FTOS Command Line Reference Guide for the S60 System FTOS 8.3.3.
Notes, Cautions, and Warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Information in this publication is subject to change without notice. © 2013 Dell Force10. All rights reserved.
Table of Contents 1 About this Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
www.dell.com | support.dell.com 3 File Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .25 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25 Basic File Management Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25 4 Control and Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .65 Overview . . . . .
Table of Contents 10 Dynamic Host Configuration Protocol (DHCP) . . . . . . . . . . . . . . . . . . . .393 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 393 Commands to Configure the System to be a DHCP Server . . . . . . . . . . . . . . . . . . . . . 393 Commands to Configure Secure DHCP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 401 11 Force10 Resilient Ring Protocol (FRRP) . . . . . . . . . .
www.dell.com | support.dell.com 17 IPv6 Basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .593 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 593 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 593 18 iSCSI Optimization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Table of Contents 27 PIM-Source Specific Mode (PIM-SSM) . . . . . . . . . . . . . . . . . . . . . . . . . .779 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 779 IPv4 PIM Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 779 IPv4 PIM-Source Specific Mode COmmands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 779 28 Port Monitoring . . . . . . . . .
www.dell.com | support.dell.com Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 911 AAA Accounting Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 911 Authorization and Privilege Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 914 Authentication and Password Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Table of Contents 42 Time and Network Time Protocol (NTP) . . . . . . . . . . . . . . . . . . . . . . . .1039 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1039 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1039 43 S60 u-Boot . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1055 Overview . . . . . . . . . . . .
| www.dell.com | support.dell.
1 About this Guide This book provides information on the FTOS Command Line Interface (CLI). It includes some information on the protocols and features found in FTOS and on the Dell Networking systems supported by FTOS (C-Series c, E-Series e, and S-Series s). This chapter includes: • • • • Objectives Audience Conventions Related Documents Objectives This document is intended as a reference guide for the FTOS command line interface (CLI) commands used with the S60 system.
www.dell.com | support.dell.com Information Symbols Table 1-1 describes symbols contained in this guide. Table 1-1. Information Symbols Symbol Brief Description c C-Series This symbol indicates that the selected feature is supported on the C-Series. e E-Series This symbol indicates that the selected feature is supported on the E-Series TeraScale AND E-Series ExaScale. et E-Series TeraScale This symbol indicates that the selected feature is supported on the E-Series TeraScale platform only.
2 CLI Basics This chapter describes the command structure and command modes. FTOS commands are in a text-based interface that allows you to use launch commands, change the command modes, and configure interfaces and protocols.
www.dell.com | support.dell.com Multiple Configuration Users When a user enters the CONFIGURATION mode and another user(s) is already in that configuration mode, FTOS generates an alert warning message similar to the following: Figure 2-2. Configuration Mode User Alert FTOS#conf % Warning: The following users are currently configuring the system: User User User User "" on line "admin" on "admin" on "Irene" on console0 line vty0 ( 123.12.1.123 ) line vty1 ( 123.12.1.123 ) line vty3 ( 123.12.1.
Table 2-1.
www.dell.com | support.dell.com • • To obtain a list of available options, do the following: — Type a keyword followed by a space and a ? Type a partial keyword followed by a ? — A display of keywords beginning with the partial keyword is listed. Figure 2-3 illustrates the results of entering ip ? at the prompt. Figure 2-3.
Use the left and right arrow keys to navigate left or right in the FTOS command line. Table 2-2 defines the key combinations valid at the FTOS command line. Table 2-2. Short-cut Keys and their Actions Key Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character. CNTL-D Deletes character at cursor. CNTL-E Moves the cursor to the end of the line. CNTL-F Moves the cursor forward one character. CNTL-I Completes a keyword.
www.dell.com | support.dell.com • • • • • except— display only text that does not match the pattern (or regular expression) find — search for the first occurrence of a pattern grep — display text that matches a pattern no-more — do not paginate the display output save - copy output to a file for future use Note: FTOS accepts a space before or after the pipe, no space before or after the pipe, or any combination.
EXEC Mode When you initially log in to the switch, by default, you are logged into the EXEC mode. This mode allows you to view settings and to enter the EXEC Privilege mode to configure the device. While you are in the EXEC mode, the > prompt is displayed following the “hostname” prompt, as described above. which is “FTOS” by default. You can change it with the hostname command. See the command hostname. Each mode prompt is preceded by the hostname.
www.dell.com | support.dell.com Table 2-3. Interface prompts Prompt Interface Type FTOS(conf-if-nu-0)# Null Interface followed by zero FTOS(conf-if-po-0)# Port-channel interface number FTOS(conf-if-vl-0)# VLAN Interface followed by VLAN number (range 1 to 4094) FTOS(conf-if-so-0/0)# SONET interface followed by slot/port information.
IP ACCESS LIST Mode While in the CONFIGURATION mode, use the ip access-list standard or ip access-list extended command to enter the IP ACCESS LIST mode and configure either standard or extended access control lists (ACL). To enter IP ACCESS LIST mode: 1. Verify that you are logged in to the CONFIGURATION mode. 2. Use the ip access-list standard or ip access-list extended command. You must include a name for the ACL.The prompt changes to include (conf-std-nacl) or (conf-ext-nacl).
www.dell.com | support.dell.com IP COMMUNITY LIST Mode Use the IP COMMUNITY LIST mode to configure an IP Community ACL on the E-Series. See Chapter 6, Access Control Lists (ACL). To enter IP COMMUNITY LIST mode: 1. Verify that you are logged in to the CONFIGURATION mode. 2. Enter the ip community-list command. You must include a name for the Community list.The prompt changes to include (config-community-list). You can return to the CONFIGURATION mode by entering the exit command.
RAPID SPANNING TREE Mode Use PVST+ mode to enable and configure the RSTP protocol, as described in Chapter 34, Rapid Spanning Tree Protocol (RSTP). To enter RSTP mode: 1. Verify that you are logged into the CONFIGURATION mode. 2. Enter the protocol spanning-tree rstp command. You can return to the CONFIGURATION mode by entering the exit command.
www.dell.com | support.dell.com ROUTER RIP Mode Use the ROUTER RIP mode to configure RIP on the C-Series or E-Series, as described in Chapter 32, Router Information Protocol (RIP). To enter ROUTER RIP mode: 1. Verify that you are logged into the CONFIGURATION mode. 2. Enter the router rip command.The prompt changes to include (conf-router_rip). You can switch to the INTERFACE mode by using the interface command or you can switch to the ROUTER OSPF mode by using the router ospf command.
3 File Management Overview This chapter contains commands needed to manage the configuration files and includes other file management commands found in FTOS.
www.dell.com | support.dell.
When you specify a file as the boot config file, it is listed in the boot variables (bootvar) as LOCAL CONFIG FILE. If you do not specify a boot config file, then the startup-configuration is used, although the bootvar shows LOCAL CONFIG FILE = variable does not exist. When you specify a boot config file, the switch reloads with that config file, rather than the startup-config.
www.dell.com | support.dell.com secondary Enter the keywords secondary to attempt to load the secondary host configuration files. remote-url Enter the following location keywords and information: • • Defaults Command Modes Command History For a file on an FTP server, enter ftp://user:password@hostip/filepath For a file on a TFTP server, enter tftp://hostip/filepath Not configured. CONFIGURATION Version 7.5.1.
boot system (C-Series and E-Series) ce Tell the system where to access the FTOS image used to boot the system. Syntax boot system {rpm0 | rpm1} (default | primary | secondary} file-url To return to the default boot sequence, use the no boot system {rpm0 | rpm1} {primary | secondary} command. Parameters rpm0 Enter the keyword rpm0 to configure boot parameters for RPM0. rpm1 Enter the keyword rpm1 to configure boot parameters for RPM1.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information Related Commands gateway Enter the IP address of the default next-hop gateway for the management subnet stack-unit Enter the stack-unit number for the master switch. ip-address Enter an IP address in dotted decimal format. 0-11, all Stack-unit number default Enter the default keyword to use the primary FTOS image. primary Enter the primary keyword to use the primary FTOS image.
cd ces Syntax Parameters Change to a different working directory. cd directory directory (OPTONAL) Enter one of the following: • • Command Modes Command History flash: (internal Flash) or any sub-directory slot0: (external Flash) or any sub-directory (C-Series and E-Series only) EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command change bootflash-image ce Change boot flash image from which to boot.
www.dell.com | support.dell.com Parameters file-url Enter the following location keywords and information: • • • • • • • • • • • To copy a file from the internal FLASH, enter flash:// followed by the filename.
copy running-config tftp: copy running-config ftp: Command Example: copy running-config scp: FTOS#copy running-config scp:/ Address or name of remote host []: 10.10.10.1 Destination file name [startup-config]? old_running User name to login remote host? home Password to login remote host? home In this example — copy scp: flash: — specifying SCP in the first position indicates that the target is to be specified in the ensuing prompts.
www.dell.com | support.dell.com Usage Information In this streamline copy command, the source image is copied to the primary RPM and then, if specified, to the standby RPM. After the copy is complete, the new image file path on each RPM is automatically configured as the primary image path for the next boot. The current system image (the one from which the RPM booted) is automatically configured as the secondary image path.
dir ces Syntax Parameters Display the files in a filesystem. The default is the current directory. dir [filename | directory name:] filename | directory name: (OPTIONAL) Enter one of the following: • • Command Modes Command History For a file or directory on the internal Flash, enter flash:// followed by the filename or directory name. For a file or directory on the external Flash, enter slot0:// followed by the filename or directory name: EXEC Privilege Version 8.3.3.1 Introduced on the S60.
www.dell.com | support.dell.com download alt-full-image e Syntax Command Modes Command History Usage Information Download an alternate FTOS image to the chassis. download alt-full-image file-url EXEC Privilege Version 7.7.1.0 Removed form E-Series Version 6.5.1.0 Introduced Starting with FTOS 7.7.1.0, the functions of this command are incorporated into the upgrade command. For software upgrade details, see the FTOS Release Notes.
Default Command Modes Command History dosFs1.0 Enter the keyword dosFs1.0 to format in DOS 1.0 (the default) dosFs2.0 Enter the keyword dosFs2.0 to format in DOS 2.0 DOS 1.0 (dosFs1.0) EXEC Privilege Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information When you format flash: 1 The startup-config is erased. 2 All cacheboot data files are erased and you must reconfigure cacheboot to regain it. 3 All generated SSH keys are erased and you must recreate them.
www.dell.com | support.dell.com Related Commands copy Copy the current configuration to either the startup-configuration file or the terminal. show file Display contents of a text file in the local filesystem. show file-systems Display information about the file systems on the system. format flash (S60) Erase all existing files and reformat the filesystem in the internal flash memory or the USB drive. Once the filesystem is formatted, files cannot be restored.
Command History Usage Information Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Restructured command to accommodate coredumps for CP. Introduced on C-Series and S-Series Version 6.5.1.0 Application coredump naming convention enhanced to include application. Version 6.1.1.0 Introduced The Kernel core dump can be large and may take up to 5 to 30 minutes to upload.
www.dell.com | support.dell.com pwd ces Syntax Command Modes Command History Display the current working directory. pwd EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 7.5.1.0 Introduced on C-Series E-Series original Command Example Command Example: pwd FTOS#pwd flash: FTOS# Related Commands cd Change directory. rename ces Syntax Parameters Rename a file in the local file system.
Command Modes Command History Usage Information clear-all Enter this keyword to reset the NvRAM and to delete the system startup configuration. nvram Enter this keyword to reset the NvRAM only. EXEC Privilege Version 8.3.3.9 Introduced on the S60 Version 8.3.5.4 Introduced on the S55 Version 8.3.17.1 Supported on M I/O Aggregator Restoring factory defaults deletes the existing startup configuration and all persistent settings (stacking, fanout, etc.).
www.dell.com | support.dell.com Figure 3-2. restore factory-defaults (single unit in a stack) Command Example FTOS#restore factory-defaults stack-unit 0 clear-all *********************************************************************** * Warning - Restoring factory defaults will delete the existing * * startup-config and all persistent settings (stacking, fanout, etc.)* * After restoration the unit(s) will be powercycled immediately.
Figure 3-4. Example restore factory-defaults (NvRAM only, single unit in a stack) Command FTOS#restore factory-defaults stack-unit 1nvram *********************************************************************** * Warning - Restoring factory defaults will delete the existing * * persistent settings (stacking, fanout, etc.) * * After restoration the unit(s) will be powercycled immediately.
www.dell.com | support.dell.com Example Command example: restore fpga-image FTOS#restore fpga-image linecard 4 Current FPGA information in the system: ======================================= Card FPGA Name Current Version New Version -----------------------------------------------------------------------LC4 48 Port 1G LCM FPGA A: 3.
Example FTOS#show boot system all Current system image information in the system: ============================================= Type Boot Type A B ---------------------------------------------------------------CP DOWNLOAD BOOT invalid invalid RP1 DOWNLOAD BOOT invalid invalid RP2 DOWNLOAD BOOT invalid invalid linecard 0 is not present. linecard 1 DOWNLOAD BOOT invalid invalid linecard 2 DOWNLOAD BOOT 4.7.5.387 6.5.1.
www.dell.com | support.dell.com Related Commands boot config Set the location of configuration files on local devices. boot host Set the location of configuration files from the remote host. boot network Set the location of configuration files from a remote network. boot system (S60) Set the location of FTOS image files. boot system gateway Specify the IP address of the default next-hop gateway for the management subnet.
format flash (S-Series) Erase all existing files and reformat the filesystem in the internal flash memory on and S-Series. show file-systems Display information about the file systems on the system. show file-systems ces Syntax Command Modes Command History Display information about the file systems on the system. show file-systems EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com show file Display contents of a text file in the local filesystem. show sfm Display the current SFM status. show linecard ce View the current linecard status. Syntax show linecard [number | all | boot-information] Parameters Command Modes Command History number Enter a number to view information on that linecard. Range: 0 to 6. all (OPTIONAL) Enter the keyword all to view a table with information on all present linecards.
show os-version ces Syntax Parameters Display the release and software image version information of the image file specified or, optionally, the image loaded on the RPM (C-Series and E-Series only). show os-version [file-url] file-url (OPTIONAL) Enter the following location keywords and information: • For a file on the internal Flash, enter flash:// followed by the filename.
www.dell.com | support.dell.com Example Command output example (C-Series): show os-version FTOS#show os-version RELEASE IMAGE INFORMATION : --------------------------------------------------------------------Platform Version Size ReleaseTime C-series: CB 7.5.1.0 23734363 Aug 18 2007 11:49:51 TARGET IMAGE INFORMATION : --------------------------------------------------------------------Type Version Target checksum runtime 7.5.1.0 control processor passed runtime 7.5.1.0 linecard passed boot flash 2.7.0.
Command Modes Command History • • • mac for the current MAC ACL configuration mac-address-table for the current MAC configuration management-route for the current Management port forwarding • • • • • • • • • • • • • • configuration mroute for the current Mroutes configuration ntp for the current NTP configuration ospf for the current OSPF configuration pim for the current PIM configuration policy-map-input for the current input policy map configuration policy-map-output for the current output policy map
www.dell.com | support.dell.com Example Command output example (partial): show running-config FTOS#show running-config Current Configuration ... ! Version 7.4.1.0 ! Last configuration change at Tue Apr 10 17:43:38 2007 by admin ! Startup-config last updated at Thu Mar 29 02:35:08 2007 by default ! boot system rpm0 primary flash://FTOS-EF-7.4.1.0.bin boot system rpm0 secondary flash://FTOS-EF-6.3.1.2.bin boot system rpm0 default flash://FTOS-EF-6.5.1.8.bin ! ...
E-Series Example Command output example (Partial) on E-Series: show sfm FTOS#show sfm Switch Fabric State: up Switch Mode: SFM3 -- SFM card 0 Status Card Type Up Time Last Restart Temperature Power Status Serial Number Part Number Vendor Id Date Code Country Code Piece Part ID PPID Revision Service Tag Expr Svc Code FPGA Booting from -: active (Older version of SFM for Exascale) : SFM3 - Switch Fabric Module : 18 hr, 40 min : remote-off : 42C : AC : VC074300030 : 7520020001 Rev 03 : 04 : 01402006 : 01 : C
www.dell.com | support.dell.com Table 3-1. show sfm Command Output Fields Field Description Up Time Displays the number of hours and minutes since the RPM’s last reboot. Temperature Displays the temperature of the RPM. Minor alarm status if temperature is over 65° C. Power Status Displays power status: absent, down, or up Serial Num Displays the line card serial number. Part Num Displays the line card part number. Vendor ID Displays an internal code, which specifies the manufacturing vendor.
show version cesz Syntax Command Modes Command History Display the current FTOS version information on the system. show version EXEC Privilege Version 9.0.0.0 Introduced on Z9000. Version 8.3.12.0 Introduced on S4810. Version 7.6.1.0 Introduced on S-Series. Version 7.5.1.0 Introduced on C-Series. E-Series original Command Example (E-Series) FTOS#show version Dell Force10 Networks Real Time Operating System SoftwareDe Dell Force10 Operating System Version: 1.
www.dell.com | support.dell.com System Type: S50V Control Processor: MPC8451E with 252739584 bytes of memory. 32M bytes of boot flash memory. 1 48-port E/FE/GE with POE (SB) 48 GigabitEthernet/IEEE 802.3 interface(s) 4 Ten GigabitEthernet/IEEE 802.3 interface(s) FTOS# Example (S4810) FTOS# FTOS#show version Dell Force10 Real Time Operating System Software Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: Z9K-ICC-PRIM-SYNC-8-3-11-173 Copyright (c) 1999-2012 by Dell Inc.
Example (Z9000) st-pet-z9k-6#show version Dell Force10 Real Time Operating System Software Dell Force10 Operating System Version: 2.1 Dell Force10 Application Software Version: 9.0(0.0) Copyright (c) 1999-2012 by Dell Inc. All Rights Reserved.
www.dell.com | support.dell.com upgrade (E-Series version) e Syntax Parameters Upgrade the bootflash, boot selector, or system image on a processor. upgrade {bootflash-image | bootselector-image | system-image} {all | linecard linecard-slot | rpm} {booted | file-url} bootflash-image Enter the keyword bootflash-image to upgrade the bootflash image. bootselector-image Enter the keyword bootselector-image to upgrade the boot selector image. Use with TAC supervision only.
upgrade (C-Series version) c Syntax Parameters Upgrade the bootflash or boot selector image on a processor. upgrade {bootflash-image | bootselector-image | system-image} {all | linecard {number | all} | rpm} [booted | file-url | repair] bootflash-image Enter the keyword bootflash-image to upgrade the bootflash image. bootselector-image Enter the keyword bootselector-image to upgrade the boot selector image. Use with TAC supervision only.
www.dell.com | support.dell.com Usage Information Once the URL is specified, the same downloaded image can be used for upgrading an individual RPM, line cards, SFM FPGA, and system-image for cache-boot without specifying the file-url again using the command upgrade {bootflash-image | bootselector-image | system-image} {all | linecard linecard-slot | rpm}.
Usage Information You must reload FTOS after executing this command. Use the command upgrade system stack-unit (S-Series stack member) on page 242 to copy FTOS from the management unit to one or more stack members. FTOS#upgrade system ? ftp: Copy from remote file system (ftp://userid:password@hostip/filepath) scp: Copy from remote file system (scp://userid:password@hostip/filepath) tftp: Copy from remote file system (tftp://hostip/filepath) FTOS#$pgrade system ftp://username:password@10.11.1.1/FTOS-SB-7.
www.dell.com | support.dell.com Related Commands Usage Information 0 show sfm Display the SFM status. upgrade (E-Series version) Upgrade the E-Series. On E-Series ExaScale, you cannot upgrade SFMs using this command when Cache Boot is configured. If you attempt an upgrade, you must reload the chassis to recover. upgrade fpga-image (C-Series) c Syntax Parameters Upgrade the primary FPGA image.
Example Command example: upgrade fpga-image FTOS#conf FTOS(conf)# upgrade primary-fpga-flash rpm Proceed to upgrade primary fpga flash for rpm 0 [confirm yes/no]: yes !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! FTOS# Usage Information Related Commands Reset the card using the power-cycle option after restoring the FPGA command. reset Reset a line card or RPM. restore fpga-image This command copies the backup FPGA image to the primary FPGA image.
| File Management www.dell.com | support.dell.
4 Control and Monitoring Overview This chapter contains the following commands to configure and monitor the system, including Telnet, FTP, and TFTP as they apply to platforms c e s.
www.dell.com | support.dell.
Command Modes CONFIGURATION Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Optionally, use the banner exec command to create a text string that is displayed when the user accesses the EXEC mode. The exec-banner command toggles that display.
www.dell.com | support.dell.com c Enter a delineator character to specify the limits of the text banner. In Figure 4-1, the % character is the delineator character. line Enter a text string for your text banner message ending the message with your delineator. In the example in Figure 4-1, the delineator is a percent character (%). Ranges: • • Defaults Command Modes Command History maximum of 50 lines up to 255 characters per line No banner is configured and the CR is required when creating a banner.
banner motd ces Syntax Set a Message of the Day (MOTD) banner. banner motd c line c To delete a Message of the Day banner, enter no banner motd. Parameters Defaults Command Modes Command History c Enter a delineator character to specify the limits of the text banner. In the above figures, the % character is the delineator character. line Enter a text string for your message of the day banner message ending the message with your delineator.
www.dell.com | support.dell.com Command Modes CONFIGURATION Command History Usage Information Version 7.4.1.0 Introduced on E-Series Enables periodic audits of software and hardware copies of the IPv4 forwarding table. clear alarms ces Syntax Command Modes Command History Clear alarms on the system. clear alarms EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
Parameters line-number Enter a number for one of the 12 terminal lines on the system. Range: 0 to 11. aux 0 Enter the keywords aux 0 to reset the Auxiliary port. Note: This option is supported on E-Series only. Command Modes Command History console 0 Enter the keyword console 0 to reset the Console port. vty number Enter the keyword vty followed by a number to clear a Terminal line. Range: 0 to 9 EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.1.1.
www.dell.com | support.dell.com Command Modes EXEC Privilege Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series This command enables (and disables) the collection of CPU traffic statistics from the time this command is executed (not from system boot).
Command Modes EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command do ces Syntax Allows the execution of most EXEC-level commands from all CONFIGURATION levels without returning to the EXEC level. do command Parameters command Enter an EXEC-level command.
www.dell.com | support.dell.com enable ces Syntax Parameters Defaults Command Modes Command History Enter the EXEC Privilege mode or any other privilege level configured. After entering this command, you may need to enter a password. enable [level] level (OPTIONAL) Enter a number for a privilege level of FTOS. Range: 0 to 15. Default: 15 15 EXEC Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
Usage Information The chassis MIB contain the entry chSysXfpRecvPower in the chSysPortTable table. Periodically, IFA polls the XFP power for each of the ports, and sends the values to IFM where it is cached. The default interval for the polling is 300 seconds (5 minutes). Use this command to enable the polling and to configure the polling frequency.
www.dell.com | support.dell.com Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale E1200i Version 6.2.1.1 Support for E300 introduced (10.4 only) Version 6.1.1.0 Values changed as described above You save the configuration and reload the chassis for the changes to the epoch command setting to take affect. When using 10 SFMs in an ExaScale chassis, the 10.4 and 2.4 settings are both linerate. Additionally, the 2.4 setting has a lower latency.
exec-timeout ce s Syntax Set a time interval the system will wait for input on a line before disconnecting the session. exec-timeout minutes [seconds] To return to default settings, enter no exec-timeout. Parameters Defaults Command Modes Command History minutes Enter the number of minutes of inactivity on the system before disconnecting the current session. Range: 0 to 35791 Default: 10 minutes for console line; 30 minutes for VTY line.
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series E-Series original Command Related Commands end Return to the EXEC Privilege command mode. ftp-server enable ces Syntax Enable FTP server functions on the system. ftp-server enable To disable FTP server on the system, enter no ftp-server enable. Defaults Command Modes Command History Disabled. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
ftp-server topdir ces Syntax Specify the top-level directory to be accessed when an incoming FTP connection request is made. ftp-server topdir directory To return to the default settings, enter no ftp-server topdir. Parameters Defaults Command Modes Command History directory Enter the directory path. The internal flash is the default directory. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command hostname ces Syntax Set the host name of the system. hostname name To delete a hostname assigned, enter no hostname. Parameters Defaults Command Modes Command History name Enter a text string, up to 32 characters long. FTOS CONFIGURATION Version 8.3.3.
Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information The password is listed in the configuration file; you can view the password by entering the show running-config ftp command. The password configured by the ip ftp password command is used when you use the ftp: parameter in the copy command. Related Commands copy Copy files.
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series E-Series original Command Related Commands copy Copy files from and to the switch. ip ftp username ces Syntax Assign a user name for outgoing FTP connection requests. ip ftp username username To return to anonymous FTP connections, use the no ip ftp username [username] command. Parameters Defaults Command Modes Command History username Enter a text string as the user name up to 40 characters long. No user name is configured.
Related Commands Enable SSH server on the system. ip ssh server ip telnet source-interface ces Syntax Set an interface’s IP address as the source address in outgoing packets for Telnet sessions. ip telnet source-interface interface To return to the default setting, use the no ip telnet source-interface [interface] command.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • Defaults Command Modes Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16383.
Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information Related Commands You cannot delete a terminal connection. access-class Restrict incoming connections to a particular IP address in an IP access control list (ACL). password Specify a password for users on terminal lines. show linecard Display the line card(s) status.
www.dell.com | support.dell.com Figure 4-6.
motd-banner ces Syntax Enable a Message of the Day (MOTD) banner to appear when you log in to the system. motd-banner To disable the MOTD banner, enter no motd-banner. Defaults Command Modes Command History Enabled on all lines. LINE Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com source (IPv4 only) Enter the IPv4 source ip address or the source interface. • • • • • • • Enter the IP address in A.B.C.D format For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Defaults Command Modes See parameters above. EXEC EXEC Privilege Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced extended ping options. Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.9.1.0 Introduced VRF Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced support for C-Series Version 7.4.1.
www.dell.com | support.dell.com power-off ce Turn off power to a selected line card or the standby (extra) Switch Fabric Module (SFM). Syntax power-off {linecard number | sfm sfm-slot-id} Parameters linecard number Enter the keyword linecard and a number for the line card slot number. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. sfm sfm-slot-id Enter the keyword sfm by the slot number of the SFM to which you want to turn off power.
Related Commands power-off Power off a line card or standby SFM. reload ces Syntax Command Modes Command History Reboot FTOS. reload EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information If there is a change in the configuration, FTOS will prompt you to save the new configuration. Or you can save your running configuration with the copy running-config command.
www.dell.com | support.dell.com rpm number Enter the keyword rpm followed by a number for the RPM slot number. (Optional) Add the keyword hard or power-cycle (C-Series only) to power cycle the RPM. Range: 0 to 1 sfm slot number Defaults Command Modes Command History Enter the keyword sfm followed by the failed or powered-off SFM slot number. Note: Supported on E-Series only Disabled. EXEC Privilege Version 7.5.1.
send ces Syntax Parameters Send messages to one or all terminal line users. send [*] | [line ] | [aux] | [console] | [vty] * Enter the asterisk character * to send a message to all tty lines. line Send a message to a specific line. Range: 0 to 11 aux Enter the keyword aux to send a message to an Auxiliary line. Note: This option is supported on E-Series only. Defaults Command Modes Command History Usage Information console Enter the keyword console to send a message to the Primary terminal line.
www.dell.com | support.dell.com Defaults Command Modes Command History Not configured. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series original Command Usage Information If you do not specify parameters and enter service timestamps, it appears as service timestamps debug uptime in the running-configuration.
E-Series Example Figure 4-9.
www.dell.com | support.dell.com Example Figure 4-10. Command Example: show chassis brief on E-Series FTOS#show chassis brief Chassis Type : E1200 Chassis Mode : TeraScale Chassis Epoch : 3.
show command-history ces Syntax Display a buffered log of all commands entered by all users along with a time stamp. show command-history Defaults None. Command Mode EXEC EXEC Privilege Command History Usage Information Example H Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series One trace log message is generated for each command.
www.dell.com | support.dell.com show command-tree ces Syntax Display the entire CLI command tree, and optionally, display the utilization count for each commands and its options. show command-tree [count | no] Parameters Defaults Command Mode count Display the command tree with a usage counter for each command. no Display all of the commands that may be preceded by the keyword no, which is the keyword used to remove a command from the running-configuration.
show console lp ce View the buffered boot-up log of a line card. Syntax show console lp number Parameters Defaults Command Mode number Enter the line card slot number. Range: 0–7 for the C300 Range: 0–13 for the E1200 Range: 0–6 for the E600 Range: 0–5 for the E300 None EXEC EXEC Privilege Command History Version 7.5.1.
www.dell.com | support.dell.com Command Modes Command History E-Series Example EXEC Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series Figure 4-12.
Example Figure 4-13. Command Example: show debugging FTOS#show debug Generic IP: IP packet debugging is on for ManagementEthernet 0/0 Port-channel 1-2 Port-channel 5 GigabitEthernet 4/0-3,5-6,10-11,20 GigabitEthernet 5/0-1,5-6,10-11,15,17,19,21 ICMP packet debugging is on for GigabitEthernet 5/0,2,4,6,8,10,12,14,16 FTOS# show environment (C-Series and E-Series) ce View the system component status (for example, temperature, voltage).
www.dell.com | support.dell.com Examples Figure 4-14. Command Example: show environment FTOS#show environment -- Fan Status -Status Temp Fan1 Fan2 Fan3 Serial Num Version --------------------------------------------------------------------------up 32C 6000 RPM 6000 RPM 7500 RPM FX000040889 3.
Command Modes pem Enter the keyword pem to view only information on power entry modules. thermal-sensor Enter the keyword thermal-sensor to view only information on the thermal sensors. EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 The output of the show environment fan command for S-Series is changed to display fan speeds instead of just showing the fan status as up or down. Version 7.6.1.0 Introduced for S-Series.
www.dell.com | support.dell.com Example Figure 4-18. Command Example: show environment pem FTOS#show environment pem -- Power Supplies -Unit Bay Status Type --------------------------------------------------------------------------0 0 up AC 0 1 absent Example Figure 4-19.
Usage Information The show inventory media command provides some details about installed pluggable media (SFP, XFP), as shown in Figure 4-23. Use the show interfaces command to get more details about installed pluggable media. The display output might include a double asterisk (**) next to the SFMs, for example: ... 0 1 ...
www.dell.com | support.dell.com E-Series Example Figure 4-22.
Related Commands show interfaces Display a specific interface configuration. show interfaces transceiver Display the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. show inventory (S-Series) s Syntax Parameters Defaults Command Modes Command History Usage Display the S-Series switch type, components (including media), FTOS version including hardware identification numbers and configured protocols.
www.dell.com | support.dell.com Example 2 Figure 4-26.
Command History Version 8.3.3.8 Updated to support PPID on the S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Introduced on C-Series E-Series original Command E-Series Example Figure 4-27.
www.dell.com | support.dell.com Table 4-1 list the definitions of the fields shown in Figure 4-27. Table 4-1. Descriptions for show linecard output Field Description Line card Displays the line card slot number (only listed in show linecard all command output). Status Displays the line card’s status. Next Boot Displays whether the line card is to be brought online at the next system reload. Required Type Displays the line card type configured for the slot.
Related Commands linecard Pre-configure a line card in a currently empty slot of the system or a different line card type for the slot. show interfaces linecard Display information on all interfaces on a specific line card. show chassis View information on all elements of the system. show rpm View information on the RPM. show sfm View information on the SFM. show linecard boot-information e Syntax Command Modes View the line card status and boot information.
www.dell.com | support.dell.com Table 4-2 defines the fields in Figure 4-30. Table 4-2. Field Description # Displays the line card slot numbers, beginning with slot 0. The number of slots listed is dependent on your chassis: E-Series: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. Usage Information Related Commands 112 Descriptions for show linecard boot-information output | Status Indicates if a line card is online, offline, or booting.
show memory (C-Series and E-Series) ce View current memory usage on the system. Syntax show memory [cp | lp slot-number | rp1 | rp2] Parameters cp (OPTIONAL) Enter the keyword cp to view information on the Control Processor on the RPM. lp slot-number (OPTIONAL) Enter the keyword lp and the slot number to view information on the line-card processor in that slot. C-Series Range: 0-7 E-Series Range: 0 to 13 on a E1200/E1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
www.dell.com | support.dell.com Table 4-3 defines the fields displayed in Figure 4-31. Table 4-3. Descriptions for show memory output Field Description Lowest Displays the memory usage the system went to in the lifetime of the system. Indirectly, it indicates the maximum usage in the lifetime of the system: Total minus Lowest. Largest The current largest available. This relates to block size and is not related to the amount of memory on the system.
show processes cpu (C-Series and E-Series) ce View CPU usage information based on processes running in the system. Syntax show processes cpu [cp | rp1 | rp2] [lp [linecard-number [1-99] | all | summary] Parameters cp (OPTIONAL) Enter the keyword cp to view CPU usage of the Control Processor. rp1 (OPTIONAL) Enter the keyword rp1 to view CPU usage of the Route Processor 1. Note: This option is supported on the E-Series only.
www.dell.com | support.dell.com Example 2 Figure 4-34.
show processes cpu (S-Series) s Syntax Display CPU usage information based on processes running in an S-Series. show processes cpu [management-unit 1-99 [details] | stack-unit id | summary | ipc | memory [stack-unit id]] Parameters management-unit1-99 [details] (OPTIONAL) Display processes running in the control processor. The 1-99 variable sets the number of tasks to display in order of the highest CPU usage in the past five (5) seconds.
www.dell.com | support.dell.com Example 2 118 Figure 4-37. Command Example: show processes cpu management-unit on S-Series FTOS#show processes cpu management-unit 0 CPU utilization for five seconds: 1%/0%; one minute: 10%; five minutes: 2% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 272 20 2 10000 0.00% 0.00% 0.00% 0 topoDPC 271 0 0 0 0.00% 0.00% 0.00% 0 bcmNHOP 270 0 0 0 0.00% 0.00% 0.00% 0 bcmDISC 269 0 0 0 0.00% 0.00% 0.00% 0 bcmATP-RX 268 0 0 0 0.00% 0.00% 0.
Example 3 Figure 4-38. Command Example: show processes cpu stack-unit on S-Series FTOS#show processes cpu stack-unit 0 CPU Statistics On Unit0 Processor =============================== CPU utilization for five seconds: 0%/0%; one minute: 0%; five minutes: 0% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 52 8260 826 10000 0.00% 0.00% 0.22% 0 sysd 124 1160 116 10000 0.00% 0.00% 0.12% 0 KernLrnAgMv 116 70 7 10000 0.00% 0.00% 0.00% 0 xstp 109 50 5 10000 0.00% 0.00% 0.00% 0 span 108 60 6 10000 0.
www.dell.com | support.dell.com Example 4 Figure 4-39.
Example 5 Figure 4-40.
www.dell.com | support.dell.com Parameters cp (OPTIONAL) Enter the keyword cp to view the Control Processor’s SWPQ statistics. rp1 (OPTIONAL) Enter the keyword rp1 to view the Control Processor’s SWPQ statistics on Route Processor 1.* rp2 (OPTIONAL) Enter the keyword rp2 to view the Control Processor’s SWPQ statistics on Route Processor 2.* lp linecard-number (OPTIONAL) Enter the keyword lp followed by the line card number to view the Control Processor’s SWPQ statistics on the specified line card.
Example 2 Figure 4-42.
www.dell.com | support.dell.com Example 3 Figure 4-44.
show processes memory (C-Series and E-Series) ce View memory usage information based on processes running in the system. Syntax show processes memory [cp | lp slot-number {lp all | lp summary} | rp1 | rp2] Parameters cp (OPTIONAL) Enter the keyword cp to view memory usage of the Control Processor. lp slot-number (OPTIONAL) Enter the keyword lp and the slot number to view information on the line-card processor in that slot.
Figure 4-46. Command Example: show processes memory (partial) www.dell.com | support.dell.
Figure 4-48.
www.dell.com | support.dell.com show processes memory (S-Series) s Syntax Display memory usage information based on processes running in the S-Series system. show processes memory {management-unit | stack unit {0–7 | all | summary}} Parameters Command Modes management-unit Enter the keyword management-unit for CPU memory usage of the stack management unit.
Example Figure 4-50. Command Example: show processes memory management-unit FTOS#show processes management-unit Total : CurrentUsed: SharedUsed : 151937024, MaxUsed : 98848768, CurrentFree: 13007848, SharedFree : PID Process 337 KernLrnAgMv 331 vrrp 323 frrp 322 xstp 321 pim 314 igmp 313 mrtm 308 l2mgr 301 l2pm 298 arpm 294 ospf 288 dsm 287 rtm 284 rip 281 lacp 277 ipm1 273 acl 272 topoDPC 271 bcmNHOP 270 bcmDISC 269 bcmATP-RX 268 bcmATP-TX 267 bcmSTACK 266 bcmRX 265 bcmLINK.
www.dell.com | support.dell.com show processes switch-utilization e Syntax Command Mode Show switch fabric utilization. show processes switch-utilization EXEC EXEC Privilege Command History Version 8.1.1.0 Introduced on E-Series ExaScale E-Series original Command Example Figure 4-51.
E-Series Example Figure 4-52. Command Example: show rpm on E-Series FTOS#show rpm -- RPM card 0 -Status : active Next Boot : online Card Type : RPM - Route Processor Module (LC-EH-RPM) Hardware Rev : 3.1 Num Ports : 1 Up Time : 18 hr, 48 min Last Restart : reset by user FTOS Version : 8-4-1-317 Jumbo Capable : yes CP Boot Flash : A: 2.5.1.0 [booted] B: 2.5.1.0 RP1 Boot Flash: A: 2.5.1.0 [booted] B: 2.5.1.0 RP2 Boot Flash: A: 2.5.1.0 [booted] B: 2.5.1.
www.dell.com | support.dell.com Table 4-7. Related Commands 132 | Descriptions of show rpm output Field Description FTOS Version Displays the operating software version. Jumbo Capable Displays a Yes or No indicating if the RPM is capable of sending and receiving Jumbo frames. This field does not indicate if the chassis is in Jumbo mode; for that determination, use the show chassis brief command. CP Boot Flash Displays the two possible Boot Flash versions for the Control Processor.
show software ifm cs Display interface management (IFM) data. Syntax show software ifm {clients [summary] | ifagt number | ifcb interface | stack-unit unit-ID | trace-flags} Parameters clients Enter the keyword clients to display IFM client information. summary (OPTIONAL) Enter the keyword summary to display brief information about IFM clients. ifagt number Enter the keyword ifagt followed by the number of an interface agent to display software pipe and IPC statistics.
www.dell.com | support.dell.com S-Series Example Figure 4-53.
show system (S-Series) s Syntax Parameters Command Modes Display the current status of all stack members or a specific member. show system [brief | stack-unit unit-id | stack-ports {status | topology}] brief (OPTIONAL) Enter the keyword brief to view an abbreviated list of system information. stack-unit unit-id (OPTIONAL) Enter the keyword stack-unit followed by the stack member ID for information on that stack member.
www.dell.com | support.dell.com Example Figure 4-55. Command Example: show system brief FTOS#show system brief Stack MAC : 0:1:e8:d6:4:70 -- Stack Info -Unit UnitType Status ReqTyp CurTyp Version Ports --------------------------------------------------------------------------0 Member not present 1 Standby online S50V S50V 7.7.1.0 52 2 Mgmt online S50V S50V 7.7.1.
