FTOS Command Line Reference Guide for the S4810 System FTOS 9.1.(0.
Notes, Cautions, and Warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2013 Dell Inc.
Contents 1 About this Guide........................................................................................................................ 49 Objectives............................................................................................................................................................... 49 Audience.................................................................................................................................................................49 Conventions.....
show boot system................................................................................................................................................... 83 show bootvar.......................................................................................................................................................... 84 show file..................................................................................................................................................................
ftp-server enable.................................................................................................................................................. 125 ftp-server topdir....................................................................................................................................................126 ftp-server username............................................................................................................................................. 126 hostname..
show processes memory (C-Series and E-Series)............................................................................................... 178 show processes memory (S-Series).....................................................................................................................181 show processes switch-utilization....................................................................................................................... 184 show rpm.................................................
service.................................................................................................................................................................. 218 traceroute cache hold-time..................................................................................................................................219 traceroute cache size...........................................................................................................................................
resequence prefix-list ipv4.............................................................................................................................249 seq..................................................................................................................................................................250 Extended IP ACL Commands.................................................................................................................................252 deny..........................
show config....................................................................................................................................................307 show ip prefix-list detail................................................................................................................................. 308 show ip prefix-list summary........................................................................................................................... 308 Route Map Commands................
show ip community-lists.................................................................................................................................338 8 Bidirectional Forwarding Detection (BFD)..........................................................................341 bfd all-neighbors...................................................................................................................................................341 bfd disable........................................................
bgp log-neighbor-changes.............................................................................................................................371 bgp non-deterministic-med............................................................................................................................371 bgp recursive-bgp-next-hop.......................................................................................................................... 372 bgp regex-eval-optz-disable..........................
neighbor remote-as........................................................................................................................................401 neighbor remove-private-as...........................................................................................................................402 neighbor route-map........................................................................................................................................403 neighbor route-reflector-client............
bgp dampening...............................................................................................................................................449 clear ip bgp ipv4 multicast............................................................................................................................. 449 clear ip bgp dampening..................................................................................................................................450 clear ip bgp flap-statistics...........
show ip bgp ipv4 extcommunity-list............................................................................................................... 481 show ip bgp paths extcommunity...................................................................................................................482 show ip extcommunity-list............................................................................................................................. 482 show running-config extcommunity-list.....................
debug ip bgp updates.....................................................................................................................................508 default-metric.................................................................................................................................................508 description......................................................................................................................................................509 distance bgp...............
show ip bgp ipv6 unicast community............................................................................................................. 536 show ip bgp ipv6 unicast community-list....................................................................................................... 536 show ip bgp ipv6 unicast dampened-paths....................................................................................................537 show ip bgp ipv6 unicast detail...........................................
show ip bgp ipv6 unicast................................................................................................................................561 show ip bgp ipv6 unicast cluster-list..............................................................................................................563 show ip bgp ipv6 unicast community............................................................................................................. 563 show ip bgp ipv6 unicast community-list..................
12 Control Plane Policing (CoPP).............................................................................................599 control-plane-cpuqos........................................................................................................................................... 599 service-policy rate-limit-cpu-queues................................................................................................................... 599 service-policy rate-limit-protocols............................
scheduler........................................................................................................................................................625 set-pgid.......................................................................................................................................................... 626 show interface ets..........................................................................................................................................627 show qos dcb-output.
default-router................................................................................................................................................. 664 disable............................................................................................................................................................ 665 dns-server...................................................................................................................................................... 665 domain-name....
ip ecmp-group.......................................................................................................................................................690 ipv6 ecmp-deterministic....................................................................................................................................... 690 link-bundle-distribution trigger-threshold............................................................................................................
timer......................................................................................................................................................................721 20 GARP VLAN Registration (GVRP)........................................................................................723 clear gvrp statistics.............................................................................................................................................. 724 debug gvrp..................................
ip igmp query-max-resp-time.........................................................................................................................754 ip igmp ssm-map............................................................................................................................................ 755 ip igmp static-group....................................................................................................................................... 756 ip igmp version.........................
negotiation auto............................................................................................................................................. 793 portmode hybrid............................................................................................................................................. 795 rate-interval....................................................................................................................................................796 show config.............
IPv4 Routing........................................................................................................................... 847 arp.........................................................................................................................................................................847 arp backoff-time................................................................................................................................................... 848 arp learn-enable.........
show ip cam linecard............................................................................................................................................887 show ip cam stack-unit.........................................................................................................................................889 show ip fib linecard...............................................................................................................................................
IPv6 Route Map Commands..................................................................................................................................941 match ipv6 address........................................................................................................................................ 941 match ipv6 next-hop.......................................................................................................................................942 match ipv6 route-source...............
show iscsi............................................................................................................................................................. 975 show iscsi session................................................................................................................................................976 show iscsi session detailed..................................................................................................................................
isis metric............................................................................................................................................................1003 isis network point-to-point..................................................................................................................................1004 isis password......................................................................................................................................................
MAC Addressing Commands..............................................................................................................................1039 clear mac-address-table..............................................................................................................................1039 mac accounting destination.........................................................................................................................1040 mac-address-table aging-time........................
fefd-global.................................................................................................................................................... 1076 show fefd......................................................................................................................................................1077 32 Link Layer Discovery Protocol (LLDP)..............................................................................1079 LLPD Commands...............................................
ip msdp originator-id...........................................................................................................................................1104 ip msdp peer....................................................................................................................................................... 1105 ip msdp redistribute............................................................................................................................................
show queue backplane multicast................................................................................................................ 1138 IPv6 Multicast Commands.................................................................................................................................. 1138 clear ipv6 mroute..........................................................................................................................................1139 debug ipv6 mld_host..........................
enable inverse mask.................................................................................................................................... 1172 fast-convergence.........................................................................................................................................1172 flood-2328..................................................................................................................................................... 1173 graceful-restart grace-period...
show ip ospf neighbor.................................................................................................................................. 1214 show ip ospf routes...................................................................................................................................... 1215 show ip ospf statistics..................................................................................................................................1216 show ip ospf timers rate-limit........
ip pim bsr-border..........................................................................................................................................1253 ip pim bsr-candidate.................................................................................................................................... 1253 ip pim dr-priority........................................................................................................................................... 1254 ip pim graceful-restart........
39 Port Monitoring....................................................................................................................1285 description.......................................................................................................................................................... 1285 flow-based enable.............................................................................................................................................. 1286 monitor session......................
service-class dot1p-mapping.......................................................................................................................1323 service-class dynamic dot1p....................................................................................................................... 1323 show interfaces rate.................................................................................................................................... 1325 strict-priority queue..............................
test cam-usage.............................................................................................................................................1364 threshold...................................................................................................................................................... 1365 trust.............................................................................................................................................................. 1366 wred..............
rmon hc-alarm.................................................................................................................................................... 1399 show rmon.......................................................................................................................................................... 1400 show rmon alarms..............................................................................................................................................
enable password..........................................................................................................................................1434 enable restricted.......................................................................................................................................... 1435 enable secret............................................................................................................................................... 1436 login authentication...........
debug ip ssh................................................................................................................................................. 1464 ip scp topdir..................................................................................................................................................1464 ip ssh authentication-retries........................................................................................................................ 1465 ip ssh connection-rate-limit..
sflow extended-router enable............................................................................................................................ 1493 sflow extended-switch enable........................................................................................................................... 1494 sflow polling-interval (Global).............................................................................................................................1495 sflow polling-interval (Interface)..
logging source-interface..............................................................................................................................1529 logging synchronous.................................................................................................................................... 1530 logging trap.................................................................................................................................................. 1531 show logging........................
show config........................................................................................................................................................ 1567 show spanning-tree 0......................................................................................................................................... 1568 spanning-tree......................................................................................................................................................
show uplink-state-group.....................................................................................................................................1605 uplink-state-group.............................................................................................................................................. 1606 upstream.............................................................................................................................................................
debug vrrp.................................................................................................................................................... 1637 description....................................................................................................................................................1638 disable.......................................................................................................................................................... 1638 hold-time........
About this Guide 1 This book provides information about the Dell Force10 operating software (FTOS) command line interface (CLI). This book also includes information about the protocols and features found in FTOS (C-Series, E-Series, S-Series, ZSeries, and S4810).
[X] Keywords and parameters within brackets are optional. x|y Keywords and parameters separated by a bar require you to choose one option. x||y Keywords and parameters separated by a double bar allows you to choose any or all of the options. Information Icons This book uses the following information symbols: NOTE: The Note icon signals important operational information. CAUTION: The Caution icon signals information about situations that could result in equipment damage or loss of data.
CLI Basics 2 This chapter describes the command line interface (CLI) structure and command modes. The Dell Force10 operating software (FTOS) commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols. Accessing the Command Line When the system boots successfully, you are positioned on the command line in EXEC mode and not prompted to log in. You can access the commands through a serial console port or a Telnet session.
When another user enters CONFIGURATION mode, FTOS sends a message similar to the following: % Warning: User "admin" on line vty2 "172.16.1.210" is in configuration In this case, the user is “admin” on vty2. Obtaining Help As soon as you are in a command mode there are several ways to access help. To obtain a list of keywords at any command mode: Type a ? at the prompt or after a keyword. There must always be a space before the ?.
When entering commands, you can take advantage of the following timesaving features: • The commands are not case-sensitive. • You can enter partial (truncated) command keywords. For example, you can enter int gig int interface for the interface gigabitethernet interface command. • Use the TAB key to complete keywords in commands. • Use the up Arrow key to display the last enabled command. • Use either the Backspace key or Delete key to erase the previous character.
• CLI mode is the second part of the prompt and reflects the current CLI mode. For a list of the FTOS command modes, refer to the command mode list in the Accessing the Command Line section. The CLI prompt changes as you move up and down the levels of the command structure. Starting with CONFIGURATION mode, the command prompt adds modifiers to further identify the mode. For more information about command modes, refer to the Command Modes section.
save copies the output to a file for future use Displaying All Output To display the output all at once (not one screen at a time), use the no-more option after the pipe. This operation is similar to the terminal length screen-length command except that the no-more option affects the output of just the specified command. For example: FTOS#show running-config|no-more. Filtering the Command Output Multiple Times You can filter a single command output multiple times.
1. Verify that you are logged in to EXEC Privilege mode. 2. Enter the configure command. The prompt changes to include (conf). From this mode, you can enter INTERFACE mode by using the interface command. CONTROL-PLANE Mode To manage control-plane traffic, use CONTROL-PLANE mode. For more information, refer to Control Plane Policing (CoPP). To enter CONTROL-PLANE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the control-plane-cpuqos command.
ECMP GROUP Mode To enable or configure traffic distribution monitoring on an ECMP link bundle, use ECMP GROUP mode. For more information, refer to ecmp_overview. To enter ECMP GROUP mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the ecmp-group command then enter the ECMP group ID. The prompt changes to include (conf-ecmpgroup-ecmp-group-id). You can return to CONFIGURATION mode by using the exit command. EIS Mode To enable or configure Egress Interface Selection (EIS), use EIS mode.
2. Enter the ip extcommunity-list command then a community list name. The prompt changes to include (conf-ext-community-list). You can return to CONFIGURATION mode by using the exit command. FRRP Mode To enable or configure Force10 Resilient Ring Protocol (FRRP), use FRRP mode. For more information, refer to Force10 Resilient Ring Protocol (FRRP). To enter FRRP mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the protocol frrp command then the ring ID.
Prompt Interface Type FTOS(conf-iftu-0)# Tunnel interface then tunnel ID. FTOS(conf-ifrange)# Designated interface range (used for bulk configuration). IP ACCESS LIST Mode To enter IP ACCESS LIST mode and configure either standard or extended access control lists (ACLs), use the ip access-list standard or ip access-list extended command. To enter IP ACCESS LIST mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Use the ip access-list standard or ip access-list extended command.
LINE Mode To configure the console or virtual terminal parameters, use LINE mode. To enter LINE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the line command. Include the keywords console or vty and their line number available on the switch. The prompt changes to include (config-line-console) or (config-line-vty). You can exit this mode by using the exit command.
1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the openflow of-instance command then the OpenFlow ID number of the instance you want to create or configure. The prompt changes to include (conf-of-instance of-id). You can return to the CONFIGURATION mode by entering the exit command. Per-VLAN SPANNING TREE (PVST+) Plus Mode To enable and configure the Per-VLAN Spanning Tree (PVST+) protocol, use PVST+ mode. For more information, refer to Per-VLAN Spanning Tree Plus (PVST+).
PROTOCOL GVRP Mode To enable and configure GARP VLAN Registration Protocol (GVRP), use PROTOCOL GVRP mode. For more information, refer to GARP VLAN Registration (GVRP). To enter PROTOCOL GVRP mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the protocol gvrp command. The prompt changes to include (config-gvrp). You can return to CONFIGURATION mode by using the exit command. QOS POLICY Mode To configure ETS bandwidth allocation and scheduling for priority traffic, use QOS POLICY mode.
1. Verify that you are logged in to CONFIGURATION mode. 2. Use the router bgp command then enter the AS number. The prompt changes to include (conf-router_bgp). You can return to CONFIGURATION mode by using the exit command. ROUTER ISIS Mode To enable and configure Intermediate System to Intermediate System (ISIS), use ROUTER ISIS mode. For more information, refer to Intermediate System to Intermediate System (IS-IS). To enter ROUTER ISIS mode: 1. Verify that you are logged in to CONFIGURATION mode. 2.
SPANNING TREE Mode To enable and configure the Spanning Tree protocol, use SPANNING TREE mode. For more information, refer to Spanning Tree Protocol (STP). To enter SPANNING TREE mode: 1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the protocol spanning-tree stp-id command. The prompt changes to include (conf-stp). You can return to CONFIGURATION mode by using the exit command. TRACE-LIST Mode To configure a Trace list, use TRACE-LIST mode. To enter TRACE-LIST mode: 1.
