 redirect list, create 1081 redistribute BGP 353, 399, 776, 805 IS-IS 845 OSPF 1028 RIP 1242 redistribute (BGP IPv6) 776, 805 redistribute (BGP) 353 redistribute (ISIS) 845 redistribute (MBGP) 399 redistribute (OSPF IPv6) 1071 redistribute (OSPF) 1028 redistribute bgp 1029 redistribute bgp (ISIS) 847 redistribute bgp (OSPF) 1029 redistribute isis OSPF 1030 RIP 1243 redistribute is
PAGE 1660
www.dell.com | support.dell.
PAGE 1661
show capture bgp-pdu neighbor (BGP IPv6) 778 show chassis 102 show command-history 103, 1516, 1538, 1585 show config 704, 1327 Access list 201 BGP 358, 779 Interface 587 IS-IS 850 OSPF 1032 RIP 1245 Spanning Tree 619, 887, 1266, 1418 Trace list 1327 VRRP 1476 show config (ACL) 201 show config (AS-Path) 282 show config (BGP IPv6) 779 show config (BGP) 358 show config (from INTERFACE RANGE mode) 587 show config (GVRP) 528 show config (interface configuration) 587 show config (IP Community List) 285 show confi
PAGE 1662
www.dell.com | support.dell.
PAGE 1663
show ip route list 672 show ip route summary 673 show ip ssh 1315 show ip ssh client-pub-keys 1316 show ip ssh rsa-authentication 1316 show ip traffic 674 show ip udp-helper 628 show ipc-traffic 1555, 1556, 1571, 1572 show ipc-traffic egress 1571 show ipc-traffic ingress 1571 show ipc-traffic linecard 1572 show ipc-traffic rpm-switch 1572 show ipv6 accounting access-list 704 show ipv6 cam stack-unit 723 show ipv6 fib stack-unit 724 show ipv6 neighbors 978 show ipv6 ospf 1078 show ipv6 ospf neighbor 1079 sho
PAGE 1664
www.dell.com | support.dell.
PAGE 1665
summary-address (OSPF) 1057 suppress threshold (dampening), interface 564 switchport 612 switchport backup interface 612 switchport mode private-vlan command 1158 SWP (Single Window Protocol) 1544, 1591 SWPQ (Single Window Protocol Queue) 128 T TAB key 60 tacacs-server host 1297 tacacs-server key 1298 tagged 890, 1149 tagged command 890 tagged destination (remote port mirroring) 1149 tc-flush-standard 1271 tc-flush-standard (MSTP) 947 tc-flush-standard (PVST+) 1170 TDR Important Points to Remember 624 TDR
PAGE 1666
www.dell.com | support.dell.
PAGE 1667
vlan-stack trunk 1458 VLAN-Stack VLANs Important Points to Remember 1451 VLAN-Stacking 1451 VLAN-Stacking (Stackable VLANs) 1333 VMAN tag 1457 VRF cam-profile 1461 cam-profile ipv4-v6-vrf 1464 cam-profile ipv4-vrf 1463, 1465 ip vrf 1466 ip vrf forwarding 1467 ip vrf-vlan-block 1468 show ip vrf 1469 start-vlan-id 1470 vrrp bfd neighbor interval 306 vrrp-group 1483, 1489 W wanport command 613 warm upgrade 536 Weighted Fair Queuing (WFQ) 1197 Weighted Random Early Detection (WRED) WFQ 1197 WRED 1193 wred 1219
PAGE 1668
| Index www.dell.com | support.dell.
PAGE 1669
Command Index A aaa accounting 1274 aaa accounting suppress 1275 aaa authorization 1277, 1278 Access list access-class 202, 1283 clear counters ip access-group 202 ip access-group 203 show config 201, 278 show ip accounting access-list 204 Access list (extended) deny 213 deny arp 214 deny ether-type 216 deny tcp 220, 1320 deny udp 223 ip access-list extended 225 permit 226, 1323 permit arp 227 permit ether-type 229 permit tcp 232 permit udp 234, 1324 seq 241 seq arp 238 seq ether-type 240 Access list (stand
PAGE 1670
www.dell.com | support.dell.
PAGE 1671
format 65 ignore enable-password 65 ignore startup-config 66 interface management ethernet ip address 66 interface management ethernet mac-address 67 interface management ethernet port 67 interface management port config 67 reload 68 rename 68 show boot selection 69 show bootflash 70 show bootvar 70 show default-gateway 71 show interfaces management ethernet 72 bridge-priority (RSTP) 1261 bridge-priority (STP) 1414 buffer 1524, 1617 C calendar set 1426 call-home 494 cam l2acl 442 cam-acl 429, 430, 682 cam-
PAGE 1672
www.dell.com | support.dell.