Example Figure 4-56.
www.dell.com | support.dell.com Example Figure 4-57.
show tech-support (C-Series and E-Series) ce Display, or save to a file, a collection of data from other show commands, the information necessary for Dell Networking technical support to perform troubleshooting. Syntax show tech-support [linecard 0-6 | page] | {display | except | find | grep | no-more | save} Parameters linecard 0-6 (OPTIONAL) Enter the keyword linecard followed by the linecard number to view information relating to a specific linecard.
www.dell.com | support.dell.com C-Series Example Figure 4-58. Command Example: show tech-support (partial) on C-Series FTOS#show tech-support page ----------------------------------- show version ------------------------------Dell Force10 Networks Real Time Operating System Software Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: FTOS 7.5.1.0 Copyright (c) 1999-2007 by Dell, Inc.
E-Series Example Figure 4-59.
www.dell.com | support.dell.com • • • • • • • • • • Related Commands show ip management-route show ip protocols show ip route summary show processes cpu show processes memory show redundancy show rpm show running-conf show sfm show version show version Display the FTOS version. show linecard Display the line card(s) status. show environment (C-Series and E-Series) Display system component status. show processes memory (C-Series and E-Series) Display memory usage based on running processes.
S-Series Examples Figure 4-60.
www.dell.com | support.dell.com Usage Information Without the page or stack-unit option, the command output is continuous, use Ctrl-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command. The save entry should always be the last option.
Usage Information This command is not available when the peer RPMs are running different FTOS releases. ssh-peer-stack-unit Open an SSH connection to the peer RPM. Syntax Parameters Defaults Command Modes ssh-peer-stack-unit [-l username] -l username (OPTIONAL) Enter the keyword -l followed by your user name. Default: The user name associated with the terminal Not configured. EXEC EXEC Privilege Command History Version 8.3.3.
www.dell.com | support.dell.com vrf instance (Optional) E-Series Only: Enter the keyword vrf followed by the VRF Instance name. source-interface (OPTIONAL) Enter the keywords /source-interface followed by the interface information to include the interface’s IP address. Enter the following keywords and slot/port or number information: • • • • • • • • Defaults Command Modes For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series Opening a telnet connection from the Standby RPM to an Active RPM follows the authentication procedure configured in the chassis. However, opening a telnet connection from the Active RPM into the Standby RPM requires local authentication.
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series E-Series original Command terminal xml ce Enable XML mode in Telnet and SSH client sessions. Syntax terminal xml To exit the XML mode, enter terminal no xml. Defaults Command Modes Disabled EXEC EXEC Privilege Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on C-Series Version 6.5.1.
Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Added support for IPv6 address on E-Series E-Series original Command Usage Information When you enter the traceroute command without specifying an IP address (Extended Traceroute), you are prompted for a target and source IP address, timeout in seconds (default is 5), a probe count (default is 3), minimum TTL (default is 1), maximum TTL (default is 30), and port number (default is 33434).
www.dell.com | support.dell.com undebug all ces Syntax Defaults Command Modes Command History Disable all debug operations on the system. undebug all No default behavior or values EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
util-threshold cpu (C- and E-Series) ce Configure the high or low CPU utilization thresholds for SNMP traps. Syntax util-threshold cpu {5sec | 1min | 5min} {rp1 | rp2 | cp | lp slot-id | all} {high {0-100} | {low [0-100}} To return to the default settings, use the no util-threshold cpu command syntax. Parameters cpu utilization time Indicate the length of time in which the cpu has been busy. processor type Indicate the type of processor to be used to configure the CPU utilization information.
www.dell.com | support.dell.com util-threshold cpu (S-Series) s Syntax Configure the high or low CPU utilization thresholds for SNMP traps. util-threshold cpu {5sec | 1min | 5min} {Management-unit | standby | stack-unit unit-number | all} {high {0-100} | {low [0-100}}} To return to the default setting, enter no util-threshold cpu. Parameters cpu utilization time Enter the keyword that indicates the amount of threshold time to configure the CPU utilization thresholds.
util-threshold mem (C- and E-Series) ce Configure the high or low memory utilization thresholds for SNMP traps. Syntax util-threshold mem {rp1 | rp2 | cp | lp slot-id | all} {high {0-100} | {low [0-100}} To return to the default setting, use the no util-threshold mem command syntax. Parameters processor type Indicate the type of processor that will be used to configure the memory utilization information.
www.dell.com | support.dell.com util-threshold mem (S-Series) s Syntax Configure the high or low memory utilization thresholds for SNMP traps. util-threshold mem {Management-unit | standby | stack-unit unit-number | all} {high {0-100} | {low [0-100}}} To return to the default setting, enter the no util-threshold mem command syntax.
virtual-ip ce Configure a virtual IP for the active management interface. Syntax virtual-ip ip address To return to the default, use the no virtual-ip ip address command. Parameters Defaults Command Modes Command History ip address Enter the IP address of the active management interface in a dotted decimal format (A.B.C.D.) No default behavior or values CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.
| Control and Monitoring www.dell.com | support.dell.
5 802.1ag Overview 802.
www.dell.com | support.dell.com ccm disable s Syntax Disable CCM. ccm disable Enter no ccm disable to enable CCM. Defaults Command Modes Command History Disabled ECFM DOMAIN Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced on S-Series ccm transmit-interval s Syntax Parameters Defaults Command Modes Command History Configure the transmit interval (mandatory). The interval specified applies to all MEPs in the domain. ccm transmit-interval seconds seconds Enter a transmit interval.
database hold-time s Syntax Parameters Defaults Command Modes Command History Set the amount of time that data from a missing MEP is kept in the Continuity Check Database. database hold-time minutes minutes Enter a hold-time. Range: 100-65535 minutes 100 minutes ECFM DOMAIN Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced on S-Series disable s Syntax Defaults Command Modes Command History Disable Ethernet CFM without stopping the CFM process.
www.dell.com | support.dell.com ethernet cfm s Syntax Defaults Command Modes Command History Spawn the CFM process. No CFM configuration is allowed until the CFM process is spawned. ethernet cfm Disabled CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced on S-Series ethernet cfm mep s Syntax Parameters Defaults Command Modes Command History Create an MEP.
Command History Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced on S-Series mep cross-check s Syntax Parameters Defaults Command Modes Command History Enable cross-checking for an MEP. mep cross-check mep-id mep-id Enter the MEP ID Range: 1-8191 None ECFM DOMAIN Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced on S-Series mep cross-check enable s Syntax Parameters Defaults Command Modes Command History Enable cross-checking.
www.dell.com | support.dell.com Command Modes Command History ETHERNET CFM Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced on S-Series ping ethernet s Syntax Parameters Defaults Command Modes Command History Send a Loopback message. ping ethernet domain [name l level] ma-name ma-name remote {dest-mep-id | mac-addr mac-address} source {src-mep-id | port interface} name | level Enter the domain name or level.
Example FTOS# show ethernet cfm domain Domain Name: customer Level: 7 Total Service: 1 Services MA-Name VLAN My_MA CC-Int 200 Domain Name: My_Domain Level: 6 Total Service: 1 Services MA-Name 10s VLAN Your_MA X-CHK Status CC-Int 100 enabled X-CHK Status 10s enabled show ethernet cfm maintenance-points local s Syntax Parameters Defaults Command Modes Command History Example Display configured MEPs and MIPs.
www.dell.com | support.dell.com Defaults Command Modes Command History Example expired Enter this keyword to view MEP entries that have expired due to connectivity failure. waiting Enter this keyword to display MEP entries waiting for response. None EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.3.1.
Command Modes Command History Example EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.3.1.
www.dell.com | support.dell.com Syntax Defaults Command Modes Command History Example show ethernet cfm traceroute-cache None EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.3.1.
Command History Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced on S-Series traceroute cache size s Syntax Parameters Defaults Command Modes Command History Set the size of the Link Trace Cache. traceroute cache size entries entries Enter the number of entries the Link Trace Cache can hold. Range: 1 - 4095 entries 100 entries ETHERNET CFM Version 8.3.3.1 Introduced on the S60. Version 8.3.1.
| 802.1ag www.dell.com | support.dell.
6 Access Control Lists (ACL) Overview Access Control Lists (ACLs) are supported on platforms c e s FTOS supports the following types of Access Control List (ACL), IP prefix list, and route map: • • • • • • • • • • • Commands Common to all ACL Types Common IP ACL Commands Standard IP ACL Commands Extended IP ACL Commands Common MAC Access List Commands Standard MAC ACL Commands Extended MAC ACL Commands IP Prefix List Commands Route Map Commands AS-Path Commands IP Community List Commands Note: For IPv6 AC
www.dell.com | support.dell.com Parameters Defaults Command Modes text Enter a text string up to 80 characters long. Not enabled. CONFIGURATION-STANDARD-ACCESS-LIST CONFIGURATION-EXTENDED-ACCESS-LIST CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.
The following example shows the use of the remark command twice within the CONFIGURATION-STANDARD-ACCESS-LIST mode. Here, the same sequence number was used for the remark and for an associated ACL rule. The remark will precede the rule in the running-config because it is assumed that the remark is for the rule with the same sequence number, or the group of rules that follow the remark. Example Figure 6-1.
www.dell.com | support.dell.com Common IP ACL Commands The following commands are available within both IP ACL modes (Standard and Extended) and do not have mode-specific options. When an access-list (ACL) is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. c and s (non-S60) platforms support Ingress IP ACLs only. The supports both Ingress and Egress IP ACLs. The following commands allow you to clear, display, and assign IP ACL configurations.
Parameters Command Modes Command History access-list-name (OPTIONAL) Enter the name of a configured access-list, up to 140 characters. EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.
www.dell.com | support.dell.com Usage Information You can assign one ACL (standard or extended ACL) to an interface. Note: This command is supported on the loopback interfaces of EE3, and EF series RPMs. It is not supported on loopback interfaces ED series RPM, or on C-Series or S-Series loopback interfaces.
Command Modes EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced Figure 6-3. Command Example: show ip accounting access-lists FTOS#show ip accounting access FILTER1 interface gig 1/6 Extended IP access list FILTER1 seq 5 deny ip any 191.1.0.0 /16 count (0x00 packets) seq 10 deny ip any 191.2.0.0 /16 order 4 seq 15 deny ip any 191.3.0.
www.dell.com | support.dell.com deny ces Syntax deny {source [mask] | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To remove this filter, you have two choices: • • Parameters Defaults Command Modes Command History 176 Configure a filter to drop packets with a certain IP address. | Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {source [mask] | any | host ip-address} command.
Usage Information The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The monitor option is relevant in the context of flow-based monitoring only.
www.dell.com | support.dell.com Example Figure 6-4. Command Example: ip access-list standard FTOS(conf)#ip access-list standard TestList FTOS(config-std-nacl)# Related Commands ip access-list extended Create an extended access list. show config Display the current configuration. permit ces Syntax Configure a filter to permit packets from a specific source IP address to leave the switch.
Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Add DSCP value for ACL matching. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced on E-Series ExaScale (IPv6) Version 8.1.1.0 Introduced on E-Series ExaScale (IPv4) Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.
seq ces Syntax Assign a sequence number to a deny or permit filter in an IP access list while creating the filter. seq sequence-number {deny | permit} {source [mask] | any | host ip-address}} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To delete a filter, use the no seq sequence-number command. Parameters Defaults Command Modes Command History sequence-number Enter a number from 0 to 4294967290.
www.dell.com | support.dell.com Usage Information Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The monitor option is relevant in the context of flow-based monitoring only. See Chapter 28, Port Monitoring. The order option is relevant in the context of the Policy QoS feature only.
Extended IP ACL Commands When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. The following commands configure extended IP ACLs, which in addition to the IP address also examine the packet’s protocol type. c and s platforms (except the S60) support Ingress IP ACLs only. The • • • • • • • • • • • • • • • • • • supports both Ingress and Egress IP ACLs.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information 184 | ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list will deny all IP protocols. ip-protocol-number Enter a number from 0 to 255 to deny based on the protocol identified in the IP protocol header. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.
When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. See the Chapter 28, Port Monitoring.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
To remove this filter, use one of the following: • • Parameters Defaults Command Modes Command History Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny ether-type protocol-type-number {destination-mac-address mac-address-mask | any} vlan vlan-id {source-mac-address mac-address-mask | any} command. protocol-type-number Enter a number from 600 to FFFF as the specific Ethernet type traffic to drop.
www.dell.com | support.dell.com Usage Information Version 7.4.1.0 Added monitor option Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match.
Defaults Command Modes Command History Usage Information order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
www.dell.com | support.dell.com Table 6-2.
deny tcp ces Syntax Configure a filter that drops TCP packets meeting the filter criteria.
www.dell.com | support.dell.com Defaults Command Modes Command History log (OPTIONAL, E-Series only) Enter the keyword log to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# 1 2 3 4 5 6 7 8 Data Mask From To #Covered 0000111110100000 0000111111000000 0001000000000000 0001100000000000 0001110000000000 0001111000000000 0001111100000000 0001111101000000 1111111111100000 1111111111000000 1111100000000000 1111110000000000 1111111000000000 1111111100000000 1111111111000000 1111111111111111 4000 4032 4096 6144 7168 7680 7936 8000 4031 4095 6143 7167 7679 7935 7999 8000 32 64 2048 1024 5
www.dell.com | support.dell.com operator (OPTIONAL) Enter one of the following logical operand: • • • • • Defaults Command Modes Command History Usage Information eq = equal to neq = not equal to gt = greater than lt = less than range = inclusive range of ports port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535 destination Enter the IP address of the network or host to which the packets are sent.
The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. See the Chapter 28, Port Monitoring. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Most ACL rules require one entry in the CAM.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series The number of entries allowed per ACL is hardware-dependent.
Defaults Command Modes Command History Usage Information byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to enter ACL matches in the log. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order of priority for the ACL entry.
www.dell.com | support.dell.com Assign a permit filter for TCP packets. permit udp Assign a permit filter for UDP packets. permit arp e Syntax Configure a filter that forwards ARP packets meeting this criteria.This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications.
Defaults Command Modes Not configured. CONFIGURATION-EXTENDED-ACCESS-LIST Command History Usage Information Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information vlan vlan-id Enter the keyword vlan followed by the VLAN ID to filter traffic associated with a specific VLAN. Range: 1 to 4094, 1-2094 for ExaScale (can used IDs 1-4094) To filter all VLAN traffic specify VLAN 1. source-mac-address mac-address-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
permit icmp e Syntax Configure a filter to allow all or specific ICMP messages.
www.dell.com | support.dell.com Usage Information The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information. When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details.
Defaults Command Modes Command History port port Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535. The following list includes some common TCP port numbers: 23 = Telnet 20 and 21 = FTP 25 = SMTP 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
www.dell.com | support.dell.com When you use the log option, CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The C-Series and S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM.
Parameters source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host followed by the IP address to specify a host IP address. dscp Enter this keyword to deny a packet based on DSCP value.
www.dell.com | support.dell.com Usage Information The order option is relevant in the context of the Policy QoS feature only. See the Quality of Service chapter of the FTOS Configuration Guide for more information. The monitor option is relevant in the context of the flow-based monitoring feature only. See Chapter 28, Port Monitoring. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead.
resequence access-list ces Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing access-list. resequence access-list {ipv4 | mac} {access-list-name StartingSeqNum Step-to-Increment} ipv4 | mac Enter the keyword ipv4, or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list, up to 140 characters. StartingSeqNum Enter the starting sequence number to resequence.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Usage Information Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.
Defaults Command Modes byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. Range: 0-254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) Default: If the order keyword is not used, the ACLs have the lowest order by default (255).
www.dell.com | support.dell.com 210 seq ether-type e Syntax Configure an egress filter with a specific sequence number that filters traffic with specified types of Ethernet packets. This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications.
Defaults Command Modes Not configured. CONFIGURATION-EXTENDED-ACCESS-LIST Command History Usage Information Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Added monitor option Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The monitor option is relevant in the context of the flow-based monitoring feature only. See Chapter 28, Port Monitoring.
www.dell.com | support.dell.com ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list will permit all IP protocols. tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command History Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Add DSCP value for ACL matching. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option. Deprecated established keyword Version 6.5.
www.dell.com | support.dell.com Common MAC Access List Commands The following commands are available within both MAC ACL modes (Standard and Extended) and do not have mode-specific options. c and s platforms (except the S60) support Ingress MAC ACLs only. The supports both Ingress and Egress MAC ACLs. The following commands allow you to clear, display and assign MAC ACL configurations.
Command Modes Command History Usage Information INTERFACE Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series You can assign one ACL (standard or extended) to an interface. Prior to 7.8.1.
www.dell.com | support.dell.com Example Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 6-6.
Parameters Defaults Command Modes Command History any Enter the keyword any to specify that all traffic is subject to the filter. mac-source-address Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
www.dell.com | support.dell.com Parameters Defaults Command Modes mac-list-name Not configured CONFIGURATION Command History Usage Information Enter a text string as the name of the standard MAC access list (140 character maximum). Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.
Defaults Command Modes Command History mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to log the packets.
www.dell.com | support.dell.com Defaults Command Modes Command History any Enter the keyword any to filter all packets. mac-source-address Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
Extended MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. c and s platforms (except the S60 system) support Ingress MAC ACLs only. The supports both Ingress and Egress MAC ACLs. The following commands configure Extended MAC ACLs. • • • • deny mac access-list extended permit seq Note: See also Commands Common to all ACL Types and Common MAC Access List Commands.
www.dell.com | support.dell.com ethertype operator (OPTIONAL) To filter based on protocol type, enter one of the following Ethertypes: • • • Defaults Command Modes Command History ev2 - is the Ethernet II frame format. llc - is the IEEE 802.3 frame format. snap - is the IEEE 802.3 SNAP frame format. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
Defaults Command Modes No default configuration CONFIGURATION Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
www.dell.com | support.dell.com Parameters any Enter the keyword any to forward all packets. host Enter the keyword host followed by a MAC address to forward packets with that host address. mac-source-address Enter the source MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask Specify which bits in the MAC address must be matched.
Related Commands deny Configure a filter to drop traffic based on the MAC address. seq Configure a filter with specific sequence numbers. seq ces Syntax Configure a filter with a specific sequence number. seq sequence-number {deny | permit} {any | host mac-address | mac-source-address mac-source-address-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] [log] [monitor] To delete a filter, use the no seq sequence-number command.
www.dell.com | support.dell.com Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 7.4.1.0 Added monitor option pre-Version 6.1.1.0 Introduced for E-Series Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
Command History Default Related Commands Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Clears “hit” counters for all prefix lists unless a prefix list is specified.
www.dell.com | support.dell.com ip prefix-list ces Syntax Enter the PREFIX-LIST mode and configure a prefix list. ip prefix-list prefix-name To delete a prefix list, use the no ip prefix-list prefix-name command. Parameters Command Modes Command History Usage Information prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.
Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Sequence numbers for this filter are automatically assigned starting at sequence number 5. If the options ge or le are not used, only packets with an exact match to the prefix are filtered.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Added support for C-Series Version 6.3.1.0 Added bitmask option If the options ge or le are not used, only packets with an exact match to the prefix are filtered. Related Commands deny Configure a filter to drop packets. permit Configure a filter to pass packets. show config ces Display the current PREFIX-LIST configurations. Syntax show config Command Modes PREFIX-LIST Command History Version 8.3.3.
Example Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 6-10. Command Example: show ip prefix-list detail FTOS#show ip prefix-list detail Prefix-list with the last deletion/insertion: filter_ospf ip prefix-list filter_in: count: 3, range entries: 3, sequences: 5 - 10 seq 5 deny 1.102.0.0/16 le 32 (hit count: 0) seq 6 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 10 permit 0.0.0.
www.dell.com | support.dell.com Example Figure 6-11.
• • show config show route-map continue ces Syntax Configure a route-map to go to a route-map entry with a higher sequence number. continue [sequence-number] To remove the continue clause, use the no continue [sequence-number] command. Parameters Defaults sequence-number (OPTIONAL) Enter the route map sequence number. Range: 1 - 65535 Default: no sequence number Not Configured Command Modes ROUTE-MAP Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.
www.dell.com | support.dell.com Set clause with Continue clause If the route-map entry contains sets with the continue clause, then set actions is performed first followed by the continue clause jump to the specified route map entry. • • Related Commands If a set actions occurs in the first route map entry and then the same set action occurs with a different value in a subsequent route map entry, the last set of actions overrides the previous set of actions with the same set command.
Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series set as-path Add information to the BGP AS_PATH attribute.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/ port information. For the loopback interface, enter the keyword loopback followed by a number from zero (0) to 16383.
Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series match interface Redistribute routes that match the next-hop interface.
www.dell.com | support.dell.com match route-type Redistribute routes that match a route type. match tag Redistribute routes that match a specific tag. match ip route-source ces Syntax Configure a filter to match based on the routes advertised by routes specified in IP access lists or IP prefix lists. match ip route-source {access-list | prefix-list prefix-list-name} To delete a match, use the no match ip route-source {access-list | prefix-list prefix-list-name} command.
Defaults Not configured. Command Modes ROUTE-MAP Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Related Commands match interface Redistribute routes that match the next-hop interface. match ip address Redistribute routes that match an IP address.
www.dell.com | support.dell.com Parameters Defaults external [type-1| type-2] Enter the keyword external followed by either type-1 or type-2 to match only on OSPF Type 1 routes or OSPF Type 2 routes. internal Enter the keyword internal to match only on routes generated within OSPF areas. level-1 Enter the keyword level-1 to match IS-IS Level 1 routes. level-2 Enter the keyword level-2 to match IS-IS Level 2 routes.
Related Commands match interface Redistribute routes that match the next-hop interface. match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address. match ip route-source Redistribute routes that match routes advertised by other routers. match metric Redistribute routes that match a specific metric. match route-type Redistribute routes that match a route type.
www.dell.com | support.dell.com Prior to 7.8.1.0, names are up to 16 characters long. Related Commands show config Display the current configuration. set as-path ces Syntax Configure a filter to modify the AS path for BGP routes. set as-path prepend as-number [... as-number] To remove an AS-Path setting, use the no set as-path {prepend as-number | tag} command. Parameters prepend as-number Enter the keyword prepend followed by up to eight AS numbers to be inserted into the BGP path information.
Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series set level Specify the OSPF area for route redistribution. set metric Specify the metric value assigned to redistributed routes. set metric-type Specify the metric type assigned to redistributed routes.
www.dell.com | support.dell.com Redistribute routes that match the COMMUNITY attribute. set community Specify a COMMUNITY attribute. set community ces Syntax Allows you to assign a BGP COMMUNITY attribute. set community {community-number | local-as | no-advertise | no-export | none} [additive] To delete a BGP COMMUNITY attribute assignment, use the no set community {community-number | local-as | no-advertise | no-export | none} command.
set level ces Syntax Configure a filter to specify the IS-IS level or OSPF area to which matched routes are redistributed. set level {backbone | level-1 | level-1-2 | level-2 | stub-area} To remove a set level condition, use the no set level {backbone | level-1 | level-1-2 | level-2 | stub-area} command. Parameters Defaults backbone Enter the keyword backbone to redistribute matched routes to the OSPF backbone area (area 0.0.0.0).
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series The set local-preference command changes the LOCAL_PREF attribute for routes meeting the route map criteria. To change the LOCAL_PREF for all routes, use the bgp default local-preference command.
set metric-type ces Syntax Configure a filter to assign a new route type for routes redistributed to OSPF. set metric-type {internal | external | type-1 | type-2} To delete a setting, enter no set metric-type. Parameters Defaults internal Enter the keyword internal to assign the Interior Gateway Protocol metric of the next hop as the route’s BGP MULTI_EXIT_DES (MED) value. external Enter the keyword external to assign the IS-IS external metric.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series If the set next-hop command is configured, its configuration takes precedence over the neighbor next-hop-self command in the ROUTER BGP mode. If you configure the set next-hop command with the interface’s (either Loopback or physical) IP address, the software declares the route unreachable.
Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series set automatic-tag Compute the tag value of the route. set level Specify the OSPF area for route redistribution. set metric Specify the metric value assigned to redistributed routes.
www.dell.com | support.dell.com Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 6-13.
AS-Path Commands This feature is supported on E-Series only, as indicated by this character under each command heading: e The following commands configure AS-Path ACLs. • • • • • deny ip as-path access-list permit show config show ip as-path-access-lists deny e Syntax Create a filter to drop routes that match the route’s AS-PATH attribute. Use regular expressions to identify which routes are affected by the filter.
www.dell.com | support.dell.com ip as-path access-list e Syntax Enter the AS-PATH ACL mode and configure an access control list based on the BGP AS_PATH attribute. ip as-path access-list as-path-name To delete an AS-PATH ACL, use the no ip as-path access-list as-path-name command. Parameters Defaults Command Modes Example as-path-name Enter the access-list name, up to 140 characters. Not configured CONFIGURATION Figure 6-15.
Parameters as-regular-expression Enter a regular expression to match BGP AS-PATH attributes. Use one or a combination of the following: • • • • • • • • • Defaults Not configured Command Modes AS-PATH ACL Command History .
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series Figure 6-17. Command Example: show ip as-path-access-lists FTOS#show ip as-path-access-lists ip as-path access-list 1 permit ^$ permit ^\(.*\)$ deny .* ip as-path access-list 91 permit ^$ deny .* permit ^\(.*\)$ FTOS# IP Community List Commands IP Community List commands are supported on E-Series only, as indicated by
no-advertise Enter the keywords no-advertise to drop all routes containing the well-known community attribute of NO_ADVERTISE. All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers. no-export Enter the keywords no-export to drop all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary.
www.dell.com | support.dell.com Command History Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. pre-Version 6.1.1.0 Introduced for E-Series permit e Syntax Configure a filter to forward routes that match the route’s COMMUNITY attribute.
Command History Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series show config e Syntax Command Mode Command History Example Display the non-default information in the current configuration. show config COMMUNITY-LIST Version 8.1.1.0 Introduced on E-Series ExaScale pre-Version 6.1.1.0 Introduced for E-Series Figure 6-19.
www.dell.com | support.dell.com Example 258 Figure 6-20.
7 Border Gateway Protocol IPv4(BGPv4) Overview BGPv4 is supported as shown in the following table. FTOS version Platform support 8.3.3.1 S60 8.1.1.0 E-Series ExaScale 7.8.1.0 S-Series 7.7.1.0. C-Series pre-7.7.1.0 E-Series TeraScale ex s c et For detailed information on configuring BGP, refer to the BGP chapter in the FTOS Configuration Guide.
www.dell.com | support.dell.com BGPv4 Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS). BGP version 4 (BGPv4) supports Classless InterDomain Routing (CIDR) and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically send messages to update those routing tables. Note: FTOS Version 7.7.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • debug ip bgp debug ip bgp dampening debug ip bgp events debug ip bgp keepalives debug ip bgp notifications debug ip bgp soft-reconfiguration debug ip bgp updates default-metric description distance bgp maximum-paths neighbor activate neighbor advertisement-interval neighbor advertisement-start neighbor allowas-in neighbor default-originate neighbor description neighbor distribute-list neighbor ebgp-multihop neighbor
www.dell.com | support.dell.
Parameters Defaults Command Modes ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x). advertise-map map-name (OPTIONAL) Enter the keywords advertise-map followed by the name of a configured route map to set filters for advertising an aggregate route. as-set (OPTIONAL) Enter the keyword as-set to generate path attribute information and include it in the aggregate.
www.dell.com | support.dell.com bgp always-compare-med ces Syntax Enables you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs. bgp always-compare-med To disable comparison of MED, enter no bgp always-compare-med. Defaults Command Modes Usage Information Command History Disabled (that is, the software only compares MEDs from neighbors within the same AS).
Example Figure 7-1.
www.dell.com | support.dell.com To disable MED comparison on BGP confederation paths, enter no bgp bestpath med confed. Defaults Command Modes Usage Information Command History Disabled ROUTER BGP The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the clear ip bgp * command to recompute the best path. Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
Command History Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Introduced bgp client-to-client reflection ces Syntax Enables you to enable route reflection between clients in a cluster. bgp client-to-client reflection To disable client-to-client reflection, enter no bgp client-to-client reflection. Defaults Command Modes Usage Information Related Commands Command History Enabled when a route reflector is configured.
www.dell.com | support.dell.com Related Commands Command History bgp client-to-client reflection Enable route reflection between route reflector and clients. neighbor route-reflector-client Configure a route reflector and clients. show ip bgp cluster-list View paths with a cluster ID. Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
bgp confederation peers ces Syntax Specify the Autonomous Systems (ASs) that belong to the BGP confederation. bgp confederation peers as-number [...as-number] To return to the default, enter no bgp confederation peers. Parameters as-number Enter the AS number. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.65535 (Dotted format) ...as-number (OPTIONAL) Enter up to 16 confederation numbers. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.
www.dell.com | support.dell.com Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half after the half-life period expires. Range: 1 to 45. Default: 15 minutes Defaults Command Modes Usage Information Related Commands Command History reuse (OPTIONAL) Enter a number as the reuse value, which is compared to the flapping route’s Penalty value.
Parameters Defaults Command Modes Usage Information Related Commands Command History value Enter a number to assign to routes as the degree of preference for those routes. When routes are compared, the higher the degree of preference or local preference value, the more the route is preferred. Range: 0 to 4294967295 Default: 100 100 ROUTER BGP The bgp default local-preference command setting is applied by all routers within the AS.
www.dell.com | support.dell.com bgp fast-external-fallover ces Syntax Enable the fast external fallover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. bgp fast-external-fallover To disable fast external fallover, enter no bgp fast-external-fallover. Defaults Command Modes Usage Information Command History Enabled. ROUTER BGP The bgp fast-external-fallover command appears in the show config command output. Version 8.3.3.1 Introduced on the S60.
bgp graceful-restart ces Syntax Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, enter the no bgp graceful-restart command.
www.dell.com | support.dell.com Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series bgp non-deterministic-med ces Syntax Compare MEDs of paths from different Autonomous Systems. bgp non-deterministic-med To return to the default, enter no bgp non-deterministic-med. Defaults Command Modes Usage Information Disabled (that is, paths/routes for the same destination but from different ASs will not have their MEDs compared).
Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced bgp regex-eval-optz-disable ces Syntax Disables the Regex Performance engine that optimizes complex regular expression with BGP. bgp regex-eval-optz-disable To re-enable optimization engine, use the no bgp regex-eval-optz-disable command.
www.dell.com | support.dell.com Example Figure 7-2. Command Example: no bgp regex-eval-optz-disable FTOS(conf-router_bgp)#no bgp regex-eval-optz-disable FTOS(conf-router_bgp)#do show ip protocols Routing Protocol is "ospf 22222" Router ID is 2.2.2.2 Area Routing for Networks 51 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.
Usage Information When soft-reconfiguration is enabled for a neighbor and the clear ip bgp soft in is executed, the update database stored in the router is replayed and updates are reevaluated. With this command, the replay and update process is triggered only if route-refresh request is not negotiated with the peer. If the request is indeed negotiated (upon execution of clear ip bgp soft in), then BGP sends a route-refresh request to the neighbor and receives all of the peer’s updates.
www.dell.com | support.dell.com capture bgp-pdu max-buffer-size ces Syntax Parameters Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses. capture bgp-pdu max-buffer-size 100-102400000 100-102400000 Defaults 40960000 bytes. Command Modes EXEC Privilege Related Commands Command History Enter a size for the capture buffer. capture bgp-pdu neighbor Enable capture of an IPv4 BGP neighbor packet.
Related Commands Command History bgp recursive-bgp-next-hop Disable next-hop resolution through other routes learned by BGP bgp soft-reconfig-backup Turn on BGP Soft Reconfiguration Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 6.5.1.0 Expanded to include the as-number option clear ip bgp peer-group ces Syntax Parameters Command Modes Command History Reset a peer-group’s BGP sessions.
www.dell.com | support.dell.com clear ip bgp flap-statistics ces Syntax Parameters Clear BGP flap statistics, which includes number of flaps and the time of the last flap. clear ip bgp flap-statistics [ip-address mask | filter-list as-path-name | regexp regular-expression] ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to reset only that prefix.
Parameters Command Modes Usage Information ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group peer-group-name Enter the keyword peer-group followed by the name of the peer group. in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series debug ip bgp events ces Syntax Display information on local BGP state changes and other BGP events. debug ip bgp [ip-address | peer-group peer-group-name] events [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] events command.
Usage Information Command History Enter no debug ip bgp command to remove all configured debug commands for BGP. Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series debug ip bgp notifications ces Syntax Enables you to view information about BGP notifications received from neighbors.
www.dell.com | support.dell.com Command Modes Usage Information Command History EXEC Privilege This command turns on BGP soft-reconfiguration inbound debugging. If no neighbor is specified, debug is turned on for all neighbors. Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.2.1.0 Introduced debug ip bgp updates ces Syntax Enables you to view information about BGP updates.
Parameters Defaults Command Modes Usage Information number 0 ROUTER BGP The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. Related Commands Command History Enter a number as the metric to be assigned to routes from other protocols. Range: 1 to 4294967295. bgp always-compare-med Enable comparison of all BGP MED attributes. redistribute Redistribute routes from other routing protocols into BGP. Version 8.3.3.
www.dell.com | support.dell.com Parameters Defaults Command Modes external-distance Enter a number to assign to routes learned from a neighbor external to the AS. Range: 1 to 255. Default: 20 internal-distance Enter a number to assign to routes learned from a router within the AS. Range: 1 to 255. Default: 200 local-distance Enter a number to assign to routes learned from networks listed in the network command. Range: 1 to 255.
Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor activate ces Syntax This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI (Address Family Identifier/Subsequent Address Family Identifier). neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command.
www.dell.com | support.dell.com Command Modes ROUTER BGP Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor advertisement-start ces Syntax Set the minimum interval before starting to send BGP routing updates. neighbor {ip-address} advertisement-start seconds To return to the default value, use the no neighbor {ip-address} advertisement-start command.
Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced on C-Series and E-Series neighbor default-originate ces Syntax Inject the default route to a BGP peer or neighbor. neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor distribute-list ces Syntax Distribute BGP information via an established prefix list.
Parameters Defaults Command Modes Usage Information Command History ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. ttl (OPTIONAL) Enter the number of hops as the Time to Live (ttl) value. Range: 1 to 255. Default: 255 Disabled. ROUTER BGP To prevent loops, the neighbor ebgp-multihop command will not install default routes of the multihop peer. Networks not directly connected are not considered valid for best path selection.
www.dell.com | support.dell.com neighbor filter-list ces Syntax Configure a BGP filter based on the AS-PATH attribute. neighbor {ip-address | peer-group-name} filter-list as-path-name {in | out} To delete a BGP filter, use the no neighbor {ip-address | peer-group-name} filter-list as-path-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group.
Defaults Command Modes Usage Information Command History restart-time seconds Enter the keyword restart-time followed by the maximum number of seconds needed to restart and bring-up all the peers. Range: 1 to 3600 seconds Default: 120 seconds stale-path-time seconds Enter the keyword stale-path-time followed by the maximum number of seconds to wait before restarting a peer’s stale paths. Default: 360 seconds.
www.dell.com | support.dell.com Command History Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced command Introduced support on C-Series neighbor maximum-prefix ces Syntax Control the number of network prefixes received. neighbor {ip-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ip-address | peer-group-name} maximum-prefix maximum command.
neighbor next-hop-self ces Syntax Enables you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP). neighbor {ip-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ip-address | peer-group-name} next-hop-self command. Parameters Defaults Command Modes Usage Information Command History ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. Disabled.
www.dell.com | support.dell.com If you specify a BGP peer group by using the peer-group-name parameter, all the members of the peer group will inherit the characteristic configured with this command.
A neighbor may keep its configuration after it was added to a peer group if the neighbor’s configuration is more specific than the peer group’s, and the neighbor’s configuration does not affect outgoing updates. A peer group must exist before you add a peer to it. If the peer group is disabled (shutdown) the peers within the group are also disabled (shutdown). Related Commands Command History clear ip bgp Resets BGP sessions. neighbor peer-group (creating group) Create a peer group.
www.dell.com | support.dell.com To delete a passive peer-group, use the no neighbor peer-group-name peer-group passive command. Parameters peer-group-name Defaults Not configured. Command Modes ROUTER BGP Usage Information Related Commands Command History Enter a text string up to 16 characters long as the name of the peer group. After you configure a peer group as passive, you must assign it a subnet using the neighbor soft-reconfiguration inbound command.
Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Added 4-Byte support. neighbor remove-private-as ces Syntax Remove private AS numbers from the AS-PATH of outgoing updates. neighbor {ip-address | peer-group-name} remove-private-as To return to the default, use the no neighbor {ip-address | peer-group-name} remove-private-as command.
www.dell.com | support.dell.com Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. map-name Enter the name of an established route map. If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes. Defaults Not configured.
neighbor send-community ces Syntax Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. neighbor {ip-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ip-address | peer-group-name} send-community command.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor soft-reconfiguration inbound ces Syntax Enable soft-reconfiguration for BGP. neighbor {ip-address | peer-group-name} soft-reconfiguration inbound To disable, use the no neighbor {ip-address | peer-group-name} soft-reconfiguration inbound command.
Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group. To allow all addresses, enter 0.0.0.0/0. mask Enter a prefix mask in / prefix-length format (/x). Defaults Not configured. Command Modes ROUTER BGP Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
www.dell.com | support.dell.com Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series neighbor update-source ces Syntax Enable the E-Series software to use Loopback interfaces for TCP connections for BGP sessions. neighbor {ip-address | peer-group-name} update-source interface To use the closest interface, use the no neighbor {ip-address | peer-group-name} update-source interface command.
Usage Information In the FTOS best path selection process, the path with the highest weight value is preferred. Note: Reset the neighbor connection (clear ip bgp * command) to apply the weight to the connection and recompute the best path. If the set weight command is configured in a route map applied to this neighbor, the weight set in that command overrides the weight set in the neighbor weight command.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series network backdoor ces Syntax Specify this IGP route as the preferred route. network ip-address mask backdoor To remove a network, use the no network ip-address mask backdoor command. Parameters ip-address Enter an IP address in dotted decimal format of the network.
static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes. route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
www.dell.com | support.dell.com Parameters Defaults Command Modes Example WORD ISO routing area tag level-1 (OPTIONAL) Enter the keyword level-1 to independently redistributed into Level 1 routes only. level-1-2 (OPTIONAL) Enter the keyword level-1-2 to independently redistributed into Level 1 and Level 2 routes. This is the default.