1. Verify that you are logged in to CONFIGURATION mode. 2. Enter the uplink-state-group command then the group ID number. The prompt changes to include (confuplink-state-group-groupID). Determining Chassis Mode Chassis mode in FTOS determines which hardware is being supported in an E-Series chassis. Chassis mode is programmed into an electrically erasable programmable read-only memory (EEPROM) on the backplane of the chassis and the change takes place only after the chassis is rebooted.
3 File Management This chapter contains command line interface (CLI) commands needed to manage the configuration files as well as other file management commands. The commands in this chapter are supported by the Dell Force10 operating software (FTOS) on the E-Series, C-Series, SSeries, Z-Series, S4810 and S4820T platforms. boot config Set the location and name of the configuration file that is loaded at system start-up (or reload) instead of the default startup-configuration.
NOTE: Dell Force10 strongly recommends using local files for configuration (RPM0, RPM1 flash, or slot0). When you specify a file as the boot config file, it is listed in the boot variables (bootvar) as LOCAL CONFIG FILE. • When you do not specify a boot config file, the startup-configuration is used, although the bootvar shows LOCAL CONFIG FILE = variable does not exist. • When you specify a boot config file, the switch reloads with that config file, rather than the startup-config.
boot host Set the location of the configuration file from a remote host. C-Series, E-Series Syntax Parameters boot host {primary | secondary} remote-url primary Enter the keyword primary to attempt to load the primary host configuration files. secondary Enter the keyword secondary to attempt to load the secondary host configuration files.
remote-url Defaults none Command Modes CONFIGURATION Command History Enter the following location keywords and information: • For a file on an FTP server, enter ftp://user:password@hostip/ • For a file on a TFTP server, enter tftp://hostip/filepath filepath Version 7.5.1.0 Introduced on C-Series E-Series Original command Usage Information To display these changes in the show bootvar command output, save the running configuration to the startup configuration (using the copy command).
A: | B: Defaults Not configured. Command Modes CONFIGURATION Command History Enter A: or B: to boot one of the system partitions. Version 8.3.12.0 Deprecated command. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Usage Information To display these changes in the show bootvar command output, you must save the running configuration to the startup configuration (using the copy command) and reload system.
cd Change to a different working directory. C-Series, E-Series, S-Series Syntax Parameters Command Modes Command History cd directory directory (OPTONAL) Enter one of the following: • flash: (internal Flash) or any sub-directory • slot0: (external Flash) or any sub-directory (C-Series and E-Series only) EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on C-Series E-Series Original command change bootflash-image Change boot flash image from which to boot.
E-Series Usage Information Original command A system message appears stating that the bootflash image has been changed. You must reload the system before the system can switch to the new bootflash image. copy Copy one file to another location. FTOS supports IPv4 and IPv6 addressing for FTP, TFTP, and SCP (in the hostip field).
To copy a file on the external FLASH enter slot0:// followed by the filename To copy a file on a TFTP server enter tftp://hostip/filepath ExaScale only: Command Modes Command History Usage Information To copy a file from a USB drive on RPM0 enter rpm0usbflash://filepath To copy a file from an external USB drive enter usbflash://filepath EXEC Privilege Version 8.4.1.0 Added IPv6 addressing support for FTP, TFTP, and SCP. Version 8.2.1.
Example FTOS#copy running-config scp:/ Address or name of remote host []: 10.10.10.1 Destination file name [startup-config]? old_running User name to login remote host? sburgess Password to login remote host? dilling In this copy scp: flash: example, specifying SCP in the first position indicates that the target is to be specified in the ensuing prompts. Entering flash: in the second position indicates that the target is the internal Flash.
Command Modes Command History Usage Information CONFIGURATION Version 8.4.1.0 Added IPv6 addressing support for FTP, TFTP, and SCP. Version 7.5.1.0 Introduced on the C-Series Version 6.1.1.0 Introduced In this streamline copy command, the source image is copied to the primary RPM and then, if specified, to the standby RPM. After the copy is complete, the new image file path on each RPM is automatically configured as the primary image path for the next boot.
delete Delete a file from the flash. After deleted, files cannot be restored. C-Series, E-Series, S-Series Syntax Parameters delete flash-url [no-confirm] flash-url no-confirm Command Modes Command History Enter the following location and keywords: • For a file or directory on the internal Flash, enter flash:// followed by the filename or directory name. • For a file or directory on the external Flash, enter slot0:// followed by the filename or directory name.
Version 7.5.1.0 Introduced on the C-Series E-Series Original command Example FTOS#dir Directory of flash: 1 -rwx 6478482 May 13 101 16:54:34 E1200.BIN flash: 64077824 bytes total (57454592 bytes free) FTOS# Related Commands cd – changes the working directory. download alt-boot-image Download an alternate boot image to the chassis. C-Series, E-Series Syntax download alt-boot-image file-url Command Modes EXEC Privilege Command History Usage Information Version 7.7.1.
Command Modes Command History Usage Information EXEC Privilege Version 7.7.1.0 Removed from E-Series Version 6.5.1.0 Introduced Starting with FTOS 7.7.1.0, the functions of this command are incorporated into the upgrade command. NOTE: For software upgrade details, refer to the FTOS Release Notes. Related Commands upgrade (E-Series version) – upgrades the bootflash or boot selector versions.
Parameters filesystem: To reformat the internal Flash, enter flash: • To reformat the external Flash, enter slot0: Enter the keyword dosFs1.0 to format in DOS 1.0 (the default). dosFs2.0 Enter the keyword dosFs2.0 to format in DOS 2.0. DOS 1.0 (dosFs1.0) Command Modes EXEC Privilege Usage Information • dosFs1.0 Defaults Command History Enter one of the following: Version 7.5.1.0 Introduced on the C-Series E-Series Original command When you format flash: • The startup-config is erased.
Command History Usage Information Version 7.8.1.0 Introduced on the S-Series You must include the colon (:) when entering this command. After reformatting is complete, three empty directories are automatically created on flash: CRASH_LOG_DIR, TRACE_LOG_DIR and NVTRACE_LOG_DIR. CAUTION: This command deletes all files, including the startup configuration file.
fsck flash (S-Series and Z-Series) Checks the flash file system for errors. S4810, S4820T, Z-Series Syntax fsck flash: fsck usbflash: Defaults none Command Modes EXEC Privilege Command History Usage Information Version 9.1(0.0) Introduced on S4810 and Z9000. Version 8.3.19.0 Introduced on S4820T. You must include the colon (:) when entering this command. This command checks the specified flash memory for errors. If errors are found, the command recommends that you format the flash.
Example FTOS#pwd flash: FTOS# Related Commands cd – changes the directory. rename Rename a file in the local file system. C-Series, E-Series, S-Series Syntax Parameters Command Modes Command History rename url url url Enter the following keywords and a filename: • For a file on the internal Flash, enter flash:// followed by the filename. • For a file on the external Flash, enter slot0:// followed by the filename. EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.
rpm Defaults Command Modes Command History Example Enter the keyword rpm to display boot image information for all RPMs on the system. none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000 Version 8.3.11.1 Introduced on the Z9000 Version 7.7.1.0 Introduced on the C-Series and E-Series.
Version 7.5.1.0 Introduced on the C-Series. E-Series Original command. Example FTOS#show bootvar PRIMARY IMAGE FILE = ftp://box:password@10.31.1.205//home/ 5.3.1/5.3.1.0/FTOS-ED-RPM1-5.3.1.0.bin SECONDARY IMAGE FILE = variable does not exist DEFAULT IMAGE FILE = flash://FTOS-ED-5.3.1.0.
Version 7.5.1.0 Introduced on the C-Series E-Series Original command Example FTOS#show file flash://startup-config ! boot system rpm0 primary ftp://test:server@10.16.1.144//home/ images/ E1200_405-3.1.2b1.86.bin boot system rpm0 secondary flash://FTOS-ED-6.1.1.0.bin boot system rpm0 default ftp://:@/\ ! redundancy auto-synchronize persistent-data redundancy primary rpm0 ! hostname E1200-20 ! enable password 7 94849d8482d5c3 ! username test password 7 93e1e7e2ef ! enable restricted 7 948a9d848cd5c3 ! pr
Example FTOS#show file-systems Size(b) Free(b) Feature Type Flags Prefixes 63938560 51646464 dosFs2.0 MMC rw flash: 63938560 18092032 dosFs1.0 MMC rw slot0: - - - network rw ftp: - - - network rw tftp: - - - network rw scp: FTOS# Command Fields Field Description size(b) Lists the size (in bytes) of the storage location. If the location is remote, no size is listed. Free(b) Lists the available size (in bytes) of the storage location. If the location is remote, no size is listed.
boot-information Command Modes Command History Example (OPTIONAL) Enter the keyword boot-information to view cache boot information of all line cards in table format. EXEC Privilege Version 7.5.1.0 Introduced on the C-Series E-Series Original command FTOS#show linecard boot-information -- Line cards -Serial Booted Next Cache Boot # Status CurType number f rom b o ot b o ot flash ----------------------------------------------------0 1 2 3 online E48TF FX000032632 4.7.7.171 4.7.7.
Command Modes Command History Usage Information EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series Version 7.5.1.0 Introduced on the C-Series E-Series Original command NOTE: A filepath that contains a dot ( . ) is not supported. Example (ESeries) FTOS#show os-version RELEASE IMAGE INFORMATION : --------------------------------------------------Platform Version Size ReleaseTime E-series: EF 7.5.1.
show running-config Display the current configuration and display changes from the default values. C-Series, E-Series, S-Series, Z-Series Syntax Parameters show running-config [entity] [configured] [status] entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration: NOTE: If nothing is configured for that entity, nothing is displayed and the prompt returns.
ip for the current IP configuration isis for the current ISIS configuration line for the current line configuration lldp for the current LLDP configuration load-balance for the current port-channel load-balance configuration logging for the current logging configuration mac for the current MAC ACL configuration mac-addresstable for the current MAC configuration managementroute for the current Management port forwarding configuration mld for the current MLD configuration monitor for the
Command Modes Command History Example 92 rip for the current RIP configuration rmon for the current RMON configuration route-map for the current route map configuration sflow for the current sFlow configuration snmp for the current SNMP configuration spanningtree for the current spanning tree configuration static for the current static route configuration status for the file status information tacacs+ for the current TACACS+ configuration tftp for the current TFTP configuration trace-
! boot system rpm0 primary flash://FTOS-EF-7.4.1.0.bin boot system rpm0 secondary flash://FTOS-EF-6.3.1.2.bin boot system rpm0 default flash://FTOS-EF-6.5.1.8.bin ! ... Example FTOS#show running-config status running-config checksum 0xB4B9BF03 startup-config checksum 0x8803620F FTOS# Usage Information The status option allows you to display the size and checksum of the running configuration and the startup configuration. show sfm View the current SFM status.
Date Code : 06182004 Country Code : 01 Command Fields Example Field Description Switch Fabric State: States that the Switch Fabric is up (eight SFMs are online and operating). Status Displays the SFM’s active status. Card Type States the type of SFM. Up Time Displays the number of hours and minutes since the RPM’s last reboot. Temperature Displays the temperature of the RPM. Minor alarm status if the temperature is over 65°C. Power Status Displays power status: absent, down, or up.
Command Modes Command History EXEC Privilege Version 7.6.1.0 Introduced on S-Series Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Expanded to include the last configuration change, start-up last updated (date and time), and who made the change. Example FTOS#show startup-config ! Version 7.4.1.0 ! Last configuration change at Thu Mar 29 02:16:07 2007 by default ! Startup-config last updated at Thu Mar 29 02:35:08 2007 by default ! boot system rpm0 primary flash://FTOS-EF-7.4.1.0.
Example (ESeries) FTOS#show version Dell Force10 Networks Real Time Operating System SoftwareDe Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: 5.3.1.0 Copyright (c) 1999-2004 by Dell Force10 Networks, Inc. Build Time: Sun May 9 00:57:03 PT 2004 Build Path: /local/local0/Release/5-4-1/SW/Bsp/Diag Dell Force10 uptime is 1 days, 3 hours, 16 minutes System image file is "/home/5.3.1/5.3.1.0/FTOS-EDRPM1-5.3.1.0.
Example (SSeries) Lines Beginning With Description System image... Image file name Chassis Type: Chassis type (for example, E1200, E600, E600i, E300, C300, C150, S25, S50, S55, S60, S4810) Control Processor:... Control processor information and amount of memory on processor Route Processor 1:... E-Series route processor 1 information and the amount of memory on that processor Route Processor 2:... E-Series route processor 2 information and the amount of memory on that processor 128K bytes...
FTOS(conf)#int te 0/5 FTOS(conf-if-te-0/5)#no shut FTOS(conf-if-te-0/5)# FTOS(conf-if-te-0/5)# FTOS(conf-if-te-0/5)# FTOS(conf-if-te-0/5)#ipv6 nd prefix FEC0::/10 FTOS(conf-if-te-0/5)# FTOS(conf-if-te-0/5)#show conf ! interface TenGigabitEthernet 0/5 ip address 78.21.1.3/24 ipv6 nd prefix fec0::/10 flowcontrol rx on tx on no shutdown FTOS(conf-if-te-0/5)# FTOS# upgrade (C-Series version) Upgrade the bootflash or boot selector image on a processor.
booted Upgrade the bootflash or bootselector image using the currently running FTOS image.