PAGE 1673
deny (Extended IP ACL) 213 deny arp 214 deny arp (Extended IP ACL) 214 deny ether-type (Extended IP ACL) 216 deny icmp (Extended IP ACL) 218 deny regex (BGP) 411 deny tcp 687 deny tcp (Extended IP ACL) 220 deny udp 689 deny udp (Extended IP ACL) 223 description (ACL VLAN) 288 description (ACL) 200 description (BGP) 332, 411, 756 description (FRRP) 485 description (FTSA) 501 description (IS-IS) 825 description (MSTP) 935 description (PVST) 1162 description (RIP) 1234 description (Route Map) 263 description (
PAGE 1674
www.dell.com | support.dell.
PAGE 1675
ip ssh hostbased-authentication enable 1310 ip ssh key-size 1310 ip ssh password-authentication 1311 ip ssh pub-key-file 1311 ip ssh rhostsfile 1312 ip ssh rsa-authentication (Config) 1313 ip ssh rsa-authentication (EXEC) 1313 ip ssh server 1314 ip udp-broadcast-address 627 ip udp-helper udp-port 627 ip vrf 1466 ip vrf forwarding 1469, 1470 ip vrf-vlan-block 1468 ipv6 access-list 691 ipv6 control-plane egress-filter-traffic 1580 ipv6 ospf area 1065 ipv6 ospf authentication 1066 ipv6 ospf cost 1068 ipv6 ospf
PAGE 1676
www.dell.com | support.dell.
PAGE 1677
MBGP Commands 383, 793 member (Stackable VLAN) 1453 member vlan 289 member-vlan (FRRP) 487 message-format 507 minimum-links 618 mode (FRRP) 487 mode (LLDP) 898 mode remote-port-mirroring 1140 monitor 580 Monitor Session description 1138 monitor session 1141 motd-banner 94 MSDP clear ip msdp peer 923 clear ip msdp sa-cache 924 debug ip msdp 924 ip msdp default-peer 925 ip msdp log-adjacency-changes 926 ip msdp mesh-group 926 ip msdp originator-id 926, 928 ip msdp peer 927 ip msdp shutdown 930 ip multicast-ms
PAGE 1678
www.dell.com | support.dell.
PAGE 1679
show ip pim snooping interface 1109 show ip pim snooping neighbor 1110 show ip pim summary 1113 show ip pim tib 1111, 1114 show running-config pim 1115 ping 94 policy (FTSA) 508 Policy based Routing ip redirect-group 1082 ip redirect-list 1083 redirect 1085 seq 1086 policy-action-list 509 policy-aggregate 1193 policy-map-input 1194 policy-map-output 1194 policy-test-list 509 Port Channel channel-member 615 interface port-channel 617 minimum-links 618 minimum-links command 618 show interfaces port-channel 61
PAGE 1680
www.dell.com | support.dell.
PAGE 1681
set metric-type 275 set next-hop 276 set origin 277 set tag 277 set weight 278 show route-map 278 route-map 710 route-map (Route Map) 270 router bgp (BGP) 356 router-id 1030 router-id (OSPF IPv6) 1072 RSTP bridge-priority 1261 debug spanning-tree rstp 1262 disable 1263 forward-delay 1264 hello-time 1264 max-age 1265 protocol spanning-tree rstp 1266 show config 1266 show spanning-tree rstp 1267 spanning-tree rstp 1269 run-cpu 511 S sample-rate 511 schedule 495 SCP ip scp topdir 1308 scramble-atm (SONET) 139
PAGE 1682
www.dell.com | support.dell.
PAGE 1683
show ip protocols 669, 1547, 1594 show ip route 670 show ip route list 672 show ip route summary 673, 1547, 1594 show ip ssh client-pub-keys 1316 show ip ssh rsa-authentication 1316 show ip traffic 674 show ip udp-helper 628 show ip vrf 1469 show ipv6 fib linecard 724 show ipv6 interface 725 show ipv6 ospf database 1077 show ipv6 ospf neighbor 1079 show ipv6 pim bsr-router 1123 show ipv6 pim interface 1123 show ipv6 pim neighbor 1123 show ipv6 pim rp 1124 show ipv6 pim tib 1125 show isis traffic 856 show ke
PAGE 1684
www.dell.com | support.dell.
PAGE 1685
tdr-cable-test 624 Telnet ip telnet server enable 90 ip telnet source-interface 90 telnet 150 telnet-peer-rpm 152 terminal length 153 terminal monitor 1378 terminal xml 153 test cam-usage 437, 706 test-condition (comparing FTSA samples) test-limit 521 test-list (FTSA) 522 TFTP ip tftp source-interface 91 threshold 1217 Time Domain Reflectometer show tdr 625 tdr-cable-test 624 timer (FRRP) 489 Trace list clear counters ip trace-group 1318 deny 1319 deny udp 1321 ip trace-group 1322 ip trace-list 1322 permit
PAGE 1686
| Command Index www.dell.com | support.dell.