To stop redistribution of OSPF routes, use the no redistribute ospf process-id command. Parameters process-id Enter the number of the OSPF process. Range: 1 to 65535 match external {1 | 2} (OPTIONAL) Enter the keywords match external to redistribute OSPF external routes. You can specify 1 or 2 to redistribute those routes only. match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPF internal routes only.
www.dell.com | support.dell.com Example Figure 7-4. Command Example: router bgp FTOS(conf)#router bgp 3 FTOS(conf-router_bgp)# Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series At least one interface must be in Layer 3 mode for the router bgp command to be accepted. If no interfaces are enabled for Layer 3, an error message appears: % Error: No router id configured.
Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.5.1.0 Introduced show config ces Syntax Command Modes Example View the current ROUTER BGP configuration. show config ROUTER BGP Figure 7-6. Command Example: show config FTOS(conf-router_bgp)#show confi ! router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.
www.dell.com | support.dell.com Usage Information Example When you enable bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. Figure 7-7. Command Example: show ip bgp (Partial) FTOS>show ip bgp BGP table version is 847562, local router ID is 63.114.8.
show ip bgp cluster-list ces Syntax Parameters Command Modes View BGP neighbors in a specific cluster. show ip bgp [ipv4 unicast] cluster-list [cluster-id] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. EXEC EXEC Privilege Example Figure 7-8.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series show ip bgp community ces Syntax Parameters Command Modes View information on all routes with Community attributes or view specific BGP community groups.
Example Figure 7-9. Command Example: show ip bgp community (Partial) FTOS>show ip bgp community BGP table version is 3762622, local router ID is 63.114.8.48 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network * i 3.0.0.0/8 *>i 4.2.49.12/30 * i 4.21.132.0/23 *>i 4.24.118.16/30 *>i 4.24.145.0/30 *>i 4.24.187.12/30 *>i 4.24.202.0/30 *>i 4.25.88.
www.dell.com | support.dell.com Parameters Command Modes ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. community-list-name Enter the name of a configured IP community list. (max 16 chars) exact-match Enter the keyword for an exact match of the communities. EXEC EXEC Privilege Example Figure 7-10. Command Example: show ip bgp community-list FTOS#show ip bgp community-list pass BGP table version is 0, local router ID is 10.101.15.
Example Figure 7-11. Command Example: show ip bgp dampened-paths FTOS>show ip bgp damp BGP table version is 210708, local router ID is 63.114.8.2 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network From Reuse Path FTOS> Table 7-5 defines the information displayed in Figure 7-11. Table 7-5.
www.dell.com | support.dell.com Example Figure 7-12.
show ip bgp extcommunity-list ces Syntax Parameters Command Modes View information on all routes with Extended Community attributes. show ip bgp [ipv4 unicast] extcommunity-list [list name] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. list name Enter the extended community list name you wish to view. EXEC EXEC Privilege Usage Information To view the total number of COMMUNITY attributes found, use the show ip bgp summary command.
www.dell.com | support.dell.com Example Figure 7-13. Command Example: show ip bgp filter-list FTOS#show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n network Origin codes: i - IGP, e - EGP, ? - incomplete Network * I 6.1.5.0/24 * I * I * I *>I * I * I * I 6.1.6.0/24 * I * I * I *>I * I * I * I 6.1.20.
show ip bgp flap-statistics ces Syntax Parameters View flap statistics on BGP routes. show ip bgp [ipv4 unicast] flap-statistics [ip-address [mask]] [filter-list as-path-name] [regexp regular-expression] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. ip-address (OPTIONAL) Enter the IP address (in dotted decimal format) of the BGP network to view information only on that network.
www.dell.com | support.dell.com Table 7-7 defines the information displayed in Figure 7-14. Table 7-7. Command History Command Example Fields: show ip bgp flap-statistics Field Description Network Displays the network ID to which the route is flapping. From Displays the IP address of the neighbor advertising the flapping route. Flaps Displays the number of times the route flapped. Duration Displays the hours:minutes:seconds since the route first flapped.
Table 7-8. Command History Command Example Fields: show ip bgp inconsistent-as Fields Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example 1 Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.5.1.0 Added detail option and output now displays default MED value Version 7.2.1.0 Added received and denied route options Version 6.3.10 The output is changed to display the total number of advertised prefixes Figure 7-16.
Example 2 Figure 7-17. Command Example: show ip bgp neighbors advertised-routes FTOS>show ip bgp neighbors 192.14.1.5 advertised-routes BGP table version is 74103, local router ID is 33.33.33.33 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop *>r 1.10.1.0/24 0.0.0.0 *>r 1.11.0.0/16 0.0.0.0 ..... ..... *>I 223.94.249.0/24 223.
www.dell.com | support.dell.com Table 7-9. Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
show ip bgp next-hop ces Syntax Command Modes View all next hops (via learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. show ip bgp next-hop EXEC EXEC Privilege Example Figure 7-20. Command Example: show ip bgp next-hop FTOS>show ip bgp next-hop Next-hop Via 63.114.8.33 63.114.8.33, 63.114.8.34 63.114.8.34, 63.114.8.35 63.114.8.35, 63.114.8.60 63.114.8.60, FTOS> Table 7-10.
www.dell.com | support.dell.com Parameters regexp regular-expression Enter a regular expression then use one or a combination of the following characters to match: • • • • • • • • • Command Modes . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series show ip bgp paths as-path ces Syntax Command Modes View all unique AS-PATHs in the BGP database show ip bgp paths as-path EXEC EXEC Privilege Example Figure 7-22.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Example Figure 7-23.
Command Modes detail (OPTIONAL) Enter the keyword detail to view detailed status information of the peers in that peer group. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group. The output is the same as that found in show ip bgp summary command EXEC EXEC Privilege Example Figure 7-24.
www.dell.com | support.dell.com Related Commands Command History neighbor peer-group (assigning peers) Assign peer to a peer-group. neighbor peer-group (creating group) Create a peer group. show ip bgp peer-group (multicast) View information on the BGP peers in a peer group. Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.8.1.
Example Figure 7-25. Command Example: show ip bgp regexp (Partial) FTOS#show ip bgp regexp ^2914+ BGP table version is 3700481, local router ID is 63.114.8.35 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>I 3.0.0.0/8 1.1.1.2 0 100 0 2914 1239 80 i *>I 4.0.0.0/8 1.1.1.2 0 100 0 2914 3356 i *>I 4.
www.dell.com | support.dell.com Example Figure 7-26. Command Example: show ip bgp summary FTOS#show ip bgp summary BGP router identifier 120.10.10.
Table 7-16. Command History Command Example Fields: show ip bgp summary Field Description Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed.
www.dell.com | support.dell.com Parameters Defaults keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. Range: 1 to 65535 Default: 60 seconds holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead. Range: 3 to 65535 Default: 180 seconds No default values or behavior Command Modes ROUTER BGP Command History Version 8.3.3.1 Introduced on the S60. Version 7.8.1.
• • • • • • • • • • • • • • • • • • • • • neighbor distribute-list neighbor filter-list neighbor maximum-prefix neighbor next-hop-self neighbor remove-private-as neighbor route-map neighbor route-reflector-client network redistribute redistribute ospf show ip bgp ipv4 multicast show ip bgp cluster-list show ip bgp community show ip bgp community-list show ip bgp dampened-paths show ip bgp filter-list show ip bgp flap-statistics show ip bgp inconsistent-as show ip bgp ipv4 multicast neighbors show ip bgp pe
www.dell.com | support.dell.com aggregate-address c et s Syntax Parameters Defaults Command Modes Usage Information Summarize a range of prefixes to minimize the number of entries in the routing table. aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.
bgp dampening c et s Syntax Enable MBGP route dampening. bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the half-life period expires. Range: 1 to 45.
www.dell.com | support.dell.com clear ip bgp dampening c et s Syntax Parameters Command Modes Command History Clear information on route dampening. clear ip bgp dampening ipv4 multicast network network-mask dampening Enter the keyword dampening to clear route flap dampening information. network (OPTIONAL) Enter the network address in dotted decimal format (A.B.C.D). network-mask (OPTIONAL) Enter the network mask in slash prefix format (/x). EXEC Privilege Version 7.8.1.
Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series debug ip bgp dampening c et s View information on routes being dampened. Syntax debug ip bgp ipv4 multicast dampening To disable debugging, enter no debug ip bgp ipv4 multicast dampening Parameters dampening Enter the keyword dampening to clear route flap dampening information. Command Modes EXEC Privilege Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
www.dell.com | support.dell.com To disable debugging, enter no debug ip bgp updates [in | out] command. Parameters Command Modes Defaults Command History updates Enter the keyword updates to view BGP update information. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. EXEC Privilege Disabled. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor activate c et s Syntax This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI. neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command.
www.dell.com | support.dell.com Defaults Command Modes Command History seconds = 5 seconds (internal peers); seconds = 30 seconds (external peers) ROUTER BGP Address Family (conf-router_bgp_af) Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor default-originate c et s Syntax Inject the default route to a BGP peer or neighbor.
Defaults Command Modes Usage Information Related Commands Command History Not configured. ROUTER BGP Address Family (conf-router_bgp_af) Other BGP filtering commands include: neighbor filter-list, ip as-path access-list, and neighbor route-map. ip as-path access-list Configure IP AS-Path ACL. neighbor filter-list Assign a AS-PATH list to a neighbor or peer group. neighbor route-map Assign a route map to a neighbor or peer group. Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
www.dell.com | support.dell.com neighbor maximum-prefix c et s Syntax Control the number of network prefixes received. neighbor ip-address | peer-group-name maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor ip-address | peer-group-name maximum-prefix maximum command. Parameters Defaults Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format.
Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series neighbor remove-private-as c et s Syntax Remove private AS numbers from the AS-PATH of outgoing updates. neighbor ip-address | peer-group-name remove-private-as To return to the default, use the no neighbor ip-address | peer-group-name remove-private-as command.
www.dell.com | support.dell.com Usage Information When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.
Parameters ip-address Enter an IP address in dotted decimal format of the network. mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map.
www.dell.com | support.dell.com static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes. route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of an established route map.
Command Modes Usage Information ROUTER BGP Address Family (conf-router_bgp_af) When you enter redistribute ospf process-id command without any other parameters, FTOS redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes. This feature is not supported by an RFC. Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.
www.dell.com | support.dell.com Table 7-17. Related Commands Command History Command Example Fields: show ip bgp Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route.
Parameters Command Modes community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system. You can specify up to eight community numbers to view information on those community groups. local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers.
www.dell.com | support.dell.com show ip bgp dampened-paths c et s Syntax Command Modes View BGP routes that are dampened (non-active). show ip bgp ipv4 multicast dampened-paths EXEC EXEC Privilege Command History Version 7.8.1.0 Introduced support on S-Series Version 7.7.1.0 Introduced support on C-Series Version 7.6.1.0 Introduced IPv6 MGBP support for E-Series show ip bgp filter-list c et s Syntax Parameters Command Modes View the routes that match the filter lists.
filter-list as-path-name (OPTIONAL) Enter the keyword filter-list followed by the name of a configured AS-PATH ACL. regexp regular-expression Enter a regular expression then use one or a combination of the following characters to match: • • • • • • • • • Command Modes .
www.dell.com | support.dell.com show ip bgp ipv4 multicast neighbors c et s Syntax Parameters Command Modes Enables you to view the information exchanged by BGP neighbors. show ip bgp ipv4 multicast neighbors [ip-address [advertised-routes | dampened-routes | detail | flap-statistics | routes]] ip-address (OPTIONAL) Enter the IP address, in either IPv4 or IPv6 format, of the neighbor to view only BGP information exchanged with that neighbor.
Example Figure 7-28. Command Example: show ip bgp ipv4 multicast neighbors FTOS#show ip bgp ipv4 multicast neighbors BGP neighbor is 25.25.25.25, remote AS 6400, internal link BGP version 4, remote router ID 25.25.25.
www.dell.com | support.dell.com Table 7-18. Lines beginning with Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
show ip bgp peer-group c et s Syntax Parameters Command Modes Enables you to view information on the BGP peers in a peer group. show ip bgp ipv4 multicast peer-group [peer-group-name [detail | summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view detailed status information of the peers in that peer group.
www.dell.com | support.dell.com Table 7-19. Command History 360 | Command Example Fields: show ip bgp ipv4 multicast summary Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries and route paths and the amount of memory used to process those entries.
BGP Extended Communities (RFC 4360) BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute. It provides two major advantages over Standard Communities: • The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number communities. Communities are structured using a new “Type” field (1 or 2-octets), allowing you to provide granular control/filter routing information based on the type of extended communities.
www.dell.com | support.dell.com Related Commands Command History permit Configure to add (permit) rules show ip extcommunity-list Display the Extended Community list Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series deny regex ces Syntax This features enables you to specify an extended communities to reject (deny) using a regular expressions (regex). deny regex {regex} To remove, use the no deny regex {regex} command.
Command Modes Command History CONFIGURATION (conf-ext-community-list) Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series ip extcommunity-list ces Syntax Use this feature to enter the Extended Community-list mode. ip extcommunity-list word To exit from this mode, use the exit command. Parameters Defaults Command Modes Usage Information Example word Enter a community list name (maximum 16 characters).
www.dell.com | support.dell.com Example Figure 7-32. Command Example: match extcommunity FTOS(config-route-map)#match extcommunity Freedombird FTOS(config-route-map)# Command History Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.0 Introduced on E-Series permit ces Syntax Use this feature to add rules (permit) from the two types of extended communities, Route Origin (rt) or Site-of-Origin (soo).
Parameters Defaults Command Modes Usage Information Example regex Enter a regular expression. Not configured CONFIGURATION (conf-ext-community-list) Duplicate commands are silently accepted. Figure 7-33. Command Example: permit regexp FTOS(conf-ext-community-list)#permit regexp 123 FTOS(conf-ext-community-list)# Related Commands deny regex Command History Deny a community using a regular expression Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
www.dell.com | support.dell.com • • Related Commands Command History If rt options comes after soo, without the additive option, then rt overrides the communities set by soo If rt with additive option comes after soo, then rt adds the communities set by soo set extcommunity soo Set extended community site-of-origin in route-map. Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
show ip bgp ipv4 extcommunity-list ces Syntax Parameters Defaults Command Modes Use this feature to display IPv4 routes matching the extended community list name. show ip bgp [ipv4 [multicast | unicast] | ipv6 unicast] extcommunity-list name multicast Enter the keyword multicast to display the multicast route information. unicast Enter the keyword unicast to display the unicast route information. ipv6 unicast Enter the keywords ipv6 unicast to display the IPv6 unicast route information.
www.dell.com | support.dell.com show ip bgp paths extcommunity ces Syntax Command Modes Use this feature to display all BGP paths having extended community attributes. show ip bgp paths extcommunity EXEC EXEC Privilege Example Figure 7-35. Command Example: show ip bgp paths community (Partial) FTOS#show ip bgp paths extcommunity Total 1 Extended Communities Address Hash Refcount Extended Community 0x41d57024 FTOS# 12272 1 RT:7:200 SoO:5:300 SoO:0.0.0.3:1285 Table 7-20.
Example Figure 7-36. Command Example: show ip extcommunity-list FTOS#show ip extcommunity-list test ip extcommunity-list test deny RT:1234:12 permit regexp 123 deny regexp 234 deny regexp 123 FTOS# Command History Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.6.1.
www.dell.com | support.dell.
8 Bare Metal Provisioning Overview Bare Metal Provisioning version 2.0 is supported on the following platforms: z In a data center network, Bare Metal Provisioning (BMP) automates the configuration and updating of switches, ensuring standard configurations across installed devices. You can configure auto-configuration on a single switch or on multiple switches. BMP allows you to set up a group of switches with a minimum of effort, but is also useful for quick configuration of a single switch.
www.dell.com | support.dell.com • • show reload-type stop jump-start reload factory-default BMP 1.5 auto-configuration mode A: Reload the switch with the FTOS image stored in the local flash and apply the factory-default startup configuration. A temporary management IP address (192.168.0.1) is created. Note: This command has been deprecated in FTOS software version 8.3.3.9. reload factory-default Syntax Defaults Loads the factory-default startup configuration file (see Example below).
advertise dot3-tlv max-frame-size advertise management-tlv system-description system-name advertise med no disable ! reload factory-default dhcp-client-mode BMP 1.5 auto-configuration mode C: Reload a switch in DHCP-client mode with a specified FTOS image and a startup configuration file. Note: This command has been deprecated in FTOS software version 8.3.3.9.
www.dell.com | support.dell.com reload factory-default dhcp-client-only-mode BMP 1.5 auto-configuration mode D: Reload the switch in DHCP-client-only mode with a specified FTOS image and startup configuration file for a specified number of discovery attempts. Note: This command has been deprecated in FTOS software version 8.3.3.9.
reload factory-default dhcp-server-mode BMP 1.5 auto-configuration mode B: Reload the switch using the FTOS image stored in the local flash and apply the factory-default and DHCP server configurations. The switch boots up with a temporary management IP address (192.168.0.1/24) and functions as a DHCP server. Note: This command has been deprecated in FTOS software version 8.3.3.9.
www.dell.com | support.dell.com Command Modes Command History Usage Information EXEC Privilege Version 8.3.5.3 Introduced on S55 Version 8.3.3.8 Introduced on S60 Version 8.3.11.4 Introduced on Z9000 Version 8.3.10.1 Introduced on S4810. For an initial setup, the config-download parameter of the reload-type command is enabled. After the configuration file is successfully downloaded, the config-download parameter is automatically disabled. You can enable it again using the reload-type command.
Command History Usage Information Version 8.3.5.3 Introduced on S55 Version 8.3.3.8 Introduced on S60 Version 8.3.11.4 Introduced on Z9000 Version 8.3.10.1 Introduced on S4810. Use the show reload-type command to check the currently configured auto-configuration mode (JumpStart or Normal reload) on a switch running BMP 2.0. You can also use the show bootvar command to display the current reload mode for BMP 2.0 with the path of the FTOS image file retrieved from a DHCP server.
| Bare Metal Provisioning www.dell.com | support.dell.
9 Content Addressable Memory (CAM) Overview Content Addressable Memory (CAM) commands are supported C-Series, E-Series TeraScale and S-Series, as indicated by the symbols under each command heading: c et s This chapter includes information relating to the E-Series TeraScale platform. Refer to Chapter 11, “Content Addressable Memory (CAM) for ExaScale for information on the commands for the E-Series ExaScale platform. Note: Not all CAM commands are supported on all platforms.
www.dell.com | support.dell.com Important Points to Remember • • • • • • • • CAM Profiles are available on FTOS versions 6.3.1.1 and later for the E-Series TeraScale. FTOS versions 7.8.1.0 and later support CAM allocations on the C-Series and S-Series. All line cards within a single system must have the same CAM profile (including CAM sub-region configurations); this profile must match the system CAM profile (the profile on the primary RPM).
Command Modes Command History Usage Information CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Added ecfmacl, vman-qos, and vman-dual-qos keywords. Version 8.2.1.0 Introduced on the S-Series Version 7.8.1.0 Introduced on the C-Series You must save the new CAM settings to the startup-config (write-mem or copy run start) then reload the system for the new settings to take effect. The total amount of space allowed is 16 FP Blocks.
www.dell.com | support.dell.com cam-optimization cs Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space. Syntax cam-optimization [qos] Parameters Command Modes Defaults Command History Usage Information qos Optimize CAM usage for Quality of Service (QoS) CONFIGURATION Disabled Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced on the s-Series Version 7.8.1.
Parameters profile Choose one of the following CAM profiles: • • • • • • • • • • microcode microcode Enter the keyword default to specify the default CAM profile. Enter the keyword eg-default to specify the default CAM profile for EG (dual-CAM) line cards. Enter the keyword ipv4-320k to specify the CAM profile that provides 320K entries for the IPv4 Forwarding Information Base (FIB). Enter the keyword ipv4-egacl-16k to specify the CAM profile that provides 16K entries for egress ACLs.
www.dell.com | support.dell.com Usage Information You must save the running configuration using the command copy running-config startup-config after changing the CAM profile from CONFIGURATION mode. CAM profile changes take effect after the next chassis reboot. Note: Do not use the ipv4-egacl-16 CAM profile for Layer 2 egress ACLs.
Figure 9-2. Command Output: show cam-acl (non-default) FTOS#show cam-acl -- Chassis Cam ACL -Current Settings(in block sizes) L2Acl : 2 Ipv4Acl : 2 Ipv6Acl : 4 Ipv4Qos : 2 L2Qos : 3 -- Line card 4 -Current Settings(in block sizes) L2Acl : 2 Ipv4Acl : 2 Ipv6Acl : 4 Ipv4Qos : 2 L2Qos : 3 FTOS# show cam-profile e Syntax Display the details of the CAM profiles on the chassis and all line cards.
www.dell.com | support.dell.com Parameters profile (OPTIONAL) Choose a single CAM profile to display: • • • • • • • • • microcode microcode • • require the same hashing for bi-directional traffic. Enter the keyword lag-hash-mpls to select the microcode for hashing based on • • • Command Modes Command History Usage Information 386 | CAM allocations for the IPv6 and IPv4 FIB while allocating more CAM space for the Ingress and Egress Layer 2 ACL, and IPv4 ACL regions.
Example 1 Figure 9-3. Command Output: show cam-profile summary FTOS#show cam-profile summary -- Chassis CAM Profile -: Current Settings : Next Boot Profile Name : Default : Default MicroCode Name : Default : Default : Current Settings : Next Boot -- Line card 1 -Profile Name : Default : Default MicroCode Name : Default : Default : Current Settings : Next Boot -- Line card 6 -Profile Name : Default : Default MicroCode Name : Default : Default FTOS# Example 2 Figure 9-4.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Example acl (OPTIONAL) Enter this keyword to display Layer 2 and Layer 3 ACL CAM usage. router (OPTIONAL) Enter this keyword to display Layer 3 CAM usage. switch (OPTIONAL) Enter this keyword to display Layer 2 CAM usage. None EXEC Privilege Version 6.5.1.0 Figure 9-5.
Example Figure 9-7.
www.dell.com | support.dell.com QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single (or the first of several) interfaces. It is most useful when a policy is applied across multiple interfaces; it can reduce the impact to CAM usage across subsequent interfaces. Example Figure 9-9. The following examples show some sample output when using the test cam-usage command.
Figure 9-10.
www.dell.com | support.dell.
10 Dynamic Host Configuration Protocol (DHCP) Overview Dynamic Host Configuration Protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators.
www.dell.com | support.dell.com clear ip dhcp cs Reset DHCP counters. Syntax clear ip dhcp [binding {address} | conflict | server statistics] Parameters Command Mode Default Command History Usage Information binding Enter this keyword to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address. conflict Enter this keyword to delete all of the log entries created for IP address conflicts.
Command Mode Default Command History DHCP None Version 8.3.5.0 Introduced on the S55. Version 8.2.1.0 Introduced on C-Series and S-Series. disable cs Disable DHCP Server. DHCP Server is disabled by default. Enable the system to be a DHCP server using the no form of the disable command. Syntax Command Mode Default Command History disable DHCP Disabled Version 8.3.5.0 Introduced on the S55. Version 8.2.1.0 Introduced on C-Series and S-Series.
www.dell.com | support.dell.com Command Mode Default Command History DHCP None Version 8.3.5.0 Introduced on the S55. Version 8.2.1.0 Introduced on C-Series and S-Series. excluded-address cs Prevent the server from leasing an address or range of addresses in the pool. Syntax excluded-address [address | low-address high-address] Parameters Command Mode Default Command History address Enter a single address to be excluded from the pool.
Parameters Command Mode Default Command History address/mask Enter the host IP address and subnet mask. DHCP None Version 8.3.5.0 Introduced on the S55. Version 8.2.1.0 Introduced on C-Series and S-Series. ip dhcp relay information-option remote-id Manually re-set the remote-id (MAC address) for Option 82.
www.dell.com | support.dell.com Command Mode Default Command History minutes Enter the number of minutes of the lease. Range: 0-59 infinite Specify that the lease never expires. DHCP 24 hours Version 8.3.5.0 Introduced on the S55. Version 8.2.1.0 Introduced on C-Series and S-Series. netbios-name-server cs Specify the NetBIOS Windows Internet Naming Service (WINS) name servers, in order of preference, that are available to Microsoft Dynamic Host Configuration Protocol (DHCP) clients.
network cs Specify the range of addresses in an address pool. Syntax network network /prefix-length Parameters Command Mode Default Command History network/ prefix-length Specify a range of addresses. Prefix-length Range: 17-31 DHCP None Version 8.3.5.0 Introduced on the S55. Version 8.2.1.0 Introduced on C-Series and S-Series.
www.dell.com | support.dell.com show ip dhcp configuration cs Display the DHCP configuration. Syntax show ip dhcp configuration [global | pool name] Parameters Command Mode Default Command History pool name Display the configuration for a DHCP pool. global Display the DHCP configuration for the entire system. EXEC Privilege None Version 8.3.5.0 Introduced on the S55. Version 8.2.1.0 Introduced on C-Series and S-Series. show ip dhcp conflict cs Display the address conflict log.
Commands to Configure Secure DHCP DHCP as defined by RFC 2131 provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.5.0 Introduced on the S55. Version 8.3.1.0 Introduced on E-Series. Version 8.2.1.0 Introduced on C-Series and S-Series arp inspection Enable Dynamic ARP Inspection on a VLAN. clear ip dhcp snooping ces Syntax Command Modes Default Command History Related Commands Clear the DHCP binding table. clear ip dhcp snooping binding EXEC Privilege None Version 8.3.5.0 Introduced on the S55. Version 8.3.1.
ip dhcp snooping database ces Syntax Parameters Command Modes Default Command History Delay writing the binding table for a specified time. ip dhcp snooping database write-delay minutes minutes Range: 5-21600 CONFIGURATION None Version 8.3.5.0 Introduced on the S55. Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp snooping binding ces Syntax Parameters Create a static entry in the DHCP binding table.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.5.0 Introduced on the S55. Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series show ip dhcp snooping Display the contents of the DHCP binding table. ip dhcp snooping database renew ces Syntax Command Modes Renew the binding table. ip dhcp snooping database renew EXEC EXEC Privilege Default Command History None Version 8.3.5.0 Introduced on the S55. Version 8.3.1.
Default Command History Usage Information Disabled Version 8.3.5.0 Introduced on the S55. Version 8.3.1.0 Introduced on E-Series. Version 8.2.1.0 Added keyword ipmac. Version 7.8.1.0 Introduced on C-Series and S-Series You must allocate at least one FP block to ipmacacl before you can enable IP+MAC Source Address Validation. 1 Use the command cam-acl l2acl from CONFIGURATION mode 2 Save the running-config to the startup-config 3 Reload the system.
www.dell.com | support.dell.com Default Command History Disabled Version 8.3.5.0 Introduced on the S55. Version 8.3.1.0 Introduced on E-Series. Version 7.8.1.0 Introduced on C-Series and S-Series show ip dhcp snooping ces Syntax Parameters Command Modes Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard. show ip dhcp snooping [binding | source-address-validation] binding Display the binding table.
11 Force10 Resilient Ring Protocol (FRRP) Overview Force10 Resilient Ring Protocol (FRRP) is supported on platforms c e s FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the Spanning Tree Protocol. The Resilient Ring Protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode.
www.dell.com | support.dell.com clear frrp ces Syntax Clear the FRRP statistics counters. clear frrp [ring-id] Parameters Defaults Command Modes ring-id No default values or behavior EXEC Command History Example (Optional) Enter the ring identification number. Range: 1 to 255 Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced for the C-Series Version 7.5.1.0 Introduced Figure 11-1.
Parameters Defaults Command Modes Command History Usage Information event Enter the keyword event to display debug information related to ring protocol transitions. packet Enter the keyword packet to display brief debug information related to control packets. detail Enter the keyword detail to display detailed debug information related to the entire ring protocol packets. ring-id (Optional) Enter the ring identification number.
www.dell.com | support.dell.com Defaults Command Modes Command History Disabled CONFIGURATION (conf-frrp) Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced interface ces Syntax Configure the primary, secondary, and control-vlan interfaces. interface {primary interface secondary interface control-vlan vlan-id} To return to the default, use the no interface {primary interface secondary interface control-vlan vlan-id} command.
Usage Information Related Commands Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced This command causes the Ring Manager to take ownership of these two ports after the configuration is validated by the IFM. Ownership is relinquished for a port only when the interface does not play a part in any control VLAN, that is, the interface does not belong to any ring.
www.dell.com | support.dell.com Version 8.2.1.0 Introduced for the C-Series Version 7.4.1.0 Introduced protocol frrp ces Syntax Enter the Resilient Ring Protocol and designate a ring identification. protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters Defaults Command Modes Command History Usage Information ring-id Enter the ring identification number. Range: 1 to 255 No default values or behavior CONFIGURATION Version 8.3.3.
Example 1 Figure 11-2. show frrp summary Command Example FTOS#show frrp summary Ring-ID State Mode Ctrl_Vlan Member_Vlans ----------------------------------------------------------------2 UP Master 2 11-20, 25,27-30 31 UP Transit 31 40-41 50 Down Transit 50 32 FTOS# Example 2 Figure 11-3.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information 414 | hello-interval milliseconds Enter the keyword hello-interval followed by the time, in milliseconds, to set the hello interval of the control packets. The milliseconds must be enter in increments of 50 milliseconds, for example 50, 100, 150 and so on. If an invalid value is enter, an error message is generated.
12 GARP VLAN Registration (GVRP) Overview GARP VLAN Registration (GVRP) is supported on platforms c e s Commands The GVRP commands are: • • • • • • • • • • • • clear gvrp statistics bpdu-destination-mac-address debug gvrp disable garp timers gvrp enable gvrp registration protocol gvrp show config show garp timers show gvrp show gvrp statistics on page 27 The GARP (Generic Attribute Registration Protocol) mechanism allows the configuration of a GARP participant to propagate through a network quickly.
www.dell.com | support.dell.com Important Points to Remember • • • • • • • • • • • • • GVRP is supported on Layer 2 ports only. All VLAN ports added by GVRP are tagged. GVRP is supported on untagged ports belonging to a default VLAN, and tagged ports. GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is turned on. GVRP requires end stations with dynamic access NICs.
Command Modes Command History Related Commands EXEC Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on C, E, and S-Series show gvrp statistics Display the GVRP statistics debug gvrp ces Syntax Enable debugging on GVRP. debug gvrp {config | events | pdu} To disable debugging, use the no debug gvrp {config | events | pdu} command. Parameters config Enter the keyword config to enable debugging on the GVRP configuration.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on C, E, and S-Series gvrp enable Enable GVRP on physical interfaces and LAGs. protocol gvrp Access GVRP protocol garp timers ces Syntax Set the intervals (in milliseconds) for sending GARP messages. garp timers {join | leave | leave-all} To return to the previous setting, use the no garp timers {join | leave | leave-all} command.
Leave All Timer—The Leave All Timer starts when a GARP application entity starts. When this timer expires, the entity sends a leave-all message so that other entities can re-register their attribute information. Then, the leave-all time begins again. Related Commands show garp timers Display the current GARP times gvrp enable ces Syntax Enable GVRP on physical interfaces and LAGs. gvrp enable To disable GVRP on the interface, use the no gvrp enable command.
www.dell.com | support.dell.com Usage Information The fixed registration prevents an interface, configured via the command line to belong to a VLAN (static configuration), from being un-configured when it receives a Leave message. Therefore, the registration mode on that interface is fixed. The normal registration is the default registration. The port’s membership in the VLANs depends on GVRP. The interface becomes a member of VLANs after learning about the VLAN through GVRP.
show garp timers ces Syntax Defaults Command Modes Display the GARP timer settings for sending GARP messages. show garp timers No default values or behavior EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on C, E, and S-Series Figure 12-1.
www.dell.com | support.dell.com Command History Example Version 8.3.3.1 Introduced on the S60. Version7.6.1.0 Introduced on C, E, and S-Series Figure 12-2. show gvrp brief Command Example R3#show gvrp brief GVRP Feature is currently enabled.
Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on C, E, and S-Series Figure 12-3.
www.dell.com | support.dell.
13 Internet Group Management Protocol (IGMP) Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading. This chapter contains the following sections: • • IGMP Commands IGMP Snooping Commands IGMP Commands FTOS supports IGMPv1/v2/v3 and is compliant with RFC-3376. Important Points to Remember • • • FTOS supports PIM-SM and PIM-SSM include and exclude modes.
www.dell.com | support.dell.com • • • • • • • • • ip igmp querier-timeout ip igmp query-interval ip igmp query-max-resp-time ip igmp ssm-map ip igmp static-group ip igmp version show ip igmp groups show ip igmp interface show ip igmp ssm-map clear ip igmp groups ces Syntax Parameters Clear entries from the group cache table. clear ip igmp groups [group-address | interface] group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format.
Parameters Defaults Command Modes Command History group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format. interface (OPTIONAL) Enter the following keywords and slot/port or number information: Disabled EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series legacy command Usage Information IGMP commands accept only non-VLAN interfaces—specifying VLAN will not yield a results.
www.dell.com | support.dell.com ip igmp group-join-limit ces Syntax Parameters Defaults Command Modes Command History Use this feature to limit the number of IGMP groups that can be joined in a second. ip igmp group-join-limit number number Enter the number of IGMP groups permitted to join in a second. Range: 1 to 10000 No default values or behavior CONFIGURATION (conf-if-interface-slot/port) Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.6.1.
ip igmp last-member-query-interval ces Syntax Change the last member query interval, which is the Max Response Time inserted into Group-Specific Queries sent in response to Leave Group messages. This interval is also the interval between Group-Specific Query messages. ip igmp last-member-query-interval milliseconds To return to the default value, enter no ip igmp last-member-query-interval. Parameters Defaults Command Modes Command History milliseconds Enter the number of milliseconds as the interval.
www.dell.com | support.dell.com ip igmp query-interval ces Syntax Change the transmission frequency of IGMP general queries sent by the Querier. ip igmp query-interval seconds To return to the default values, enter no ip igmp query-interval. Parameters Defaults Command Modes Command History seconds Enter the number of seconds between queries sent out. Default: 60 seconds Range: 1 to 18000 60 seconds INTERFACE Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced on S-Series Version 7.
ip igmp ssm-map ces Syntax Use a statically configured list to translate (*,G) memberships to (S,G) memberships. ip igmp ssm-map std-access-list source-address Undo this configuration, that is, remove SSM map (S,G) states and replace them with (*,G) states using the command ip igmp ssm-map std-access-list source-address command.
www.dell.com | support.dell.com Version 7.7.1.0 Introduced on C-Series Version 7.5.1.0 Expanded to support the exclude and include options E-Series legacy command Usage Information A group in the include mode should have at least one source address defined. In exclude mode if no source address is specified, FTOS implicitly assumes all sources are included. If neither include or exclude is specified, FTOS implicitly assumes a IGMPv2 static join.
Parameters group-address (OPTIONAL) Enter the group address in dotted decimal format to view information on that group only. interface (OPTIONAL) Enter the interface type and slot/port information: • • • • • • • detail Command Modes For a 100/1000 Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
www.dell.com | support.dell.com show ip igmp interface ces Syntax Parameters View information on the interfaces participating in IGMP. show ip igmp interface [interface] interface (OPTIONAL) Enter the interface type and slot/port information: • • • • • • • Command Modes For a 100/1000 Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
show ip igmp ssm-map ces Syntax Display is a list of groups that are currently in the IGMP group table and contain SSM mapped sources. show ip igmp ssm-map [group] Parameters group (OPTIONAL) Enter the multicast group address in the form A.B.C.D to display the list of sources to which this group is mapped. Command Modes EXEC EXEC Privilege Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.7.1.
www.dell.com | support.dell.com • IGMP snooping reacts to Layer 2 topology changes triggered by MSTP by sending a general query on the interface that comes in FWD state. Important Points to Remember for IGMP Querier • • • • • The IGMP snooping Querier supports version 2. You must configure an IP address to the VLAN interface for IGMP snooping Querier to begin.
ip igmp snooping fast-leave ces Syntax Enable IGMP snooping fast leave for this VLAN. ip igmp snooping fast-leave To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Command Modes Command History Not configured INTERFACE VLAN—(conf-if-vl-n) Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com ip igmp snooping last-member-query-interval ces Syntax The last member query interval is the “maximum response time” inserted into Group-Specific queries sent in response to Group-Leave messages. This interval is also the interval between successive Group-Specific Query messages. Use this command to change the last member query interval.
Version 7.5.1.0 Introduced on C-Series E-Series legacy command Usage Information FTOS provides the capability of statically configuring interface to which a multicast router is attached. To configure a static connection to the multicast router, enter the ip igmp snooping mrouter interface command in the VLAN context. The interface to the router must be a part of the VLAN where you are entering the command. Note: The S60 supports up to 95 interfaces.
www.dell.com | support.dell.com 440 Version 7.5.1.0 Introduced on C-Series E-Series legacy command Example Figure 13-3.
14 \ Interfaces Overview This chapter defines interface commands and is divided into the following sections: • • • Basic Interface Commands Port Channel Commands UDP Broadcast The symbols c e s under command headings indicate which Dell Networking platforms — C-Series, E-Series, or S-Series, respectively — support the command. Although all interfaces are supported on E-Series ExaScale, some interface functionality is supported on E-Series ExaScale ex with FTOS 8.2.1.0. and later.
www.dell.com | support.dell.
clear counters ces Syntax Parameters Clear the counters used in the show interfaces commands for all VRRP groups, VLANs, and physical interfaces, or selected ones. clear counters [interface] [vrrp [vrid] | learning-limit] interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com clear dampening ces Syntax Parameters Clear the dampening counters on all the interfaces or just the specified interface. clear dampening [interface] interface (Optional) Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Defaults medium Mode Interface Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series This command only works on ports that the system recognizes as CX4 ports.
www.dell.com | support.dell.com dampening ces Syntax Configure dampening on an interface. dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] To disable dampening, use the no dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] command syntax. Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires.
Note: Dampening cannot be applied on an interface that is monitoring traffic for other interfaces. Related Commands clear dampening Clear the dampening counters on all the interfaces or just the specified interface. show interfaces dampening Display interface dampening information. description ces Syntax Assign a descriptive text string to the interface. description desc_text To delete a description, enter no description.
www.dell.com | support.dell.com Usage Information When an E300 system boots up and a single SFM is active this configuration, any ports configured with this feature will be shut down. If an SFM fails (or is removed) in an E300 system with two SFM, ports configured with this feature will be shut down. All other ports are treated normally. When a second SFM is installed or replaced, all ports are booted up and treated as normally.