Parameters bootflash-image Enter the keyword bootflash-image to upgrade the bootflash image. bootselectorimage Enter the keyword bootselector-image to upgrade the boot selector image. Use with technical assistance center (TAC)supervision only. system-image Enter the keyword system-image to upgrade the cache boot image. all Enter the keyword all to upgrade the bootflash/boot selector image on all processors in the E-Series. This keyword does not upgrade the bootflash on the standby RPM.
cached memory is released and returned for general use, but the URL is maintained and you do not have to specify it for subsequent upgrades. Related Commands upgrade fpga-image – upgrades the FPGA version in the specified E-Series SFM. boot system – displays the configured boot image information. upgrade (S-Series management unit and Z-Series) Upgrade the bootflash image or system image of the S-Series or Z-Series management unit.
file-url Enter the following location keywords and information to upgrade using an FTOS image other than the one currently running: • To specify an FTOS image on the internal flash, enter flash:// file-path/filename. • To specify an FTOS image on an FTP server, enter ftp:// user:password@hostip/filepath. • To specify an FTOS image on the external flash on the primary RPM, enter slot0://file-path/filename. • To copy a file on a TFTP server, enter tftp://hostip/ filepath/filename.
............................................................... ..................................... ............................................................... ..................................... ............................................................... ..................................... ............................................................... ..................................... ....................................
Version 8.3.1.0 Added the rpm option. Version 7.5.1.0 Introduced on the C-Series. Example FTOS#upgrade sfm 1 autoreset SFM1: upgrade in progress !!! !!! !!! SFM1: upgrade complete SFM1 is active. Resetting it might temporarily impact traffic. Proceed with reset [confirm yes/no]: yes FTOS# Usage Information Reset the card using the power-cycle option after restoring the FPGA command. Related Commands • reset – resets a line card or RPM.
may * * cause a board RMA. Proceed with caution ! * *********************************************************** Restore fpga image for linecard 4 [yes/no]: yes FPGA restore in progress. Please do NOT power off the card. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Upgrade result : ================ Linecard 4 FPGA restore successful. Usage Information Reset the card using the power-cycle option after restoring the FPGA command.
file-url Enter the following location keywords and information to upgrade the FPGA using an FTOS image other than the one currently running: Defaults none Command Modes EXEC Privilege Command History • To specify an FTOS image on the internal flash, enter flash:// file-path/filename. • To specify an FTOS image on an FTP server, enter ftp:// user:password@hostip/filepath. • To specify an FTOS image on the external flash on the primary RPM, enter slot0://file-path/filename.
4 Control and Monitoring This chapter contains the commands to configure and monitor the system, including Telnet, file transfer protocol (FTP), and trivial file transfer protocol (TFTP) as they apply to the following Dell Force10 platforms: E-Series, C-Series, S-Series, Z-Series, or S4810. NOTE: Starting in release 8.3.11.4, the enable xfp-power-updates command was deprecated for the Z9000 only. Starting in release 8.3.10.0, the enable xfp-power-updates command was deprecated for the S4810 only.
Usage Information You must save the configuration and reload the system to implement ASF. When you enter the command, the system sends a message stating that the new mode is enabled when the system reloads. audible cut-off Turn off an audible alarm. E-Series Syntax audible cut-off Defaults Not configured Command Modes EXEC Privilege banner exec Configure a message that is displayed when your enter EXEC mode.
Usage Information Optionally, use the banner exec command to create a text string that is displayed when you access EXEC mode. The exec-banner command toggles that display. Example FTOS(conf)#banner exec ? LINE c banner-text c, where 'c' is a delimiting character FTOS(conf)#banner exec % Enter TEXT message. End with the character '%'.
Command Modes Command History CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced the keyword keyboard-interactive. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command Usage Information A login banner message is displayed only in EXEC Privilege mode after entering the enable command followed by the password.
Parameters c Enter a delineator character to specify the limits of the text banner. The delineator is a percent character (%). line Enter a text string for your MOTD banner the message with your delineator. The delineator is a percent character (%). Defaults No banner is configured. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
l2acl number ipv4acl number ipv6acl number, ipv4qos number l2qos number, l2pt number ipmacacl number ecfmacl number [vman-qos | vman-dual-qos Allocate space to each CAM region. Enter the CAM profile name followed by the amount of CAM space to be allotted. The total space allocated must equal 13. The ipv6acl range must be a factor of 2. number Command Modes Command History Usage Information CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.
Command Modes Command History Usage Information CONFIGURATION Version 9.1.(0.0) Introduced on S4810. You must reboot the switch after changing the parameter values for changes to take effect. Refer to the SDN chapter in the FTOS Configuration Guide for platform-specific instructions on using this command. cam-audit linecard Enable audit of the IPv4 forwarding table on all line cards.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command. This command clears alarms that are no longer active. If an alarm situation is still active, it is seen in the system output. clear command history Clear the command history log.
aux 0 Enter the keywords aux 0 to reset the auxiliary port. NOTE: This option is supported on the E-Series only. Command Modes Command History console 0 Enter the keywords console 0 to reset the console port. vty number Enter the keyword vty followed by a number to clear a terminal line. Range: 0 to 9. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
debug cpu-traffic-stats Enable the collection of computer processor unit (CPU) traffic statistics. C-Series, E-Series, S-Series, Z-Series Syntax debug cpu-traffic-stats To disable the debugging, use the no debug cpu-traffic-stats command. Defaults Disabled Command Modes EXEC Privilege Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series.
Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command. disable Return to EXEC mode. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters disable [level] level Defaults 1 Command Modes EXEC Privilege Command History (OPTIONAL) Enter a number for a privilege level of the FTOS. Range: 0 to 15. Default: 1. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.
Command Modes Command History Usage Information Example • CONFIGURATION • INTERFACE Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.1.1.0 Introduced on the E-Series.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command. Usage Information Users entering EXEC Privilege mode or any other configured privilege level can access configuration commands.
enable xfp-power-updates Enable 10–gigabit small form-factor pluggable (XFP) power updates for SNMP. C-Series, E-Series, S-Series Syntax Parameters enable xfp-power-updates interval seconds interval seconds Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Enter the keyword interval followed by the polling interval in seconds. Range: 120 to 6000 seconds. Default: 300 seconds (5 minutes). Version 8.3.11.4 Deprecated command for Z9000 only.
Command History Related Commands • LINE • INTERFACE • TRACE-LIST • VRRP • ACCESS-LIST • PREFIX-LIST • AS-PATH ACL • COMMUNITY-LIST • ROUTER OSPF • ROUTER RIP • ROUTER ISIS • ROUTER BGP Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series and E-Series. E-Series Original command. exit – returns to the lower command mode.
Defaults 10.4 Command Modes CONFIGURATION Command History Usage Information Version 8.3.1.0 Added the 2.4 micro-seconds option. ExaScale supports only 10.4 microseconds and 2.4 microseconds with FTOS 8.3.1.0 and later. Version 8.1.1.2 Introduced on the E-Series ExaScale E600i. Version 8.1.1.0 Introduced on the E-Series ExaScale E1200i. Version 6.2.1.1 Introduced on the E-Series E300 (10.4 only). Version 6.1.1.0 Values changed as described above.
Version 7.5.1.0 Introduced on the C-Series. E-Series Original command. Usage Information Optionally, use the banner exec command to create a text string that is displayed when you access EXEC mode. This command toggles that display. Related Commands banner exec – configures a banner to display when entering EXEC mode. line – enables and configures console and virtual terminal lines to the system.
exit Return to the lower command mode. C-Series, E-Series, S-Series, Z-Series Syntax Command Modes Command History Related Commands 124 exit • EXEC Privilege • CONFIGURATION • LINE, INTERFACE • TRACE-LIST • PROTOCOL GVRP • SPANNING TREE • MULTIPLE SPANNING TREE • MAC ACCESS LIST • ACCESS-LIST • AS-PATH ACL • COMMUNITY-LIST • PREFIX-LIST • ROUTER OSPF • ROUTER RIP • ROUTER ISIS • ROUTER BGP Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.
ftp-server enable Enable FTP server functions on the system. C-Series, E-Series, S-Series, Z-Series Syntax ftp-server enable Defaults Disabled Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command. Example morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 FTOS (1.
ftp-server topdir Specify the top-level directory to be accessed when an incoming FTP connection request is made. C-Series, E-Series, S-Series, Z-Series Syntax Parameters ftp-server topdir directory directory Enter the directory path. Defaults The internal flash is the default directory. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
encryption-type Defaults Not enabled. Command Modes CONFIGURATION Command History (OPTIONAL) After the keyword password, enter one of the following numbers: • 0 (zero) for an unecrypted (clear text) password • 7 (seven) for a hidden text password Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command.
ip ftp password Specify a password for outgoing FTP connections. C-Series, E-Series, S-Series, Z-Series Syntax ip ftp password [encryption-type] password To remove a password and return to the default setting, use the no ip ftp password [password] command. Parameters encryption-type password Defaults Not configured.
To delete an interface, use the no ip ftp source-interface interface command. Parameters interface Enter the following keywords and slot/port or number information: • For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16383.
ip ftp username Assign a user name for outgoing FTP connection requests. C-Series, E-Series, S-Series, Z-Series Syntax ip ftp username username To return to anonymous FTP connections, use the no ip ftp username [username] command. Parameters username Enter a text string as the user name up to 40 characters long. Defaults No user name is configured. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale.
Related Commands Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.1.1.0 Introduced on the E-Series. ip ssh server – enables the secure shell (SSH) server on the system. ip telnet source-interface Set an interface’s IP address as the source address in outgoing packets for Telnet sessions.
Related Commands Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.2.1.0 Increased number of VLANs on ExaScale to 4094 (was 2094). Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command telnet – telnets to another device. ip tftp source-interface Assign an interface’s IP address in outgoing packets for TFTP traffic.
Command Modes Command History CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.2.1.0 Increased number of VLANs on ExaScale to 4094 (was 2094). Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command line Enable and configure console and virtual terminal lines to the system.
E-Series Original command Usage Information You cannot delete a terminal connection. Related Commands access-class – restricts the incoming connections to a particular IP address in an IP access control list (ACL). password – specifies a password for users on terminal lines. show linecard – displays the line card(s) status. linecard Pre-configure a line card in a currently empty slot of the system or a different line card type for the slot.
with SFP - 2-port 10GE with SFP+ E46VB 36-port GE 10/100/1000Base-T with RJ45 and PoE - 8-port FE/GE with SFP 2-port 10GE with SFP+ E48PB 48-port FE/GE line card with SFP optics (CB) E48TB 48-port GE 10/100/1000Base-T line card with RJ45 interfaces (CB) E48VB 48-port GE 10/100/1000Base-T line card with RJ45 interfaces and PoE (CB) EX4PB 4-port 10GE LAN PHY line card with XFP optics (CB) EX8PB 8-port 10GE LAN PHY line card with XFP optics (CB) FTOS#linecard 3 EX4PB FTOS#show linecard 3 -- Line card 11 -Statu
port-set0 portnumber [portnumber] Enter the port number(s) used to specify the active ports on port pipe 0. Port-number range: 0 - 2. On port pipe 0, 0 - 2 corresponds to ports 0, 1, and 2 on the line card. If you configure linerate mode, enter one port number for port pipe 0. If you configure oversubscribed mode, enter two port numbers (separated by a space). port-set1 portnumber [portnumber] Enter the port number(s) used to specify the active ports on port pipe 1. Port-number range: 0 - 2.
module power-off Turn off power to a line card at next reboot. C-Series, E-Series Syntax Parameters module power-off linecard number linecard number Defaults Not configured. Command Modes CONFIGURATION Command History Enter the keyword linecard followed by the line card slot number. The C-Series range is 0 to 7. The E-Series range is 0 to 13 on the E1200/1200i, 0 to 6 on the E600/E600i, and 0 to 5 on the E300. Version 8.1.1.2 Introduced on the E-Series ExaScale E600i. Version 8.1.1.
ping Test connectivity between the system and another device by sending echo requests and waiting for replies.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN interface, enter the keyword vlan followed by a number from 1 to 4094. tos (IPv4 only) Enter the type of service required. Range: 0-255. Default: 0. df-bit (IPv4 only) Enter Y or N for the “don't fragment” bit in IPv4 header. • N: Do not set the “don't fragment” bit.
• Defaults none Command Modes Command History Usage Information For a VLAN interface, enter the keyword vlan followed by a number from 1 to 4094. • EXEC • EXEC Privilege Version 8.3.12.0 Added support for the outgoing-interface option for link-local IPv6 addressing on the S4810. Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on the ExaScale. Version 8.4.1.0 IPv6 pinging available on management interface. Version 8.3.1.
Sending 5, 100-byte ICMP Echos to 172.31.1.255, timeout is 2 seconds: Reply to request 1 from 172.31.1.208 0 ms Reply to request 1 from 172.31.1.216 0 ms Reply to request 1 from 172.31.1.205 16 ms :: Reply to request 5 from 172.31.1.209 0 ms Reply to request 5 from 172.31.1.66 0 ms Reply to request 5 from 172.31.1.87 0 ms FTOS# Example (IPv6) FTOS#ping 100::1 Type Ctrl-C to abort. Sending 5, 100-byte ICMP Echos to 100::1, timeout is 2 seconds: !!!!! Success rate is 100.
Related Commands power-on – powers on a line card or standby SFM. power-on Turn on power to a line card or the standby (extra) SFM. C-Series, E-Series Syntax Parameters power-on {linecard number | sfm sfm-slot-id} linecard number Enter the keyword linecard and a number for the line card slot number. For the C-Series, the range is 0 to 7. For the E-Series, the range is 0 to 13 on the E1200/E1200i, 0 to 6 on the E600/E600i, and 0 to 5 on the E300.
Parameters conditional nvram-cfgchange Command Modes Command History Usage Information Reload if the condition is true. A configuration change to the nvram requires a switch reload. You must select nvram-cfg-change to reload the switch. EXEC Privilege Version 9.1(0.0) Added ‘conditional’ parameter. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command.