Command Modes Command History Usage Information INTERFACE Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.1.0 Introduced This command applies to any physical interface with speed set to 10/100. Note: Starting with FTOS 7.8.1.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.3.1 Introduced on the S60, rx only. Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.5.1.9 and 7.4.1.0 Introduced on E-Series Version 7.8.1.0 Introduced on C-Series and S-Series with thresholds The globally assigned 48-bit Multicast address 01-80-C2-00-00-01 is used to send and receive pause frames.
• Speeds less than 1 Gig cannot be configured when the asymmetric flow control configuration is on. The following error is returned: Can’t configure speed <1G when Asymmetric flowcontrol is on, config ignored FTOS only supports rx on tx on and rx off tx off for speeds less than 1 Gig (Symmetric). On the C-Series and S-Series systems, the flow-control sender and receiver must be on the same port-pipe. Flow control is not supported across different port-pipes on the C-Series or S-Series system.
www.dell.com | support.dell.com interface ces Syntax Parameters Configure a physical interface on the switch. interface interface interface Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Example For 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
interface loopback ces Syntax Configure a Loopback interface. interface loopback number To remove a loopback interface, use the no interface loopback number command. Parameters Defaults Command Modes Command History Example number Enter a number as the interface number. Range: 0 to 16383. Not configured. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.
www.dell.com | support.dell.com Example Figure 14-7. interface ManagementEthernet Command Example FTOS(conf)#interface managementethernet 0/0 FTOS(conf-if-ma-0/0)# Usage Information You cannot delete a Management port. The Management port is enabled by default (no shutdown). Use the ip address command to assign an IP address to the Management port. If two RPMs are installed in your system, use the show redundancy command to display which RPM is the Primary RPM.
interface vlan Configure a VLAN. ip unreachables Enable generation of ICMP unreachable messages. interface range ces Syntax This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration). Using the interface range command, identical commands can be entered for a range of interface. interface range interface , interface , ... Parameters interface, interface, ...
www.dell.com | support.dell.com • • Example When the interface range prompt has multiple port ranges, the smaller port range is excluded from the prompt (Figure 14-10). If overlapping port ranges are specified, the port range is extended to the smallest start port and the biggest end port (Figure 14-11). Figure 14-9.
Figure 14-14 shows how to use commas to add SONET, VLAN, and port-channel interfaces to the range. Example Figure 14-14. Multiple Range Bulk Configuration with SONET, VLAN, and port channel FTOS(config-if)# interface range gigabitethernet 5/1 - 23, tengigabitethernet 1/1 – 2, Vlan 2 – 100 , Port 1 – 25 FTOS(config-if-range)# no shutdown FTOS(config-if-range)# Related Commands interface port-channel Configure a port channel group. interface vlan Configure a VLAN interface.
www.dell.com | support.dell.com Example Figure 14-15.
interface vlan ces Syntax Configure a VLAN. You can configure up to 4094 VLANs. interface vlan vlan-id To delete a VLAN, use the no interface vlan vlan-id command. Parameters Defaults Command Modes Command History Example vlan-id Enter a number as the VLAN Identifier. Range: 1 to 4094. Not configured, except for the Default VLAN, which is configured as VLAN 1. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information ieee-802.3ae Enter the keyword ieee-802.3ae to set the IPG to 12 (12-15) bytes (packet size dependent) shrink Enter the keyword shrink to set the IPG to 8 (8-11) bytes (packet size dependent). averaging the IPG INTERFACE pre-Version 6.1.1.0 Introduced for E-Series For 10 Gigabit Ethernet interfaces only.
lfs enable e Syntax Enable Link Fault Signaling (LFS) on 10 Gigabit Ethernet interfaces only. lfs enable To disable LFS, enter no lfs enable. Defaults Command Modes Command History Usage Information Enabled. INTERFACE (10 Gigabit Ethernet interfaces only) pre-Version 6.1.1.0 Introduced for E-Series If there is a failure on the link, FTOS brings down the interface. The interface will stay down until the link failure signal stops. Note: On TeraScale line cards, LFS is always enabled by default.
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Command Modes For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the management port, enter the keyword managementethernet followed by the slot (0-1) and the port (0).
Figure 14-19. systest-3 Monitor time: 00:01:31 Interface [delta] Gi 0/0 Gi 0/1 Gi 0/2 Gi 0/3 Gi 0/4 2661385 Gi 0/5 Gi 0/6 Gi 0/7 Gi 0/8 Gi 0/9 Gi 0/10 Gi 0/11 Gi 0/12 Gi 0/13 Gi 0/14 Gi 0/15 Gi 0/16 Gi 0/17 Gi 0/18 Gi 0/19 Gi 0/20 Gi 0/21 Gi 0/22 1114221 Gi 0/23 523329 m b l T q - monitor Command Example of All Interfaces on a Line Card Refresh Intvl.
www.dell.com | support.dell.com mtu ces Syntax Set the maximum Link MTU (frame size) for an Ethernet interface. mtu value To return to the default MTU value, enter no mtu. Parameters Defaults Command Modes value 1554 INTERFACE Command History Usage Information Enter a maximum frame size in bytes. Range: 594 to 9252 Default: 1554 Version 8.3.3.4 Introduced on S-Series Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.
Table 14-3. Difference between Link MTU and IP MTU Layer 2 Overhead Link MTU and IP MTU Delta Ethernet (untagged) 18 bytes VLAN Tag 22 bytes Untagged Packet with VLAN-Stack Header 22 bytes Tagged Packet with VLAN-Stack Header 26 bytes negotiation auto ces Syntax Enable auto-negotiation on an interface. negotiation auto To disable auto-negotiation, enter no negotiation auto. Defaults Command Modes Command History Usage Information Enabled. INTERFACE Version 8.3.3.1 Introduced on the S60.
www.dell.com | support.dell.com If the mode option is not used, the default setting is slave. If you do not configure forced-master or forced slave on a port, the port negotiates to either a master or a slave state. Port status is one of the following: • • • • • Forced-master Force-slave Master Slave Auto-neg Error—typically indicates that both ends of the node are configured with forced-master or forced-slave.
Table 14-4. Auto-negotiation and Link Speed Combinations Port 0 Port 1 auto-negotiation enabled* speed 1000 or auto Link Status between Port 1 and Port 2 auto-negotiation disabled speed 100 Down * You cannot disable auto-negotiation when the speed is set to 1000 or auto. Related Commands speed (for 10/100/1000 interfaces) Set the link speed to 10, 100, 1000 or auto-negotiate the speed. portmode hybrid ces Syntax Set a physical port or port-channel to accept both tagged and untagged frames.
www.dell.com | support.dell.com Example Figure 14-23. Display the Tagged Hybrid Interface FTOS(conf-if-vl-20)#do show interfaces switchport Name: GigabitEthernet 7/0 802.1QTagged: Hybrid Vlan membership: Vlan 10, Vlan 20 Native VlanId: 10 FTOS(conf-if-vl-20)# The figure below is an example unconfiguration of the hybrid port using the no portmode hybrid command. Note: You must remove all other configurations on the port before you can remove the hybrid configuration from the port.
Usage Information The configured rate interval is displayed, along with the collected traffic data, in the output of show interfaces commands. Related Commands show interfaces Display information on physical and virtual interfaces. show config ces Display the interface configuration. Syntax show config Command Modes INTERFACE Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com Example Figure 14-26. show config (Bulk Configuration) Command Example FTOS(conf)#interface range gigabitethernet 1/1 - 2 FTOS(conf-if-range-gi-1/1-2)#show config ! interface GigabitEthernet 1/1 no ip address switchport no shutdown ! interface GigabitEthernet 1/2 no ip address switchport no shutdown FTOS(conf-if-range-gi-1/1-2)# show interfaces ces Syntax Parameters Display information on a specific physical interface or virtual interface.
Usage Example Version 6.4.1.0 Changed organization of display output Version 6.3.1.0 Added Pluggable Media Type field in E-Series TeraScale output Use this show interfaces command for details on a specific interface. Use the show interfaces linecard command for details on all interfaces on the designated line card. Figure 14-27.
www.dell.com | support.dell.com Table 14-5. Lines in show interfaces Command Example (continued) Line Description Input Statistics: Displays all the input statistics including: • • Number of packets and bytes into the interface Number of packets with IP headers, VLAN tagged headers and MPLS headers Note: The sum of the number of packets may not be as expected since a VLAN tagged IP packet counts as both a VLAN packet and an IP packet.
Example Figure 14-28. show interfaces Command Example for 10G (TeraScale) FTOS#show interfaces tengigabitethernet 0/0 TenGigabitEthernet 3/0 is up, line protocol is up Hardware is Force10Eth, address is 00:01:e8:41:77:c5 Current address is 00:01:e8:41:77:c5 Pluggable media present, XFP type is 10GBASE-SR Medium is MultiRate, Wavelength is 850.00nm XFP receive power reading is -2.
www.dell.com | support.dell.com Table 14-6. Fields in show interfaces Command Example (TeraScale) Line Description Queuing strategy... States the packet queuing strategy. FIFO means first in first out.
Example Figure 14-29.
www.dell.com | support.dell.com show linecard Display the line card(s) status. show range Display all interfaces configured using the interface range command. show interfaces configured ces Syntax Command Modes Display any interface with a non-default configuration. show interfaces configured EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
show interfaces dampening ces Syntax Parameters Display interface dampening information. show interfaces dampening [[interface] [summary] [detail]] interface (Optional) Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Example • E-Series Range: 1 to 255 for TeraScale and ExaScale For a SONET interface, enter the keyword sonet followed by the slot/ port information.
www.dell.com | support.dell.com show interfaces debounce e Syntax Parameters Display information on interfaces with debounce timer configured. show interfaces debounce interface interface Enter one of the following keywords and slot/port or number information: • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 14-33.
www.dell.com | support.dell.com show interfaces linecard ce Display information on all interfaces on a specific line card. Syntax show interfaces linecard slot-number Parameters Command Modes slot-number Enter a number for the line card slot. C-Series Range: 0-7 for C300; 0–3 for C150 E-Series Range: 0 to 13 on the E1200/1200i, 0 to 6 on the E600/600i, 0 to 5 on the E300 EXEC EXEC Privilege Command History Usage Example Version 8.1.1.2 Introduced support on E-Series ExaScale E600i Version 8.
show interfaces phy ces Syntax Parameters Command Modes Display auto-negotiation and link partner information. show interfaces gigabitethernet slot/port phy gigabitethernet Enter the keyword gigabitethernet followed by the slot/port information. EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on C-Series and S-Series Version 6.5.4.0 Introduced on E-Series Figure 14-35.
www.dell.com | support.dell.com Table 14-8. Related Commands Lines in show interfaces gigabitethernet Command Example Line Description AutoNegotiation Remote Partner’s Ability Displays the control words advertised by the remote interface during negotiation. Duplex is either half or full.
Command Modes EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced for S-Series only Figure 14-36.
www.dell.com | support.dell.com show interfaces status ces Syntax Parameters Display a summary of interface information or specify a line card slot and interface to display status information on that specific interface only.
show interfaces switchport ces Syntax Parameters Display only virtual and physical interfaces in Layer 2 mode. This command displays the Layer 2 mode interfaces’ IEEE 802.1Q tag status and VLAN membership. show interfaces switchport [interface [linecard slot-number] | stack-unit unit-id ] interface Enter one of the following keywords and slot/port or number information: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Example Figure 14-38. show interfaces switchport Command Example FTOS#show interfaces switchport Name: GigabitEthernet 13/0 802.1QTagged: Hybrid Vlan membership: Vlan 2, Vlan 20 Native VlanId: 20 Name: GigabitEthernet 13/1 802.1QTagged: True Vlan membership: Vlan 2 Name: GigabitEthernet 13/2 802.1QTagged: True Vlan membership: Vlan 2 Name: GigabitEthernet 13/3 802.1QTagged: True Vlan membership: Vlan 2 --More-- Table 14-9.
Command Modes EXEC EXEC Privilege Command History Usage Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Output augmented with diagnostic data for pluggable media Version 7.7.1.0 Removed three fields in output: Vendor Name, Vendor OUI, Vendor PN Version 7.6.1.0 Introduced on C-Series and S-Series Version 6.5.4.
www.dell.com | support.dell.com Example Figure 14-39. show interfaces gigabitethernet transceiver Command Example FTOS#show interfaces gigabitethernet 1/0 transceiver SFP is present.
Table 14-10. Diagnostic Data in show interfaces transceiver Line Description Rx Power measurement type Output depends on the vendor, typically either “Average” or “OMA” (Receiver optical modulation amplitude). Temp High Alarm threshold Factory-defined setting, typically in Centigrade. Value differs between SFPs and SFP+. Voltage High Alarm threshold Displays the interface index number used by SNMP to identify the interface. Bias High Alarm threshold Factory-defined setting.
www.dell.com | support.dell.com Table 14-10. 490 | Interfaces Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power Present Tx power of the SFP. If this crosses Tx power alarm/warning thresholds, then the Tx power high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, then the Tx power low alarm/ warning flag is set to true. Rx Power Present Rx power of the SFP. This value is either average Rx power or OMA.
Table 14-10. Related Commands Diagnostic Data in show interfaces transceiver (continued) Line Description Tx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power High Warning Flag This can be either true or false, depending on the Current Tx power value displayed above. Temperature Low Warning Flag This can be either true or false, depending on the Current Temperature value displayed above.
www.dell.com | support.dell.com Related Commands interface Configure a physical interface on the switch. show ip interface Displays Layer 3 information about the interfaces. show interfaces Display information on a specific physical interface or virtual interface. shutdown ces Syntax Disable an interface. shutdown To activate an interface, enter no shutdown. Defaults Command Modes Command History The interface is disabled. INTERFACE Version 8.3.3.1 Introduced on the S60. Version 8.1.1.
speed (for 10/100/1000 interfaces) ces Set the speed for 10/100/1000 Base-T Ethernet interfaces. Both sides of a link must be set to the same speed (10/100/1000) or to auto or the link may not come upSyntax speed {10 | 100 | 1000 | auto} To return to the default setting, use the no speed {10 | 100 | 1000} command. Parameters 10 Enter the keyword 10 to set the interface’s speed to 10 Mb/s. Note: This speed is not supported on the LC-EH-GE-50P or the LC-EJ-GE-50P card.
www.dell.com | support.dell.com When you configure a speed for the 10/100/1000 interface, you should confirm negotiation auto command setting. Both sides of the link should have auto-negotiation either enabled or disabled. For speed settings of 1000 or auto, the software sets the link to auto-negotiation, and you cannot change that setting. Note: Starting with FTOS 7.8.1.
stack-unit module s Syntax Parameters Defaults Command Modes Command History Usage Information Pre-configure ports on 10G optical modules in optional slots to preserve configuration. stack-unit {stack-unit id} module {module id} stack-unit id Enter the unit number of the stacked unit. Range: 0 - 11 module id Enter the module id number of the optional slot. Range: 0 - 1 None Configuration Version 8.3.3.
www.dell.com | support.dell.com Version 7.6.1.0 Usage Information Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.0 Introduced for E-Series If an IP address or VRRP group is assigned to the interface, you cannot use the switchport command for that interface. To use the switchport command on an interface, only the no ip address and no shutdown statements must be listed in the show config for that command.
Related Commands The following related commands are valid for E-Series only.
www.dell.com | support.dell.com channel-member ces Syntax Add an interface to the Port Channel, while in the INTERFACE PORTCHANNEL mode. channel-member interface To delete an interface from a Port Channel, use the no channel-member interface command. Parameters interface Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Not configured.
If the Port Channel contains a mix of interfaces with 100 Mb/s speed and 1000 Mb/s speed, the software disables those interfaces whose speed does not match the speed of the first interface configured and enabled in the Port Channel. If that first interface goes down, the Port Channel does not change its designated speed; you must disable and re-enable the Port Channel or change the order of the channel members configuration to change the designated speed.
www.dell.com | support.dell.com interface port-channel ces Syntax Create a Port Channel interface, which is a link aggregation group containing up to 16 physical interfaces on E-Series, eight physical interfaces on C-Series and S-Series. interface port-channel channel-number To delete a Port Channel, use the no interface port-channel channel-number command. Parameters Defaults Command Modes Command History Example channel-number Enter a number as the interface number.
interface vlan Configure a VLAN. shutdown Disable/Enable the port channel. minimum-links ces Syntax Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up” status for the LAG to be also in “oper up” status. minimum-links number Parameters Defaults Command Modes Command History Usage Information number Enter the number of links in a LAG that must be in “oper up” status. Range: 1 to 16 Default: 1 1 INTERFACE Version 8.3.3.1 Introduced on the S60. Version 8.1.1.
www.dell.com | support.dell.com Usage Information This feature groups two LAGs to work in tandem as a supergroup, so that, for example, if one LAG goes down, the other LAG is taken down automatically, providing an alternate path to reroute traffic, avoiding oversubscription on the other LAG. You can use both static and dynamic (LACP) LAGs to configure failover groups. For details, see the Port Channel chapter in the FTOS Configuration Guide.
Version 7.6.1.0 Introduced for S-Series; Modified to display LAG failover group status Version 7.5.1.0 Introduced for C-Series E-Series legacy command Example Figure 14-44. show interfaces port-channel Command Example FTOS#show interfaces port-channel 20 Port-channel 20 is up, line protocol is up (Failover-group 1 is down) Hardware address is 00:01:e8:01:46:fa Port-channel is part of failover-group 1 Internet address is 1.1.120.
www.dell.com | support.dell.com Table 14-12. show interfaces port-channel Command Example Fields (continued) Field Description 0 64-byte... Displays the size of packets and the number of those packets entering that interface. This information is displayed over two lines. Received 0... Displays the type and number of errors or other specific packets received. This information is displayed over three lines. Output 0... Displays the type and number of packets sent out the interface.
show port-channel-flow ces Syntax Parameters Display an egress port in a given port-channel flow. show port-channel-flow outgoing-port-channel number incoming-interface interface {source-ip address destination-ip address} | {protocol number | icmp | tcp | udp} | {source-port number destination-port number} | {source-mac address destination-mac address} outgoing-port-channel number Enter the keyword outgoing-port-channel followed by the number of the port channel to display flow information.
www.dell.com | support.dell.com The show port-channel-flow command returns the egress port identification in a given port-channel, if a valid flow is entered. A mismatched flow error occurs if MAC-based hashing is configured for a Layer 2 interface and the user is trying to display a Layer 3 flow. The output will display three entries: • • • Example Egress port for unfragmented packets. In the event of fragmented packets, egress port of the first fragment.
UDP Broadcast The User Datagram Protocol (UDP) broadcast feature is a software-based method to forward low throughput (not to exceed 200 pps) IP/UDP broadcast traffic arriving on a physical or VLAN interface. Important Points to Remember • • • • • This feature is available only on the E-Series platform, as noted by this symbol under each command heading: e This feature applies only to E-Series Layer 3 physical or VLAN interfaces.
www.dell.com | support.dell.com Related Commands Command History ip udp-helper udp-port Enable the UDP broadcast feature on an interface. show ip udp-helper Display the configured UDP helper(s) on all interfaces. Version 8.3.3.9 Introduced on S60 Version 8.3.7.0 Introduced on S4810 Pre-version 8.3.7.0 Introduced on E-Series ExaScale ip udp-helper udp-port e Syntax Enable the UDP broadcast feature on an interface either for all UDP ports or a specified list of UDP ports.
show ip udp-helper e Syntax Defaults Command Modes Example Command History Related Commands Display the configured UDP helper(s) on all interfaces. show ip udp-helper No default configuration or values EXEC FTOS#show ip udp-helper -------------------------------------------------Port UDP port list -------------------------------------------------Gi 10/0 656, 658 Gi 10/1 All Version 8.3.3.9 Introduced on S60 Version 8.3.7.0 Introduced on S4810 Pre-version 8.3.7.
15 IPv4 Routing Overview The characters that appear below command headings indicate support for the associated Dell Networking platform, as follows: • • • C-Series: c E-Series: e S-Series: s Commands IPv4-related commands are described in this chapter.
www.dell.com | support.dell.
mac-address Enter a MAC address in nnnn.nnnn.nnnn format. interface Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History Usage Information Related Commands For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the Management interface, enter the keyword ManagementEthernet followed by the slot/port information. The slot range is 0-1 and the port range is 0.
www.dell.com | support.dell.com 3 At time t=2 FTOS installs an ARP entry for A.B.C.D only on RP2. Beginning with version 8.3.1.0, when a Gratuitous ARP is received, FTOS installs an ARP entry on all 3 CPUs. arp retries ces Syntax Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. arp retries number Parameters Defaults Command Modes Command History Usage Information Related Commands number Enter the number of retries. Range: 5 to 20.
Related Commands Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series show interfaces Displays the ARP timeout value for all available interfaces. clear arp-cache ces Syntax Parameters Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from CAM. clear arp-cache [vrf name | interface | ip ip-address] [no-refresh] vrf name E-Series Only: Clear only the ARP cache entries tied to the VRF process.
www.dell.com | support.dell.com clear host ces Syntax Parameters Command Modes Command History Remove one or all dynamically learnt host table entries. clear host name name Enter the name of the host to delete. Enter * to delete all host table entries. EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
clear ip route ces Syntax Parameters Command Modes Command History Related Commands Clear one or all routes in the routing table. clear ip route {* | ip-address mask | vrf vrf instance} * Enter an asterisk (*) to clear all learned IP routes. ip-address mask Enter a specific IP address and mask in dotted decimal format to clear that IP address from the routing table. vrf instance (Optional) E-Series Only: Clear only the routes tied to the VRF instance. EXEC Privilege Version 8.3.3.
www.dell.com | support.dell.com debug arp ces Syntax View information on ARP transactions. debug arp [interface] [count value] To stop debugging ARP transactions, enter no debug arp. Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • count value Command Modes Command History Defaults Usage Information For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information.
Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Introduced on C-Series Version 6.4.10 Introduced on E-Series Figure 15-1. debug ip dhcp Command Example FTOS#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • count value Command Modes Command History Example For a SONET interface, enter the keyword sonet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. For VLAN, enter the keyword vlan followed by a number from 1 to 4094.
Parameters access-group name Enter the keyword access-group followed by the access list name (maximum 16 characters) to limit the debug output based on the defined rules in the ACL. count value (OPTIONAL) Enter the keyword count followed by the count value.
www.dell.com | support.dell.com Example Figure 15-3. debug ip packet Command Example (Partial) IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 54, sending TCP src=23, dst=40869, seq=2112994894, ack=606901739, win=8191 ACK PUSH IP: s=10.1.2.206 (Ma 0/0), d=10.1.2.62, len 40, rcvd TCP src=0, dst=0, seq=0, ack=0, win=0 IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 226, sending TCP src=23, dst=40869, seq=2112994896, ack=606901739, win=8192 ACK PUSH IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.
• • • • Internet Control Message Protocol* * but not the ICMP message type (0-255) Any Internet Protocol Transmission Control Protocol* * but not on the rst, syn, or urg bit User Datagram Protocol icmp ip tcp udp In the case of ambiguous access control list rules, the debug ip packet access-control command will be disabled. A message appears identifying the error (see Figure 15-4). Example Figure 15-4.
www.dell.com | support.dell.com ip directed-broadcast ces Syntax Enables the interface to receive directed broadcast packets. ip directed-broadcast To disable the interface from receiving directed broadcast packets, enter no ip directed-broadcast. Defaults Command Modes Disabled (that is, the interface does not receive directed broadcast packets) INTERFACE Command History Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.
Related Commands ip domain-name Specify a DNS server. ip domain-lookup ces Syntax Enable dynamic host-name to address resolution (that is, DNS). ip domain-lookup To disable DNS lookup, use the no ip domain-lookup. Defaults Command Mode Command History Usage Information Disabled. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
www.dell.com | support.dell.com Usage Information Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series You can only configure one domain name with the ip domain-name command. To configure more than one domain name, configure the ip domain-list command up to 6 times. Use the following steps to enable dynamic resolution of hosts: • • specify a domain name server with the ip name-server command. enable DNS with the ip domain-lookup command.
Defaults Command Modes Command History Usage Information Not configured. INTERFACE Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.9.1.0 Introduced VRF on the E-Series Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series You can add multiple DHCP servers by entering the ip helper-address command multiple times.
www.dell.com | support.dell.com ip host ces Syntax Assign a name and IP address to be used by the host-to-IP address mapping table. ip host name ip-address To remove an IP host, use the no ip host name [ip-address] command. Parameters Defaults Command Modes Command History name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Not configured. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.
ip mtu e Syntax Set the IP MTU (frame size) of the packet transmitted by the RPM for the line card interface. If the packet must be fragmented, FTOS sets the size of the fragmented packets to the size specified in this command. ip mtu value To return to the default IP MTU value, enter no ip mtu.
www.dell.com | support.dell.com Table 15-2. Related Commands Difference between Link MTU and IP MTU Layer 2 Overhead Difference between Link MTU and IP MTU Ethernet (untagged) 18 bytes VLAN Tag 22 bytes Untagged Packet with VLAN-Stack Header 22 bytes Tagged Packet with VLAN-Stack Header 26 bytes mtu Set the link MTU for an Ethernet interface. ip name-server ces Syntax Enter up to 6 IP addresses of name servers. The order you enter the addresses determines the order of their use.
Command Modes Command History Related Commands INTERFACE Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.1.1.0 Introduced for E-Series show ip interface Displays the interface routing status and configuration. ip redirects e Syntax Enable the interface to send ICMP redirect messages. ip redirects To return to default, enter no ip redirects.
www.dell.com | support.dell.com interface • • • • • • • Defaults Command Modes Command History Usage Information IPv4 Routing For a SONET interface, enter the keyword sonet followed by the sonet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. distance (OPTIONAL) Enter a number as the distance metric assigned to the route.
Related Commands show ip route View the switch routing table. ip source-route ces Syntax Enable FTOS to forward IP packets with source route information in the header. ip source-route To drop packets with source route information, enter no ip route-source. Defaults Command Modes Command History Enabled. CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Added support for S-Series Version 7.5.1.
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.4.1.0 Introduced on E-Series By default this command is disabled. When enabled, all the Layer 3 unicast routed data traffic going through a VLAN member port is flooded across all the member ports of that VLAN.
Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Added support for S-Series Version 7.5.1.
www.dell.com | support.dell.com Usage Information By default, FTOS distributes incoming traffic based on a hash algorithm using the following criteria: • • • • • IP source address IP destination address IP Protocol type TCP/UDP source port TCP/UDP destination port Note: For IPV6, only the first 32 bits (LSB) of IP Source Address and IP Destination Address are used for hash generation.
Command History Usage Information Related Commands Version 8.3.5.0 Introduced on S55. Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series When a static route (or a protocol route) overlaps with Management static route, the static route (or a protocol route) is preferred over the Management Static route.
www.dell.com | support.dell.com Command Modes Command History Usage Information Example macaddress mac-address mask (OPTIONAL) Enter the keyword macaddress followed by a MAC address in nn:nn:nn:nn:nn:nn format. Enter the optional MAC address mask in nn:nn:nn:nn:nn format also. static (OPTIONAL) Enter the keyword static to view entries entered manually. dynamic (OPTIONAL) Enter the keyword dynamic to view dynamic entries.
Figure 15-6. show arp Command Example with Private VLAN data FTOS#show arp Protocol Address Age(min) Hardware Address Interface VLAN CPU ----------------------------------------------------------------------------------Internet 5.5.5.1 00:01:e8:43:96:5e Vl 10 pv 200 CP Internet 5.5.5.10 00:01:e8:44:99:55 Vl 10 CP Internet 10.1.2.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.10.10.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.16.127.53 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.16.134.
www.dell.com | support.dell.com Table 15-5. Related Commands show arp summary Command Example Fields Row Heading Description Total Entries Lists the total number of ARP entries in the ARP table. Static Entries Lists the total number of configured or static ARP entries. Dynamic Entries Lists the total number of learned or dynamic ARP entries. CPU Lists which CPU the entries are stored on. ip local-proxy-arp Enable/disable Layer 3 communication in secondary VLANs.
Example Figure 15-9. show hosts Command Example FTOS#show hosts Default domain is not set Name/address lookup uses static Name servers are not set Host Flags -----------ks (perm, 4200-1 (perm, 1230-3 (perm, ZZr (perm, Z10-3 (perm, FTOS# Table 15-6. mappings OK) OK) OK) OK) OK) TTL ---- Type ---IP IP IP IP IP Address ------2.2.2.2 192.68.69.2 192.68.99.2 192.71.18.2 192.71.23.1 show hosts Command Example Fields Field Description Default domain... Displays the domain name (if configured).
www.dell.com | support.dell.com Parameters number Enter the number of the line card. Range: 0 to 13 on a E1200/1200i, 0 to 6 on a E600600i, and 0 to 5 on a E300. pipe-number Enter the number of the line card’s port-pipe. Range: 0 to 1 ip-address mask [longer-prefix] (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that route only. Enter the keyword longer-prefixes to view routes with a common prefix.
Table 15-7. Example show ip cam Command Example Fields (continued) Field Description C Displays the CPU bit. 1 indicates that a packet hitting this entry is forwarded to the CP or RP2, depending on Egress port. Next-Hop Displays the next hop IP address of the entry. VId Displays the VLAN ID. If the entry is 0, the entry is not part of a VLAN. Mac Addr Displays the next-hop router’s MAC address. Port Displays the egress interface. Use the second half of the entry to determine the interface.
www.dell.com | support.dell.com Table 15-8. show ip cam summary Command Example Fields Field Description Prefix Length Displays the prefix-length or mask for the IP address configured on the linecard 0 port pipe 0. Current Use Displays the number of routes currently configured for the corresponding prefix or mask on the linecard 0 port pipe 0. Initial Size Displays the CAM size allocated by FTOS for the corresponding mask.
Table 15-9. show ip cam Command Example Fields Field Description Destination Displays the destination route of the index. EC Displays the number of equal cost multipaths (ECMP) available for the default route for non-Jumbo line cards. Displays 0,1 when ECMP is more than 8, for Jumbo line cards. CG Displays 0. V Displays a 1 if the entry is valid and a 0 otherwise. C Displays the CPU bit.
www.dell.com | support.dell.com Example Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 15-13. show ip fib linecard Command Example FTOS>show ip fib linecard 12 Destination -------------------3.0.0.0/8 3.0.0.0/8 100.10.10.0/24 100.10.10.1/32 100.10.10.10/32 101.10.10.0/24 101.10.10.1/32 101.10.10.10/32 FTOS> Gateway First-Hop -------------------------- -------------via 100.10.10.10, So 2/8 100.10.10.10 via 101.10.10.10, So 2/9 Direct, So 2/8 0.0.0.
Command Mode longer-prefixes (OPTIONAL) Enter the keyword longer-prefixes to view all routes with a common prefix. summary (OPTIONAL) Enter the keyword summary to view the total number of prefixes in the FIB. EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Modified: Added support for up to seven stack members. Version 7.6.1.0 Introduced on S-Series Figure 15-14.
www.dell.com | support.dell.com Parameters vrf instance E-Series Only: Show only the L3 flow as they apply to that VRF process. interface interface Enter the keyword interface followed by of the following interface keywords. • • • • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Example Figure 15-15. Command Example show ip flow on E-Series FTOS#show ip flow interface Gi 1/8 189.1.1.1 63.0.0.1 protocol tcp source-port 7898 destination-port 8976 flow: 189.1.1.1 63.0.0.1 protocol 6 7868 8976 Ingress interface: Gi 1/20 Egress interface: Gi 1/14 to 1.7.1.2[CAM hit 103710] unfragmented packet Gi 1/10 to 1.2.1.2[CAM hit 103710] fragmented packet show ip interface ces Syntax Parameter View IP-related information on all interfaces.
www.dell.com | support.dell.com Version 7.6.1.0 Example Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 15-16.
Table 15-13. show ip interface brief Column Headings Field Description Interface Displays type of interface and the associated slot and port number. IP-Address Displays the IP address for the interface, if configured. Ok? Indicates if the hardware is functioning properly. Method Displays Manual if the configuration is read from the saved configuration. Status States whether the interface is enabled (up) or disabled (administratively down).
www.dell.com | support.dell.com show ip protocols ces Syntax Command Modes View information on all routing protocols enabled and active on the switch. show ip protocols EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Regular evaluation optimization enabled/disabled added to display output Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
protocol (OPTIONAL) Enter the name of a routing protocol (bgp, isis, ospf, rip) or the keywords connected or static. bgp, isis, ospf, rip are E-Series-only options. If you enter bgp, you can include the BGP as-number. (E-Series only) If you enter isis, you can include the ISIS routing-tag. (E-Series only) If you enter ospf, you can include the OSPF process-id. Command Modes process-id (OPTIONAL) Specify that only OSPF routes with a certain process ID must be displayed.
www.dell.com | support.dell.com Example Figure 15-21. show ip route summary and show ip route static Command Examples FTOS#show ip route summary Route Source Active Routes Non-active Routes connected 2 0 static 1 0 Total 3 0 Total 3 active route(s) using 612 bytes R1_E600i>show ip route static ? | Pipe through a command R1_E600i>show ip route static Destination Gateway Dist/Metric Last Change --------------------------- ----------*S 0.0.0.0/0 via 10.10.91.9, Gi 1/2 1/0 3d2h FTOS> Table 15-14.
Parameters Command Modes prefix-list Enter the name of a configured prefix list. EXEC EXEC Privilege Command History Related Commands Example Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.0 Introduced for E-Series ip prefix-list Enter the CONFIGURATION-IP PREFIX-LIST mode and configure a prefix list.
www.dell.com | support.dell.com Example Figure 15-23. show ip route summary Command Example FTOS>show ip route summary Route Source Active Routes Non-active Routes connected 17 0 static 3 0 ospf 100 1368 2 Intra-area: 762 Inter-area: 1 External-1: 600 External-2: 5 Total 1388 2 Total 1388 active route(s) using 222440 bytes Total 2 non-active route(s) using 128 bytes FTOS> Table 15-15.
Example Version 6.5.1.0 F10 Monitoring MIB available for ip traffic statistics pre-Version 6.1.1.0 Introduced for E-Series Figure 15-24.
www.dell.com | support.dell.com Table 15-16. show ip traffic output definitions Keyword Usage Information Definition ...short packets The number of bytes in the packet are too small. ...bad length The length of the packet was not correct. ...no port broadcasts The incoming broadcast/multicast packet did not have any listener. ...socket full The applications buffer was full and the incoming packet had to be dropped. The F10 Monitoring MIB provides access to the statistics described below.
Command Modes EXEC EXEC Privilege Command History Example Version 8.1.1.2 Introduced support for E-Series ExaScale E600i Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.0 Introduced Figure 15-25.
www.dell.com | support.dell.com Parameters Command Modes Command History Example all Enter the keyword all to view all TCP information. cp Enter the keyword cp to view only TCP information from the Control Processor. rp1 Enter the keyword rp1 to view only TCP statistics from Route Processor 1. rp2 Enter the keyword rp2 to view only TCP statistics from Route Processor 2. EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 8.1.1.0 Introduced on E-Series ExaScale Version 6.4.1.
Table 15-18. show tcp statistics cp Command Example Fields (continued) Field Description 0 window probe packets... Displays the number of window probe and update packets received. 41 dup ack... Displays the number of duplicate acknowledgement packets and acknowledgement packets with data received. 10184 ack... Displays the number of acknowledgement packets and bytes received. Sent: Displays the total number of TCP packets sent and the number of urgent packets sent. 25 control packets...
562 | IPv4 Routing www.dell.com | support.dell.
16 IPv6 Access Control Lists (IPv6 ACLs) Overview IPv6 ACLs and IPv6 Route Map commands are supported on platforms c e s • • IPv6 ACL Commands IPv6 Route Map Commands Note: For IPv4 ACL commands, see Chapter 6, Access Control Lists (ACL). Important Points to Remember • • • • • • • • • • • S-Series systems support Ingress IPv6 ACLs. The S60 supports both Ingress and Egress IPv6 ACLs.E-Series platforms require IPv6-ExtACL CAM profile to support IPv6 ACLs.
www.dell.com | support.dell.com • • • • • • • • • • • • • • • ipv6 access-group ipv6 access-list permit permit icmp permit tcp permit udp remark resequence access-list resequence prefix-list ipv6 seq show cam-acl show config show ipv6 accounting access-list show running-config acl test cam-usage cam-acl cs Allocate space for IPv6 ACLs.
Ranges for the CAM profiles are 1-10, except for the ipv6acl profile which is 0-10. The ipv6acl allocation must be a factor of 2 (2, 4, 6, 8, 10). clear counters ipv6 access-group ces Syntax Erase all counters maintained for the IPv6 access lists. clear counters ipv6 access-group [access-list-name] Parameters Command Modes access-list-name (OPTIONAL) Enter the name of a configured access-list, up to 140 characters. EXEC EXEC Privilege Command History Usage Information Version 8.2.1.
www.dell.com | support.dell.com Usage Information Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.0 Introduced support on the E-Series The S-Series supports Ingress IPv6 ACLs. The S60 supports both Ingress and Egress IPv6 ACLs. deny icmp ces Syntax Configure a filter to drop all or specific ICMP messages.
Command History Usage Information Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.0 Introduced support on the E-Series Added monitor option The S-Series supports Ingress IPv6 ACLs. The S60 supports both Ingress and Egress IPv6 ACLs. The C-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented.
www.dell.com | support.dell.com To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny tcp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} command. • • Parameters source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format.
log (OPTIONAL) Enter the keyword log to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Defaults Not configured. Command Modes ACCESS-LIST Command History Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.
www.dell.com | support.dell.com deny udp ces Syntax Configure a filter to drop UDP packets meeting the filter criteria.
Command History Usage Information Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.0 Introduced support on the E-Series Added monitor option The S-Series supports Ingress IPv6 ACLs. The S60 supports both Ingress and Egress IPv6 ACLs. The C-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information implicit-permit (OPTIONAL) Enter the keyword implicit-permit to change the default action of the IPv6 ACL from implicit-deny to implicit-permit (that is, if the traffic does not match the filters in the IPv6 ACL, the traffic is permitted instead of dropped). vlan range (OPTIONAL) Enter the keyword vlan followed by the VLAN range in a comma separated format. Range: 1 to 4094 Disabled INTERFACE Version 7.8.1.
Usage Information Version 7.8.1.0 Introduced support on the C-Series Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.4.1.0 Introduced support on the E-Series The S-Series supports Ingress IPv6 ACLs. The S60 supports both Ingress and Egress IPv6 ACLs. The number of entries allowed per ACL is hardware-dependent. Refer to your line card documentation for detailed specification on entries allowed per ACL.
www.dell.com | support.dell.com permit icmp ces Syntax Configure a filter to allow all or specific ICMP messages.
The C-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. permit tcp ces Syntax Configure a filter to pass TCP packets that match the filter criteria.
www.dell.com | support.dell.com bit Enter a flag or combination of bits: ack: acknowledgement field fin: finish (no more data from the user) psh: push function rst: reset the connection syn: synchronize sequence numbers urg: urgent field count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enter ACL matches in the log.
For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# 1 2 3 4 5 6 7 8 Data Mask From To #Covered 0000111110100000 0000111111000000 0001000000000000 0001100000000000 0001110000000000 0001111000000000 0001111100000000 0001111101000000 1111111111100000 1111111111000000 1111100000000000 1111110000000000 1111111000000000 1111111100000000 1111111111000000 1111111111111111 4000 4032 4096 6144 7168 7680 7936 8000 4031 4095 6143 7167 7679 7935 7999 8000 32 64 2048 1024 5
www.dell.com | support.dell.com operator (OPTIONAL) Enter one of the following logical operand: • • • • • eq = equal to neq = not equal to gt = greater than lt = less than range = inclusive range of ports (you must specify two ports for the port parameter.) port port (OPTIONAL) Enter the application layer port number. Enter two port numbers if using the range logical operand.
For example, an ACL rule with TCP port range 4000 - 8000 uses 8 entries in the CAM: Rule# 1 2 3 4 5 6 7 8 Data Mask From To #Covered 0000111110100000 0000111111000000 0001000000000000 0001100000000000 0001110000000000 0001111000000000 0001111100000000 0001111101000000 1111111111100000 1111111111000000 1111100000000000 1111110000000000 1111111000000000 1111111100000000 1111111111000000 1111111111111111 4000 4032 4096 6144 7168 7680 7936 8000 4031 4095 6143 7167 7679 7935 7999 8000 32 64 2048 1024 5
www.dell.com | support.dell.com Example Figure 16-2.
Usage Information The S-Series supports Ingress IPv6 ACLs. The S60 supports both Ingress and Egress IPv6 ACLs. When all sequence numbers have been exhausted, this feature permits re-assigning new sequence number to entries of an existing access-list. Related Commands resequence prefix-list ipv6 Resequence a prefix list resequence prefix-list ipv6 ces Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing prefix list.
www.dell.com | support.dell.com seq ces Syntax Assign a sequence number to a deny or permit filter in an IPv6 access list while creating the filter. seq sequence-number {deny | permit} {ipv6-protocol-number | icmp | ip | tcp | udp} {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [operator port [port]] [count [byte]] | [log] [monitor] To delete a filter, use the no seq sequence-number command. Parameters sequence-number Enter a number from 0 to 4294967290.
destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zero. message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type.
www.dell.com | support.dell.com Examples Figure 16-3. Command Example: show cam-acl (default profile) FTOS#show cam-acl -- Chassis Cam ACL -Current Settings(in block sizes) L2Acl : 5 Ipv4Acl : 6 Ipv6Acl : 0 Ipv4Qos : 1 L2Qos : 1 -- Line card 4 -Current Settings(in block sizes) L2Acl : 5 Ipv4Acl : 6 Ipv6Acl : 0 Ipv4Qos : 1 L2Qos : 1 FTOS#show cam-acl Figure 16-4.
Example Figure 16-5. Command Example: show config FTOS(conf-ipv6-acl)#show config ! ipv6 access-list Acl1 seq 5 permit ipv6 1111::2222/127 host 3333::1111 log count bytes seq 10 permit icmp host 3333:: any mobile-advertisement log seq 15 deny tcp any any rst seq 20 permit udp any any gt 100 count FTOS(conf-ipv6-acl)# show ipv6 accounting access-list ces Syntax Parameters View the IPv6 access-lists created on the E-Series and the sequence of filters.
www.dell.com | support.dell.com Table 16-2. show ip accounting access-lists Command Example Field Field Description “Ingress IPv6...” Displays the name of the IPv6 ACL, in this example “AclList1”. “seq 10 ...” Displays the filter. If the keywords count or byte were configured in the filter, the number of packets or bytes processed by the filter is displayed at the end of the line. show running-config acl ces Syntax Command Modes Display the ACL running configuration.
Parameters Defaults Command Modes Command History Usage Information policy-map name Enter the name of the policy-map to verify. number Enter all to get information for all the linecards, or enter the linecard number to get information for a specific card. Range: 0-6 for E-Series, 0-7 for C-Series None EXEC Privilege Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.
www.dell.com | support.dell.com Table 16-3. Output Explanations: test cam-usage Term Explanation Linecard Lists the line card or line cards that are checked. Entering all shows the status for line cards in the chassis Portpipe Lists the portpipe (port-set) or port pipes (port-sets) that are checked. Entering all shows the status for line cards and port-pipes in the chassis.
Related Commands match ipv6 next-hop Redistribute routes that match the next-hop IP address. match ipv6 route-source Redistribute routes that match routes advertised by other routers. match ipv6 next-hop ce Configure a filter which matches based on the next-hop IPv6 addresses specified in the IPv6 prefix list. Syntax match ipv6 next-hop prefix-list prefix-list-name To delete a match, use the no match ipv6 next-hop prefix-list prefix-list-name command.
www.dell.com | support.dell.com Related Commands match ipv6 address Redistribute routes that match an IP address. match ipv6 next-hop Redistribute routes that match the next-hop IP address. route-map ce Designate a IPv6 route map name and enter the ROUTE-MAP mode. Syntax route-map map-name To delete a route map, use the no route-map map-name command. Parameters map-name Enter a text string to name the route map, up to 140 characters.
Command History Usage Information Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.0 Introduced support on the C-Series Version 7.4.1.0 Introduced support on the E-Series The set ipv6 next-hop command is the only way to set an IPv6 Next-Hop. show config ce View the current route map configuration. Syntax show config Command Modes ROUTE-MAP Command History Version 8.2.1.0 Introduced support on the E-Series ExaScale Version 7.8.1.
www.dell.com | support.dell.com Example 592 Figure 16-11. Command Example: show route-map FTOS#show route-map ! route-map Rmap1, permit, sequence 10 Match clauses: ip address: v4plist ipv6 address: plist1 ipv6 next-hop prefix-lists: plist2 ipv6 route-source prefix-lists: plist3 Set clauses: next-hop 1.1.1.1 ipv6 next-hop 3333:2222:: FTOS# Related Commands | route-map IPv6 Access Control Lists (IPv6 ACLs) Configure a route map.
17 IPv6 Basics Overview IPv6 Basic Commands are supported on platforms c e and s as designated by the symbols beneath the commands E-Series ExaScale supports IPv6 with FTOS 8.2.1.0 and later. Note: The IPv6 basic commands are supported on all platforms. However, not all features are supported on all platforms. See the table in the FTOS Configuration guide to determine the FTOS version that supports which features and platforms.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced clear ipv6 route ces Syntax Parameters Command Mode Command History Clear (refresh) all or a specific route from the IPv6 routing table. clear ipv6 route {* | ipv6-address prefix-length} * Enter the * to clear (refresh) all routes from the IPv6 routing table.
Example Figure 17-1.
www.dell.com | support.dell.com Defaults Command Modes Command History Example No default values or behavior CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced Figure 17-2.
Command Modes CONFIGURATION Command History Usage Information Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series Version 7.4.1.0 Introduced Since this command is enabled by default, it does not appear in the running configuration. When unicast routing is disabled, the no ipv6 unicast-routing command is included in the running configuration. Whenever unicast routing is disabled or re-enabled, FTOS generates a syslog message indicating the action.
www.dell.com | support.dell.com Usage Information The forwarding table displays host route first, then displays route originated by routing protocol including static route. The egress port section displays the egress port of the forwarding entry which is designated as: C for the Control Processor 1 for the Route Processor 1 2 for the Route Processor 2 Examples Figure 17-3.
Parameters Defaults Command Modes unit-number Enter the stack unit’s ID number. Unit ID range: S60: 0-11 all other S-Series: 0-7 port-set Enter the Port Set to summary (OPTIONAL) Enter the keyword summary to display a table listing network prefixes and the total number prefixes which can be entered into the IPv6 CAM. index (OPTIONAL) Enter the index in the IPv6 CAM ipv6-address Enter the IPv6 address in the x:x:x:x::x/n format to display networks that have more specific prefixes.
www.dell.com | support.dell.com show ipv6 fib stack-unit s Syntax Parameters Command Mode View all Forwarding Information Base entries. show ipv6 fib stack-unit unit-number [summary] ipv6-address slot-number Enter the number of the stack unit. Unit ID range: S60: 0-11 all other S-Series: 0-7 summary (OPTIONAL) Enter the keyword summary to view a summary of entries in IPv6 cam. ipv6-address Enter the IPv6 address in the x:x:x:x::x/n format to display networks that have more specific prefixes.
Defaults Command Modes loopback (OPTIONAL) View information for IPv6 loopback interfaces. port-channel (OPTIONAL) View information for IPv6 port channels. tengigabitethernet (OPTIONAL) View information for an IPv6 tengigabitethernet interface. vlan (OPTIONAL) View information for IPv6 VLANs. No default values or behavior EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced on E-Series ExaScale Version 7.8.1.
www.dell.com | support.dell.com Defaults Command Modes all (OPTIONAL) View information for all IPv6 routes bgp (OPTIONAL) View information for all IPv6 BGP routes connected (OPTIONAL) View only the directly connected IPv6 routes.
Table 17-1.
www.dell.com | support.dell.com Usage Information 604 When trust IPv6 diffserv is configured, matched bytes/packets counters are not incremented in the show qos statistics command. Trust diffserv (IPv4) can co-exist with trust ipv6-diffserv in an Input Policy Map. Dynamic classification happens based on the mapping detailed in the following table. Table 17-2.
18 iSCSI Optimization Overview Internet Small Computer System Interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic on the following platforms as indicated: .
www.dell.com | support.dell.com iscsi cos Set the QoS policy that will be applied to the iSCSI flows. Syntax iscsi cos {enable | disable | dot1p vlan-priority-value [remark] | dscp dscp-value [remark]} To disable the QoS policy, use the iscsi cos disable command.
Command History Usage Information Version 8.3.3.8 Introduced on the S60 Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module • • LLDP must be enabled before using this command. LLDP cannot be disabled if iSCSI is enabled. iscsi priority-bits Configure the priority bitmap to be advertised in iSCSI application TLVs. Syntax iscsi priority-bits To remove the configured priority bitmap, use the no iscsi priority-bits command.
www.dell.com | support.dell.com iscsi target port Configure the iSCSI target ports and optionally, the IP addresses on which iSCSI communication will be monitored. Syntax iscsi target port [tcp-port-2...tcp-port-16]ip-address [ip-address] To remove the configured iSCSI target ports or IP addresses, use the no iscsi target port command. Parameters Defaults Command Modes Command History Usage Information tcp-port-2...tcpport-16 Enter the tcp-port number of the iSCSI target ports.
-----------------------------------------------TCP Port Target IP Address 3260 860 Related Commands show iscsi session Display information on active iSCSI sessions on the switch. show iscsi session detailed Display detailed information on active iSCSI sessions on the switch. show run iscsi show run iscsi show iscsi session Display information on active iSCSI sessions on the switch. Syntax Command Mode show iscsi session EXEC EXEC Privilege Command History Usage Information Version 8.3.12.
www.dell.com | support.dell.com show iscsi session detailed Display detailed information on active iSCSI sessions on the switch. Syntax Parameters Command Mode show iscsi session detailed [session isid] isid Enter the session’s iSCSi ID to display detailed information on specified iSCSi session. EXEC EXEC Privilege Command History Example Related Commands Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.
Example FTOS(conf) # show run iscsi ! iscsi enable FTOS(conf) # iSCSI Optimization | 611
612 | iSCSI Optimization www.dell.com | support.dell.
19 Link Aggregation Control Protocol (LACP) Overview This chapter contains commands for Dell Networking’s implementation of Link Aggregation Control Protocol (LACP) for the creation of dynamic link aggregation groups (LAGs — called port-channels in FTOS parlance). For static LAG commands, see the section Port Channel Commands in the Interfaces chapter), based on the standards specified in the IEEE 802.
www.dell.com | support.dell.com Defaults Command Modes Without a Port Channel specified, the command clears all Port Channel counters. EXEC EXEC Privilege Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced on E-Series show lacp Display the lacp configuration debug lacp ces Syntax Debug LACP (configuration, events etc.
Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced on E-Series lacp long-timeout ce Configure a long timeout period (30 seconds) for an LACP session. Syntax lacp long-timeout To reset the timeout period to a short timeout (1 second), use the no lacp long-timeout command. Defaults Command Modes Command History Usage Information Related Commands 1 second INTERFACE (conf-if-po-number) Version 7.6.1.0 Support added for S-Series Version 7.5.1.
www.dell.com | support.dell.com lacp system-priority ces Configure the LACP system priority. Syntax lacp system-priority priority-value To return to the default setting, use the no lacp system-priority priority-value command. Parameters Defaults Command Modes Command History priority-value Enter the port-priority value. The higher the value, the lower the priority. Range: 1 to 65535 Default: 32768 32768 CONFIGURATION Version 8.3.3.1 Introduced on the S60. Version 7.6.1.
port-channel mode ces Syntax Parameters Configure the LACP port channel mode. port-channel number mode [active] [passive] [off] number Enter the port-channel number. C-Series and S-Series Range: 1-128 E-Series Range: 1-255 for TeraScale active Enter the keyword active to set the mode to the active state.* passive Enter the keyword passive to set the mode to the passive state.* off Enter the keyword off to set the mode to the off state.* * The LACP modes are defined in the table below.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 6.2.1.1 Introduced show lacp Display the LACP information. show interfaces port-channel Display information on configured Port Channel groups. show lacp ces Syntax Parameters Command Modes Display the LACP matrix. show lacp port-channel-number [sys-id | counters] port-channel-number Enter the port-channel number to display the LACP matrix.
Example 2 Figure 19-2. show lacp sys-id command Example FTOS#show lacp 1 sys-id Actor System ID: Priority 32768, Address 0001.e800.a12b Partner System ID: Priority 32768, Address 0001.e801.45a5 FTOS# Example 3 Figure 19-3.
www.dell.com | support.dell.
20 Layer 2 Overview This chapter describes commands to configure Layer 2 features. It contains the following sections: • • MAC Addressing Commands Virtual LAN (VLAN) Commands Some MAC addressing commands are supported only on the E-Series, some on all three Dell Networking platforms, and some on two Dell Networking platforms.
www.dell.com | support.dell.com clear mac-address-table dynamic ces Syntax Parameters Clear the MAC address table of all MAC address learned dynamically. clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} address mac-address Enter the keyword address followed by a MAC address in nn:nn:nn:nn:nn:nn format. all Enter the keyword all to delete all MAC address entries in the MAC address table.
Defaults Command Modes Command History Usage Information Not configured. INTERFACE (available on physical interfaces only) Version 7.4.1.0 Introduced on E-Series You must place the interface in Layer 2 mode (using the switchport command) prior to configuring the mac accounting destination command. mac-address-table aging-time ces Syntax Parameters Defaults Command Modes Specify an aging time for MAC addresses to be removed from the MAC Address Table.
www.dell.com | support.dell.com Parameters mac-address Enter the 48-bit hexidecimal address in nn:nn:nn:nn:nn:nn format. output interface Enter the keyword output followed by one of the following interfaces: • • • • vlan vlan-id Defaults Command Modes Command History Related Commands For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Usage Information For information on the specific trap sent and the corresponding Syslog refer to Appendix A, SNMP Traps. mac-address-table station-move time-interval e Syntax Parameters Defaults Command Modes Command History Usage Information Reduce the amount of time FTOS takes to detect aged entries and station moves.
www.dell.com | support.dell.com To return to the default setting, enter no mac cam fib-partition. Parameters Defaults Command Modes Usage Information Related Commands 25 Enter the keyword 25 to set aside 25% of the CAM for MAC address learning. 50 Enter the keyword 50 to set aside 50% of the CAM for MAC address learning. 75 Enter the keyword 75 to set aside 75% of the CAM for MAC address learning. 100 Enter the keyword 100 to set aside 100% of the MAC CAM for MAC address learning.
Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 8.3.1.0 Added vlan option on E-Series. Version 8.2.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series; added station-move option Version 6.5.1.0 Added support for MAC Learning-Limit on LAG This command and its options are supported on physical interfaces, static LAGs, LACP LAGs, and VLANs. If the vlan option is not specified, then the MAC address counters is not VLAN-based.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Related Commands No default behavior or values INTERFACE (conf-if-interface-slot/port) Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced on S-Series Version 7.8.1.0 Introduced on C-Series Version 7.5.1.0 Introduced on E-Series This is supported on physical interfaces, static LAGs, and LACP LAGs.
mac learning-limit reset ces Syntax Defaults Command Modes Reset the MAC address learning-limit error-disabled state. mac learning-limit reset No default behavior or values EXEC EXEC Privilege Command History Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series Version 7.5.1.0 Introduced on E-Series show cam mac linecard (count) e Syntax Parameters Display the CAM size and the portions allocated for MAC addresses and for MAC ACLs.
www.dell.com | support.dell.com Command History pre-Version 6.2.1.1 Introduced on E-Series show cam maccheck linecard c Display the results of the BCMI2 check command. Note: This command was deprecated in FTOS version 8.3.3.9. Syntax Parameters Command Modes show cam maccheck linecard slot port-set port-pipe linecard slot (REQUIRED) Enter the keyword linecard followed by a slot number to select the linecard for which to gather information.
Example Figure 20-2. show mac-address-table Command Output Example FTOS#show mac-address-table VlanId Mac Address 4094 00:00:a0:00:00:00 Type Interface Dynamic Gi 2/0 State Active !-------------output truncated-------------------! Example Figure 20-3.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 20-4.
interface interface (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • • • vlan vlan-id Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter the keyword port-channel followed by a number: S-Series Range: 1-128 For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Command Modes interface interface-type (OPTIONAL) Instead of entering the keyword interface followed by the interface type, slot and port information, as above, you can enter the interface type, followed by just a slot number. vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID to display the MAC address assigned to the VLAN. Range: 1 to 4094.
Table 20-2. Related Commands show mac-address-table count Information Line Beginning with Description MAC Entries... Displays the number of MAC entries learnt per VLAN. Dynamic Address... Lists the number of dynamically learned MAC addresses. Static Address... Lists the number of user-defined MAC addresses. Total MAC... Lists the total number of MAC addresses used by the switch. show mac-address-table aging-time Display MAC aging time.
www.dell.com | support.dell.com Parameters mac-address (OPTIONAL) Enter the MAC address in the nn:nn:nn:nn:nn:nn format to display information on that MAC address. interface interface (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • • vlan vlan-id Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Example Figure 20-9. show mac cam Command Example FTOS#show mac cam Slot Type MAC CAM Size MAC FIB Entries 0 E24PD 64K entries 48K (75%) 2 E24PD2 128K entries 64K (50%) 11 EX2YD 64K entries 16K (25%) Note: All CAM entries are per portpipe. FTOS# Table 20-3. MAC ACL Entries 8K (25%) 32K (50%) 24K (75%) show mac cam Information Field Description Slot Lists the active line card slots. Type Lists the type of line card present in the slot. MAC CAM Size Displays the total CAM size available.
www.dell.com | support.dell.com Command History Example Version 8.3.1.0 Added vlan option on E-Series. Version 7.7.1.0 Introduced on C-Series Version 7.5.1.0 Added support for violate-action and detail options Version 6.5.1.
See also VLAN Stacking and see VLAN-related commands, such as portmode hybrid, in Chapter 14, Interfaces. description ces Syntax Add a description about the selected VLAN. description description To remove the description from the VLAN, use the no description command. Parameters Defaults Command Modes Command History Related Commands description Enter a text string description to identify the VLAN (80 characters maximum). No default behavior or values INTERFACE VLAN Version 8.3.3.
www.dell.com | support.dell.com Usage Information To return VLAN 1 as the Default VLAN, use this command syntax (default-vlan-id 1). The Default VLAN contains only untagged interfaces. Related Commands interface vlan Configure a VLAN. default-vlan disable ces Defaults Command Modes Command History Usage Information Disable the default VLAN so that all switchports are placed in the Null VLAN until they are explicitly configured as a member of another VLAN. The default VLAN is enabled.
Example FTOS(conf)#enable vlan-output-counters FTOS(conf)#exit FTOS#show interface vlan 101 Vlan 101 is down, line protocol is down Address is 00:01:e8:26:e0:5b, Current address is 00:01:e8:26:e0:5b Interface index is 1107787877 Internet address is not set MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 1000 Mbit ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interface" counters 01:12:44 Queueing strategy: fifo Input Statistics: 0 packets, 0 bytes Enabling VLAN output reveals the output statistics
www.dell.com | support.dell.com Command Modes INTERFACE VLAN Command History Usage Information Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series To display information about a named VLAN, enter the show vlan command with the name parameter or the show interfaces description command. Related Commands description Assign a descriptive text string to the interface.
Parameters brief (OPTIONAL) Enter the keyword brief to display the following information: • • • • • Command Modes VLAN ID VLAN name (left blank if none is configured.) Spanning Tree Group ID MAC address aging time IP address id vlan-id (OPTIONAL) Enter the keyword id followed by a number from 1 to 4094. Only information on the VLAN specified is displayed. name vlan-name (OPTIONAL) Enter the keyword name followed by the name configured for the VLAN. Only information on the VLAN named is displayed.
www.dell.com | support.dell.com Table 20-4. show vlan Information Column Heading Description (Column 1 — no heading) asterisk symbol (*) = Default VLAN G = GVRP VLAN P = primary VLAN C = community VLAN I = isolated VLAN NUM Displays existing VLAN IDs. Status Displays the word Inactive for inactive VLANs and the word Active for active VLANs.
Figure 20-13. Example of Output of show vlan brief FTOS#show vlan br VLAN Name ---- -------------------------------1 2 3 FTOS# Figure 20-14. STG ---0 0 0 MAC Aging --------1800 1800 1800 IP Address -----------------unassigned 2.2.2.2/24 3.3.3.
www.dell.com | support.dell.com Usage Information When you use the no tagged command, the interface is automatically placed in the Default VLAN as an untagged interface unless the interface is a member of another VLAN. If the interface belongs to several VLANs, you must remove it from all VLANs to change it to an untagged interface. Tagged interfaces can belong to multiple VLANs, while untagged interfaces can only belong to one VLAN at a time. Related Commands interface vlan Configure a VLAN.
Related Commands interface vlan Configure a VLAN. tagged Specify which interfaces in a VLAN are tagged. untagged ces Syntax Add a Layer 2 interface to a VLAN as an untagged interface. untagged interface To remove an untagged interface from a VLAN, use the no untagged interface command.
648 | Layer 2 www.dell.com | support.dell.
21 Link Layer Detection Protocol (LLDP) Overview Link Layer Detection Protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The FTOS implementation of LLDP is based on IEEE standard 801.1ab.
www.dell.com | support.dell.com advertise dot1-tlv ces Syntax Advertise dot1 TLVs (Type, Length, Value). advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} To remove advertised dot1-tlv, use the no advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} command. Parameters Defaults Command Modes Command History Related Commands port-protocol-vlan-id Enter the keyword port-protocol-vlan-id to advertise the port protocol VLAN identification TLV.
advertise management ces Syntax Advertise management TLVs (Type, Length, Value). advertise management -tlv {system-capabilities | system-description | system-name} To remove advertised management TLVs, use the no advertise management -tlv {system-capabilities | system-description | system-name} command. Parameters Defaults Command Modes Command History Usage Information system-capabilities Enter the keyword system-capabilities to advertise the system capabilities TLVs.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information No default values or behavior CONFIGURATION (conf-lldp) Version 8.3.3.9 Introduced on the S60 Version 8.3.5.4 Introduced on the S55 Version 9.1.(0.0) Modified to support management-address parameter Version 8.3.11.1 Introduced on the Z9000 Version 8.3.7.0 Introduced on the S4810 Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.
Usage Information All three command options — system-capabilities, system-description, and system-name — -can be invoked individually or together, in any sequence. clear lldp counters ces Syntax Parameters Clear LLDP transmitting and receiving counters for all physical interfaces or a specific physical interface.
www.dell.com | support.dell.com Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series debug lldp interface ces Syntax Enable LLDP debugging to display timer events, neighbor additions or deletions, and other information about incoming and outgoing packets. debug lldp interface {interface | all}{events| packet {brief | detail} {tx | rx | both}} To disable debugging, use the no debug lldp interface {interface | all}{events} {packet {brief | detail} {tx | rx | both}} command.
disable ces Syntax Enable or disable LLDP. disable To enable LLDP, use the no disable Defaults Command Modes Command History Related Commands Enabled, that is no disable CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series protocol lldp (Configuration) Enable LLDP globally.
www.dell.com | support.dell.com mode ces Syntax Set LLDP to receive or transmit. mode {tx | rx} To return to the default, use the no mode {tx | rx} command. Parameters Defaults Command Modes Command History Related Commands tx Enter the keyword tx to set the mode to transmit. rx Enter the keyword rx to set the mode to receive. Both transmit and receive CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Version 8.3.3.1 Introduced on the S60. Version 7.7.1.
protocol lldp (Configuration) ces Syntax Enable LLDP globally on the switch. protocol lldp To disable LLDP globally on the chassis, use the no protocol lldp command. Defaults Command Modes Command History Disabled CONFIGURATION (conf-lldp) Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series protocol lldp (Interface) ces Syntax Enter the LLDP protocol in the INTERFACE mode.
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • detail Defaults Command Modes Command History Example For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/ port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitEthernet followed by the slot/port information.
Example Figure 21-2. show lldp statistics Command Output FTOS#show lldp statistics Total number of neighbors: Last table change time : Number of Table Inserts : Number of Table Deletes : Number of Table Drops : Number of Table Age Outs : FTOS# 300 Mon Oct 02 16:00:52 2006 1621 200 0 400 show running-config lldp ces Syntax Defaults Command Modes Display the current global LLDP configuration. show running-config lldp No default values or behavior EXEC Privilege Command History Version 8.3.3.
www.dell.com | support.dell.com FTOS LLDP-MED (Media Endpoint Discovery) commands are an extension of the set of LLDP TLV advertisement commands. The C-Series and S-Series support all commands, as indicated by these symbols underneath the command headings: c s The E-Series generally supports the commands, too, as indicated by the e symbol under command headings.
Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series and E-Series protocol lldp (Configuration) Enable LLDP globally. debug lldp interface Debug LLDP. show lldp neighbors Display the LLDP neighbors. show running-config lldp Display the LLDP running configuration.
www.dell.com | support.dell.com advertise med location-identification ces Syntax Configure the system to advertise a location identifier. advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} To return to the default, use the no advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} command.
Command History Usage Information Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Advertise the Extended Power via MDI on all ports that are connected to an 802.3af powered, LLDP-MED endpoint device.
www.dell.com | support.dell.com advertise med streaming-video ces Syntax Configure the system to advertise streaming video services for broadcast or multicast-based video. This does not include video applications that rely on TCP buffering. advertise med streaming-video {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med streaming-video {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command.
Defaults Command Modes Command History Related Commands DSCP_value Enter the DSCP value (C-Series and E-Series only). Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
www.dell.com | support.dell.com show lldp neighbors Display the LLDP neighbors show lldp neighbors Display the LLDP running configuration advertise med voice ces Syntax Configure the system to advertise a dedicated IP telephony handset or other appliances supporting interactive voice services.
Parameters Defaults Command Modes Command History Related Commands vlan-id Enter the VLAN ID. Range: 1 to 4094 layer2_priority Enter the Layer 2 priority (C-Series and E-Series only). Range: 0 to 7 DSCP_value Enter the DSCP value (C-Series and E-Series only). Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) Version 8.3.3.1 Introduced on the S60. Version 7.7.1.
www.dell.com | support.dell.
22 Multiple Spanning Tree Protocol (MSTP) Overview Multiple Spanning Tree Protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s.
www.dell.com | support.dell.com debug spanning-tree mstp ces Syntax Enable debugging of Multiple Spanning Tree Protocol and view information on the protocol. debug spanning-tree mstp [all | bpdu interface {in | out} | events] To disable debugging, enter no debug spanning-tree mstp. Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug Bridge Protocol Data Units.
description ces Syntax Enter a description of the Multiple Spanning Tree description {description} To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description to identify the Multiple Spanning Tree (80 characters maximum). No default behavior or values SPANNING TREE (The prompt is “config-mstp”.) Version 8.3.3.1 Introduced on the S60. pre-7.7.1.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State. Range: 4 to 30 Default: 15 seconds. 15 seconds MULTIPLE SPANNING TREE Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 6.5.1.
max-age ces Syntax Set the time interval for the Multiple Spanning Tree bridge to maintain configuration information before refreshing that information. max-age seconds To return to the default values, enter no max-age. Parameters Defaults Command Modes Command History Related Commands max-age Enter a number of seconds the FTOS waits before refreshing configuration information. Range: 6 to 40 Default: 20 seconds. 20 seconds MULTIPLE SPANNING TREE Version 8.3.3.1 Introduced on the S60. Version 7.6.
www.dell.com | support.dell.com Usage Information The max-hops is a configuration command that applies to both the IST and all MST instances in the MSTP region. The BPDUs sent out by the root switch set the remaining-hops parameter to the configured value of max-hops. When a switch receives the BPDU, it decrements the received value of the remaining hops and uses the resulting value as remaining-hops in the BPDUs.
Defaults Command Modes Command History Usage Information Related Commands no default name MULTIPLE SPANNING TREE Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series Version 6.5.1.0 Introduced For two MSTP switches to be within the same MSTP region, the switches must share the same region name (including matching case). msti Map the VLAN(s) to an MST instance revision Assign revision number to the MST configuration.
www.dell.com | support.dell.com Usage Information Refer to the FTOS Configuration Guide for more information on Multiple Spanning Tree Protocol. revision ces Syntax The revision number for the Multiple Spanning Tree configuration revision range To return to the default values, enter no revision. Parameters Defaults Command Modes range 0 MULTIPLE SPANNING TREE Command History Usage Information Enter the revision number for the MST configuration. Range: 0 to 65535 Default: 0 Version 8.3.3.
Example Figure 22-3. show config Command for MULTIPLE SPANNING TREE Mode FTOS(conf-mstp)#show config ! protocol spanning-tree mstp no disable name CustomerSvc revision 2 MSTI 10 VLAN 101-105 max-hops 5 FTOS(conf-mstp)# show spanning-tree mst configuration ces Syntax Command Modes View the Multiple Spanning Tree configuration. show spanning-tree mst configuration EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Added support for S-Series Version 7.
www.dell.com | support.dell.com show spanning-tree msti ces Syntax Parameters Command Modes View the Multiple Spanning Tree instance. show spanning-tree msti [instance-number [brief]] instance-number [Optional] Enter the Multiple Spanning Tree Instance number Range: 0 to 63 brief [Optional] Enter the keyword brief to view a synopsis of the MST instance. EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Added support for S-Series Version 7.5.1.
Example 2 Figure 22-6. show spanning-tree msti with EDS and LBK FTOS#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e801.6aa8 We are the root of MSTI 0 (CIST) Configured hello time 2, max age 20, forward delay 15, max hops 20 CIST regional root ID Priority 32768, Address 0001.e801.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Added support for S-Series Version 7.5.1.0 Added support for C-Series pre-Version 6.2.1.0 Introduced on E-Series spanning-tree msti ces Syntax Configure Multiple Spanning Tree instance cost and priority for an interface.
Parameters Command Modes Command History Usage Information mstp edge-port Enter the keywords mstp followed by the keyword edge-port to configure the interface as a Multiple Spanning Tree edge port. bpduguard (OPTIONAL) Enter the keyword portfast to enable Portfast to move the interface into forwarding mode immediately after the root fails. Enter the keyword bpduguard to disable the port when it receives a BPDU.
www.dell.com | support.dell.
23 Multicast Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading.
www.dell.com | support.dell.com Parameters Command Modes Command History group-address [source-address] Enter multicast group address and source address (if desired), in dotted decimal format, to clear information on a specific group. * Enter * to clear all multicast routes. EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on C-Series E-Series legacy command Related Commands show ip pim tib Show the PIM Tree Information Base.
Defaults Command Modes Command History Not configured. CONFIGURATION Version 8.3.3.1 Introduced on S60 E-Series legacy command Related Commands show ip mroute View the E-Series routing table. ip multicast-lag-hashing e Syntax Distribute multicast traffic among Port Channel members in a round-robin fashion. ip multicast-lag-hashing To revert to the default, enter no ip multicast-lag-hashing. Defaults Command Modes Command History Usage Information Related Commands Disabled CONFIGURATION Version 6.
www.dell.com | support.dell.com Related Commands ip pim sparse-mode Enable IGMP and PIM on an interface. ip multicast-limit ces Syntax Parameters Defaults Command Modes Command History Usage Information Use this feature to limit the number of multicast entries on the system. ip multicast-limit limit limit Enter the desired maximum number of multicast entries on the system.
Defaults Command Modes Command History Usage Information vlan vlan-list Enter the VLAN(s) in which flooding will be restricted. Separate values by commas—no spaces ( 1,2,3 ) or indicate a list of values separated by a hyphen (1-3). Range: 1 to 4094 min-speed min-speed (OPTIONAL) Enter the minimum link speed that ports must have to receive the specified flooded multicast traffic. None CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.7.1.
www.dell.com | support.dell.com As an Mtrace transit or intermediate router, FTOS returns the response to Mtrace queries. Upon receiving the Mtrace request, FTOS computes the RPF neighbor for the source, fills in the request and the forwards the request to the RPF neighbor. While computing the RPF neighbor, the static mroute and mBGP route is preferred over the unicast route. multicast-buffering enable Enable buffering for all multicast traffic on the buffering unit.
Example Figure 23-1. Command Example: queue backplane multicast FTOS(conf)#queue backplane multicast bandwidth-percent 30 FTOS(conf)#exit FTOS#00:14:04: %RPM0-P:CP %SYS-5-CONFIG_I: Configured from console by console show run | grep bandwidth queue backplane multicast bandwidth-percent 30 FTOS# Related Commands show queue backplane multicast Display the backplane bandwidth configuration about how much bandwidth is dedicated to multicast versus unicast.
www.dell.com | support.dell.com Parameters Command Modes static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address [source-address] (OPTIONAL) Enter the multicast group-address to view only routes associated with that group. Enter the source-address to view routes with that group-address and source-address. active [rate] (OPTIONAL) Enter the keyword active to view only active multicast routes. Enter a rate to view active routes over the specified rate.
Table 23-1. Command Example Fields: show ip mroute Field Description (S,G) Displays the forwarding entry in the multicast route table. uptime Displays the amount of time the entry has been in the multicast forwarding table. Incoming interface Displays the reverse path forwarding (RPF) information towards the the source for (S,G) entries and the RP for (*,G) entries.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 7.7.1.0 Introduced on E-Series Figure 23-5. Command Example: show queue backplane multicast FTOS#show queue backplane multicast bandwidth-percent Configured multicast bandwidth percentage is 80 Related Commands queue backplane multicast Reallocate the amount of bandwidth dedicated to multicast traffic.
ipv6 multicast-limit e Syntax Parameters Defaults Command Modes Command History Usage Information Limit the number of multicast entries on the system. ipv6 multicast-limit limit limit Enter the desired maximum number of multicast entries on the system. Range: 1 to 50000 Default: 15000 15000 routes CONFIGURATION Version 8.3.1.0 Introduced The maximum number of multicast entries allowed on each line card is determined by the CAM profile.
www.dell.com | support.dell.com active [rate] (OPTIONAL) Enter the keyword active to view active multicast sources. Enter a rate to view active routes over the specified rate. Range: 0 to 10000000 packets/second count group-address [source (OPTIONAL) Enter the keyword count to view the number of IPv6 multicast routes and packets on the E-Series. Optionally, enter the IPv6 source-address count information. source-address]} Command Modes EXEC EXEC Privilege Command History Example Version 7.4.1.
Example Figure 23-8. Command Example: show ipv6 mroute count group FTOS#show ipv6 mroute count group ff05:3300::1 IP Multicast Statistics 1 routes using 648 bytes of memory 1 groups, 1.00 average sources per group Forwarding Counts: Pkt Count/Pkts per second Group: ff05:3300::1, Source count: 1 Source: 165:87:31::30, Forwarding: 3997/0 FTOS# Example Figure 23-9.
www.dell.com | support.dell.com Example Figure 23-10.
24 Neighbor Discovery Protocol (NDP) Overview Neighbor Discovery Protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4. It defines mechanisms for solving the following problems: • • • • • • • • • Router discovery: Hosts can locate routers residing on a link. Prefix discovery: Hosts can discover address prefixes for the link.
www.dell.com | support.dell.com • • ipv6 neighbor show ipv6 neighbors clear ipv6 neighbors e Syntax Parameters Delete all entries in the IPv6 neighbor discovery cache, or neighbors of a specific interface. Static entries will not be removed using this command. clear ipv6 neighbors [ipv6-address] [interface] ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format to remove a specific IPv6 neighbor. The :: notation specifies successive hexadecimal fields of zero.
ipv6 nd max-ra-interval e Syntax Configure the interval between the IPv6 router advertisement (RA) transmissions on an interface. ipv6 nd max-ra-interval {interval} min-ra-interval {interval} To restore the default interval, use the no ipv6 nd max-ra-interval command. Parameters Defaults Command Modes max-ra-interval {interval} Enter the keyword max-ra-interval followed by the interval in seconds.
www.dell.com | support.dell.com ipv6 nd other-config-flag e Set the other stateful configuration flag in the IPv6 router advertisement. The description of this flag from RFC 2461 (http://tools.ietf.org/html/rfc2461) is: O: 1-bit “Other stateful configuration” flag. When set, hosts use the administered (stateful) protocol for autoconfiguration of other (non-address) information. The use of this flag is described in: Thomson, S. and T. Narten, “IPv6 Address Autoconfiguration”, RFC 2462, December 1998.
ipv6 nd ra-lifetime e Configure the router lifetime value in the IPv6 router advertisements on an interface. The description of router lifetime from RFC 2461(http://tools.ietf.org/html/rfc2461) is: Router Lifetime: 16-bit unsigned integer. The lifetime associated with the default router in units of seconds. The maximum value corresponds to 18.2 hours. A Lifetime of 0 indicates that the router is not a default router and SHOULD NOT appear on the default router list.
www.dell.com | support.dell.com Defaults Command Modes Enabled INTERFACE ipv6 neighbor e Syntax Configure a static entry in the IPv6 neighbor discovery. ipv6 neighbor {ipv6-address} {interface interface} {hardware_address} To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6 neighbor {ipv6-address} {interface interface} command. Parameters ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format.
cpu Enter the keyword cpu followed by either rp1 or rp2 (Route Processor 1 or 2), optionally followed by an IPv6 address to display the IPv6 neighbor entries stored on the designated RP. interface interface • • • • • Defaults Command Modes For a Fast Ethernet interface, enter the keyword fastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.