NOTE: This option is supported on the C-Series only. rpm number Enter the keyword rpm followed by a number for the RPM slot number. Range: 0 to 1. (Optional) Add the keyword hard or power-cycle (C-Series only) to power cycle the RPM. sfm slot number Enter the keyword sfm followed by the failed or powered-off SFM slot number. NOTE: Supported on the E-Series only. Defaults Disabled. Command Modes EXEC Privilege Command History Usage Information Version 7.5.1.0 Introduced on the C-Series.
Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. The LED setting is not saved through power cycles. send Send messages to one or all terminal line users. C-Series, E-Series, S-Series, Z-Series Syntax Parameters send [*] | [line ] | [aux] | [console] | [vty] * Enter the asterisk character * to send a message to all tty lines. line Send a message to a specific line. Range: 0 to 11. aux Enter the keyword aux to send a message to an auxiliary line.
service timestamps Add time stamps to debug and log messages. This command adds either the uptime or the current time and date. C-Series, E-Series, S-Series, Z-Series Syntax service timestamps [debug | log] [datetime [localtime] [msec] [show-timezone] | uptime] To disable timestamping, use the no service timestamps [debug | log] command. Parameters debug (OPTIONAL) Enter the keyword debug to add timestamps to debug messages.
show alarms View alarms for the route process module (RPM), switch fabric modules (SFMs), line cards, and fan trays. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Command Modes Command History Example show alarms [threshold] threshold • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword threshold to display the temperature thresholds set for the line cards, RPM, and SFMs. Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.
show cam-acl-vlan Display the block sizes allocated for the VLAN CAM ACL. S4810, Z9000 Syntax show cam-acl-vlan Command Modes EXEC Command History Version 9.1.(0.0) Introduced on S4810 and Z9000. show chassis View the configuration and status of modules in the system. Use this command to determine the chassis mode.
9 not present 10 not present 11 online online E48PF E48PF 6.1.1.0 48 12 not present E48PF 13 not present E48PF -- Route Processor Modules -Slot Status NxtBoot Version -----------------------------------------------------0 active online 6.1.1.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series and E-Series. Usage Information One trace log message is generated for each command. No password information is saved to this file. A command-history trace log is saved to a file after an RPM failover. This file is analyzed by the Dell Force10 TAC to help identify the root cause of an RPM failover.
[11/20 15:47:23]: console [11/20 15:47:23]: [11/20 21:17:35]: console [11/20 21:17:36]: console [11/20 21:17:36]: [11/20 21:19:25]: from console FTOS# Related Commands CMD-(CLI):[no ip address]by default from CMD-(CLI):[shutdown]by default from console CMD-(CLI):[line console 0]by default from CMD-(CLI):[exec-timeout 0]by default from CMD-(CLI):[exit]by default from console CMD-(CLI):[show command-history]by default clear command history – clears the command history log.
show version command usage:1 ! Global configuration mode: aaa authentication enable command usage:1 WORD option usage: 1 default option usage: 0 enable option usage: 0 line option usage: 0 none option usage: 0 radius option usage: 1 tacacs+ option usage: 0 show console lp View the buffered boot-up log of a line card. C-Series, E-Series Syntax Parameters Defaults Command Modes Command History Usage Information 152 show console lp number number Enter the line card slot number.
show cpu-traffic-stats View the CPU traffic statistics. C-Series, E-Series, S-Series, Z-Series Syntax Parameters show cpu-traffic-stats [port number | all | cp | linecard {all | slot# } | rp1 | rp2 ] port number (OPTIONAL) Enter the port number to display traffic statistics on that port only. Range: 1 to 1568. all (OPTIONAL) Enter the keyword all to display traffic statistics on all the interfaces receiving traffic, sorted based on the traffic.
NOTE: After debugging is complete, use the no debug cpu-traffic-stats command to shut off traffic statistics collection.
GigabitEthernet 5/0,2,4,6,8,10,12,14,16 FTOS# show environment (C-Series and E-Series) View the system component status (for example, temperature or voltage). C-Series, E-Series Syntax Parameters show environment [all | fan | linecard | linecard-voltage | PEM | RPM | SFM] all Enter the keyword all to view all components. fan Enter the keyword fan to view information on the fans. The output of this command is chassis dependent.
fan speed. For fan speed and temperature information, refer to your hardware installation guide.
Example (C300) FTOS#show env fan -- Fan Status -------------------------------------------------------Tray 0 ------------------------------------------------------FanNumber Speed Status 0 4170 up 1 4140 up 2 3870 up 3 4140 up 4 3870 up 5 3810 up FTOS# show environment (S-Series) View S-Series system component status (for example, temperature or voltage).
------------------------------------------Unit TrayStatus Fan0 Fan1 Fan2 Fan3 Fan4 Fan5 0 up up up up up up up -- Power Supplies -Unit Bay Status Type -------------------------------------------0 0 up AC 0 1 absent -- Unit Environment Status -Unit Status Temp Voltage -------------------------------------------0* online 50C ok * Management Unit -- Fan Status -Unit Status Speed Fan1 Fan2 Fan3 Fan4 Fan5 Fan6 Serial Num Version --------------------------------------------1 up high up up up up up up 1234 1 Examp
Defaults none Command Modes CONFIGURATION Command History Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Output expanded to include SFP+ media on the C-Series. Version 7.7.1.0 Vendor field removed from output of the show inventory media command. Version 7.5.1.0 Introduced on the C-Series and expanded to include transceiver media. Version 6.2.1.0 Expanded to include the Software Protocol Configured field on the E-Series. Version 5.3.1.0 Introduced on the E-Series.
Example (E300) FTOS# show inventory Chassis Type : E300 Chassis Mode : TeraScale Software Version : FTOS-EF-7.5.1.
show inventory (S-Series and Z-Series) Display the S-Series or Z-Series switch type, components (including media), and FTOS version, including hardware identification numbers and configured protocols. S-Series, Z-Series Syntax Parameters show inventory [media slot] media slot (OPTIONAL) Enter the keyword media followed by the stack ID of the stack member for which you want to display pluggable media inventory. NOTE: This parameter is available but not supported in FTOS version 8.3.11.4.
S50V_7.7#show inventory media Slot Port Type Media Serial Number F10Qualified --------------------------------------------------0 49 Media not present or accessible 0 50 XFP 10GBASE-SR C707XS0MD Yes 0 45 Media not present or accessible 0 46 Media not present or accessible 0 47 Media not present or accessible 0 48 Media not present or accessible Example (Z9000) ct-z9000-2#show inventory System Type : Z9000 System Mode : 1.0 Software Version : 8.3.11.
Command Modes Command History Usage Information all (OPTIONAL) Enter the keyword all to view a table with information on all present line cards brief (OPTIONAL) Enter the keyword brief to view an abbreviated list of line card information. • EXEC • EXEC Privilege Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command.
show linecard output Field Description • DC = DC Power Entry Module (PEM) Voltage Displays OK if the line voltage is within range. Serial Number Displays the line card serial number. Part Num Displays the line card part number. Vendor ID Displays an internal code, which specifies the manufacturing vendor. Date Code Displays the line card’s manufacturing date.
Date Code Country Code FTOS# : : Example (brief) FTOS#show linecard 11 brief -- Line card 11 -Status : online Next Boot : online Required Type : E48PF - 48-port GE line card with SFP optics (EF) Current Type : E48PF - 48-port GE line card with SFP optics (EF) Hardware Rev : Base - 1.0 PP0 - n/a PP1 - n/a Num Ports : 48 Up Time : 11 hr, 24 min FTOS Version : 6.1.1.
Usage Information show linecard bootinformation Field Description # Displays the line card slot numbers, beginning with slot 0. The number of slots listed is dependent on your chassis: 0 to 13 on the E1200, 0 to 13 on the E1200, 0 to 5 on the E300. Status Indicates if a line card is online, offline, or booting. If a line card is not detected in the slot, a hyphen ( - ) is displayed. CurType Displays the line card identification number;, for example, EXW4PF.
show memory (C-Series and E-Series) View current memory usage on the system. C-Series, E-Series Syntax Parameters show memory [cp | lp slot-number | rp1 | rp2] cp (OPTIONAL) Enter the keyword cp to view information on the control processor on the RPM. lp slot-number (OPTIONAL) Enter the keyword lp and the slot number to view information on the line-card processor in that slot. For the C-Series, the range is 0 to 7.
Statistics On RP1 Processor =========================== Total(b) Used(b) Free(b) Lowest(b) Largest(b) 629145600 4079544 625066056 625066056 0 Statistics On RP2 Processor =========================== Total(b) Used(b) Free(b) Lowest(b) Largest(b) 510209568 47294716 462914852 462617968 446275376 FTOS# “Lowest” displays the memory usage the system went to in the lifetime of the system. Indirectly, it indicates the maximum usage in the lifetime of the system: Total minus Lowest.
show processes cpu (C-Series and E-Series) View CPU usage information based on processes running in the system. C-Series, E-Series Syntax Parameters show processes cpu [cp | rp1 | rp2] [lp [linecard-number [1-99] | all | summary] cp (OPTIONAL) Enter the keyword cp to view CPU usage of the control processor. rp1 (OPTIONAL) Enter the keyword rp1 to view CPU usage of the Route Processor 1. NOTE: This option is supported on the E-Series only.
0xd9cd200 0 0xd9bf588 0 0xd9bd2f8 0 0xd9bb0e0 700 0xd9798d0 106683 0xd3368a0 0 0xd3329b0 166 0xd32a8c8 102500 0xd16b1d8 12050 0xd1680c8 33 0xd156008 116 RpmAvailMgr 0xd153ab0 216 -more Example (rp1) 0 0 0 42 6401 0 10 6150 723 2 7 13 0 0 0 16666 16666 0 16600 16666 16666 16500 16571 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.
0x0000006c 80 0x00000068 60 0x00000064 750 0x00000062 0 0x00000024 880 0x00000022 0 0x00000020 2250 mount_mfs 0x00000013 0 mount_mfs 0x00000006 100 0x00000005 0 0x00000004 960 0x00000003 140 0x00000002 0 pagedaemon 0x00000001 160 0x00000000 700 0x00000098 140 8 6 75 0 88 0 225 0 10000 10000 10000 0 10000 0 10000 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0.00% 0 0 0 0 0 0 0 arpm acl2 sysd2 sysmon sshd inetd 0 0.00% 0.00% 0.
Command Modes Command History • EXEC • EXEC Privilege Version 7.7.1.0 Added the keywords management-unit [details]. Version 7.6.1.0 Introduced on the S-Series.
Example (stackunit) FTOS#show processes cpu stack-unit 0 CPU Statistics On Unit0 Processor =============================== CPU utilization minutes: 0% PID Runtime(ms) 52 8260 124 1160 116 70 109 50 108 60 103 70 100 70 96 70 92 100 86 30 83 40 80 100 74 60 70 30 68 120 64 70 63 30 62 290 61 50 60 40 59 0 bcmXGS3AsyncTX 58 0 57 340 55 0 117 60 28 0 21 450 18 130 11 0 6 30 5 10 4 0 3 20 2 0 1 0 0 10 Example (memory) for five seconds: 0%/0%; one minute: 0%; five Invoked uSecs 826 10000 116 10000 7 10000 5 1
96 l2mgr 6107136 491520 254858 115948 172038 138910 92 l2pm 5607424 221184 667578 579740 120966 87838 86 arpm 5353472 208896 54528 16564 54528 37964 83 ospf 4210688 475136 0 0 0 0 80 dsm 6057984 552960 22838 0 22838 22838 74 rtm 6311936 577536 574792 298152 376024 276640 70 rip 5001216 249856 528 0 528 528 68 ipm1 5292032 339968 67224 0 67224 67224 64 acl 5607424 544768 140086 66256 123522 73830 63 bcmLINK.1 40410880 0 0 0 0 0 62 bcmCNTR.1 140410880 0 0 0 0 0 61 bcmRX 140410880 0 0 0 0 0 60 bcmLINK.
show processes memory (S-Series) – displays CPU usage information based on processes running in an S-Series. show processes ipc flow-control Display the single window protocol queue (SWPQ) statistics. C-Series, E-Series, S-Series, Z-Series Syntax Parameters show processes ipc flow-control [cp | rp1 | rp2 | lp linecardnumber] cp (OPTIONAL) Enter the keyword cp to view the control processor’s SWPQ statistics.
Usage Information Field Description Source QID /Tx Process Source Service Identifier Destination QID/Rx Process Destination Service Identifier Cur Len Current number of messages enqueued High Mark Highest number of packets in the queue at any point of time #of to / Timeout Timeout count #of Retr /Retries Number of retransmissions #msg Sent/Msg Sent/ Number of messages sent #msg Ackd/Ack Rcvd Number of messages acknowledged Retr /Available Retra Number of retries left Total/ Max Retra N
IFMGR0 IPMGR2 0 6 0 0 44 44 8 8 !---------------output truncated ----------------------------! Example (ESeries) Example (rp) FTOS# show processes ipc flow-control cp Q Statistics on CP Processor TxProcess RxProcess Cur High Time Len Mark Out DHCP0 ACL0 0 1 0 DHCP0 IFMGR0 0 0 0 IFMGR0 FEFD0 0 3 0 IFMGR0 IPMGR0 0 6 0 IFMGR0 SNMP0 0 1 0 IFMGR0 SFL_CP0 0 4 0 IFMGR0 EVENTTERMLOG0 0 1 0 IFMGR0 PORTMIRR0 0 0 0 IFMGR0 DHCP0 0 1 0 IFMGR0 TCLASSMGR0 0 2 0 IFMGR0 VRRP0 0 3 0 IFMGR0 MRTM0 0 2 0 TCLASSMGR0 ARPMGR0 0
LACP0 IFMGR0 0 0 0 0 0 0 25 25 RTM0 ARPMGR0 0 0 0 0 0 0 136 136 MACMGR0 ACL0 0 0 0 0 0 0 25 25 ARPMGR0 MRTM0 0 0 0 0 0 0 100 100 DHCP0 ACL0 0 1 0 0 1 1 25 25 DHCP0 IFMGR0 0 0 0 0 0 0 25 25 L2PM0 SPANMGR0 0 2 0 0 14 14 25 25 ARPMGR0 FIBAGT0 0 1 0 0 1 1 100 100 SPANMGR0 MACMGR0 0 0 0 0 0 0 25 25 SPANMGR0 IPMGR0 0 0 0 0 0 0 25 25 SPANMGR0 L2PM0 0 0 0 0 0 0 25 25 STP0 L2PM0 0 0 0 0 0 0 25 25 RTM0 FIBAGT0 0 2 0 0 4 4 255 255 L2PM0 STP0 0 5 0 0 5 5 25 25 ACL_AGENT0 PIM0 0 0 0 0 0 0 20 20 ACL_AGENT0 PIM0 0 0 0 0 0
rp2 (OPTIONAL) Enter the keyword rp2 to view memory usage of the Route Processor 2. NOTE: This option is supported on the E-Series only. Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 8.1.1.2 Introduced on the E-Series ExaScale E600i. Version 8.1.1.0 Introduced on the E-Series ExaScale E1200i. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Added the lp all and lp summary options. Version 6.5.1.
In FTOS Release 7.4.1.0 and higher, the total counter size (for all three CPUs) in show memory and show processes memory differs based on which FTOS processes are counted. • In the show memory (C-Series and E-Series) output, the memory size is equal to the size of the application processes. • In the show processes memory (C-Series and E-Series) output, the memory size is equal to the size of the application processes plus the size of the system processes.
1 init 0 swapper Example (rp2) 139264 2375680 76529664 0 0 0 0 0 0 0 0 0 FTOS#show processes memory rp2 Total : 953700352, MaxUsed : 149417984 [3/8/2006 12:33:6] CurrentUsed: 149417984, CurrentFree: 804282368 SharedUsed : 7847200, SharedFree : 13124344 PID Process ResSize Size Allocs Frees Max Current 145 vrrp 3870720 266240 297324 0 297324 297324 141 fvrp 4472832 204800 797010 0 797010 797010 138 xstp 10764288 7155712 367534 0 367534 367534 133 span 4136960 167936 565810 0 565810 565810 132 pim 66641
summary Command Modes Command History Usage Information • EXEC • EXEC Privilege Enter the keyword summary for a brief summary of memory availability and usage on all stack members. Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Added the management-unit option. Version 7.6.1.0 Introduced on the S-Series.
Example FTOS#show processes memory stack-unit 0 Total: 268435456, MaxUsed: 2420244, CurrentUsed: 2420244, CurrentFree: 266015212 TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding tme 435406 397536 54434 37870 ipc 16652 0 16652 16652 timerMgr 33304 0 33304 33304 sysAdmTsk 33216 0 33216 33216 tFib4 1943960 0 1943960 1943960 aclAgent 90770 16564 74206 74206 ifagt_1 21318 16564 21318 4754 dsagt 6504 0 6504 6504 MacAgent 269778 0 269778 269778 Example (managementunit) FTOS#show processes management-un
show processes switch-utilization Show switch fabric utilization. E-Series Syntax show processes switch-utilization Command Modes Command History • EXEC • EXEC Privilege Version 8.1.1.0 Introduced on the E-Series ExaScale. E-Series Original command. Usage Information An asterisk ( * ) in the output indicates a legacy card that is not support by the show processes switch-utilization command.
Usage Information E-Series Original command. show rpm output Field Description Status Displays the RPM’s status. Next Boot Displays whether the RPM is to be brought online at the next system reload. Card Type Displays the RPM catalog number. Hardware Rev Displays the E-Series chipset hardware revision level: 1.0 (nonJumbo); 1.5 (Jumbo-enabled); 2.0 (or above is TeraScale). Num Ports Displays the number of active ports.
show rpm output Field Description RP2 Boot Flash Displays the two possible Boot Flash versions for the Routing Processor 2. The [Booted] keyword next to the version states which version was used at system boot. CP Mem Size Displays the memory of the control processor. RP1 Mem Size Displays the memory of the Routing Processor 1. PR2 Mem Size Displays the memory of the Routing Processor 2. Temperature Displays the temperature of the RPM. Minor alarm status if the temperature is over 65°C.
show sfm – view information on the SFM. show software ifm Display interface management (IFM) data. C-Series, S-Series, Z-Series Syntax Parameters show software ifm {clients [summary] | ifagt number | ifcb interface | stack-unit unit-ID | trace-flags} clients Enter the keyword clients to display IFM client information. summary (OPTIONAL) Enter the keyword summary to display brief information about IFM clients.
trace-flags Defaults Command Modes Command History Example Enter the keyword trace-flags to display IFM information for internal trace flags. none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 7.6.1.0 Introduced for the C-Series and S-Series.
Defaults none Command Modes EXEC Command History Example Version 7.5.1.0 Introduced on the C-Series.
Command Modes Command History Example • • EXEC EXEC Privilege Version 8.3.11.4 The brief parameter no longer displays the current Reload mode. To display Reload mode, use the show reload-type command. Modified the show system stack-unit command output to support Piece Part ID (PPID). Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 The Boot Flash field displays the code level for boot code 2.8.1.1 and newer, while older boot codes display as "Present". Version 7.7.1.
Required Type Current Type Master priority Hardware Rev Num Ports Up Time FTOS Version Jumbo Capable POE Capable Boot Flash BIOS version Memory Size Temperature Voltage Serial Number Part Number Vendor Id Date Code Country Code Piece Part ID Version Service Tag Auto Reboot Burned In MAC No Of MACs : : : : : : : : : : : : : : : : : : : : : : : : : Z9000 - 32-port TE/FG (ZB) Z9000 - 32-port TE/FG (ZB) 0 3.0 128 8 min, 50 sec 8.3.11.3b yes no 3.0.1.1 3.0.0.
-- Module 1 -Status : not present -- Power Supplies -Unit Bay Status Type ------------------------------------------------------------------------0 0 up AC Related Commands • show version – displays the FTOS version. • show processes memory (S-Series) – displays the memory usage based on running processes. • show hardware stack-unit – displays the data plane and management plane input and output statistics of a particular stack member.
Command History Usage Information Version 7.8.1.0 Introduced save to the file options. Version 7.5.1.0 Introduced on the C-Series. Version 6.5.4.0 Show clock included in the display on the E-Series. Without the linecard or page option, the command output is continuous. Uuse CNTL-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command. The save entry must always be the last option.
1073741824 bytes of memory. 128K bytes of non-volatile configuration memory. 1 Route Processor/Switch Fabric Module 2 48-port GE 10/100/1000Base-T line card with RJ45 interface (CB) 1 FastEthernet/IEEE 802.3 interface(s) 96 GigabitEthernet/IEEE 802.
EF-7.4.2.0.bin 9 drwx 8192 Jan 01 1980 00:18:28 +00:00 diag 10 -rwx 29555751 May 12 2008 17:29:42 +00:00 FTOSEF-4.7.6.0.bin 11 -rwx 27959813 Apr 04 2008 15:05:12 +00:00 FTOSEF-7.5.1.0.bin 12 -rwx 4693 May 12 2008 17:24:36 +00:00 config051508 13 -rwx 29922288 Jan 11 2008 14:58:36 +00:00 FTOSEF-7.6.1.0.bin 14 -rwx 6497 Aug 22 2008 14:18:56 +00:00 startup-config 15 -rwx 5832 Jul 25 2008 11:13:36 +00:00 startup-config.bak 16 -rwx 29947358 Jul 25 2008 11:04:26 +00:00 FTOSEF-7.6.1.2.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced save to the file options. Version 7.6.1.0 Introduced on the S-Series. Without the page or stack-unit option, the command output is continuous. Use Ctrl-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command. The save entry must always be the last option.
FTOS#dir Directory of flash: 1 drw- 16384 Jan 01 1980 00:00:00 +00:00 . 2 drwx 1536 Jul 13 1996 02:38:06 +00:00 .. 3 d--- 512 Nov 20 2007 15:46:44 +00:00 ADMIN_DIR Example (SSeries) FTOS#show tech-support stack-unit 0 ----------------------------------- show version ------------------------------Dell Force10 Networks Real Time Operating System Software Dell Force10 Operating System Version: 1.0 Dell Force10 Application Software Version: FTOS 7.6.1.0 Copyright (c) 1999-2007 by Dell Force10 Networks, Inc.
ssh-peer-rpm Open an secure shell (SSH) connection to the peer RPM. C-Series, E-Series Syntax Parameters Defaults Command Modes Command History Usage Information ssh-peer-rpm [-l username] -l username (OPTIONAL) Enter the keyword -l followed by your user name. Default: The user name associated with the terminal. Not configured. • EXEC • EXEC Privilege Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced on the C-Series. Version 6.3.1.0 Introduced on the E-Series.
Version 8.3.11.1 Introduced on the S-Series. telnet Connect through Telnet to a server. The Telnet client and server in FTOS support IPv4 and IPv6 connections. You can establish a Telnet session directly to the router or a connection can be initiated from the router. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters telnet {host | ip-address | ipv6-address prefix-length | vrf vrf instance name } [/source-interface] host Enter the name of a server.
Defaults Command Modes Command History Not configured. • EXEC • EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Added support for source-interface for linklocal IPv6 addressing. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the E-Series ExaScale (IPv6). Increased the number of VLANs on ExaScale to 4094 (was 2094). Version 8.1.1.0 Introduced on the E-Series ExaScale (IPv4). Version 7.9.1.0 Introduced VRF. Version 7.6.1.0 Introduced on the S-Series.
terminal length Configure the number of lines displayed on the terminal screen. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Defaults Command Modes Command History terminal length screen-length screen-length Enter a number of lines. Entering zero causes the terminal to display without pausing. The range is 0 to 512. 24 lines • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.
Usage Information This command enables the XML input mode where you can either cut and paste XML requests or enter the XML requests line-by-line. For more information about using the XML feature, refer to the XML chapter in the FTOS Configuration Guide. traceroute View a packet’s path to a specific device. C-Series, E-Series, S-Series, Z-Series Syntax Parameters traceroute {host | vrf instance | ip-address | ipv6-address} host Enter the name of device.
E-Series Usage Information Original command. When you enter the traceroute command without specifying an IP address (Extended Traceroute), you are prompted for a target and source IP address, timeout (in seconds) (default is 5), a probe count (default is 3), minimum TTL (default is 1), maximum TTL (default is 30), and port number (default is 33434). To keep the default setting for those parameters, press the ENTER key.
undebug all Disable all debug operations on the system. C-Series, E-Series, S-Series, Z-Series Syntax undebug all Defaults none Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series Original command upload trace-log Upload trace log files from the three CPUs (cp, rp1, and rp2).
Command History Usage Information Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced on the C-Series and expanded to support command history, hardware trace, and software trace logs. Version 6.1.1.0 Introduced on the E-Series. The log information is uploaded to flash:/TRACE_LOG_DIR. virtual-ip Configure a virtual IP address for the active management interface. Virtual addresses can be configured both for IPv4 and IPv6 independently.
Related Commands ip address – assigns a primary and secondary IP address to the interface. write Copy the current configuration to either the startup-configuration file or the terminal. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Command Modes Command History write {memory | terminal} memory Enter the keyword memory to copy the current running configuration to the startup configuration file. This command is similar to the copy running-config startup-config command.
5 802.1ag 802.1ag is available only on the Dell Force10 S-Series and S4810 platforms. ccm disable Disable continuity check message (CCM). S-Series, S4810 Syntax ccm disable Enter no ccm disable to enable CCM. Defaults Disabled Command Modes ECFM DOMAIN Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series. ccm transmit-interval Configure the transmit interval (mandatory).
Version 8.3.1.0 Introduced on the S-Series. clear ethernet cfm traceroute-cache Delete all link trace cache entries. S-Series, S4810 Syntax clear ethernet cfm traceroute-cache Defaults none Command Modes ECFM DOMAIN Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series. database hold-time Set the amount of time that data from a missing MEP is kept in the continuity check database.
disable Disable Ethernet CFM without stopping the CFM process. S-Series, S4810 Syntax disable Defaults Disabled Command Modes ETHERNET CFM Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series. domain Create the maintenance domain. S-Series, S4810 Syntax Parameters domain name md-level number name Name the maintenance domain. md-level number Enter a maintenance domain level. The range is 0 to 7.
Defaults Disabled Command Modes CONFIGURATION Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series. ethernet cfm mep Create an MEP.
ethernet cfm mip Create a maintenance intermediate point (MIP). S-Series, S4810 Syntax Parameters ethernet cfm mip domain {name | level} ma-name name domain [name | level] Enter the keyword domain and then enter the domain name or domain level. ma-name name Enter the keyword ma-name and then enter the name of the maintenance association. Defaults none Command Modes INTERFACE Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series.
mep cross-check enable Enable cross-checking. S-Series, S4810 Syntax Parameters mep cross-check enable {port | vlan-id} port Down service with no VLAN association. vlan-id Enter the VLAN to apply the cross-check. Defaults none Command Modes ECFM DOMAIN Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series.
ping ethernet Send a loopback message. S-Series, S4810 Syntax Parameters ping ethernet domain [name l level] ma-name ma-name remote {dest-mep-id | mac-addr mac-address} source {src-mep-id | port interface} name | level Enter the domain name or level. ma-name maname Enter the keyword ma-name and then enter the maintenance association name. dest-mep-id Enter the MEP ID that is the target of the ping.