25 Open Shortest Path First (OSPFv2 and OSPFv3) Overview Open Shortest Path First version 2 for IPv4 is supported on platforms c e s Open Shortest Path First version 3 (OSPFv3) for IPv6 is supported on platforms c e Note: The C-Series supports OSPFv3 with FTOS version 7.8.1.0 and later. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS).
www.dell.com | support.dell.
• • • • • • • • • • • • • show ip ospf database opaque-area show ip ospf database opaque-as show ip ospf database opaque-link show ip ospf database router show ip ospf database summary show ip ospf interface show ip ospf neighbor show ip ospf routes show ip ospf statistics show ip ospf topology show ip ospf virtual-links summary-address timers spf area default-cost ces Syntax Set the metric for the summary default route generated by the area border router (ABR) into the stub area.
www.dell.com | support.dell.com area nssa ces Syntax Specify an area as a Not So Stubby Area (NSSA). area area-id nssa [default-information-originate] [no-redistribution] [no-summary] To delete an NSSA, enter no area area-id nssa. Parameters Defaults Command Mode Command History area-id Specify the OSPF area in dotted decimal format (A.B.C.D) or enter a number from 0 and 65535. no-redistribution (OPTIONAL) Specify that the redistribute command should not distribute routes into the NSSA.
Command History Usage Information Related Commands Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Only the routes within an area are summarized, and that summary is advertised to other areas by the ABR. External routes are not summarized. area stub Create a stub area.
www.dell.com | support.dell.com area virtual-link ces Syntax Set a virtual link and its parameters. area area-id virtual-link router-id [[authentication-key [encryption-type] key] | [message-digest-key keyid md5 [encryption-type] key]] [dead-interval seconds] [hello-interval seconds] [retransmit-interval seconds] [transmit-delay seconds] To delete a virtual link, use the no area area-id virtual-link router-id command.
Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series All OSPF areas must be connected to a backbone area (usually Area 0). Virtual links connect broken or discontiguous areas. You cannot enable both authentication options. Choose either the authentication-key or message-digest-key option.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series clear ip ospf statistics ces Syntax Parameters Clear the packet statistics in interfaces and neighbors.
debug ip ospf ces Syntax Display debug information on OSPF. Entering debug ip ospf enables OSPF debugging for the first OSPF process,. debug ip ospf process-id [bfd |event | packet | spf] To cancel the debug command, enter no debug ip ospf. Parameters Command Modes Command History Example process-id Enter the OSPF Process ID to debug a specific process. If no Process ID is entered, command applies only to the first OSPF process.
www.dell.com | support.dell.com Table 25-1. Output Descriptions for debug ip ospf process-id packet Field Description aid: Displays the Autonomous System ID. chk: Displays the OSPF checksum. aut: States if OSPF authentication is configured. One of the following is listed: • • • 0 - no authentication configured 1 - simple authentication configured using the ip ospf authentication-key command) 2 - MD5 authentication configured using the ip ospf message-digest-key command.
metric-type type-value (OPTIONAL) Enter the keyword metric-type followed by an OSPF link state type of 1 or 2 for default routes. The values are: • • route-map map-name Defaults Command Modes Command History Related Commands 1 = Type 1 external route 2 = Type 2 external route. (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Disabled. ROUTER OSPF Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.
www.dell.com | support.dell.com Syntax description description To remove the OSPF description, use the no description command. Parameters Defaults Command Modes Command History Related Commands description Enter a text string description to identify the OSPF configuration (80 characters maximum). No default behavior or values ROUTER OSPF Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
distance ospf ces Syntax Configure an OSPF distance metric for different types of routes. distance ospf [external dist3] [inter-area dist2] [intra-area dist1] To delete these settings, enter no distance ospf. Parameters Defaults Command Modes Command History Usage Information external dist3 (OPTIONAL) Enter the keyword external followed by a number to specify a distance for external type 5 and 7 routes. Range: 1 to 255 Default: 110.
www.dell.com | support.dell.com Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: • • • • • Defaults Command Modes Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series The distribute-list out command applies to routes being redistributed by autonomous system boundary routers (ASBRs) into OSPF. It can be applied to external type 2 and external type 1 routes, but not to intra-area and inter-area routes.
www.dell.com | support.dell.com Generally, convergence level 1 meets most convergence requirements. Higher convergence levels should only be selected following consultation with Dell Networking technical support. flood-2328 ces Syntax Enable RFC-2328 flooding behavior. flood-2328 To disable, use the no flood-2328 command. Defaults Command Modes Command History Usage Information Disabled ROUTER OSPF Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF.
Command History Usage Information Version 8.3.3.4 Introduced on S60 Version 7.8.1.0 Introduced for S-Series Introduced support for Multi-Process OSPF. Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series OSPF Graceful Restart is not supported on the S60 system. graceful-restart helper-reject ces Syntax Specify the OSPF router to not act as a helper during graceful restart.
www.dell.com | support.dell.com Command History Version 8.3.3.4 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series graceful-restart role ces Syntax Specify the role for your OSPF router during graceful restart. graceful-restart role [helper-only | restart-only] To disable graceful restart role, enter no graceful-restart role.
Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series ip ospf authentication-key ces Syntax Enable authentication and set an authentication key on OSPF traffic on an interface. ip ospf authentication-key [encryption-type] key To delete an authentication key, enter no ip ospf authentication-key. Parameters Defaults Command Modes Command History Usage Information encryption-type (OPTIONAL) Enter 7 to encrypt the key. key Enter an 8 character string.
www.dell.com | support.dell.com When you configure OSPF over multiple vendors, use the ip ospf cost command to ensure that all routers use the same cost. Otherwise, OSPF routes improperly. Related Commands auto-cost Control how the OSPF interface cost is calculated. ip ospf dead-interval ces Syntax Set the time interval since the last hello-packet was received from a router. After the interval elapses, the neighboring routers declare the router dead.
Command History Usage Information Related Commands Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series The time interval between hello packets must be the same for routers in a network. ip ospf dead-interval Set the time interval before a router is declared dead. ip ospf message-digest-key ces Syntax Enable OSPF MD5 authentication and send an OSPF message digest key on the interface.
www.dell.com | support.dell.com ip ospf mtu-ignore ces Syntax Disable OSPF MTU mismatch detection upon receipt of database description (DBD) packets. ip ospf mtu-ignore To return to the default, enter no ip ospf mtu-ignore. Defaults Command Modes Command History Enabled INTERFACE Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
Parameters Defaults Command Modes Command History Usage Information number Enter a number as the priority. Range: 0 to 255. The default is 1. 1 INTERFACE Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Setting a priority of 0 makes the router ineligible for election as a Designated Router or Backup Designated Router.
www.dell.com | support.dell.com ip ospf transmit-delay ces Syntax Set the estimated time elapsed to send a link state update packet on the interface. ip ospf transmit-delay seconds To return to the default value, enter no ip ospf transmit-delay. Parameters Defaults Command Modes Command History seconds Enter the number of seconds as the transmission time. This value should be greater than the transmission and propagation delays for the interface. Range: 1 to 3600. Default: 1 second.
Parameters Defaults Command Modes Command History number Specify the number of paths. Range: 1 to 16. Default: 4 paths. 4 ROUTER OSPF Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series mib-binding ces Syntax Enable this OSPF process ID to manage the SNMP traps and process SNMP queries.
www.dell.com | support.dell.com Command Modes Command History Usage Information mask Enter a network mask in /prefix format. (/x) area-id Enter the OSPF area ID as either a decimal value or in a valid IP address. Decimal value range: 0 to 65535 IP address format: dotted decimal format A.B.C.D. Note: If the area ID is smaller than 65535, it will be converted to a decimal value. For example, if you use an area ID of 0.0.0.1, it will be converted to 1. ROUTER OSPF Version 8.3.3.
Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Modified to include the default keyword. pre-Version 6.1.1.1 Introduced on E-Series Although the passive interface will neither send nor receive routing updates, the network on that interface will still be included in OSPF updates sent via other interfaces.
www.dell.com | support.dell.com Parameters connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed. rip Enter the keyword rip to specify that RIP routing information is redistributed. static Enter the keyword static to specify that information from static routes is redistributed. metric metric-value (OPTIONAL) Enter the keyword metric followed by a number. Range: 0 (zero) to 16777214.
metric-type type-value (OPTIONAL) Enter the keyword metric-type followed by one of the following: • • Defaults Command Modes Command History 1 = for OSPF External type 1 2 = for OSPF External type 2 route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of the route map. tag tag-value (OPTIONAL) Enter the keyword tag to set the tag for routes redistributed into OSPF. Range: 0 to 4294967295 No default behavior or values ROUTER OSPF Version 8.3.3.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of the route map. tag tag-value (OPTIONAL) Enter the keyword tag followed by a number. Range: 0 to 4294967295 Not configured. ROUTER OSPF Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
Usage Information You can configure an arbitrary value in the IP address format for each router. However, each router ID must be unique. If this command is used on an OSPF router process, which is already active (that is, has neighbors), a prompt reminding you that changing router-id will bring down the existing OSPF adjacency. The new router ID is effective at the next reload. router ospf ces Syntax Enter the ROUTER OSPF mode to configure an OSPF instance.
www.dell.com | support.dell.com Command History Example Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 25-4. Command Example: show config FTOS(conf-router_ospf)#show config ! router ospf 3 passive-interface FastEthernet 0/1 FTOS(conf-router_ospf)# show ip ospf ces Syntax Parameters Command Modes Display information on the OSPF process configured on the switch.
Table 25-2. Related Commands Command Output Descriptions: show ip ospf process-id Line Beginning with Description “Routing Process...” Displays the OSPF process ID and the IP address associated with the process ID. “Supports only...” Displays the number of Type of Service (TOS) rouse supported. “SPF schedule...” Displays the delay and hold time configured for this process ID. “Number of...” Displays the number and type of areas configured for this process ID.
www.dell.com | support.dell.com Example Figure 25-6. Command Example: show ip ospf process-id asbr FTOS#show ip ospf 1asbr RouterID 3.3.3.3 1.1.1.1 Flags -/-/-/ E/-/-/ Cost Nexthop 2 10.0.0.2 0 0.0.0.0 Interface Area Gi 0/1 1 0 FTOS# You can determine if an ASBR is in a directly connected area (or not) by the flags. For ASBRs in a directly connected area, E flags are set. In the figure above, router 1.1.1.1 is in a directly connected area since the Flag is E/-/-/.
Example Figure 25-7. Command Example: show ip ospf process-id database FTOS>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Age Seq# Checksum 11.1.2.1 11.1.2.1 673 0x80000005 0x707e 13.1.1.1 13.1.1.1 676 0x80000097 0x1035 192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.0 FTOS> Table 25-3.
www.dell.com | support.dell.com Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Table 25-4. Command Output Descriptions: show ip ospf database asbr-summary Item Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: • • • LS Type Related Commands TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits.
www.dell.com | support.dell.com Example Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 25-9. Command Example: show ip ospf database external FTOS#show ip ospf 1 database external OSPF Router with ID (20.20.20.5) (Process ID 1) Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.
Table 25-5. external Related Commands Command Example Descriptions: show ip ospf process-id database Item Description Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. Metrics Type Displays the external type. TOS Displays the TOS options. Option 0 is the only option. Metrics Displays the LSA metric. Forward Address Identifies the address of the forwarding router. Data traffic is forwarded to this router.
www.dell.com | support.dell.com Example Figure 25-10. Command Example: show ip ospf process-id database network FTOS#show ip ospf 1 data network OSPF Router with ID (20.20.20.5) (Process ID 1) Network (Area 0.0.0.0) LS age: 1372 Options: (No TOS-capability, DC, E) LS type: Network Link State ID: 202.10.10.2 Advertising Router: 20.20.20.8 LS Seq Number: 0x80000006 Checksum: 0xa35 Length: 36 Network Mask: /24 Attached Router: 20.20.20.8 Attached Router: 20.20.20.9 Attached Router: 20.20.20.
show ip ospf database nssa-external ces Syntax Parameters Display NSSA-External (type 7) LSA information. show ip ospf database nssa-external [link-state-id] [adv-router ip-address] link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
www.dell.com | support.dell.com Example Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 25-11. (Partial) Command Example: show ip ospf process-id database opaque-area FTOS>show ip ospf 1 database opaque-area OSPF Router with ID (3.3.3.3) (Process ID 1) Type-10 Opaque Link Area (Area 0) LS age: 1133 Options: (No TOS-capability, No DC, E) LS type: Type-10 Opaque Link Area Link State ID: 1.0.0.1 Advertising Router: 10.16.
show ip ospf database opaque-as ces Syntax Parameters Display the opaque-as (type 11) LSA information. show ip ospf process-id database opaque-as [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series show ip ospf database Displays OSPF database information. show ip ospf database router ces Syntax Parameters Display the router (type 1) LSA information.
Example Figure 25-12. Command Example: show ip ospf process-id database router (Partial) FTOS#show ip ospf 100 database router OSPF Router with ID (1.1.1.10) (Process ID 100) Router (Area 0) LS age: 967 Options: (No TOS-capability, No DC, E) LS type: Router Link State ID: 1.1.1.10 Advertising Router: 1.1.1.10 LS Seq Number: 0x8000012f Checksum: 0x3357 Length: 144 AS Boundary Router Area Border Router Number of Links: 10 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.129.
www.dell.com | support.dell.com Table 25-8. Related Commands Command Example Descriptions: show ip ospf process-id database router Item Description LS Seq Number Displays the link state sequence number. This number detects duplicate or old LSAs. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Length Displays the length in bytes of the LSA.
Example Figure 25-13. Command Example: show ip ospf process-id database summary FTOS#show ip ospf 100 database summary OSPF Router with ID (1.1.1.10) (Process ID 100) Summary Network (Area 0.0.0.0) LS age: 1551 Options: (No TOS-capability, DC, E) LS type: Summary Network Link State ID: 192.68.16.0 Advertising Router: 192.168.17.
www.dell.com | support.dell.com Table 25-9. summary Related Commands Command Example Descriptions: show ip ospf process-id database Items Description Network Mask Displays the network mask implemented on the area. TOS Displays the TOS options. Option 0 is the only option. Metric Displays the LSA metrics. show ip ospf database Displays OSPF database information. show ip ospf interface ces Syntax Parameters Display the OSPF interfaces configured.
Example Figure 25-14. Command Example: show ip ospf process-id interface FTOS>show ip ospf int GigabitEthernet 13/17 is up, line protocol is up Internet Address 192.168.1.2/30, Area 0.0.0.1 Process ID 1, Router ID 192.168.253.2, Network Type BROADCAST, Cost: 1 Transmit Delay is 1 sec, State DR, Priority 1 Designated Router (ID) 192.168.253.2, Interface address 192.168.1.2 Backup Designated Router (ID) 192.168.253.1, Interface address 192.168.1.
www.dell.com | support.dell.com Syntax Parameters Command Modes show ip ospf process-id neighbor process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.
EXEC Privilege Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced support of Multi-Process OSPF. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series This command is useful in isolating routing problems between OSPF and RTM. For example, if a route is missing from the RTM/FIB but is visible from the display output of this command, then likely the problem is with downloading the route to the RTM.
www.dell.com | support.dell.com (OPTIONAL) Enter the keyword interface followed by one of the following interface keywords and slot/port or number information: interface name For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Table 25-12.
www.dell.com | support.dell.
Usage Information Example Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series and E-Series This command can be used to isolate problems with inter-area and external routes. In OSPF inter-area and external routes are calculated by adding LSA cost to the cost of reaching the router. If an inter-area or external route is not of correct cost, the display can determine if the path to the originating router is correct or not. Figure 25-19.
www.dell.com | support.dell.com Table 25-14. Command Example Descriptions: show ip ospf process-id virtual-links Items Description “Virtual Link...” This line specifies the OSPF neighbor to which the virtual link was created and the link’s status. “Run as...” This line states the nature of the virtual link. “Transit area...” This line identifies the area through which the virtual link was created, the interface used, and the cost assigned to that link. “Transmit Delay...
With "not-advertise" parameter configured, this command can be used to filter out some external routes. For example, you want to redistribute static routes to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.0. Then you can configure summary-address 1.1.0.0 255.255.0.0 not-advertise to filter out all the routes fall in range 1.1.0.0/16. Related Commands area range Summarizes routes within an area.
www.dell.com | support.dell.
26 PIM-Sparse Mode (PIM-SM) Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading.
www.dell.com | support.dell.com clear ip pim rp-mapping ces Syntax Parameters Command Modes Command History Used by the bootstrap router (BSR) to remove all or particular Rendezvous Point (RP) Advertisement. clear ip pim rp-mapping rp-address rp-address (OPTIONAL) Enter the RP address in dotted decimal format (A.B.C.D) EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.
register (OPTIONAL) Enter the keyword register to view PIM register address in dotted decimal format (A.B.C.D). state (OPTIONAL) Enter the keyword state to view PIM state changes. timer [assert | hello | joinprune | register] (OPTIONAL) Enter the keyword timer to view PIM timers. Enter one of the optional parameters: • • • • Defaults Command Modes Command History assert: to view the assertion timer. hello: to view the PIM neighbor keepalive timer.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383. For Port Channel interface types, enter the keyword port-channel followed by a number from 1 to 255.
Usage Information The router with the largest value assigned to an interface becomes the Designated Router. If two interfaces contain the same DR priority value, the interface with the largest interface IP address becomes the Designated Router. ip pim graceful-restart e This feature permits configuration of Non-stop Forwarding (NFS or graceful restart) capability of a PIM router to its neighbors.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Example ext-access-list Enter the name of an extended access list. in Enter this keyword to apply the access list to inbound traffic. out Enter this keyword to apply the access list to outbound traffic. None INTERFACE Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on C-Series on port-channels and S-Series Version 7.7.1.0 Introduced on E-Series.
ip pim query-interval ces Syntax Change the frequency of PIM Router-Query messages. ip pim query-interval seconds To return to the default value, enter no ip pim query-interval seconds command. Parameters Defaults Command Modes Command History seconds Enter a number as the number of seconds between router query messages. Default: 30 seconds Range: 0 to 65535 30 seconds INTERFACE Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information address Enter the RP address in dotted decimal format (A.B.C.D). group-address group-address mask Enter the keyword group-address followed by a group-address mask, in dotted decimal format (/xx), to assign that group address to the RP. override Enter the keyword override to override the BSR updates with static RP. The override will take effect immediately during enable/disable.
Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series pre-Version 6.1.1.1 Introduced on E-Series Priority is stored at BSR router when receiving a Candidate-RP-Advertisement. ip pim sparse-mode ces Syntax Enable PIM sparse mode and IGMP on the interface. ip pim sparse-mode To disable PIM sparse mode and IGMP, enter no ip pim sparse-mode.
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced Version 7.7.1.1 Introduced This command configures an expiration timer for all S.G entries, unless they are assigned to an Extended ACL. ip pim spt-threshold ce Configure PIM router to switch to shortest path tree when the traffic reaches the specified threshold value.
Example Figure 26-2. Command Example: show ip pim bsr-router E600-7-rpm0#show ip pim bsr-router PIMv2 Bootstrap information This system is the Bootstrap Router (v2) BSR address: 7.7.7.7 (?) Uptime: 16:59:06, BSR Priority: 0, Hash mask length: 30 Next bootstrap message in 00:00:08 This system is a candidate BSR Candidate BSR address: 7.7.7.7, priority: 0, hash mask length: 30 show ip pim interface ces Syntax Command Modes View information on the interfaces with IP PIM enabled.
www.dell.com | support.dell.com Table 26-1. show ip pim interface Command Example Fields Field Description DR Prio Displays the Designated Router priority value configured on the interface (ip pim dr-priority command). DR Displays the IP address of the Designated Router for that interface. show ip pim neighbor ces Syntax Command Modes View PIM neighbors. show ip pim neighbor EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 8.1.1.
show ip pim rp ces Syntax Parameters Command Modes View all multicast groups-to-RP mappings. show ip pim rp [mapping | group-address] mapping (OPTIONAL) Enter the keyword mapping to display the multicast groups-to-RP mapping and information on how RP is learnt. group-address (OPTIONAL) Enter the multicast group address mask in dotted decimal format to view RP for a specific group. EXEC EXEC Privilege Command History Example 1 Version 8.3.3.1 Introduced on S60 Version 8.1.1.
www.dell.com | support.dell.com show ip pim tib ces Syntax Parameters Command Modes View the PIM tree information base (TIB). show ip pim tib [group-address [source-address]] group-address (OPTIONAL) Enter the group address in dotted decimal format (A.B.C.D) source-address (OPTIONAL) Enter the source address in dotted decimal format (A.B.C.D). EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.
Table 26-3.
778 | PIM-Sparse Mode (PIM-SM) www.dell.com | support.dell.
27 PIM-Source Specific Mode (PIM-SSM) Overview The platforms on which a command is supported is indicated by the character — e for the E-Series, c for the C-Series, and s for the S-Series — that appears below each command heading.
www.dell.com | support.dell.com ip pim ssm-range ces Syntax Parameters Defaults Command Modes Command History Usage Information Specify the SSM group range using an access-list. ip pim ssm-range {access_list_name} access_list_name Enter the name of the access list. Default SSM range is 232/8 and ff3x/32 CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series. Version 7.5.1.
Command History Version 8.3.3.1 Introduced on S60 Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.8.1.0 Introduced on S-Series Version 7.7.1.0 Introduced on C-Series. Version 7.5.1.0 Introduced on E-Series.
www.dell.com | support.dell.
28 Port Monitoring Overview The Port Monitoring feature enables you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port.
www.dell.com | support.dell.com • On the S-Series, one monitor session can have only one MG port. There is no restriction on the number of source ports, or destination ports on the chassis. Note: The monitoring port should not be a part of any other configuration. description ces Syntax Enter a description of this monitoring session description {description} To remove the description, use the no description {description} command.
monitor session ces Syntax Create a session for monitoring traffic. monitor session session-ID To delete a session, use the no monitor session session-ID command. To delete all monitor sessions, use the no monitor session command. Parameters Defaults Command Modes session-ID No default values or behaviors MONITOR SESSION (conf-mon-sess-session-ID) Command History Example Enter a session identification number. Range: 0 to 65535 Version 8.3.3.1 Introduced on S60 Version 8.1.1.
www.dell.com | support.dell.com Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series Example FTOS(conf-mon-sess-11)#show config ! monitor session 11 source GigabitEthernet 10/0 destination GigabitEthernet 10/47 direction rx FTOS# show monitor session ces Syntax Display the monitor information of a particular session or all sessions. show monitor session {session-ID} To display the monitor information for all sessions, use the show monitor session command.
show running-config monitor session ces Syntax Display the running configuration of all monitor sessions or a specific session. show running-config monitor session {session-ID} To display the running configuration for all monitor sessions, use just the show running-config monitor session command. Parameters Defaults Command Modes session-ID (OPTIONAL) Enter a session identification number. Range: 0 to 65535 No default values or behavior EXEC EXEC Privilege Command History Version 8.3.3.
www.dell.com | support.dell.com Parameters interface Enter the one of the following keywords and slot/port information: • • • Defaults Command Modes Command History Example For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. For a SONET interface, enter the keyword sonet followed by the slot/port information.
29 Private VLAN (PVLAN) Overview Starting with FTOS 7.8.1.0, the Private VLAN (PVLAN) feature of FTOS is available for the C-Series and S-Series: c s Commands • • • • • • • ip local-proxy-arp private-vlan mode private-vlan mapping secondary-vlan show interfaces private-vlan show vlan private-vlan show vlan private-vlan mapping switchport mode private-vlan See also the following commands. The command output is augmented in FTOS 7.8.1.
www.dell.com | support.dell.com Community VLAN: A community VLAN is a secondary VLAN of the primary VLAN: • • Ports in a community VLAN can talk to each other. Also, all ports in a community VLAN can talk to all promiscuous ports in the primary VLAN and vice-versa. Devices on a community VLAN can communicate with each other via member ports, while devices in an isolated VLAN cannot.
Command History Related Commands Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on C-Series and S-Series private-vlan mode Set the mode of the selected VLAN to community, isolated, or primary. private-vlan mapping secondary-vlan Map secondary VLANs to the selected primary VLAN. show arp Display the ARP table. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN.
www.dell.com | support.dell.com show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN. show vlan private-vlan mapping Display primary-secondary VLAN mapping. switchport mode private-vlan Set the PVLAN mode of the selected port. private-vlan mapping secondary-vlan cs Map secondary VLANs to the selected primary VLAN.
Defaults Command Modes none EXEC EXEC Privilege Command History Usage Information Examples Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on C-Series and S-Series This command has two types of display — a list of all PVLAN interfaces or for a specific interface. Examples of both types of output are shown below. Figure 29-1.
www.dell.com | support.dell.com Syntax Parameters Defaults Command Modes show vlan private-vlan [community | interface | isolated | primary | primary_vlan | interface interface] community (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces. interface (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces.
FTOS# show vlan private-vlan isolated Primary Secondary Type Active Ports ------- --------- --------- ------ -----------------------10 primary Yes Gi 2/1,3 100 isolated Yes Gi 2/2,4-6 200 isolated Yes Gi 3/2,4-6 FTOS# show vlan private-vlan community Primary Secondary Type Active Ports ------- --------- --------- ------ -----------------------10 primary Yes Gi 2/1,3 101 community Yes Gi 2/7-10 20 primary Yes Po 10, 12-13 Gi 3/1 201 community No 202 community Yes Gi 3/11-12 FTOS# show vlan private-vlan int
www.dell.com | support.dell.com Table 29-2. Related Commands show interfaces description Command Example Fields Field Description Active States whether the interface is operationally up or down Ports Displays the interface IDs in the listed VLAN. private-vlan mode Set the mode of the selected VLAN to either community or isolated. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan mapping Display primary-secondary VLAN mapping.
switchport mode private-vlan cs Set the PVLAN mode of the selected port. Syntax [no] switchport mode private-vlan {host | promiscuous | trunk} To remove the PVLAN mode from the selected port, use the no switchport mode private-vlan command. Parameters Defaults Command Modes Command History Usage Information Example host Enter host to configure the selected port or port channel as an isolated interface in a PVLAN, as described above.
798 | Private VLAN (PVLAN) www.dell.com | support.dell.
30 Per-VLAN Spanning Tree plus (PVST+) Overview The FTOS implementation of PVST+ (Per-VLAN Spanning Tree plus) is based on the IEEE 802.1d standard Spanning Tree Protocol, but it creates a separate spanning tree for each VLAN configured.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands PVST+ is disabled CONFIGURATION (conf-pvst) Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series protocol spanning-tree pvst Enter PVST+ mode. description ces Syntax Enter a description of the PVST+ description {description} To remove the description, use the no description {description} command.
Example FTOS(conf-pvst)#do show spanning-tree pvst vlan 5 brief VLAN 5 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32773, Address 0001.e832.73f7 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32773 (priority 32768 sys-id-ext 5), Address 0001.e832.73f7 We are the root of Vlan 5 Configured hello time 2, max age 20, forward delay 15 Related Commands Interface Name ---------Gi 0/10 Gi 0/12 PortID -------128.140 128.
www.dell.com | support.dell.com Related Commands disable Disable PVST+. show spanning-tree pvst Display the PVST+ configuration. show spanning-tree pvst ces Syntax Parameters View the Per-VLAN Spanning Tree configuration. show spanning-tree pvst [vlan vlan-id] [brief] [Interface] vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID. Range: 1 to 4094 brief (OPTIONAL) Enter the keyword brief to view a synopsis of the PVST+ configuration information.
Example 1 Figure 30-2. show spanning-tree pvst brief Command FTOS#show spanning-tree pvst vlan 3 brief VLAN 3 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 4096, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 16384, Address 0001.e805.e306 Configured hello time 2, max age 20, forward delay 15 Example 2 Interface Name ---------Gi 1/0 Gi 1/1 Gi 1/16 Gi 1/17 PortID -------128.130 128.131 128.146 128.
www.dell.com | support.dell.com Example 3 Figure 30-4.
Defaults Command Modes Command History Usage Information cost number (OPTIONAL) Enter the keyword cost followed by the port cost value.
www.dell.com | support.dell.com Related Commands show spanning-tree pvst View PVST+ configuration spanning-tree pvst err-disable ces Syntax Defaults Command Modes Command History Usage Information Place ports in an err-disabled state if they receive a PVST+ BPDU when they are members an untagged VLAN. spanning-tree pvst err-disable cause invalid-pvst-bpdu Enabled; ports are placed in err-disabled state if they receive a PVST+ BPDU when they are members of an untagged VLAN. INTERFACE Version 8.3.3.
vlan bridge-priority ces Syntax Set the PVST+ bridge-priority for a VLAN or a set of VLANs. vlan vlan-range bridge-priority value To return to the default value, enter no vlan bridge-priority command. Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). Range: 1 to 4094 bridge-priority value Enter the keyword bridge-priority followed by the bridge priority value in increments of 4096.
www.dell.com | support.dell.com Command Modes Command History Related Commands CONFIGURATION (conf-pvst) Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.
vlan max-age ces Syntax Set the time interval for the PVST+ bridge to maintain configuration information before refreshing that information. vlan vlan-range max-age seconds To return to the default, use the no vlan max-age command. Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s).
www.dell.com | support.dell.
31 Quality of Service (QoS) Overview FTOS commands for Quality of Service (QoS) include traffic conditioning and congestion control. QoS commands are not universally supported on all Dell Networking platforms. Support is indicated by the c, e and s characters under command headings.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on S60 Version 8.3.1.0 Introduced qos-scheduling Configure QoS scheduling priority by setting the scheduled interval for unicast and multicast packets. Syntax qos-scheduling [unicast packet-number || multicast packet-number] Parameters Defaults Command Modes Command History unicast Enter the keyword unicast for unicast packet scheduling. multicast Enter the keyword multicast for multicast packet scheduling.
dot1p-priority ces Syntax Assign a value to the IEEE 802.1p bits on the traffic received by this interface. dot1p-priority priority-value To delete the IEEE 802.1p configuration on the interface, enter no dot1p-priority. Parameters priority-value Enter a value from 0 to 7.
www.dell.com | support.dell.com rate limit e Syntax Parameters Defaults Limit the outgoing traffic rate on the selected interface. rate limit [kbps] committed-rate [burst-KB] [peak [kbps] peak-rate [burst-KB]] [vlan vlan-id] kbps Enter this keyword to specify the rate limit in Kilobits per second (Kbps). On the E-Series, Dell Networking recommends using a value greater than or equal to 512 as lower values does not yield accurate results.The default granularity is Megabits per second (Mbps).
rate police ces Syntax Parameters Defaults Police the incoming traffic rate on the selected interface. rate police [kbps] committed-rate [burst-KB] [peak [kbps] peak-rate [burst-KB]] [vlan vlan-id] kbps Enter this keyword to specify the rate limit in Kilobits per second (Kbps). On C-Series and S-Series make the following value a multiple of 64. On the E-Series, Dell Networking recommends using a value greater than or equal to 512 as lower values does not yield accurate results.
www.dell.com | support.dell.com E-Series On one interface, you can configure the rate limit or rate police command for a VLAN or you can configure the rate limit or the rate police command for the interface. For each physical interface, you can configure six rate police commands specifying different VLANS. After configuring VLANs in the rate police command, if this error message appears: %Error: Specified VLANs overlap with existing config.
service-class dynamic dot1p ces Syntax Honor all 802.1p markings on incoming switched traffic on an interface (from INTERFACE mode) or on all interfaces (from CONFIGURATION mode). A CONFIGURATION mode entry supercedes INTERFACE mode entries. service-class dynamic dot1p To return to the default setting, enter no service-class dynamic dot1p. Defaults All dot1p traffic is mapped to Queue 0 unless service-class dynamic dot1p is enabled. Then the default mapping is as follows: Table 31-1.
www.dell.com | support.dell.com On the C-Series and S-Series all traffic is by default mapped to the same queue, Queue 0. If you honor dot1p on ingress, then you can create service classes based the queueing strategy using the command service-class dynamic dot1p from INTERFACE mode. You may apply this queuing strategy to all interfaces by entering this command from CONFIGURATION mode. • • All dot1p traffic is mapped to Queue 0 unless service-class dynamic dot1p is enabled on an interface or globally.
Command Mode EXEC EXEC Privilege Command History Example pre-Version 6.1.1.1 Figure 31-1.
www.dell.com | support.dell.com Figure 31-2.
Defaults Command Modes Command History Usage Information No default behavior or value CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Once a unicast queue is configured as strict-priority, that particular queue, on the entire chassis, is treated as strict-priority queue. Traffic for a strict priority is scheduled before any other queues are serviced.
www.dell.com | support.dell.com • • • • • • • • • • • • • • • • set show cam layer2-qos show cam layer3-qos show qos class-map show qos policy-map show qos policy-map-input show qos policy-map-output show qos qos-policy-input show qos qos-policy-output show qos statistics show qos wred-profile test cam-usage threshold trust wred wred-profile bandwidth-percentage Assign a percentage of weight to class/queue.
bandwidth-weight cs Assign a priority weight to a queue. Syntax bandwidth-weight weight To remove the bandwidth weight, use the no bandwidth-weight command. Parameters Defaults Command Modes Command History Usage Information weight Enter the weight assignment to queue. Range: 1 to 1024 (in increments of powers of 2: 2, 4, 8, 16, 32, 64, 128, 256, 512, or 1024) No default behavior or values CONFIGURATION (conf-qos-policy-out) Version 7.7.1.0 Introduced on S-Series Version 7.6.1.
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Class-map names can be 32 characters. layer2 available on C-Series and S-Series. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.
Usage Information E-Series Only Behavior If a Policy QoS is applied on an interface when clear qos statistics is issued, it will clear the egress counters in show queue statistics and vice versa. This behavior is due to the values being read from the same hardware registers. The clear qos statistics command clears both the queued and matched byte and packet counters if the queued counters incremented based on classification of packets to the queues because of policy-based QoS.
www.dell.com | support.dell.com description ces Syntax Add a description to the selected policy map or QOS policy. description {description} To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description to identify the policies (80 characters maximum).
Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.7.1.0 Added keyword multicast. Added DSCP Marking option support on S-Series Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Added support for DSCP Marking option Version 6.2.1.1 Introduced on E-Series You must enter the class-map command in order to access this command. Once the class map is identified, you can configure the match criteria.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.7.1.0 Added keyword multicast. Added DSCP marking option support for S-Series Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Added support for DSCP Marking option Version 6.2.1.1 Introduced on E-Series You must enter the class-map command in order to access this command. Once the class map is identified, you can configure the match criteria.
match mac dot1p ces Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Configure a match criterion for a class map, based on a dot1p value. match mac dot1p {dot1p-list} dot1p-list Enter a dot1p value. Range: 0–7 No default values or behavior CLASS-MAP Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Available on the C-Series and S-Series. Version 7.5.1.0 Added support for DSCP Marking option Version 7.4.1.
www.dell.com | support.dell.com policy-aggregate ces Syntax Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface. policy-aggregate qos-policy-name To remove a policy aggregate configuration, use no policy-aggregate qos-policy-name command.
4. Related Commands If the aggregate output QoS policy and per-queue output QoS policy co-exist, the aggregate output QoS policy will preempt a per-queue output QoS policy on egress traffic conditioning (rate-limit). In other words, if a rate limit configuration exists in the aggregate output QoS policy, the rate limit configurations in per-queue output QoS policies are ignored. Scheduling and queuing configurations (WRED and Bandwidth) in the per-queue output QoS policy still apply to each queue.
www.dell.com | support.dell.com policy-map-output ces Syntax Create an output policy map. policy-map-output policy-map-name To remove a policy map, use the no policy-map-output policy-map-name command. Parameters Defaults Command Modes Command History Usage Information Related Commands policy-map-name Enter the name for the policy map in character format (16 characters maximum). No default behavior or values CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 8.2.1.
Usage Information Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 E-Series Only: Expanded to add support for Layer 2 Use this command to specify the name of the input QoS policy. Once input policy is specified, rate-police can be defined. This command enables the qos-policy-input configuration mode— (conf-qos-policy-in). When changing a “service-queue” configuration in a QoS policy map, all QoS rules are deleted and re-added automatically to ensure that the order of the rules is maintained.
www.dell.com | support.dell.com queue backplane ignore-backpressure e Syntax Reduce egress pressure by ignoring the ingress backpressure queue backplane ignore-backpressure To return to the default, use the no queue backplane ignore-backpressure command. Defaults Command Modes Command History No default behavior or values CONFIGURATION Version 7.7.1.
Important Points to Remember—multicast-bandwidth option • A unique Multicast Weighted Fair Queuing (WFQ) setting can be applied only on a per port-pipe basis. The minimum percentage of the multicast bandwidth assigned to any of the ports in the port-pipe will take effect for the entire port-pipe. If the percentage of multicast bandwidth is 0, control traffic going through multicast queues are dropped.
www.dell.com | support.dell.com Usage Information Note: The multicast-bandwidth option is not supported on queue ingress. If you attempt to use the multicast-bandwidth option, the following reject error message is generated: % Error:Bandwidth-percent is not allowed for ingress multicast Related Commands show queue statistics ingress Display the ingress queue statistics rate-limit e Specify the rate-limit functionality on outgoing traffic as part of the selected policy.
rate-police ces Syntax Parameters Defaults Command Modes Command History Related Commands Specify the policing functionality on incoming traffic. rate-police [kbps] committed-rate [burst-KB] [peak [kbps] peak-rate [burst-KB]] kbps Enter this keyword to specify the rate limit in Kilobits per second (Kbps). On C-Series and S-Series make the following value a multiple of 64.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information Related Commands rate Enter the outgoing rate in multiples of 10 Mbps. Range: 0 to 10000 burst-KB (OPTIONAL) Enter a number as the burst size in KB. Range: 0 to 10000 Default: 10 Burst size is 10 KB. Granularity for rate is Mbps unless the kbps option is used. QOS-POLICY-OUT Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Added kbps option on C-Series, E-Series, and Series. Version 7.6.1.
Usage Information A single policy-map can be attached to one or more interfaces to specify the service-policy for those interfaces. A policy map attached to an interface can be modified. Note: The service-policy commands are not allowed on a port channel. The service-policy input policy-map-name command and the service-class dynamic dot1p command are not allowed simultaneously on an interface.
www.dell.com | support.dell.com Parameters queue-id Enter the value used to identify a queue. Range: 0 to 7 on E-Series (eight queues per interface), 0-3 on C-Series and S-Series (four queues per interface; four queues are reserved for control traffic.) class-map class-map-name (OPTIONAL) Enter the keyword class-map followed by the class map name assigned to the queue in character format (16 character maximum).