Command History Example Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series. FTOS# show ethernet cfm domain Domain Name: customer Level: 7 Total Service: 1 Services MA-Name VLAN CC-Int My_MA 200 10s Domain Name: My_Domain Level: 6 Total Service: 1 Services MA-Name VLAN CC-Int Your_MA 100 10s X-CHK Status enabled X-CHK Status enabled show ethernet cfm maintenance-points local Display configured MEPs and MIPs.
show ethernet cfm maintenance-points remote Display the MEP Database. S-Series, S4810 Syntax Parameters show ethernet cfm maintenance-points remote detail [active | domain {level | name} | expired | waiting] active Enter the keyword active to display only the MEPs in active state. domain [name | level] Enter the keyword domain and then enter the domain name or domain level. expired Enter the keyword expired to view MEP entries that have expired due to connectivity failure.
Command Modes Command History EXEC Privilege Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series. show ethernet cfm statistics Display MEP statistics. S-Series, S4810 Syntax Parameters show ethernet cfm statistics [domain {name | level} vlan-id vlan-id mpid mpid] domain Enter the keyword domain to display statistics for a particular domain. name | level Enter the domain name or level. vlan-id vlan-id Enter the keyword vlan-id and then enter a VLAN ID.
show ethernet cfm port-statistics Display CFM statistics by port. S-Series, S4810 Syntax Parameters show ethernet cfm port-statistics [interface type slot/port] interface type Enter the keyword interface and then enter the interface type. slot/port Enter the slot and port numbers for the port. Defaults none Command Modes EXEC Privilege Command History Example Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series.
Version 8.3.1.0 Example Introduced on the S-Series.
traceroute cache hold-time Set the amount of time a trace result is cached. S-Series, S4810 Syntax Parameters traceroute cache hold-time minutes minutes Defaults 100 minutes Command Modes ETHERNET CFM Command History Enter a hold-time. The range is 10 to 65535 minutes. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the S-Series. traceroute cache size Set the size of the link trace cache.
traceroute ethernet Send a linktrace message to an MEP. S-Series, S4810 Syntax Parameters traceroute ethernet domain [name | level] ma-name remote {mepid mep-id | mac-addr mac-address} domain name | level ma-name ma- name Enter the keyword ma-name and then enter the maintenance association name. mepid mep-id Enter the MEP ID that is the trace target. mac-addr macaddress Enter the MAC address of the trace target.
802.1X 6 An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. The Dell Force10 operating software (FTOS) supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
debug dot1x Display 802.1X debugging information. C-Series, E-Series, S-Series, S4810 Syntax Parameters debug dot1x [all | auth-pae-fsm | backend-fsm | eapol-pdu] [interface interface] all Enable all 802.1X debug messages. auth-pae-fsm Enable authentication PAE FSM debug messages. backend-fsm Enable backend FSM debug messages. eapol-pdu Enable the EAPOL frame trace and related debug messages. interface Restricts the debugging information to an interface.
Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.0 Introduced on the C-Series and S-Series. If the host responds to 802.1X with an incorrect login/password, the login fails. The switch attempts to authenticate again until the maximum attempts configured is reached. If the authentication fails after all allowed attempts, the interface moves to the authentication failed VLAN.
Defaults Disabled Command Modes INTERFACE Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.4.2.1 Introduced on the C-Series and S-Series. The prerequisites for enabling MAB-only authentication on a port are: • Enable 802.1X authentication globally on the switch and on the port (the dot1x authentication command). • Enable MAC authentication bypass on the port (the dot1x mac-auth-bypass command).
dot1x authentication (Interface) Enable dot1x on an interface. Enable dot1x both globally and at the interface level. C-Series, E-Series TereaScale, S-Series, S4810 Syntax ot1x authentication To disable dot1x on an interface, use the no dot1x authentication command. Defaults Disabled Command Modes INTERFACE Command History Related Commands Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series.
If the host fails authentication for the designated number of times, the authenticator places the port in authentication failed VLAN (dot1x auth-fail-vlan). NOTE: You can create the Layer 3 portion of a guest VLAN and authentication fail VLANs regardless if the VLAN is assigned to an interface or not. After an interface is assigned a guest VLAN (which has an IP address), routing through the guest VLAN is the same as any other traffic. However, the interface may join/leave a VLAN dynamically.
Related Commands show dot1x interface dot1x mac-auth-bypass Enable MAC authentication bypass. If 802.1X times out because the host did not respond to the Identity Request frame, FTOS attempts to authenticate the host based on its MAC address. C-Series, S-Series, S4810 Syntax dot1x mac-auth-bypass To disable MAC authentication bypass on a port, use the no dot1x mac-auth-bypass command. Defaults Disabled Command Modes INTERFACE Command History Related Commands Version 8.3.12.
Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series. dot1x max-supplicants Restrict the number of supplicants that can be authenticated and permitted to access the network through the port. This configuration is only takes effect in Multi-Auth mode. C-Series, E-Series TeraScale, S-Series, S4810 Syntax Parameters dot1x max-supplicants number number Enter the number of supplicants that can be authenticated on a single port in Multi-Auth mode.
Defaults none Command Modes Auto Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series. The authenticator completes authentication only when port-control is set to auto. dot1x quiet-period Set the number of seconds that the authenticator remains quiet after a failed authentication with a client.
Parameters interval seconds Defaults 3600 seconds (1 hour) Command Modes INTERFACE Command History (Optional) Enter the keyword interval followed by the interval time, in seconds, after which reauthentication is initiated. The range is 1 to 31536000 (one year). The default is 3600 (1 hour). Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series.
Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Usage Information Enter a time-out value in seconds. The range is 1 to 300, where 300 is implementation dependant. The default is 30. Version 8.3.12.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series.
Version 7.4.1.0 Introduced on the E-Series. dot1x tx-period Configure the intervals at which EAPOL PDUs the Authenticator PAE transmits. C-Series, E-Series, S-Series, S4810 Syntax dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Enter the interval time, in seconds, that EAPOL PDUs are transmitted. The range is 1 to 65535. The default is 30. Version 8.3.12.
mac-address Defaults Command Modes Command History Usage Information (Optional) MAC address of an 802.1X-authenticated supplicant. none • EXEC • EXEC privilege Version 8.3.12.0 Introduced on the S4810. Version 8.4.2.1 Introduced on the C-Series and S-Series. Enter a supplicant’s MAC address using the mac-address option to display CoS mapping information only for the specified supplicant. You can display the CoS mapping information applied to traffic from authenticated supplicants on 802.
show dot1x interface Display the 802.1X configuration of an interface. C-Series, E-Series, S-Series, S4810 Syntax Parameters show dot1x interface interface [mac-address mac-address] interface mac-address Defaults Command Modes Command History Usage Information Enter one of the following keywords and slot/port or number information: • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Auth-Fail Max-Attempts: Tx Period: Quiet Period: ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Auth Type: Auth PAE State: Backend State: FTOS# Example (macaddress) 3 30 seconds 60 seconds 2 30 seconds 30 seconds 3600 seconds 2 SINGLE_HOST Initialize Initialize FTOS#show dot1x interface gig 2/21 mac-address 00:00:01:00:07:00 802.
ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Max-Supplicants: 3 30 seconds 30 seconds 60 seconds 2 MULTI_AUTH 128 Port status and State info for Supplicant: 00:00:00:00:00:10 Port Auth Status: Untagged VLAN id: Auth PAE State: Backend State: AUTHORIZED 400 Authenticated Idle Port status and State info for Supplicant: 00:00:00:00:00:11 192 | 802.1X www.dell.com | s u p p o r t . d e l l.
Access Control Lists (ACL) 7 Access control lists (ACLs) are supported by the Dell Force10 operating software (FTOS) on all E-Series, C-Series, SSeries, Z-Series, or S4810 platforms.
description Defaults Command Modes Command History Usage Information Enter a description of up to 80 characters. Not configured. • CONFIGURATION-STANDARD-ACCESS-LIST • CONFIGURATION-EXTENDED-ACCESS-LIST • CONFIGURATION-MAC ACCESS LIST-STANDARD • CONFIGURATION-MAC ACCESS LIST-EXTENDED Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
Command Modes Command History Example • CONFIGURATION-STANDARD-ACCESS-LIST • CONFIGURATION-EXTENDED-ACCESS-LIST • CONFIGURATION-MAC ACCESS LIST-STANDARD • CONFIGURATION-MAC ACCESS LIST-EXTENDED Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increase the name string to accept up to 140 characters. Prior to 7.8.1.0, names were up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. clear counters ip access-group Erase all counters maintained for access lists.
Parameters access-list-name Enter the name of a configured access list, up to 140 characters. in Enter the keyword in to apply the ACL to incoming traffic. out Enter the keyword out to apply the ACL to outgoing traffic. NOTE: Available only on the 12-port 1-Gigabit Ethernet FLEX line card. For specifications, refer to your line card documentation. Not available on the S-Series.
ip control-plane egress-filter Enable egress Layer 3 ACL lookup for IPv4 CPU traffic. Z-Series, S4810 Syntax ip control-plane egress-filter Defaults Not enabled. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. show ip accounting access-list Display the IP access-lists created on the switch and the sequence of filters.
Command History Usage Information Example Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for the 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced. show ip accounting access-lists Field Description “Extended IP...” Displays the name of the IP ACL. “seq 5...” Displays the filter.
Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny {source [mask] | any | host ip-address} command. source Enter the IP address in dotted decimal format of the network from which the packet was sent. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous (discontiguous).
Usage Information Version 8.3.1.0 Add the DSCP value for ACL matching. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Added support for the non-contiguous mask and added the monitor option. Version 6.5.1.0 Expanded to include the optional QoS order priority for the ACL entry.
Usage Information Version 8.3.10.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Added support for the non-contiguous mask and added the monitor option. Version 6.5.1.
host ip-address Enter the keyword host and then enter the IP address to specify a host IP address or hostname. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to enter ACL matches in the log.
When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring The C-Series and S-Series cannot count both packets and bytes; when you enter the count byte options, only bytes are incremented.
Version 7.4.1.0 Introduced on the E-Series. Usage Information When you have exhausted all the sequence numbers, this feature permits re-assigning a new sequence number to entries of an existing access-list. Related Commands resequence prefix-list ipv4 – resequences a prefix list. resequence prefix-list ipv4 Re-assign sequence numbers to entries of an existing prefix list.
seq Assign a sequence number to a deny or permit filter in an IP access list while creating the filter. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax seq sequence-number {deny | permit} {source [mask] | any | host ip-address}} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To delete a filter, use the no seq sequence-number command. Parameters 250 sequencenumber Enter a number from 0 to 4294967290. For the S4810, the range is 0 to 65534.
NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments. Defaults Not configured Command Modes CONFIGURATION-STANDARD-ACCESS-LIST Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Add the DSCP value for ACL matching. Version 8.2.1.
Extended IP ACL Commands When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit. The following commands configure extended IP ACLs, which in addition to the IP address, also examine the packet’s protocol type. C-Series and S-Series platforms (except the S4810) support Ingress IP ACLs only. The S4810 and Z9000 support both Ingress and Egress IP ACLs. NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands sections.
log (OPTIONAL, E-Series only) Enter the keyword log to enter ACL matches in the log. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255).
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related Commands deny tcp – assigns a filter to deny TCP packets. deny udp – assigns a filter to deny UDP packets. ip access-list extended – creates an extended ACL. deny arp Configure an egress filter that drops ARP packets on egress ACL supported line cards. (For more information, refer to your line card documentation).
log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255).
To remove this filter, you have two choices: • • Parameters Use the no seq sequence-number command if you know the filter’s sequence number. Use the no deny ether-type protocol-type-number {destination-mac-address mac-address-mask | any} vlan vlan-id {source-mac-address mac-address-mask | any} command. protocol-typenumber Enter a number from 600 to FFFF as the specific Ethernet type traffic to drop. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format.
Defaults Not configured. Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command History Usage Information Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Added the monitor option. Version 6.5.1.0 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only.
host ip-address Enter the keyword host and then enter the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent. dscp Enter this keyword dscp to deny a packet based on the DSCP value. The range is 0 to 63. message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type. The range is 0 to 255 for ICMP type and 0 to 255 for ICMP code.
When you use the log option, the CP processor logs details the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead.
ICMP Message Type Keywords ICMP Message Type Name no-room-for-option Parameter required but no room option-missing Parameter required but not present packet-too-big Fragmentation needed and DF set parameter-problem All parameter problems port-unreachable Port unreachable precedenceunreachable Precedence cutoff protocolunreachable Protocol unreachable reassembly-timeout Reassembly timeout redirect All redirects routeradvertisement Router discovery advertisements router-solicitation Rou
Parameters source Enter the IP address of the network or host from which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address. dscp Enter this keyword dscp to deny a packet based on the DSCP value.
byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. Supported on Jumbo-enabled line cards only. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt, or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range.
mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address. dscp Enter this keyword dscp to deny a packet based on the DSCP value. The range is 0 to 63.
Defaults Not configured. Command Modes CONFIGURATION-EXTENDED-ACCESS-LIST Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Added the keyword dscp. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.
1 0000000000000000 1111110000000000 0 1023 1024 Total Ports: 1024 Related Commands deny – assigns a filter to deny IP traffic. deny tcp – assigns a filter to deny TCP traffic. ip access-list extended Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip access-list extended access-list-name To delete an access list, use the no ip access-list extended access-listname command.
permit Configure a filter to pass IP packets meeting the filter criteria. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax permit {ip | ip-protocol-number} {source mask | any | host ipaddress} {destination mask | any | host ip-address} [count [byte] | log] [dscp value] [order] [monitor] [fragments] To remove this filter, you have two choices: • • Parameters Use the no seq sequence-number command if you know the filter’s sequence number.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments. Defaults Not configured.
permit arp Configure a filter that forwards ARP packets meeting this criteria. This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide. fragments Enter the keyword fragments to use ACLs to control packet fragments. Defaults Not configured.
vlan-id {source-mac-address mac-address-mask | any} command. Parameters protocol-typenumber Enter a number from 600 to FFF as the specific Ethernet type traffic to drop. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Added the monitor option. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only.
destination Enter the IP address of the network or host to which the packets are sent. dscp Enter the keyword dscp to deny a packet based on the DSCP value. The range is 0 to 63. message-type (OPTIONAL) Enter an ICMP message type, either with the type (and code, if necessary) numbers or with the name of the message type. The range is 0 to 255 for ICMP type and 0 to 255 for ICMP code. count (OPTIONAL) Enter the keyword count to count packets the filter processes.
When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead.
operator port port (OPTIONAL) Enter one of the following logical operand: • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port parameter) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is 0 to 65535.
Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Added the keyword dscp. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Added support for non-contiguous mask and added the monitor option.
Total Ports: 1024 Related Commands ip access-list extended – creates an extended ACL. permit – assigns a permit filter for IP packets. permit udp – assigns a permit filter for UDP packets. permit udp Configure a filter to pass UDP packets meeting the filter criteria.
destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. The C-Series and S-Series cannot count both packets and bytes; when you enter the count byte options, only bytes are incremented. The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring.
Step-toIncrement Defaults Command Modes Command History Enter the step to increment the sequence number. The range is 1 to 4294967290. none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale (IPv4). Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names were up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.
Version 8.1.1.0 Introduced on the E-Series ExaScale Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names were up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. Usage Information When you have exhausted all the sequence numbers, this feature permits re-assigning a new sequence number to entries of an existing prefix list.
opcode code- number Enter the keyword opcode and then enter the number of the ARP opcode. The range is 1 to 16. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. You cannot include IP, TCP, or UDP (Layer 3) filters in an ACL configured with ARP or Ethertype (Layer 2) filters. Apply Layer 2 ACLs to interfaces in Layer 2 mode. NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value.
count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. log (OPTIONAL, E-Series only) Enter the keyword log to have the information kept in an ACL log file. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority).
You cannot include IP, TCP, or UDP (Layer 3) filters in an ACL configured with ARP or Ethertype (Layer 2) filters. Apply Layer 2 ACLs to interfaces in Layer 2 mode. NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
port port • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port parameter.) (OPTIONAL) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is 0 to 65535. The following list includes some common TCP port numbers: • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent.
Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Add the DSCP value for ACL matching. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.
Common MAC Access List Commands The following commands are available within both MAC ACL modes (Standard and Extended) and do not have modespecific options. These commands allow you to clear, display, and assign MAC ACL configurations. The C-Series and S-Series platforms (except the S4810) support Ingress MAC ACLs only. The S4810 and Z9000 support both Ingress and Egress MAC ACLs. clear counters mac access-group Clear counters for all or a specific MAC ACL.
NOTE: The option is not available on the S-Series. Defaults none Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
• in | out Command Modes Command History For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE and then enter the slot/port information. Identify whether ACL is applied on ingress or egress side. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.4.1.0 Introduced. show mac accounting access-list Display MAC access list configurations and counters (if configured).
Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series pre-Version 6.1.1.0 Introduced on the E-Series. Usage Information The ACL hit counters in this command increment the counters for each matching rule, not just the first matching rule.
deny Configure a filter to drop packets with a the MAC address specified. C-Series, E-Series, S-Series, Z-Series Syntax deny {any | mac-source-address [mac-source-address-mask]} [count [byte]] [log] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny {any | mac-source-address mac-sourceaddress-mask} command.
Usage Information When you use the log option, the CP processor logs detail the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related Commands permit – configures a MAC address filter to pass packets.
exit no permit remark seq show Exit from access-list configuration mode Negate a command or set its defaults Specify packets to forward Specify access-list entry remark Sequence numbers Show Standard ACL configuration permit Configure a filter to forward packets from a specific source MAC address.
Usage Information Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. NOTE: For more information, refer to the “Flow-based Monitoring” section in the Port Monitoring chapter of the FTOS Configuration Guide. Defaults Not configured Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.
deny Configure a filter to drop packets that match the filter criteria. C-Series, E-Series, S-Series, Z-Series Syntax deny {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype-operator] [count [byte]] [log] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
log (OPTIONAL, E-Series only) Enter the keyword log to log the packets. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. For more information, refer to the “Flow-based Monitoring” section in the Port Monitoring chapter of the FTOS Configuration Guide. Defaults Not configured.
Command Modes Command History Usage Information CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.3.10.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names were up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
permit Configure a filter to pass packets matching the criteria specified. C-Series, E-Series, S-Series, Z-Series Syntax permit {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: Parameters 300 • Use the no seq sequence-number command if you know the filter’s sequence number.
log (OPTIONAL, E-Series only) Enter the keyword log to log the packets. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. NOTE: For more information, refer to the Flow-based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide. Defaults Not configured.
deny Enter the keyword deny to drop any traffic matching this filter. permit Enter the keyword permit to forward any traffic matching this filter. any Enter the keyword any to filter all packets. host mac- Enter the keyword host and then enter a MAC address to filter packets with that host address. address mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format.
Usage Information Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Added the monitor option. pre-Version 6.1.1.0 Introduced on the E-Series. When you use the log option, the CP processor logs details about the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details.
Related Commands Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. ip prefix-list — configures a prefix list. deny Configure a filter to drop packets meeting the criteria specified. C-Series, E-Series, S-Series, Z-Series Syntax deny ip-prefix [ge min-prefix-length] [le max-prefix-length] To delete a drop filter, use the no deny ip-prefix command. Parameters ip-prefix Specify an IP prefix in the network/length format. For example, 35.0.0.
ip prefix-list Enter the PREFIX-LIST mode and configure a prefix list. C-Series, E-Series, S-Series, Z-Series Syntax ip prefix-list prefix-name To delete a prefix list, use the no ip prefix-list prefix-name command. Parameters Command Modes Command History prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.
le max-prefixlength Command Modes Command History (OPTIONAL) Enter the keyword le and then enter the maximum prefix length, which is a number from zero (0) to 32. PREFIX-LIST Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
le max-prefixlength (OPTIONAL) Enter the keyword le and then enter the maximum prefix length, which is a number from zero (0) to 32. bitmask number Enter the keyword bitmask and then enter a bit mask number in dotted decimal format. Defaults Not configured. Command Modes PREFIX-LIST Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.3.
show ip prefix-list detail Display details of the configured prefix lists. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Command Modes Command History Example show ip prefix-list detail [prefix-name] prefix-name • EXEC • EXEC Privilege (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.
Parameters Command Modes Command History Example prefix-name • EXEC • EXEC Privilege (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
continue Configure a route-map to go to a route-map entry with a higher sequence number. C-Series, E-Series, S-Series, Z-Series Syntax Parameters continue [sequence-number] sequencenumber Defaults Not configured. Command Modes ROUTE-MAP Command History Usage Information (OPTIONAL) Enter the route map sequence number. The range is 1 to 65535. Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.
• Related Commands If set community additive and set as-path prepend are configure, the communities and AS numbers are prepended. set community — specifies a COMMUNITY attribute. set as-path — configures a filter to modify the AS path. description Add a description to this route map. C-Series, E-Series, S-Series, Z-Series Syntax description {description} To remove the description, use the no description {description} command.
Related Commands Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. set as-path – adds information to the BGP AS_PATH attribute. match community Configure a filter to match routes that have a certain COMMUNITY attribute in their BGP path.
match interface Configure a filter to match routes whose next hop is on the interface specified. C-Series, E-Series, S-Series, Z-Series Syntax match interface interface To remove a match, use the no match interface interface command. Parameters interface Defaults Not configured.
match ip route-source – redistributes routes that match routes advertised by other routers. match metric – redistributes routes that match a specific metric. match route-type – redistributes routes that match a route type. match tag – redistributes routes that match a specific tag. match ip address Configure a filter to match routes based on IP addresses specified in an access list.
Parameters prefix-list prefix- list-name Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Enter the keywords prefix-list and then enter the name of configured prefix list, up 10 140 characters. Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series.
Related Commands Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. match interface – redistributes routes that match the next-hop interface. match ip address – redistributes routes that match an IP address. match ip next-hop – redistributes routes that match the next-hop IP address. match metric – redistributes routes that match a specific metric. match route-type – redistributes routes that match a route type.
match origin Configure a filter to match routes based on the value found in the BGP path ORIGIN attribute. C-Series, E-Series, S-Series, Z-Series Syntax match origin {egp | igp | incomplete} To disable matching filter, use the no match origin {igp | egp | incomplete} command. Parameters egp Enter the keyword egp to match routes originating outside the AS. igp Enter the keyword igp to match routes originating within the same AS.
Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. match interface – redistributes routes that match the next-hop interface. match ip address – redistributes routes that match an IP address.
Related Commands match interface – redistributes routes that match the next-hop interface. match ip address – redistributes routes that match an IP address. match ip next-hop – redistributes routes that match the next-hop IP address. match ip route-source – redistributes routes that match routes advertised by other routers. match metric – redistributes routes that match a specific metric. match route-type – redistributes routes that match a route type.
pre-Version 6.1.1.0 Introduced on the E-Series. Usage Information Use caution when you delete route maps because if you do not specify a sequence number, all route maps with the same map-name are deleted when you use the no route-map mapname command. Example FTOS(conf)#route-map dempsey FTOS(config-route-map)# Related Commands show config – displays the current configuration. set as-path Configure a filter to modify the AS path for border gateway protocol (BGP) routes.
set automatic-tag Configure a filter to automatically compute the tag value of the route. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax set automatic-tag To return to the default, enter no set automatic-tag. Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
Usage Information Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. The community list used in the set comm-list delete command must be configured so that each filter contains only one community.
All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. none Enter the keyword none to remove the community attribute from routes meeting the route map criteria. additive (OPTIONAL) Enter the keyword additive to add the communities to already existing communities. Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
stub-area Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Enter the keyword stub to redistributed matched routes to OSPF stub areas. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
Usage Information The set local-preference command changes the LOCAL_PREF attribute for routes meeting the route map criteria. To change the LOCAL_PREF for all routes, use the bgp default local-preference command. Related Commands bgp default local-preference – changes the default LOCAL_PREF attribute for all routes. set metric Configure a filter to assign a new metric to redistributed routes.
set metric-type Configure a filter to assign a new route type for routes redistributed to OSPF. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax set metric-type {internal | external | type-1 | type-2} To delete a setting, use the no set metric-type command. Parameters internal Enter the keyword internal to assign the Interior Gateway Protocol metric of the next hop as the route’s BGP MULTI_EXIT_DES (MED) value. external Enter the keyword external to assign the IS-IS external metric.
Parameters ip-address Defaults Not configured. Command Modes ROUTE-MAP Command History Usage Information Specify an IP address in dotted decimal format. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. set tag Configure a filter to specify a tag for redistributed routes. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax set tag tag-value To delete a setting, use the no set tag command. Parameters tag-value Defaults Not configured.
Parameters weight Enter a number as the weight to be used by the route meeting the route map specification. The range is 0 to 65535. The default is routeroriginated = 32768 and all other routes = 0. When there are multiple routes to the same destination, routes with a higher weight are preferred. Defaults router-originated = 32768; all other routes = 0 Defaults Not configured. Command Modes ROUTE-MAP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
route-map hopper permit 10 FTOS(config-route-map)# show route-map Display the current route map configurations. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History show route-map [map-name] map-name • EXEC • EXEC Privilege (OPTIONAL) Enter the name of a configured route map, up to 140 characters. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.
deny Create a filter to drop routes that match the route’s AS-PATH attribute. Use regular expressions to identify which routes are affected by the filter. E-Series Syntax Parameters deny as-regular-expression as-regularexpression Enter a regular expression to match BGP AS-PATH attributes. Use one or a combination of the following: • . = (period) matches on any single character, including white space. • * = (asterisk) matches on sequences in a pattern (zero or more sequences).
ip as-path access-list Enter AS-PATH ACL mode and configure an access control list based on the BGP AS_PATH attribute. E-Series, S4810 Syntax Parameters ip as-path access-list as-path-name as-path-name Defaults Not configured. Command Modes CONFIGURATION Command History Enter the access-list name, up to 140 characters. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Increased the name string to accept up to 140 characters.
• ? = (question mark) matches sequences in a pattern (0 or 1 sequences). NOTE: You must enter an escape sequence (CNTL+v) prior to entering the ? regular expression. Defaults Not configured Command Modes AS-PATH ACL Command History • [ ] = (brackets) matches a range of single-character patterns. • ^ = (caret) matches the beginning of the input string. (If you use the caret at the beginning of a sequence or range, it matches on everything BUT the characters specified.
show ip as-path-access-lists Display the all AS-PATH access lists configured on the E-Series. E-Series, S4810 Syntax Command Modes Command History Example show ip as-path-access-lists • EXEC • EXEC Privilege Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. pre-Version 6.1.1.0 Introduced on the E-Series. FTOS#show ip as-path-access-lists ip as-path access-list 1 permit ^$ permit ^\(.*\)$ deny .* ip as-path access-list 91 permit ^$ deny .* permit ^\(.
All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers. no-advertise Enter the keywords no-advertise to drop all routes containing the well-known community attribute of NO_ADVERTISE. All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers. no-export Enter the keywords no-export to drop all routes containing the well-known community attribute of NO_EXPORT.
ip community-list Enter COMMUNITY-LIST mode and create an IP community-list for BGP. E-Series, S4810 Syntax ip community-list comm-list-name To delete a community-list, use the no ip community-list comm-list-name command. Parameters Command Modes Command History Example comm-list-name Enter a text string as the name of the community-list, up to 140 characters. CONFIGURATION Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.
All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers. no-export Enter the keywords no-export to drop all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. regexp regularexpression Enter the keyword regexp and then enter a regular expression. Use one or a combination of the following: • .