Version 7.5.1.0 Usage Information Introduced on C-Series Version 7.4.1.0 E-Series Only: Expanded to add support for mac-dot1p pre-Version 6.1.1.1 Introduced on E-Series C-Series and S-Series Once the IP DSCP bit is set, other QoS services can then operate on the bit settings. E-Series Once the IP DSCP bit is set, other QoS services can then operate on the bit settings.
www.dell.com | support.dell.com Example Figure 31-3.
Example Figure 31-5. show cam layer3-qos linecard interface Command Output FTOS#sh cam layer3-qos interface gigabitethernet 2/1 Cam Port Dscp Proto Tcp Src Dst SrcIp DstIp DSCP Queue Index Flag Port Port Marking ----------------------------------------------------------------------------------------------23488 1 0 0 0x0 0 0 0.0.0.0/0 0.0.0.
www.dell.com | support.dell.com show qos class-map ces Syntax Parameters Defaults Command Modes View the current class map information. show qos class-map [class-name] class-name (Optional) Enter the name of a configured class map. No default behavior or values EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 31-9.
detail interface To view a policy map interface in detail, enter the keyword detail and optionally one of the following keywords and slot/port or number information: • • • • Defaults Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/ port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a SONET interface, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com Example 3 Figure 31-12. show qos policy-map summary (IPv4) Command Output FTOS#show qos policy-map summary Interface Gi 4/1 Gi 4/2 FTOS# policy-map-input PM1 PM2 policy-map-output PMOut show qos policy-map-input ces Syntax Parameters Defaults Command Modes View the input QoS policy map details. show qos policy-map-input [policy-map-name] [class class-map-name] [qos-policy-input qos-policy-name] policy-map-name Enter the policy map name.
Example 2 Figure 31-14. show qos policy-map-input (IPv6) Command Output FTOS# show qos policy-map-input Policy-map-input pmap1 Trust ipv6-diffserv Queue# Class-map-name 0 c0 1 c1 2 c2 3 c3 4 c4 5 c5 6 c6 7 c7 FTOS# Qos-policy-name q0 q1 q2 q3 q4 q6 q7 show qos policy-map-output ces Syntax Parameters Defaults Command Modes View the output QoS policy map details. show qos policy-map-output [policy-map-name] [qos-policy-output qos-policy-name] policy-map-name Enter the policy map name.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.1.1.1 Introduced on E-Series Figure 31-16.
show qos statistics ces Syntax Parameters View QoS statistics. show qos statistics {wred-profile [interface]} | [interface] wred-profile interface Platform—E-Series Only: Enter the keyword wred-profile and optionally one of the following keywords and slot/port or number information: • • • • interface Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
www.dell.com | support.dell.com Example 1 Figure 31-18. show qos statistics Command Output (ED and EE Series of E-Series) FTOS#show qos statistics Interface Gi 0/0 Queue# Queued Bytes 0 0 1 0 2 0 3 0 4 0 5 0 6 0 7 0 Matched Pkts 0 0 0 0 0 0 0 0 Matched Bytes 0 0 0 0 0 0 0 0 Interface Gi 0/1 Queue# Queued Bytes 0 0 1 0 2 0 3 0 4 0 5 0 6 0 7 0 Matched Pkts 0 0 0 0 0 0 0 0 Matched Bytes 0 0 0 0 0 0 0 0 Table 31-4.
Table 31-5. Example 3 show qos statistics Command Example Fields (EF Series) (continued) Field Description Queued Pkts Cumulative packet count in that queue. Matched Pkts The number of packets that matched the class-map criteria. Note: When trust is configured, matched packet counters are not incremented in this field. Matched Bytes The number of bytes that matched the class-map criteria. Note: When trust is configured, matched byte counters are not incremented in this field.
www.dell.com | support.dell.com show qos wred-profile e Syntax Parameters Defaults Command Modes View the WRED profile details. show qos wred-profile wred-profile-name wred-profile-name Enter the WRED profile name to view the profile details. No default behavior or values EXEC EXEC Privilege Command History Example pre-Version 6.1.1.1 Figure 31-21.
Example Figure 31-22.
www.dell.com | support.dell.com threshold e Syntax Specify the minimum and maximum threshold values for the configured WRED profiles. threshold min number max number To remove the threshold values, use the no threshold min number max number command. Parameters Defaults Command Modes Command History Usage Information min number Enter the keyword min followed by the minimum threshold number for the WRED profile.
Defaults Command Modes Command History Usage Information No default behavior or values CONFIGURATION (conf-policy-map-in) Version 8.3.3.1 Introduced on S60 Version 8.3.1.0 fallback available on the E-Series. Version 8.2.1.0 dot1p available on the C-Series and S-Series. Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Expanded to add support for dot1p and IPv6 DSCP pre-Version 6.1.1.
www.dell.com | support.dell.com wred e Syntax Designate the WRED profile to yellow or green traffic. wred {yellow | green} profile-name To remove the WRED drop precedence, use the no wred {yellow | green} [profile-name] command. Parameters Defaults Command Modes Enter the keyword yellow for yellow traffic. DSCP value of xxx110 and xxx100 maps to yellow. Enter the keyword green for green traffic. DSCP value of xxx010 maps to green.
Usage Information Use the default pre-defined profiles or configure your own profile. You can not delete the pre-defined profiles or their default values. This command enables the WRED configuration mode—(conf-wred). Related Commands threshold Specify the minimum and maximum threshold values of the WRED profile Queue-Level Debugging Queue-Level Debugging is an E-Series-only feature, as indicated by the e character that appears below each command heading.
www.dell.com | support.dell.com Related Commands clear queue statistics egress Clear ingress queue statistics show queue statistics egress Display egress queue statistics show queue statistics ingress Display ingress queue statistics clear queue statistics ingress e Syntax Parameters Defaults Command Modes Clear ingress queue statistics.
Parameters unicast | multicast (OPTIONAL) Enter the keyword multicast to display only Multicast queue statistics. Enter the keyword unicast to display only Unicast queue statistics. Default: Both Unicast and Multicast queue statistics are displayed. Interface (OPTIONAL) Enter one of the following interfaces to display the interface specific queue statistics.
www.dell.com | support.dell.com Example 1 Figure 31-23.
Example 2 Figure 31-24.
www.dell.com | support.dell.com Example 3 Figure 31-25. show queue statistics egress brief Command Output FTOS#show queue statistics egress brief LC 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 FTOS# Portpipe PortPipe 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 1 1 1 1 1 1 1 1 1 1 1 0 Table 31-13.
Parameters Defaults Command Modes unicast [src-card ID [dst-card ID]] (OPTIONAL) Enter the keyword unicast to display Unicast queue statistics. Optionally, enter the source card identification (src-card ID) and the destination card identification (dst-card ID) to display the unicast statistics from the source card to the destination card. Destination card Identification: Range 0 to 13 or RPM multicast [src-card ID] (OPTIONAL) Enter the keyword multicast to display only Multicast queue statistics.
www.dell.com | support.dell.com Figure 31-26.
Table 31-15.
www.dell.com | support.dell.com Example 2 Figure 31-27.
Example 3 Figure 31-28.
868 | Quality of Service (QoS) www.dell.com | support.dell.
32 Router Information Protocol (RIP) Overview Router Information Protocol (RIP) is a Distance Vector routing protocol. FTOS supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2) on C-Series and E-Series and S-Series systems, as indicated by the characters that appear below each command heading: • • • C-Series: c E-Series: e S-Series: s Note: The C-Series platform supports RIP with FTOS version 7.6.1.0 and later. The S-Series platform supports RIP with FTOS version 7.8.1.0 and later. Prior to 7.6.
www.dell.com | support.dell.com • • • • • • • • • • • output-delay passive-interface redistribute redistribute isis redistribute ospf router rip show config show ip rip database show running-config rip timers basic version auto-summary ces Syntax Restore the default behavior of automatic summarization of subnet routes into network routes. This command applies only to RIP version 2. auto-summary To send sub-prefix routing information, enter no auto-summary. Default Enabled.
debug ip rip ces Syntax Examine RIP routing information for troubleshooting. debug ip rip [interface | database | events [interface] | packet [interface] | trigger] To turn off debugging output, use the no debug ip rip command. Parameters interface (OPTIONAL) Enter the interface type and ID as one of the following: • • • • • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Defaults metric metric-value (OPTIONAL) Enter the keyword metric followed by a number as the metric value. Range: 1 to 16 Default: 1 route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of a configured route-map. Disabled. metric: 1 Command Modes ROUTER RIP Command History Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Usage Information Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.
description ces Syntax Enter a description of the RIP routing protocol description {description} To remove the description, use the no description {description} command. Parameters Defaults description Enter a description to identify the RIP protocol (80 characters maximum). No default behavior or values Command Modes ROUTER RIP Command History Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-7.7.1.
www.dell.com | support.dell.com distribute-list in ces Syntax Configure a filter for incoming routing updates. distribute-list prefix-list-name in [interface] To delete the filter, use the no distribute-list prefix-list-name in command. Parameters prefix-list-name Enter the name of a configured prefix list.
Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 255 for TeraScale, 1-128 on C-Series and S-Series. For a SONET interface, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com Related Commands ip split-horizon Set RIP routing updates to exclude routing prefixes. ip rip receive version ces Syntax Set the interface to receive specific versions of RIP. The RIP version you set on the interface overrides the version command in the ROUTER RIP mode. ip rip receive version [1] [2] To return to the default, enter no ip rip receive version.
Command History Usage Information Related Commands Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series To enable the interface to send both version of RIP packets, enter ip rip send version 1 2. ip rip receive version Sets the RIP version for the interface to receive traffic. version Sets the RIP version to be used for the switch software.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series RIP supports a maximum of 16 ECMP paths. neighbor ces Syntax Define a neighbor router with which to exchange RIP information. neighbor ip-address To delete a neighbor setting, use the no neighbor ip-address command.
Command Modes ROUTER RIP Command History Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Usage Information You can enable an unlimited number of RIP networks. RIP operates over interfaces configured with any address specified by the network command. offset-list ces Syntax Specify a number to add to the incoming or outgoing route metrics learned via RIP.
www.dell.com | support.dell.com output-delay ces Syntax Set the interpacket delay of successive packets to the same neighbor. output-delay delay To return to the switch software defaults for interpacket delay, enter no output-delay. Parameters Default delay Specify a number of milliseconds as the delay interval. Range: 8 to 50. Not configured. Command Modes ROUTER RIP Command History Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.
Usage Information Related Commands Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Although the passive interface will neither send nor receive routing updates, the network on that interface will still be included in RIP updates sent via other interfaces. neighbor Enable RIP for a specified network. network Define a neighbor. redistribute ces Syntax Redistribute information from other routing instances.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information tag (OPTIONAL) Enter the name of the IS-IS routing process. level-1 (OPTIONAL) Enter the keyword level-1 to redistribute only IS-IS Level-1 routes. level-1-2 (OPTIONAL) Enter the keyword level-1-2 to redistribute both IS-IS Level-1 and Level-2 routes. level-2 (OPTIONAL) Enter the keyword level-2 to redistribute only IS-IS Level-2 routes.
Command History Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series router rip ces Syntax Enter the ROUTER RIP mode to configure and enable RIP. router rip To disable RIP, enter no router rip. Defaults Command Modes Disabled. CONFIGURATION Command History Usage Information Example Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.
www.dell.com | support.dell.com Example Figure 32-2. show config Command Example in ROUTER RIP Mode FTOS(conf-router_rip)#show config ! router rip network 172.31.0.0 passive-interface GigabitEthernet 0/1 FTOS(conf-router_rip)# show ip rip database ces Syntax Parameters Command Modes Command History Example Display the routes learned by RIP. If the switch learned no RIP routes, no output is generated.
Table 32-1. Fields in show ip rip database Command Output Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database. 100.10.10.0/24 directly connected Lists the route(s) directly connected. 150.100.0.0 redistributed Lists the routes learned through redistribution. 209.9.16.0/24... Lists the routes and the sources advertising those routes.
www.dell.com | support.dell.com Parameters Defaults update Enter the number of seconds to specify the rate at which RIP routing updates are sent. Range: zero (0) to 4294967295. Default: 30 seconds. invalid Enter the number of seconds to specify the time interval before routing updates are declared invalid or expired. The invalid value should be at least three times the update timer value. Range: zero (0) to 4294967295. Default: 180 seconds.
Command History Related Commands Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series ip rip receive version Set the RIP version to be received on the interface. ip rip send version Set the RIP version to be sent out the interface.
www.dell.com | support.dell.
33 Remote Monitoring (RMON) Overview FTOS RMON is implemented on all Dell Networking switching platforms (C-Series, E-Series, and S-Series), as indicated by the characters that appear below each command heading: • • • C-Series: c E-Series: e S-Series: s FTOS RMON is based on IEEE standards, providing both 32-bit and 64-bit monitoring, and long-term statistics collection.
www.dell.com | support.dell.com • • • • • • • • rmon hc-alarm show rmon show rmon alarms show rmon events show rmon hc-alarm show rmon history show rmon log show rmon statistics rmon alarm ces Syntax Set an alarm on any MIB object. rmon alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon alarm number command.
Command History Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series rmon collection history ces Syntax Enable the RMON MIB history group of statistics collection on an interface.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value. Then enter an integer value from 1 to 65535 that identifies the RMON Statistic Table. The integer value must be a unique in the RMON Statistic Table. owner name (OPTIONAL) Enter the keyword owner followed by the owner name to record the owner of the RMON group of statistics.
rmon hc-alarm ces Syntax Set an alarm on any MIB object. rmon hc-alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon hc-alarm number command. Parameters Defaults Command Modes Command History number Enter the alarm integer number from 1 to 65535. The value must be unique in the RMON Alarm Table. variable The MIB object to monitor.
www.dell.com | support.dell.com Defaults Command Modes Command History Example No default behavior EXEC Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.1.1.0 Introduced for E-Series Figure 33-1. show rmon Command Example FTOS# show rmon RMON status total memory used 218840 bytes.
Example 2 Figure 33-3. show rmon alarms brief Command Example FTOS#show rmon alarm br index SNMP OID -------------------------------------------------------------------1 1.3.6.1.2.1.1.3 2 1.3.6.1.2.1.1.3 3 1.3.6.1.2.1.1.3 4 1.3.6.1.2.1.1.3 5 1.3.6.1.2.1.1.3 6 1.3.6.1.2.1.1.3 7 1.3.6.1.2.1.1.3 8 1.3.6.1.2.1.1.3 9 1.3.6.1.2.1.1.3 10 1.3.6.1.2.1.1.3 11 1.3.6.1.2.1.1.3 12 1.3.6.1.2.1.1.3 13 1.3.6.1.2.1.1.3 14 1.3.6.1.2.1.1.3 15 1.3.6.1.2.1.1.3 16 1.3.6.1.2.1.1.3 17 1.3.6.1.2.1.1.3 18 1.3.6.1.2.1.1.3 19 1.3.6.
www.dell.com | support.dell.com Example 2 Figure 33-5. show rmon event brief Command Example FTOS#show rmon event br index description -------------------------------------------------------------------1 1 2 2 3 3 4 4 5 5 6 6 7 7 8 8 9 9 10 10 11 11 12 12 13 13 14 14 15 15 16 16 17 17 18 18 19 19 20 20 21 21 22 22 FTOS# show rmon hc-alarm ces Syntax Parameters Defaults Command Modes Command History Example 1 Display the contents of RMON High-Capacity Alarm Table.
Example 2 Figure 33-7. show rmon hc-alarm index Command Example FTOS#show rmon hc-alarm 1 RMON high-capacity alarm entry 1 object: 1.3.6.1.2.1.1.3 sample interval: 5 sample type: absolute value. value: 185638 alarm type: rising or falling alarm. alarm rising threshold value: positive. rising threshold: 1001, RMON event index: 1 alarm falling threshold value: positive. falling threshold: 999, RMON event index: 6 alarm sampling failed 0 times. alarm owner: 1 alarm storage type: non-volatile.
www.dell.com | support.dell.com Example 2 Figure 33-9.
show rmon statistics ces Syntax Parameters Defaults Command Modes Command History Example 1 Display the contents of RMON Ethernet Statistics table. show rmon statistics [index] [brief] index (OPTIONAL) Enter the index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet Statistics table in an easy-to-read format. No default behavior EXEC Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.
www.dell.com | support.dell.com Example 2 900 Figure 33-13.
34 Rapid Spanning Tree Protocol (RSTP) Overview The FTOS implementation of RSTP (Rapid Spanning Tree Protocol) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged LAN that is comprised of LANs interconnected by bridges.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands priority-value Enter a number as the bridge priority value in increments of 4096. Range: 0 to 61440. Default: 32768 32768 CONFIGURATION RSTP (conf-rstp) Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.
Example Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series Figure 34-1. debug spanning-tree rstp bpdu Command Example FTOS#debug spanning-tree rstp bpdu gigabitethernet 2/0 ? in Receive (in) out Transmit (out) description ces Syntax Enter a description of the Rapid Spanning Tree description {description} To remove the description, use the no description {description} command.
www.dell.com | support.dell.com forward-delay ces Syntax Configure the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. forward-delay seconds To return to the default setting, enter no forward-delay. Parameters Defaults Command Modes Command History Related Commands seconds Enter the number of seconds that FTOS waits before transitioning RSTP to the forwarding state.
Usage Information Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256. Millisecond hello times are encoded using values less than 256; the millisecond hello time equals (x/1000)*256.
www.dell.com | support.dell.com Command Modes CONFIGURATION RSTP (conf-rstp) Command History Example Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.2.1.1 Introduced for E-Series Figure 34-2. protocol spanning-tree rstp Command FTOS(conf)#protocol spanning-tree rstp FTOS(config-rstp)##no disable Usage Information RSTP is not enabled when you enter the RSTP mode.
Command Modes EXEC EXEC Privilege Command History Example 1 Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series Version 6.4.1.0 Expanded to display port error disable state (EDS) caused by loopback BPDU inconsistency Version 6.2.1.1 Introduced for E-Series Figure 34-4. show spanning-tree rstp brief Command FTOS#show spanning-tree rstp brief Executing IEEE compatible Spanning Tree Protocol Root ID Priority 8192, Address 0001.
www.dell.com | support.dell.com Example 2 Figure 34-5. show spanning-tree rstp with EDS and LBK FTOS#show spanning-tree rstp br Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 0001.e801.
Parameters Defaults Command Modes Command History Usage Information cost Port cost (OPTIONAL) Enter the keyword cost followed by the port cost value.
www.dell.com | support.dell.com Example Figure 34-6. spanning-tree rstp edge-port Command FTOS(conf)#interface gigabitethernet 4/0 FTOS(conf-if-gi-4/0)#spanning-tree rstp edge-port FTOS(conf-if-gi-4/0)#show config ! interface GigabitEthernet 4/0 no ip address switchport spanning-tree rstp edge-port no shutdown FTOS# tc-flush-standard ces Syntax Enable the MAC address flushing upon receiving every topology change notification. tc-flush-standard To disable, use the no tc-flush-standard command.
35 Security Overview Except for the Trace List feature (E-Series only), most of the commands in this chapter are available on all three Dell Networking platforms — C-Series, E-Series, and S-Series (the S-Series models that run FTOS), as noted by the following icons that appear under each command icon: c e s Commands This chapter contains various types of security commands in FTOS, in the following sections: • • • • • • • • AAA Accounting Commands Authorization and Privilege Commands Authentication and Pas
www.dell.com | support.dell.com aaa accounting ces Syntax Enable AAA Accounting and create a record for monitoring the accounting function. aaa accounting {system | exec | commands level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} To disable AAA Accounting, use the no aaa accounting {system | exec | command level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} command.
Related Commands enable password Change the password for the enable command. login authentication Enable AAA login authentication on terminal lines. password Create a password. tacacs-server host Specify a TACACS+ server host. aaa accounting suppress ces Syntax Prevent the generation of accounting records of users with user name value of NULL.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series Version 6.3.1.0 Introduced on E-Series aaa accounting Enable AAA Accounting and create a record for monitoring the accounting function. show accounting ces Syntax Defaults Command Modes Display the active accounting sessions for each online user.
authorization ces Syntax Parameters Apply an authorization method list to terminal lines. authorization {exec | commands level} method-list exec Enter this keyword to apply an EXEC level authorization method list. commands level Enter this keyword to apply an EXEC and CONFIGURATION level authorization method list. method-list Enter a method list that you defined using the command aaa authorization exec or aaa authorization commands.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series Version 6.1.1.0 Added support for RADIUS aaa authorization config-commands e Syntax Set parameters that restrict (or permit) a user’s access to EXEC level commands. aaa authorization config-commands Disable authorization checking for CONFIGURATION level commands using the command no aaa authorization config-commands.
Version 7.5.1.0 Introduced for C-Series Version 6.1.1.0 Added support for RADIUS privilege level (CONFIGURATION mode) ces Syntax Change the access or privilege level of one or more commands. privilege mode {level level command | reset command} To delete access to a level and command, use the no privilege mode level level command command.
www.dell.com | support.dell.com Parameters Defaults Command Modes level level Enter the keyword level followed by a number for the access level. Range: 0 to 15. Level 1 is the EXEC mode and Level 15 allows access to all CLI modes. level = 15 LINE Command History Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.
Parameters default Enter the keyword default followed by the authentication methods to use as the default sequence of methods to be used for the Enable log-in. Default: default enable method-list-name Enter a text string (up to 16 characters long) to name the list of enabled authentication methods activated at log in. method Enter one of the following methods: • enable - use the password defined by the enable password command in the CONFIGURATION mode.
www.dell.com | support.dell.com aaa authentication login ces Syntax Configure AAA Authentication method lists for user access to the EXEC mode (Enable log-in). aaa authentication login {method-list-name | default} method [... method4] To return to the default setting, use the no aaa authentication login {method-list-name | default} command. Parameters method-list-name Enter a text string (up to 16 characters long) as the name of a user-configured method list that can be applied to different lines.
After configuring the aaa authentication login command, configure the login authentication command to enable the authentication scheme on terminal lines. Connections to the SSH server will work with the following login mechanisms: local, radius and tacacs. Related Commands login authentication Apply an authentication method list to designated terminal lines. password Create a password. radius-server host Specify a RADIUS server host. tacacs-server host Specify a TACACS+ server host.
www.dell.com | support.dell.com Parameters Defaults Command Modes (OPTIONAL) Enter the keyword level followed by a number as the level of access. Range: 1 to 15 encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type. Enter a 7 followed by a text string as the hidden password. The text string must be a password that was already encrypted by a Force10 Networks router.
Parameters Command Modes Command History Usage Information encryption-type (OPTIONAL) Enter the number 7 as the encryption type. Enter 7 followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router. Use this parameter only with a password that you copied from the show running-config file of another Dell Networking router. password Enter a text string, up to 32 characters long, as the clear text password. Not configured.
www.dell.com | support.dell.com Passwords must meet the following criteria: • • Start with a letter, not a number. Passwords can have a regular expression as the password. To create a password with a regular expression in it, you must use CNTL + v prior to entering regular expression. For example, to create the password abcd]e, you type abcd CNTL v]e and when the password is created, you do not use the CNTL + v key combination and enter abcd]e.
Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the password entered. The options are: • • password Defaults Command Modes Command History Usage Information Related Commands 0 is the default and means the password is not encrypted and stored as clear text. 7 means that the password is encrypted and hidden. Enter a text string up to 32 characters long. The first character of the password must be a letter. You cannot use spaces in the password.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands upper number (OPTIONAL) Enter the keyword upper followed the upper number. Range: 0 - 31 lower number (OPTIONAL) Enter the keyword lower followed the lower number. Range: 0 - 31 numeric number (OPTIONAL) Enter the keyword numeric followed the numeric number. Range: 0 - 31 special-char number (OPTIONAL) Enter the keyword special-char followed the number of special characters permitted.
To view passwords, use the show running-config command. show privilege ces Syntax Command Modes View your access level. show privilege EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 35-3.
www.dell.com | support.dell.com Table 1 describes the information in the show users command example. Table 1 show users Command Example Fields Related Commands Field Description (untitled) Indicates with a * which terminal line you are using. Line Displays the terminal lines currently in use. User Displays the user name of all users logged in. Host(s) Displays the terminal line status. Location Displays the IP address of the user. username Enable a user.
username ces Syntax Establish an authentication system based on user names. username name [access-class access-list-name] [nopassword | {password | secret} [encryption-type] password] [privilege level] If you do not want a specific user to enter a password, use the nopassword option. To delete authentication for a user, use the no username name command. Parameters name Enter a text string for the name of the user up to 63 characters.
www.dell.com | support.dell.com When creating a username and secret password, a new userID is also created: bsd-username. This additional username and password is automatically created on all systems, but is applicable to the Automations features SmartScripts and HyperLink (still in Beta phase). When you create a username and secret password (for example, username qsmythe secret q12lmo), the system creates bsd-username qsmyth secret random-password.
debug radius ces Syntax View RADIUS transactions to assist with troubleshooting. debug radius To disable debugging of RADIUS, enter no debug radius. Defaults Command Modes Command History Disabled. EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.2.1.1 Introduced on E-Series ip radius source-interface ces Syntax Specify an interface’s IP address as the source IP address for RADIUS connections.
www.dell.com | support.dell.com radius-server deadtime ces Syntax Configure a time interval during which non-responsive RADIUS servers to authentication requests are skipped. radius-server deadtime seconds To disable this function or return to the default value, enter no radius-server deadtime. Parameters Defaults Command Modes Command History seconds Enter a number of seconds during which non-responsive RADIUS servers are skipped. Range: 0 to 2147483647 seconds. Default: 0 seconds.
timeout seconds (OPTIONAL) Enter the keyword timeout followed by the seconds the time interval the switch waits for a reply from the RADIUS server. This parameter overwrites the radius-server timeout command. Range: 0 to 1000 Default: 5 seconds key [encryption-type] key (OPTIONAL) Enter the keyword key followed by an optional encryption-type and a string up to 42 characters long as the authentication key.
www.dell.com | support.dell.com Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered. The options are: • • key Defaults Command Modes Command History Usage Information 0 is the default and means the key is not encrypted and stored as clear text. 7 means that the key is encrypted and hidden. Enter a string that is the key to be exchanged between the switch and RADIUS servers. It can be up to 42 characters long. Not configured.
Related Commands radius-server host Configure a RADIUS host. radius-server timeout ces Syntax Configure the amount of time the RADIUS client (the switch) waits for a RADIUS host server to reply to a request. radius-server timeout seconds To return to the default value, enter no radius-server timeout. Parameters Defaults Command Modes seconds Enter the number of seconds between an unsuccessful attempt and the FTOS times out. Range: zero (0) to 1000 seconds. Default: 5 seconds.
www.dell.com | support.dell.com Command Modes Command History EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.2.1.1 Introduced on E-Series ip tacacs source-interface ces Syntax Specify an interface’s IP address as the source IP address for TACACS+ connections. ip tacacs source-interface interface To delete a source interface, enter no ip tacacs source-interface.
tacacs-server host ces Syntax Specify a TACACS+ host. tacacs-server host {hostname | ip-address} [port number] [timeout seconds] [key key] To remove a TACACS+ server host, use the no tacacs-server host {hostname | ip-address} command. Parameters Defaults Command Modes Command History Usage Information hostname Enter the name of the TACACS+ server host. ip-address Enter the IP address, in dotted decimal format, of the TACACS+ server host.
www.dell.com | support.dell.com tacacs-server key ces Syntax Configure a key for communication between a TACACS+ server and client. tacacs-server key [encryption-type] key To delete a key, use the no tacacs-server key key Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered. The options are: • • key Defaults Command Modes Enter a text string, up to 42 characters long, as the clear text password. Leading spaces are ignored. Not configured.
An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only EAPOL (Extensible Authentication Protocol over LAN) traffic is allowed through the port to which a client is connected. Once authentication is successful, normal traffic passes through the port. FTOS supports RADIUS and Active Directory environments using 802.1X Port Authentication. Important Points to Remember FTOS limits network access for certain users by using VLAN assignments. 802.
www.dell.com | support.dell.com dot1x authentication (Interface) ces Syntax Enable dot1x on an interface; dot1x must be enabled both globally and at the interface level. dot1x authentication To disable dot1x on an interface, use the no dot1x authentication command. Defaults Command Modes Command History Related Commands Disabled INTERFACE Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
dot1x guest-vlan Configure a guest VLAN for non-dot1x devices show dot1x interface Display the 802.1X information on an interface dot1x auth-server ces Syntax Defaults Command Modes Command History Configure the authentication server to RADIUS. dot1x auth-server radius No default behavior or values CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
www.dell.com | support.dell.com Related Commands dot1x auth-fail-vlan Configure a VLAN for authentication failures dot1x reauthentication Enable periodic re-authentication show dot1x interface Display the 802.1X information on an interface dot1x max-eap-req ces Syntax Configure the maximum number of times an EAP (Extensive Authentication Protocol) request is transmitted before the session times out. dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command.
Usage Information The authenticator performs authentication only when port-control is set to auto. dot1x quiet-period ces Syntax Set the number of seconds that the authenticator remains quiet after a failed authentication with a client. dot1x quiet-period seconds To disable quiet time, use the no dot1x quiet-time command. Parameters Defaults Command Modes Command History seconds Enter the number of seconds. Range: 1 to 65535 Default: 30 30 seconds INTERFACE Version 8.3.3.
www.dell.com | support.dell.com dot1x reauth-max ces Syntax Configure the maximum number of times a port can re-authenticate before the port becomes unauthorized. dot1x reauth-max number To return to the default, use the no dot1x reauth-max command. Parameters Defaults Command Modes Command History number Enter the permitted number of re-authentications. Range: 1 - 10 Default: 2 2 INTERFACE Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.
Parameters Defaults Command Modes Command History seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant. Default: 30 30 seconds INTERFACE Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on C-Series and S-Series Version 7.4.1.0 Introduced on E-Series dot1x tx-period ces Syntax Configure the intervals at which EAPOL PDUs are transmitted by the Authenticator PAE.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on C-Series, E-Series, and S-Series Figure 35-5. show dot1x interface command Example FTOS#show dot1x int Gi 2/32 802.
• • • show ip ssh client-pub-keys show ip ssh rsa-authentication ssh crypto key generate ces Syntax Parameters Defaults Command Modes Command History Example Generate keys for the SSH server. crypto key generate {rsa | rsa1} rsa Enter the keyword rsa followed by the key size to generate a SSHv2 RSA host keys. Range: 1024 to 2048 Default: 1024 rsa1 Enter the keyword rsa1 followed by the key size to generate a SSHv1 RSA host keys.
www.dell.com | support.dell.com debug ip ssh ces Syntax Enables collecting SSH debug information. debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters Defaults Command Modes Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server. Disabled on both client and server EXEC Command History Usage Information client Version 8.3.3.
ip ssh authentication-retries ces Syntax Configure the maximum number of attempts that should be used to authenticate a user. ip ssh authentication-retries 1-10 Parameters Defaults Command Modes Command History Usage Information 1-10 Enter the number of maximum retries to authenticate a user. Range: 1 to 10 Default: 3 3 CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.
www.dell.com | support.dell.com ip ssh hostbased-authentication ces Syntax Enable hostbased-authentication for the SSHv2 server. ip ssh hostbased-authentication enable To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbased-authentication enable command. Parameters Defaults Command Modes enable Disable by default CONFIGURATION Command History Usage Information Enter the keyword enable to enable hostbased-authentication for SSHv2 server. Version 8.3.3.
Usage Information Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series The server-generated key is used for SSHv1 key-exchange. ip ssh password-authentication ces Syntax Enable password authentication for the SSH server. ip ssh password-authentication enable To disable password-authentication, use the no ip ssh password-authentication enable.
www.dell.com | support.dell.com Example Figure 35-7. ip ssh pub-key-file Command Example FTOS#conf FTOS(conf)# ip ssh pub-key-file flash://knownhosts FTOS(conf)# Usage Information This command specifies the file to be used for the host-based authentication. The file creates/ overwrites the file flash://ADMIN_DIR/ssh/knownhosts and deletes the user specified file.
This file contains hostnames and usernames, for which hosts and users, rhost-authentication can be allowed. Note: For rhostfile and pub-key-file, the administrator must FTP the file to the switch. ip ssh rsa-authentication (Config) ces Syntax Enable RSA authentication for the SSHv2 server. ip ssh rsa-authentication enable To disable RSA authentication, use the no ip ssh rsa-authentication enable command.
www.dell.com | support.dell.com Usage Information Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series If you want to log in without being prompted for a password, log in through RSA authentication. To do that, you must first add the SSHv2 RSA public keys to the list of authorized keys. This command adds the specified RSA keys to the following file: flash://ADMIN_DIR/ssh/authorized-keys-username (where username is the user associated with this terminal).
Related Commands show ip ssh Display the ssh information show crypto ces Syntax Display the public part of the SSH host-keys. show crypto key mypubkey {rsa | rsa1} Parameters Defaults Command Modes Enter the keyword key to display the host public key. mypubkey Enter the keyword mypubkey to display the host public key. rsa Enter the keyword rsa to display the host SSHv2 RSA public key. rsa1 Enter the keyword rsa1 to display the host SSHv1 RSA public key.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Example Figure 35-11. show ip ssh Command Example FTOS#show ip ssh SSH server : SSH server version : Password Authentication : Hostbased Authentication : RSA Authentication Vty Encryption 0 3DES 1 3DES 2 3DES FTOS Related Commands enabled. v1 and v2. enabled. disabled. : disabled. Remote IP 172.16.1.162 172.16.1.162 172.16.1.162 ip ssh server Configure an SSH server. show ip ssh client-pub-keys Display the client-public keys.
show ip ssh rsa-authentication ces Syntax Parameters Defaults Command Modes Command History Example Display the authorized-keys for the RSA authentication. show ip ssh rsa-authentication {my-authorized-keys} my-authorized-keys Display the RSA authorized keys. No default behavior or values EXEC Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced for S-Series Version 7.5.1.0 Introduced for C-Series pre-Version 6.1.1.0 Introduced for E-Series Figure 35-13.
www.dell.com | support.dell.com Defaults Command Modes (OPTIONAL) Enter the keyword -p followed by the port number. Range: 1 to 65536 Default: 22 -v {1 | 2} (OPTIONAL) Enter the keyword -v followed by the SSH version 1 or 2. Default: The version from the protocol negotiation As above. EXEC Privilege Command History Example -p port-number Version 8.3.3.1 Introduced on S60 Version 7.9.1.0 Introduced VRF Version 7.6.1.0 Introduced for S-Series Version 7.5.1.
Command History Related Commands Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on C-Series and S-Series show ip dhcp snooping Display the contents of the DHCP binding table. ip dhcp relay cs Enable Option 82. Syntax ip dhcp relay information-option [trust-downstream] Parameters Command Modes Default Command History trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. CONFIGURATION Disabled Version 8.3.3.
www.dell.com | support.dell.com Parameters Command Modes Default Command History minutes Range: 5-21600 CONFIGURATION None Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp snooping binding cs Create a static entry in the DHCP binding table.
ip dhcp snooping database renew cs Renew the binding table. Syntax ip dhcp snooping database renew Command Modes EXEC EXEC Privilege Default Command History None Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on C-Series and S-Series ip dhcp snooping trust cs Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Command Modes Default Command History INTERFACE Untrusted Version 8.3.3.1 Introduced on S60 Version 7.8.1.
www.dell.com | support.dell.com Parameters Command Modes Default Command History Usage Information Related Commands name Enter the name of a VLAN on which to enable DHCP Snooping. CONFIGURATION Disabled Version 8.3.3.1 Introduced on S60 Version 7.8.1.0 Introduced on C-Series and S-Series When enabled the system begins creating entries in the binding table for the specified VLAN(s). Note that learning only happens if there is a trusted port in the VLAN.
36 Service Provider Bridging Overview Service Provider Bridging is composed of VLAN Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the FTOS Configuration Guide Service Provider Bridging chapter. This chapter includes CLI information for FTOS Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. L2PT is available in FTOS for the C-Series c, E-Series e, and S-Series s. L2PT is supported on E-Series ExaScale ex with FTOS 8.2.1.0.
www.dell.com | support.dell.com debug protocol-tunnel ces Syntax Enable debugging to ensure incoming packets are received and rewritten to a new MAC address. debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] To disable debugging, use the no debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] command.
Command History Example Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduced on the C-Series, E-Series and E-Series ExaScale. Version 7.4.1.0 Introduced Figure 36-1. Protocol-tunneling Command Example FTOS#conf FTOS(conf)#interface vlan 2 FTOS(conf-if-vl-2)#vlan-stack compatible FTOS(conf-if-vl-2)#member Gi1/2-3 FTOS(conf-if-vl-2)#protocol-tunnel stp FTOS(conf-if-vl-2)# Usage Information Related Commands Note: When VLAN-Stacking is enabled, no protocol packets are tunneled.
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.4.1.0 Introduced FTOS must have the default CAM profile with the default microcode before you enable L2PT. protocol-tunnel rate-limit ces Syntax Enable traffic rate limiting per box. protocol-tunnel rate-limit rate To reset the rate limit to the default, use the no protocol-tunnel rate-limit rate command.
Defaults Command Modes Command History Example No default values or behavior EXEC Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduced on the C-Series, E-Series and E-Series ExaScale. Version 7.4.1.0 Introduced Figure 36-3. show protocol-tunnel Command Example FTOS#show protocol-tunnel System Rate-Limit: 1000 Frames/second Interface Vlan Protocol(s) Gi1/2 2 STP, PVST Gi1/3 3 STP, PVST Po35 4 STP, PVST FTOS# Example Figure 36-4.
968 | Service Provider Bridging www.dell.com | support.dell.
37 sFlow Overview sFlow commands are supported on these platforms: c e s. FTOS sFlow monitoring system includes an sFlow Agent and an sFlow Collector. The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
www.dell.com | support.dell.com Commands The sFlow commands are: • • • • • • • • • • • • sflow collector sflow enable (Global) sflow enable (Interface) sflow extended-gateway enable sflow extended-router enable sflow extended-switch enable sflow polling-interval (Global) sflow polling-interval (Interface) sflow sample-rate (Global) sflow sample-rate (Interface) show sflow show sflow linecard sflow collector ces Syntax Specify a collector(s) to which sFlow datagrams are forwarded.
Usage Information Version 6.5.1.0 Expanded the no form of the command to mirror the syntax used to configure Version 6.2.1.1 Introduced on E-Series You can specify up to 2 sFlow collectors. If 2 collectors are specified, the samples are sent to both. As part of the sFlow-MIB, if the SNMP request originates from a configured collector, FTOS will return the corresponding configured agent IP in MIB requests.
www.dell.com | support.dell.com Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series When sFlow is enable on an interface, flow sampling is done on any traffic going out of the interface.
Example Figure 37-1. show sflow Command Output FTOS#show sflow sFlow services are enabled Global default sampling rate: 64 Global default counter polling interval: 1000 Global extended information enabled: gateway, router, switch 1 collectors configured Collector IP addr: 20.20.20.2, Agent IP addr: 10.11.201.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information Related Commands enable Enter the keyword enable to enable global extended information. Disabled CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 7.4.1.0 Introduced on E-Series FTOS 7.8.1.
Related Commands sflow polling-interval (Interface) Set the polling interval for an interface sflow polling-interval (Interface) ces Syntax Set the sFlow polling interval at an interface (overrides the global-level setting.) sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command. Parameters Defaults Command Modes Command History Usage Information Related Commands interval value Enter the interval value in seconds.
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.0 Introduced on E-Series ExaScale Version 7.7.1.0 Introduced on S-Series Version 7.6.1.0 Introduced on C-Series Version 6.2.1.1 Introduced on E-Series Sample-rate is the average number of packets skipped before the sample is taken. This command changes the global default sampling rate.
show sflow ces Syntax Parameters Display the current sFlow configuration show sflow [interface] interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Command Modes For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com show sflow linecard ces Syntax Parameters Command Modes Display the sFlow information on a line card. show sflow linecard {slot number} slot number (OPTIONAL) Enter a slot number to view information on the line card in that slot. Range: 0 to 13 on a E1200, 0 to 6 on a E600/E600i, and 0 to 5 on a E300. EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduces on S-Series Stacking Version 8.1.1.
38 SNMP and Syslog Overview This chapter contains commands to configure and monitor SNMP v1/v2/v3 and Syslog.
www.dell.com | support.dell.com Important Points to Remember • • • • • • Typically, 5-second timeout and 3-second retry values on an SNMP server are sufficient for both LAN and WAN applications.
show snmp engineID ces Syntax Command Modes Display the identification of the local SNMP engine and all remote engines that are configured on the router. show snmp engineID EXEC EXEC Privilege Command History Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Example Figure 38-2.
www.dell.com | support.dell.com Example Figure 38-3. show snmp group Command Example FTOS#show snmp group groupname: ngroup readview : nview notifyview: nview row status: active security model: v3 auth writeview: no write view specified FTOS# Related Commands snmp-server group Configure an SNMP server group show snmp user ces Syntax Command Modes Display the information configured on each SNMP user name. show snmp user EXEC EXEC Privilege Example Figure 38-4.
Example Version 7.5.1.0 Introduced for C-Series unknown Introduced for E-Series Figure 38-5. snmp ifmib ifalias long Command Example !------command run on host connected to switch: --------------! > snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2. This is a port connected to IF-MIB::ifAlias.
www.dell.com | support.dell.com Usage Information Example The example below configures a community named public that is mapped to the security named guestuser with Read Only (ro) permissions. Figure 38-6. snmp-server community Command Example FTOS#config FTOS(conf)# snmp-server community public ro FTOS(conf)# snmp-server community guest ro security-name guestuser FTOS(conf)# The security-name parameter maps the community string to an SNMPv3 user/security name as defined by the community MIB.
Parameters Defaults Command Modes Command History text Enter an alphanumeric text string, up to 55 characters long. No default values or behavior CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command snmp-server enable traps ces Syntax Enable and configure SNMP traps.
www.dell.com | support.dell.com Usage Information FTOS supports up to 16 SNMP trap receivers. If this command is not configured, no traps controlled by this command are sent. If you do not specify a notification-type and notification-option, all traps are enabled. Related Commands snmp-server community Enable SNMP and set the community string. snmp-server engineID ces Syntax Configure name for both the local and remote SNMP engines on the router.
Related Commands show snmp engineID Display SNMP engine and all remote engines that are configured on the router show running-config snmp Display the SNMP running configuration snmp-server group ces Syntax Configure a new SNMP group or a table that maps SNMP users to SNMP views.
www.dell.com | support.dell.com Defaults Command Modes Command History As defined above CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information The following example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview.
(OPTIONAL) Enter the keyword version to specify the security model followed by the security model version number 1, 2c, or 3. version 1 | 2c | 3 Version 1 is the least secure version version 3 is the most secure of the security modes. Version 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. Default: Version 1 • • • auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption.
www.dell.com | support.dell.com When multiple snmp-server host commands are given for the same host and type of notification (trap or inform), each succeeding command overwrites the previous command. Only the last snmp-server host command will be in effect. For example, if you enter an snmp-server host inform command for a host and then enter another snmp-server host inform command for the same host, the second command will replace the first.
snmp-server packetsize ces Syntax Set the largest SNMP packet size permitted when the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command. snmp-server packetsize byte-count Parameters Defaults Command Modes Command History byte-count Enter one of the following values 8, 16, 24 or 32. Packet sizes are 8000 bytes, 16000 bytes, 32000 bytes, and 64000 bytes. 8 CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.
www.dell.com | support.dell.com Related Commands snmp-server community Set the community string. snmp-server user ces Syntax Configure a new user to an SNMP group.
Defaults Command Modes Command History priv password (OPTIONAL) Enter a text string (up to 20 characters long) password that will enables the host to encrypt the contents of the message it sends to the agent. Minimum: 8 characters long access-list-name (Optional) Enter the standard IPv4 access list name (a string up to 16 characters long).
www.dell.com | support.dell.com Note: The number of configurable users is limited to 16. Related Commands Display the information configured on each SNMP user name. show snmp user snmp-server view ces Syntax Configure an SNMPv3 view. snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command.
Defaults Command Modes Enabled. INTERFACE Command History Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Usage Information If the interface is expected to flap during normal usage, you could disable this command.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands show logging Display logging settings and system messages in the internal buffer. default logging buffered ces Syntax Defaults Command Modes Command History Return to the default setting for messages logged to the internal buffer.
default logging monitor ces Syntax Defaults Command Modes Command History Return to the default settings for messages logged to the terminal. default logging monitor level = 7 or debugging CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands logging monitor Set the logging monitor parameters. terminal monitor Send system messages to the terminal/monitor.
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands logging on Enables the logging asynchronously to logging buffer, console, Syslog server, and terminal lines. logging trap Enables logging to the Syslog server based on severity.
logging console ces Syntax Specify which messages are logged to the console. logging console [level] To return to the default values, enter default logging console. To disable logging to the console, enter no logging console. Parameters Defaults Command Modes Command History level (OPTIONAL) Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. Default: 7 or debugging.
www.dell.com | support.dell.com Parameters facility-type (OPTIONAL) Enter one of the following parameters.
Parameters Defaults Command Modes Command History level Indicate a value from 0 to 7 or enter one of the following equivalent words: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 4. 4 or warnings CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.
www.dell.com | support.dell.com logging monitor ces Syntax Specify which messages are logged to Telnet applications. logging monitor [level] To disable logging to terminal connections, enter no logging monitor. Parameters Defaults Command Modes Command History level Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 7 or debugging. 7 or debugging CONFIGURATION Version 8.3.3.
logging source-interface ces Syntax Specify that the IP address of an interface is the source IP address of Syslog packets sent to the Syslog server. logging source-interface interface To disable this command and return to the default setting, enter no logging source-interface.
www.dell.com | support.dell.com Parameters Defaults Command Modes all Enter the keyword all to ensure that all levels are printed asynchronously. level level Enter the keyword level followed by a number as the severity level. A high number indicates a low severity level and visa versa. Range: 0 to 7.
Version 7.5.1.0 Support added for C-Series E-Series legacy command Related Commands logging Enable the logging to another device. logging on Enables logging. show logging ces Syntax Parameters Command Modes Display the logging settings and system messages logged to the internal buffer of the switch. show logging [number | history [reverse][number] | reverse [number] | summary] number (OPTIONAL) Enter the number of message to be displayed on the output.
www.dell.com | support.dell.com Figure 38-11. show logging Command Example (Partial) FTOS#show logging Syslog logging: enabled Console logging: level debugging Monitor logging: level debugging Buffer logging: level debugging, 5604 Messages Logged, Size (524288 bytes) Trap logging: level informational Oct 8 09:25:37: %RPM1:RP1 %BGP-5-ADJCHANGE: Connection with neighbor 223.80.255.254 closed. Hold time expired Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 192.200.13.
Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 8.3.3.1 Introduced on the S60. Version 7.6.1.0 Introduced for S-Series This command displays internal software driver information, which may be useful during troubleshooting switch initialization errors, such as a downed Port-Pipe. terminal monitor ces Syntax Configure the FTOS to display messages on the monitor/terminal. terminal monitor To return to default settings, enter terminal no monitor.
1008 | SNMP and Syslog www.dell.com | support.dell.
39 S-Series Stacking Commands Overview All commands in this chapter are specific to the S-Series platform, as indicated by the s character that appears below each command heading. The commands are always available and operational, whether or not the S-Series has a stacking module inserted. You can use the commands to pre-configure a switch, so that the configuration settings are invoked when the switch is attached to other S-Series units.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information None EXEC Privilege Version 8.3.3.4 Introduced on S60 This command applies to the S60 only. redundancy disable-auto-reboot s Syntax Prevent the S-Series stack management unit and standby unit from rebooting if they fails. redundancy disable-auto-reboot [stack-unit | all] To return to the default, enter no redundancy disable-auto-reboot stack-unit.
reset stack-unit s Syntax Parameters Default Command Modes Command History Usage Information Reset any designated stack member except the management unit (master unit). reset stack-unit stack-unit hard stack-unit Enter the stack member unit identifier of the stack member to reset. S60 range: 0 - 11 all other S-Series range: 0-7 hard Reset the stack unit if the unit is in a problem state. none CONFIGURATION Version 8.3.3.4 Introduced on S60 Version 8.3.1.0 Added hard reset option. Version 7.8.1.
www.dell.com | support.dell.com Related Commands reload Reboot FTOS. upgrade (S-Series management unit) Reset the designated S-Series stack member. show redundancy s Syntax Command Modes Display the current redundancy configuration (status of automatic reboot configuration on stack management unit). show redundancy EXEC EXEC Privilege Command History Example Version 8.3.3.4 Introduced on S60 Version 7.7.1.0 Introduced on S-Series Figure 39-2.
Related Commands redundancy disable-auto-reboot Prevent the system from auto-rebooting if it fails. show system stack-ports s Syntax Parameters Defaults Command Modes Display information about the stacking ports on all switches in the S-Series stack. show system stack-ports [status | topology] status (OPTIONAL) Enter the keyword status to display the command output without the Connection field.
www.dell.com | support.dell.com Example Figure 39-5. show system stack-ports topology Command Example FTOS# show system stack-ports topology Topology: Ring Interface Connection ---------------------0/49 1/49 0/50 0/51 2/49 1/49 0/49 1/50 2/51 2/49 0/51 2/51 1/50 2/52 FTOS# Table 39-1.
Command Modes Command History Related Commands CONFIGURATION Version 8.3.3.4 Introduced on S60 Version 7.7.1.0 Introduced on S-Series reload Reboot FTOS. show system (S-Series) Display the current status of all stack members or a specific member. stack-unit provision s Syntax Parameters Defaults Command Modes Command History Related Commands Pre-configure a logical stacking ID of a switch that will join the stack. This is an optional command that is executed on the management unit.
www.dell.com | support.dell.com Command Modes Command History Usage Information EXEC Privilege Version 8.3.3.4 Introduced on S60 Version 7.7.1.0 Introduced on S-Series You can renumber any switch, including the management unit or a stand-alone unit. You cannot renumber a unit to a number of an active member in the stack. When executing this command on the master, the stack reloads. When the members are renumbered, only that specific unit will reset and come up with the new unit number.
Usage Information Related Commands You must reload FTOS after using the upgrade command. reload Reboot FTOS. reset stack-unit Reset the designated S-Series stack member. show system (S-Series) Display the current status of all stack members or a specific member. show version Display the current FTOS version information on the system. upgrade (S-Series management unit) Upgrade the bootflash image or system image of the S-Series management unit.
www.dell.com | support.dell.
40 Storm Control Overview The FTOS Storm Control feature allows users to limit or suppress traffic during a traffic storm (Broadcast/Unknown Unicast Rate Limiting, or Multicast on the C-Series and S-Series).
www.dell.com | support.dell.com • • • Do not apply per-VLAN QoS on an interface that has storm control enabled (either on an interface or globally). When broadcast storm control is enabled on an interface or globally on ingress, and DSCP marking for a DSCP value 1 is configured for the data traffic, the traffic will go to queue 1 instead of queue 0.
Example Figure 40-2. show storm-control broadcast Command Example (C-Series) FTOS#show storm-control broadcast gigabitethernet 3/24 Broadcast storm control configuration Interface Direction Packets/Second ----------------------------------------------Gi 3/24 Ingress 1000 FTOS# show storm-control multicast cs Display the storm control multicast configuration.
www.dell.com | support.dell.com show storm-control unknown-unicast ces Syntax Parameters Display the storm control unknown-unicast configuration show storm-control unknown-unicast [interface] interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration. • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
storm-control broadcast (Configuration) ces Syntax Configure the percentage of broadcast traffic allowed in or out of the network. storm-control broadcast [percentage decimal_value in | out] | [wred-profile name]] [packets_per_second in] To disable broadcast rate-limiting, use the storm-control broadcast [percentage decimal_value in | out] | [wred-profile name]] [packets_per_second in] command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History percentage decimal_value in E-Series Only: Enter the percentage of broadcast traffic allowed in to the network. Optionally, you can designate a decimal value percentage, for example, 55.5%. Percentage: 0 to 100 0 % blocks all related traffic 100% allows all traffic into the interface Decimal Range: .1 to .
Usage Information Broadcast traffic (all 0xFs) should be counted against broadcast storm control meter, not against the multicast storm control meter. It is possible, however, that some multicast control traffic may get dropped when storm control thresholds are exceeded. storm-control multicast (Interface) cs Configure the percentage of multicast traffic allowed on an C-Series or S-Series interface (ingress only) network only.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information wred-profile name E-Series Only: (Optionally) Enter the keyword wred-profile followed by the profile name to designate a wred-profile. packets_per_second in C-Series and S-Series Only: Enter the packets per second of broadcast traffic allowed into the network. Range: 0 to 33554431 The minimum number of PPS limited on the S60 is 2 No default behavior or values CONFIGURATION Version 8.3.3.
Command History Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 E-Series Only: Added percentage decimal value option Version 6.5.1.
1028 | Storm Control www.dell.com | support.dell.
41 Spanning Tree Protocol (STP) Overview The commands in this chapter configure and monitor the IEEE 802.
www.dell.com | support.dell.com Defaults Command Modes Command History priority-value = 32768 SPANNING TREE (The prompt is “config-stp”.) Version 8.3.3.1 Introduced on S60 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series bpdu-destination-mac-address cs Use the Provider Bridge Group address in Spanning Tree or GVRP PDUs.
Command Modes Command History Usage Information Related Commands EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series When you enable debug spanning-tree bpdu for multiple interfaces, the software only sends information on BPDUs for the last interface specified. protocol spanning-tree Enter SPANNING TREE mode on the switch.
www.dell.com | support.dell.com Related Commands Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series protocol spanning-tree Enter SPANNING TREE mode. forward-delay ces Syntax The amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. forward-delay seconds To return to the default setting, enter no forward-delay.
Command History Related Commands Version 8.3.3.1 Introduced on S60 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series forward-delay Change the wait time before STP transitions to the Forwarding state. max-age Change the wait time before STP refreshes protocol configuration information.
www.dell.com | support.dell.com Command History Example Version 8.3.3.1 Introduced on S60 Version 7.7.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Figure 41-1. protocol spanning-tree Command Example FTOS(conf)#protocol spanning-tree 0 FTOS(config-stp)# Usage Information STP is not enabled when you enter the SPANNING TREE mode. To enable STP globally on the switch, enter no disable from the SPANNING TREE mode.
interface interface (OPTIONAL) Enter the keyword interface and the type slot/port of the interface you want displayed. Type slot/port options are the following: • • • • Command Modes Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a SONET interface, enter the keyword sonet followed by the slot/port information.
www.dell.com | support.dell.com Example Figure 41-3. show spanning-tree Command Example FTOS#show spann 0 Executing IEEE compatible Spanning Tree Protocol Bridge Identifier has priority 32768, Address 0001.e800.0a56 Configured hello time 2, max age 20, forward delay 15 We are the root of the spanning tree Current root has priority 32768 address 0001.e800.
Table 41-1. show spanning-tree Command Example Information (continued) Field “Timers” Description Lists the values for the following bridge timers: • • • • • “Times” hold time topology change hello time max age forward delay List the number of seconds since the last: • • • • hello time topology change notification aging “Port 1...” Displays the Interface type slot/port information and the status of the interface (Disabled or Enabled). “Port path...
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information stp-id Enter the Spanning Tree Protocol group ID. Range: 0 cost cost (OPTIONAL) Enter the keyword cost followed by a number as the cost.
42 Time and Network Time Protocol (NTP) Overview The commands in this chapter configure time values on the system, either using FTOS, or the hardware, or using the Network Time Protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For details, see the “Network Time Protocol” section of the Management chapter in the FTOS Configuration Guide.
www.dell.com | support.dell.com calendar set ces Syntax Parameters Command Modes Command History Example Set the time and date for the switch hardware clock. calendar set time month day year time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format, for example, 17:15:00 is 5:15 pm. month Enter the name of one of the 12 months in English. You can enter the name of a day to change the order of the display to time day month year. day Enter the number of the day.
clock read-calendar ces Syntax Set the software clock on the switch from the information set in hardware clock (calendar). clock read-calendar Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series In the switch, the hardware clock is separate from the software and is called the calendar.
www.dell.com | support.dell.com Example Figure 42-2. clock set Command Example FTOS#clock set 16:20:00 19 may 2001 FTOS# Usage Information You can change the order of the month and day parameters to enter the time and date as time day month year. You cannot delete the software clock. The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots.
Defaults Command Modes Command History Related Commands end-year Enter a four-digit number as the year. Range: 1993 to 2035. offset (OPTIONAL) Enter the number of minutes to add during the summer-time period. Range: 1 to1440. Default: 60 minutes Not configured. CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series calendar set Set the hardware clock.
www.dell.com | support.dell.com end-week Enter the one of the following as the week that daylight savings ends: • • • Defaults Command Modes Command History Related Commands week-number: enter a number from 1-4 as the number of the week to end daylight savings time. first: enter the keyword first to end daylight savings time in the first week of the month. last: enter the keyword last to end daylight savings time in the last week of the month.
Command Modes Command History Usage Information CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series Coordinated Universal Time (UTC) is the time standard based on the International Atomic Time standard, commonly known as Greenwich Mean time. When determining system time, you must include the differentiator between UTC and your local timezone.
www.dell.com | support.dell.com Command Modes Command History packets Enter the keyword packets to display information on NTP packets. select Enter the keyword select to display information on the NTP clock selection. sync Enter the keyword sync to display information on the NTP clock synchronization. EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
Defaults Command Modes Command History Usage Information 7 Specify that the authentication key will be entered in DES encrypted format. key Enter the authentication key in the previously specified format. NTP authentication is not configured by default. If you do not specify the option [0 | 7], 0 is selected by default. CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Added options [0 | 7] for entering authentication key. Version 7.6.1.0 Support added for S-Series Version 7.5.1.
www.dell.com | support.dell.com ntp disable ces Syntax Prevent an interface from receiving NTP packets. ntp disable To re-enable NTP on an interface, enter no ntp disable. Default Command Modes Command History Disabled (that is, if an NTP host is configured, all interfaces receive NTP packets) INTERFACE Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
Defaults Command Modes Command History Usage Information prefer (OPTIONAL) Enter the keyword prefer to indicate that this peer has priority over other servers. version number (OPTIONAL) Enter the keyword version and a number to correspond to the NTP version used on the server. Range: 1 to 3 Not configured. CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series ntp trusted-key ces Syntax Set a key to authenticate the system to which NTP will synchronize. ntp trusted-key number To delete the key, use the no ntp trusted-key number command.
Command Modes Command History CONFIGURATION Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.0 Support added for C-Series pre-Version 6.1.1.0 Introduced for E-Series show calendar ces Syntax Command Modes Display the current date and time based on the switch hardware clock. show calendar EXEC EXEC Privilege Command History Example Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Support added for S-Series Version 7.5.1.
www.dell.com | support.dell.com Example Figure 42-4. show clock Command Example FTOS#show clock 11:05:56.949 UTC Thu Oct 25 2001 FTOS# Example Figure 42-5. show clock detail Command Example FTOS#show clock detail 12:18:10.691 UTC Wed Jan 7 2009 Time source is RTC hardware Summer time starts 02:00:00 UTC Sun Mar 8 2009 Summer time ends 02:00:00 ABC Sun Nov 1 2009 FTOS# Related Commands clock summer-time recurring Display the time and date from the switch hardware clock.
Table 42-1. show ntp associations Command Fields Field Description (none) One or more of the following symbols could be displayed: • • • • • Related Commands * means synchronized to this peer # means almost synchronized to this peer + means the peer was selected for possible synchronization - means the peer is a candidate for selection ~ means the peer is statically configured remote Displays the remote IP address of the NTP peer.
www.dell.com | support.dell.com Table 42-2. Related Commands 1054 | show ntp status Command Example Information Field Description “Clock is...” States whether or not the switch clock is synchronized, which NTP stratum the system is assigned and the IP address of the NTP peer. “frequency is...” Displays the frequency (in ppm), stability (in ppm) and precision (in Hertz) of the clock in this system. “reference time is...” Displays the reference time stamp. “clock offset is...
43 S60 u-Boot Overview All commands in this chapter are in u-Boot. These commands are supported on the only. To access this mode, hit any key when the following line appears on the console during a system boot: Hit any key to stop autoboot: You enter u-Boot immediately, as indicated by the => prompt. Note: This chapter discusses only a few commands available in uBoot. The commands included here are those that are comparable to those found in the Boot User mode on other S-Series systems.
www.dell.com | support.dell.com Example => printenv baudrate=9600 uboot_filesize=0x80000 bootfile=FTOS-SC-1.2.0.0E3.bin bootcmd=echo Booting primary bootline....;$primary_boot;boot;echo Failed;echo Booting secondary bootline....;$secondary_boot;boot;echo Failed;echo Booting default bootline....;$default_boot;boot;echo Failed;echo Rebooting...;reset bootdelay=5 loads_echo=1 rootpath=/opt/nfsroot hostname=unknown loadaddr=640000 ftpuser=FTOS ftppasswd=FTOS uboot=u-boot.
Usage Information You must save your changes before resetting the system, or all changes will be lost. save Save configurations created in uBoot. Syntax Command Modes Command History Usage Information save uBoot Version 8.3.3.1 Introduced on the S60. You must save your changes before resetting the system, or all changes will be lost. setenv Configure system settings.
www.dell.com | support.dell.com 1058 Command Modes Command History | S60 u-Boot uBoot Version 8.3.3.1 Introduced on the S60.
44 Uplink Failure Detection (UFD) Overview Uplink Failure Detection (UFD) provides detection of the loss of upstream connectivity and, if used with NIC teaming, automatic recovery from a failed link.
www.dell.com | support.dell.com Parameters interface interface Specifies one or more downstream interfaces.
Command History Usage Information Version 8.3.12.0 Introduced on S4810 Version 8.4.2.3 Introduced on the S-Series S50. To turn off debugging event messages, enter the no debug uplink-state-group [group-id] command. Related Commands clear ufd-disable Re-enable downstream interfaces that are in a UFD-disabled error state. description s S50 only Syntax Enter a text description of an uplink-state group.
www.dell.com | support.dell.
Command History Usage Information Related Commands Version 8.3.12.0 Introduced on S4810 Version 8.4.2.3 Introduced on the S-Series S50. To disable auto-recovery on downstream links, enter the no downstream auto-recover command. downstream Assign a port or port-channel to the uplink-state group as a downstream interface. uplink-state-group Create an uplink-state group and enabling the tracking of upstream links.
www.dell.com | support.dell.com enable s S50 only Syntax Defaults Command Modes Command History Usage Information Related Commands Enable uplink state group tracking for a specific Uplink Failure Detection (UFD) group. enable Upstream-link tracking is automatically enabled in an uplink-state group. UPLINK-STATE-GROUP Version 8.3.12.0 Introduced on S4810 Version 8.4.2.3 Introduced on the S-Series S50.
upstream TengigabitEthernet 0/48, 52 upstream PortChannel 1 ! uplink state track 2 downstream GigabitEthernet 0/1,3,5,7-10 upstream TengigabitEthernet 0/56,60 Related Commands show uplink-state-group Display status information on a specified uplink-state group or all groups. uplink-state-group Create an uplink-state group and enabling the tracking of upstream links.
www.dell.com | support.dell.
An uplink-state group is considered to be operationally down if no upstream interfaces in the group are in the link-up state. No uplink-state tracking is performed when a group is disabled or in an operationally down state. To delete an uplink-state group, enter the no uplink-state-group group-id command. To disable upstream-link tracking without deleting the uplink-state group, enter the no enable command in uplink-state-group configuration mode.
www.dell.com | support.dell.com You can assign an interface to only one uplink-state group. Each interface assigned to an uplink-state group must be configured as either an upstream or downstream interface, but not both. You can assign individual member ports of a port channel to the group. An uplink-state group can contain either the member ports of a port channel or the port channel itself, but not both. To delete an uplink-state group, enter the no upstream interface command.
45 VLAN Stacking Overview With the VLAN-Stacking feature (also called Stackable VLANs and QinQ), available on all Dell Networking platforms (C-Series c, E-Series e, and S-Series s) that are supported by this version of FTOS, you can “stack” VLANs into one tunnel and switch them through the network transparently.
www.dell.com | support.dell.com • • • • Assigning an IP address to a Stackable VLAN is supported when all the members are only Stackable VLAN trunk ports. IP addresses on a Stackable VLAN-enabled VLAN is not supported if the VLAN contains Stackable VLAN access ports. This facility is provided for SNMP management over a Stackable VLAN enabled VLAN containing only Stackable VLAN trunk interfaces. Layer 3 routing protocols on such a VLAN are not supported.
Usage Information Related Commands You must first enable DEI for this configuration to take effect. dei enable dei mark cs Set the DEI value on egress according to the color currently assigned to the packet. Syntax dei mark {green | yellow} {0 | 1} Parameters Defaults Command Mode Command History Usage Information Related Commands 0|1 Enter the bit value you want to map to a color. green | yellow Choose a color: • • Green: High priority packets that are the least preferred to be dropped.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.6.1.0 Support added for C-Series and S-Series E-Series original Command Usage Information Related Commands You must enable the Stackable VLAN (using the vlan-stack compatible command) on the VLAN prior to adding a member to the VLAN. vlan-stack compatible Enable Stackable VLAN on a VLAN. show interface dei-honor cs Display the dei honor configuration.
Command Mode Command History Example EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 8.3.1.0 Introduced on C-Series and S-Series. FTOS#show interface dei-mark Default CFI/DEI Marking: 0 Interface Drop precedence CFI/DEI -----------------------------------------------Gi 0/1 Green 0 Gi 0/1 Yellow 1 Gi 8/9 Yellow 0 Gi 8/40 Yellow 0 Related Commands dei mark vlan-stack access ces Syntax Specify a Layer 2 port or port channel as an access port to the Stackable VLAN network.
www.dell.com | support.dell.com Command History Version 8.3.3.1 Introduced on S60 Version 8.2.1.0 Introduced on the E-Series ExaScale Version 7.6.1.0 Support added for C-Series and S-Series E-Series original Command Usage Information You must remove the members prior to disabling the Stackable VLAN feature. To view the Stackable VLANs, use the show vlan command in the EXEC Privilege mode. Stackable VLANs contain members, designated by the M in the Q column of the command output. Figure 45-1.
vlan-stack protocol-type ces Syntax Parameters Defaults Command Modes Command History Define the Stackable VLAN Tag Protocol Identifier (TPID) for the outer VLAN tag (also called the VMAN tag). If you do not configure this command, FTOS assigns the value 0x9100. vlan-stack protocol-type number number Enter the hexadecimal number as the Stackable VLAN tag. On the E-Series: FTOS accepts the Most Significant Byte (MSB) and then appends zeros for the Least Significant Byte (LSB).
www.dell.com | support.dell.com Related Commands portmode hybrid Set a port (physical ports only) to accept both tagged and untagged frames. A port configured this way is identified as a hybrid port in report displays. vlan-stack trunk Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network. vlan-stack trunk ces Syntax Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network.
Example 1 Figure 45-2.
1078 | VLAN Stacking www.dell.com | support.dell.
46 Virtual Router Redundancy Protocol (VRRP) Overview Virtual Router Redundancy Protocol (VRRP) commands are supported on all platforms: c, e, and s. To enter the VRRP mode on an interface, use the vrrp-group command at the INTERFACE mode. The interface must be in Layer 3 mode. You can configure up to 12 VRRP groups on one interface. For configuration details, see the VRRP chapter in the FTOS Configuration Guide.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information seconds Enter a number of seconds. Range: 1 to 255. Default: 1 second. 1 second. INTERFACE-VRRP Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series Dell Networking recommends that you keep the default setting for this command.
clear counters vrrp ces Syntax Parameters Command Modes Command History Clear the counters maintained on VRRP operations. clear counters vrrp [vrrp-id] vrrp-id (OPTIONAL) Enter the number of the VRRP group ID. Range: 1 to 255 EXEC Privilege Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series pre-Version 6.2.1.1 Introduced on E-Series debug vrrp ce Allows you to enable debugging of VRRP.
www.dell.com | support.dell.com Usage Information If no options are specified, debug is active on all interfaces and all VRRP groups. description ces Syntax Configure a short text string describing the VRRP group. description text To delete a VRRP group description, enter no description. Parameters Defaults Command Modes Command History text Enter a text string up to 80 characters long. Not enabled. VRRP Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
hold-time ces Syntax Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the initialization of the VRRP MASTER, the new switch can stabilize its routing tables. hold-time seconds To return to the default value, enter no hold-time. Parameters Defaults Command Modes Command History Usage Information Related Commands seconds Enter a number of seconds. Range: 0 to 65535. Default: zero (0) seconds. zero (0) seconds VRRP Version 8.3.3.1 Introduced on S60 Version 7.
www.dell.com | support.dell.com priority ces Syntax Specify a VRRP priority value for the VRRP group. This value is used by the VRRP protocol during the MASTER election process. priority priority To return to the default value, enter no priority. Parameters Defaults Command Modes priority 100 VRRP Command History Usage Information Enter a number as the priority. Enter 255 only if the router’s virtual address is the same as the interface’s primary IP address (that is, the router is the OWNER).
Example Figure 46-1. Command Example: show config FTOS(conf-if-vrid-4)#show con vrrp-group 4 virtual-address 119.192.182.124 ! show vrrp ces Syntax Parameters View the VRRP groups that are active. If no VRRP groups are active, the FTOS returns No Active VRRP group.” show vrrp [vrrp-id] [interface] [brief] vrrp-id (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. Range: 1 to 255.
www.dell.com | support.dell.com Table 46-1. Command Example Descriptions: show vrrp brief Item Description Interface Lists the interface type, slot and port on which the VRRP group is configured. Grp Displays the VRRP group ID. Pri Displays the priority value assigned to the interface. If the track command is configured to track that interface and the interface is disabled, the cost is subtracted from the priority value assigned to the interface.
Table 46-2. Command Example Description: show vrrp Line Beginning with Description GigabitEthernet 12/3... Displays the Interface, the VRRP group ID, and the network address. If the interface is no sending VRRP packets, 0.0.0.0 appears as the network address. State: master... Displays the interface’s state: • Na/If (not available), • master (MASTER virtual router) • backup (BACKUP virtual router) the interface’s priority and the IP address of the MASTER. Hold Down:...
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • cost Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
Command History Usage Information Version 8.3.3.1 Introduced on S60 Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series Version 7.4.1.0 Introduced support for telnetting to the VRRP group IP address assigned using this command pre-Version 6.2.1.1 Introduced on E-Series The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets.
www.dell.com | support.dell.
47 S-Series Debugging and Diagnostics This chapter contains three sections: • • • • Diagnostics and Monitoring Commands Offline Diagnostic Commands Buffer Tuning Commands Hardware Commands Diagnostics and Monitoring Commands For similar commands, see also Chapter 4, Control and Monitoring. logging coredump server s Syntax Enable the S-Series to send application core dumps to an FTP server.
www.dell.com | support.dell.com Offline Diagnostic Commands The offline diagnostics test suite is useful for isolating faults and debugging hardware. While tests are running, FTOS results are saved as a text file (TestReport-SU-X.txt) in the flash directory. This show file command is available only on master and standby. Important Points to Remember • • • • Offline diagnostics can only be run when the unit is offline. You can only run offline diagnostics on a unit to which you are connected via console.
Command Modes EXEC Privilege Command History Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series offline stack-unit s Syntax Place a stack unit in the offline state. offline stack-unit number Parameters Defaults Command Mode Command History number Enter the stack unit number. Unit ID range: S60: 0-11 all other S-Series: 0-7 None EXEC Privilege H Version 8.3.3.1 Introduced on the S60. Version 8.2.1.0 Added warning message to off-line diagnostic Version 7.7.1.
www.dell.com | support.dell.com Command Mode Command History EXEC Privilege H Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.7.1.0 Introduced on S-Series show environment (S-Series) View S-Series system component status (for example, temperature, voltage).
queue1 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 1. Dedicated Buffer Range: 0-2013 Dynamic Buffer Range: FP: 0-2013 CSF: 0-131200 (in multiples of 80) Packet Pointer Range: 0-2047 queue2 number Enter this keyword to allocate an amount of buffer space or packet pointers to Queue 2.
www.dell.com | support.dell.com Command Mode Usage Information BUFFER PROFILE If you attempt to apply a buffer profile to a non-existent port-pipe, FTOS displays the following message. However, the configuration still appears in the running-config. %DIFFSERV-2-DSA_BUFF_CARVING_INVALID_PORT_SET: Invalid FP port-set 2 for linecard 2.
Usage Information The buffer-profile global command fails if you have already applied a custom buffer-profile on an interface. Similarly, when buffer-profile global is configured, you cannot not apply buffer-profile on any interface. If the default buffer-profile (4Q) is active, FTOS displays an error message instructing you to remove the default configuration using the command no buffer-profile global. You must reload the system for the global buffer-profile to take effect.
www.dell.com | support.dell.com Example Figure 47-1. show buffer-profile Command Example FTOS#show buffer-profile summary fp-uplink Linecard Port-set Buffer-profile 0 0 test1 4 0 test2 FTOS# Related Commands buffer-profile (Configuration) Create a buffer profile that can be applied to an interface. show buffer-profile interface cs Display the buffer profile that is applied to an interface.
Hardware Commands These commands display information from a hardware sub-component or ASIC. The commands are: • • • • • • • • clear hardware system-flow clear hardware system-flow hardware watchdog show hardware layer2 acl show hardware layer3 show hardware stack-unit show hardware stack-unit buffering-unit show hardware system-flow clear hardware stack-unit s Syntax Parameters Clear statistics from selected hardware components.
www.dell.com | support.dell.com Command History Related Commands Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced on S-Series show hardware stack-unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member. clear hardware system-flow s Syntax Parameters Clear system-flow statistics from selected hardware components.
Usage Information This command enables a hardware watchdog mechanism that automatically reboots an FTOS switch/ router with a single unresponsive unit. This is a last resort mechanism intended to prevent a manual power cycle. show hardware layer2 acl s Syntax Parameters Defaults Command Modes Command History Display Layer 2 ACL data for the selected stack member and stack member port-pipe.
www.dell.com | support.dell.com show hardware stack-unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member.
Example 1 Version 7.8.1.0 Modified: stack-port keyword range expanded from 49-52 to 0-52; output modified for the cpu data-plane statistics option; the following options were added: drops [unit 0-1 [port 0-27]] ; unit 0-1 {counters | details | port-stats [detail] | register} Version 7.7.1.0 Introduced on S-Series Figure 47-3.
www.dell.com | support.dell.com Example 4 1104 Figure 47-6.
Example 5 Figure 47-7. show hardware stack-unit unit 1 register Command Example FTOS#show hardware stack-unit 0 unit 1 register 0x0068003c AGINGCTRMEMDEBUG.mmu0 = 0x00000000 0x0068003d AGINGEXPMEMDEBUG.mmu0 = 0x00000000 0x00680017 ASFCONFIG.mmu0 = 0x0000000e 0x0060004c ASFPORTSPEED.ge0 = 0x00000000 0x0060104c ASFPORTSPEED.ge1 = 0x00000000 0x0060204c ASFPORTSPEED.ge2 = 0x00000000 0x0060304c ASFPORTSPEED.ge3 = 0x00000000 0x0060404c ASFPORTSPEED.ge4 = 0x00000000 0x0060504c ASFPORTSPEED.
www.dell.com | support.dell.com Example 4 Figure 47-8.
show hardware stack-unit buffering-unit Display the multicast buffering information for a standalone switch. Syntax Parameters show hardware stack-unit stack-unit buffering unit {[execute-shell-cmd command name | no-more] [queue-stats multicast cos-queue queue number] stack-unit stack-unit {command-option} Enter the keyword stack-unit to select a particular stack member and then enter one of the following command options to display a collection of data based on the option entered.
www.dell.com | support.dell.com 1108 Command Modes Command History Example 1 EXEC Privilege Version 8.3.3.1 Introduced on the S60. Version 7.8.1.0 Introduced on S-Series Figure 47-9.
Example 2 Figure 47-10.
www.dell.com | support.dell.
A SNMP Traps This chapter lists the traps sent by FTOS. Each trap is listed by the fields Message ID, Trap Type, and Trap Option, and the next is the message(s) associated with the trap. Table A-1. SNMP Traps and Error Messages Message ID Trap Type Trap Option COLD_START SNMP COLDSTART %SNMP-5-SNMP_COLD_START: SNMP COLD_START trap sent.
www.dell.com | support.dell.com Table A-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option CHM_CARD_DOWN ENVMON NONE %CHMGR-1-CARD_SHUTDOWN: %sLine card %d down - %s %CHMGR-2-CARD_DOWN: %sLine card %d down - %s CHM_CARD_UP ENVMON NONE %CHMGR-5-LINECARDUP: %sLine card %d is up CHM_CARD_MISMATCH ENVMON NONE %CHMGR-3-CARD_MISMATCH: Mismatch: line card %d is type %s - type %s required.
Table A-1.
www.dell.com | support.dell.com Table A-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option %CHMGR-5-CPU_THRESHOLD_CLR: Cpu %s usage drops below threshold. Cpu5SecUsage (%d) CHM_MEM_THRESHOLD ENVMON NONE %CHMGR-5-MEM_THRESHOLD: Memory %s usage above threshold. MemUsage (%d) CHM_MEM_THRESHOLD_CLR ENVMON NONE %CHMGR-5-MEM_THRESHOLD_CLR: Memory %s usage drops below threshold.