Command Modes Command History Example COMMUNITY-LIST Version 8.1.1.0 Introduced on the E-Series ExaScale. pre-Version 6.1.1.0 Introduced on the E-Series. FTOS(config-std-community-list)#show config ! ip community-list standard patches deny 45:1 permit no-export FTOS(config-std-community-list)# show ip community-lists Display configured IP community lists in alphabetic order.
deny deny deny deny FTOS# 703:666 704:666 705:666 14551:666 339
Bidirectional Forwarding Detection (BFD) 8 Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The Dell Force10 operating software (FTOS) implementation is based on the standards specified in the IETF Draft draftietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces, and port-channels. BFD is supported on the C-Series, E-Series, Z-Series, and S4810 platforms.
Command Modes ROUTER OSPF ROUTER BGP ROUTER ISIS (Not available on the C-Series.) Command History Usage Information Related Commands Version 9.0.0.0 Introduced BFD for BGP on the Z9000. Version 8.3.8.0 Introduced BFD for BGP on the S4810. Version 8.4.1.3 Introduced BFD for BGP on the E-Series ExaScale. Version 8.2.1.0 Introduced BFD for OSPF and ISIS on the E-Series ExaScale. Version 7.6.1.0 Introduced BFD for OSPF on the C-Series. Version 7.5.1.0 Introduced BFD for ISIS on the E-Series.
Defaults BFD is disabled by default. Command Modes INTERFACE VRRP Command History Version 9.0.0.0 Introduced on the Z9000. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the C-Series. Version 7.5.1.0 Introduced on the E-Series. bfd enable (Configuration) Enable BFD on all interfaces. C-Series, E-Series, Z-Series, S4810 Syntax bfd enable Disable BFD using the no bfd enable command. Defaults BFD is disabled by default.
Command History Version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. bfd interval Specify non-default BFD session parameters beginning with the transmission interval.
Example Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. FTOS(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4 role passive FTOS(conf-if-gi-0/3)# bfd neighbor Establish a BFD session with a neighbor. C-Series, E-Series, Z-Series, S4810 Syntax bfd neighbor ip-address To remove the BFD session with the neighbor, use the no bfd neighbor ip-address command.
bfd protocol-liveness Enable the BFD protocol liveness feature. E-Series, Z9000, S4810 Syntax bfd protocol-liveness Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.0 Introduced on the S4810. Version 7.4.1.0 Introduced on the E-Series. Protocol Liveness is a feature that notifies the BFD Manager when a client protocol (for example, OSPF and ISIS) is disabled.
• Defaults none Command Modes EXEC Privilege Command History Related Commands For VLAN interfaces, enter the keyword vlan and then enter a number from 1 to 4094. For ExaScale VLAN interfaces, the range is 1 to 2730 (VLAN IDs can be 0 to 4093). Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the C-Series. Version 7.5.1.0 Added support for VLAN and port-channel interfaces on the E-Series. Version 7.4.1.0 Introduced on the E-Series.
mode • For a port-channel interface, enter the keyword portchannel and then enter a number. For the C-Series, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. • For VLAN interfaces, enter the keyword vlan and then enter a number from 1 to 4094. For ExaScale VLAN interfaces, the range is 1 to 2730 (VLAN IDs can be 0 to 4093).
Parameters interval milliseconds min_rx milliseconds (OPTIONAL) Enter the keywords interval to specify non-default BFD session parameters beginning with the transmission interval. The range is 50 to 1000. The default is 100. Enter the keywords min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system. The range is 50 to 1000. The default is 100.
interval milliseconds min_rx milliseconds (OPTIONAL) Enter the keywords interval to specify non-default BFD session parameters beginning with the transmission interval. The range is 50 to 1000. The default is 100. Enter the keywords min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system. The range is 50 to 1000. The default is 100.
Parameters ip-address Enter the IP address of the BGP neighbor that you want to explicitly enable for BFD sessions in dotted decimal format (A.B.C.D). peer-group-name Enter the name of the peer group that you want to explicitly enable for BFD sessions. Defaults none Command Modes ROUTER BGP Command History Usage Information Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. Version 8.4.1.3 Introduced on the E-Series ExaScale.
Defaults none Command Modes ROUTER BGP Command History Usage Information Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. Version 8.4.1.3 Introduced on the E-Series ExaScale. When you explicitly disable a BGP neighbor for a BFD session with the neighbor bfd disable command: • The neighbor does not inherit the global BFD disable values configured with the bfd neighbor command or configured for the peer group to which the neighbor belongs.
range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. • Defaults Command Modes Command History Example For VLAN interfaces, enter the keyword vlan and then enter a number from 1 to 4094. For ExaScale VLAN interfaces, the range is 1 to 2730 (VLAN IDs can be 0 to 4093). bgp (OPTIONAL) Enter the keyword bgp to display counter information for BFD sessions established with BGP neighbors.
show bfd neighbors Display BFD neighbor information on all interfaces or a specified interface. C-Series, E-Series, Z-Series, S4810 Syntax Parameters show bfd neighbors interface [detail] interface detail Defaults Command Modes Command History Example 354 Enter one of the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet and then enter the slot/port information.
* - Active session role Ad Dn - Admin Down B - BGP C - CLI I - ISIS O - OSPF R - Static Route (RTM) LocalAddr Clients * 10.1.3.2 Example (Detail) RemoteAddr Interface State Rx-int Tx-int Mult 10.1.3.1 Gi 1/3 Up 300 250 3 C FTOS#show bfd neighbors detail Session Discriminator: 1 Neighbor Discriminator: 1 Local Addr: 10.1.3.2 Local MAC Addr: 00:01:e8:02:15:0e Remote Addr: 10.1.3.
To undo your VRRP BFD configuration, use the no vrrp bfd {all-neighbors | neighbor ip-address } [interval interval min_rx min_rx multiplier value role {active | passive}] command. Parameters all-neighbors Establish BFD sessions with all BFD neighbors on an interface. neighbor ipaddress Enter the IP address of the BFD neighbor. interval (OPTIONAL) Enter the keyword interval to specify non-default BFD session parameters beginning with the transmission interval. The range is 50 to 1000.
Border Gateway Protocol 9 BGP is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless inter-domain routing (CIDR) and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically sent messages to update those routing tables. BGP is supported in the following: FTOS Version Platform Support 9.0.0.
address-family Enable the IPv4 multicast or the IPv6 address family. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters address-family [ipv4 multicast| ipv6unicast] ipv4 multicast Enter BGPv4 multicast mode. ipv6 unicast Enter BGPv6 mode. Defaults Not configured. Command Modes ROUTER BGP Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 6.5.1.
suppress-map map-name Defaults Not configured. Command Modes Command History Usage Information (OPTIONAL) Enter the keywords suppress-map followed by the name of a configured route map to identify which more-specific routes in the aggregate are suppressed. • ROUTER BGP ADDRESS FAMILY • ROUTER BGP ADDRESS FAMILY IPv6 Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series.
path-count Defaults Command Modes Command History Related Commands Enter the number paths supported. The range is 2 to 64. Disabled • ROUTER BGP • ROUTER BGP-address-family Version 8.3.11.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. neighbor add-path – specifies that this neighbor/peer group can send/receive multiple path advertisements. bgp always-compare-med Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs.
Command Modes Command History Usage Information ROUTER BGP Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced the dynamic application of AS notation changes Version 8.2.1.0 Introduced Before enabling this feature, you must enable the enable bgp four-octet-assupportcommand. If you disable the four-octect-support command after using dot or dot+ format, the AS numbers revert to asplain text.
Defaults Disabled (that is, the software considers the AS_PATH when choosing a route as best). Command Modes ROUTER BGP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. If you enable this command, use the clear ip bgp * command to recompute the best path.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the clear ip bgp * command to recompute the best path.
Command Modes Command History Usage Information ROUTER BGP Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced Configuring this option retains the current best-path. When sessions are subsequently reset, the oldest received path is chosen as the best-path. bgp client-to-client reflection Allows you to enable route reflection between clients in a cluster.
Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. When a BGP cluster contains only one route reflector, the cluster ID is the route reflector’s router ID. For redundancy, a BGP cluster may contain two or more route reflectors. Assign a cluster ID with the bgp cluster-id command.
The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. FTOS accepts confederation EBGP peers without a LOCAL_PREF attribute. The software sends AS_CONFED_SET and accepts AS_CONFED_SET and AS_CONF_SEQ.
bgp dampening Enable BGP route dampening and configure the dampening parameters. C-Series, E-Series, S-Series, Z-Series Syntax bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] command. Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
Related Commands show ip bgp dampened-paths – views the BGP paths. bgp default local-preference Change the default local preference value for routes exchanged between internal BGP peers. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax bgp default local-preference value To return to the default value, use the no bgp default local-preference command.
Usage Information Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced. This is enabled by default, that is for all updates received from EBGP peers, BGP ensures that the first AS of the first AS segment is always the AS of the peer. If not, the update is dropped and a counter is increments. Use the show ip bgp neighbors command to view the “failed enforce-first-as check” counter.
Defaults Disabled (supports 2–byte format) Command Modes ROUTER BGP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Routers supporting 4-byte ASNs advertise that function in the OPEN message. The behavior of a 4-byte router is slightly different depending on whether it is speaking to a 2-byte router or a 4byte router.
Version 7.7.1.0 Usage Information Introduced on the C-Series. This feature is advertised to BGP neighbors through a capability advertisement. In Receiver Only mode, BGP saves the advertised routes of peers that support this capability when they restart. BGP graceful restart is active only when the neighbor becomes established. Otherwise it is disabled. Graceful-restart applies to all neighbors with established adjacency. bgp log-neighbor-changes Enable logging of BGP neighbor resets.
Usage Information Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. In Non-Deterministic mode, paths are compared in the order in which they arrive. This method can lead to FTOS choosing different best paths from a set of paths, depending on the order in which they are received from the neighbors because MED may or may not get compared between adjacent paths.
bgp regex-eval-optz-disable Disables the Regex Performance engine that optimizes complex regular expression with BGP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax bgp regex-eval-optz-disable To re-enable optimization engine, use the no bgp regex-eval-optz-disable command. Defaults Enabled Command Modes ROUTER BGP (conf-router_bgp) Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.
Related Commands show ip protocols – views information on all routing protocols enabled and active on the ESeries. bgp router-id Assign a user-given ID to a BGP router. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax bgp router-id ip-address To delete a user-assigned IP address, use the no bgp router-id command. Parameters ip-address Enter an IP address in dotted decimal format to reset only that BGP neighbor.
Version 7.2.1.0 Introduced. Usage Information When you enable soft-reconfiguration for a neighbor and you execute the clear ip bgp soft in command, the update database stored in the router is replayed and updates are reevaluated. With this command, the replay and update process is triggered only if routerefresh request is not negotiated with the peer.
capture bgp-pdu max-buffer-size Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters capture bgp-pdu max-buffer-size 100-102400000 100-102400000 Defaults 40960000 bytes. Command Modes EXEC Privilege Command History Related Commands Enter a size for the capture buffer. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.
soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session, that is, BGP Soft Reconfiguration. NOTE: If you enter the clear ip bgp ip-address soft command, both inbound and outbound policies are reset. Command Modes Command History Related Commands in (OPTIONAL) Enter the keyword in to activate only inbound policies. out (OPTIONAL) Enter the keyword out to activate only outbound policies.
Parameters Command Modes Command History Usage Information ip-address mask (OPTIONAL) Enter an IP address in dotted decimal format and the prefix mask in slash format (/x) to clear dampening information only that BGP neighbor. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series.
Command Modes Command History EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Usage Information If you enter the clear ip bgp flap-statistics command without any parameters, all statistics are cleared. Related Commands show debugging – views the enabled debugging operations. show ip bgp flap-statistics – views the BGP flap statistics.
peer-group peer- group-name Command Modes Command History Usage Information Enter the keywords peer-group followed by the name of the peer group to debug. in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. A.B.C.D Enter the IP address of peer in the A.B.C.D format. X:X:X:X::X Enter the IPv6 IP address of peer in the X:X:X:X::X format.
debug ip bgp dampening View information on routes being dampened. C-Series, E-Series TeraScale, Z-Series, S-Series Syntax debug ip bgp ipv4 multicast dampening To disable debugging, use the no debug ip bgp ipv4 multicast dampening command. Parameters Command Modes Command History dampening Enter the keyword dampening to clear route flap dampening information. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.
Usage Information Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Enter the no debug ip bgp command to remove all configured debug commands for BGP. debug ip bgp keepalives Display information about BGP keepalive messages.
To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out] command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group peer- (OPTIONAL) Enter the keyword peer-group followed by the name of the peer group. group-name Command Modes Command History Usage Information in (OPTIONAL) Enter the keyword in to view BGP notifications received from neighbors.
Usage Information Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.2.1.0 Introduced. This command turns on BGP soft-reconfiguration inbound debugging. If no neighbor is specified, debug turns on for all neighbors. debug ip bgp updates Allows you to view information about BGP updates.
default-metric Allows you to change the metric of redistributed routes to locally originated routes. Use this command with the redistribute command. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax default-metric number To return to the default setting, use the no default-metric command. Parameters number Defaults 0 Command Modes ROUTER BGP Command History Enter a number as the metric to be assigned to routes from other protocols. The range is 1 to 4294967295. Version 8.3.11.
Related Commands Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. pre-7.7.1.0 Introduced. router bgp – enters ROUTER mode on the switch. distance bgp Define an administrative distance for routes. C-Series, E-Series TeraScale, Z-Series, S-Series Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command.
max-paths Configure the maximum number of parallel routes (multipath support) BGP supports. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax max-paths {ebgp | ibgp} number To return to the default values, enter the no maximum-paths command. Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes. ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes. number Enter a number as the maximum number of parallel paths.
activate Enter the keyword activate to enable the neighbor/peer group in the new AFI/SAFI. Defaults Disabled Command Modes CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. By default, when you create a neighbor/peer group configuration in the Router BGP context, this enables IPv4/Unicast AFI/SAFI.
neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax neighbor {ip-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ip-address | peer-groupname} advertisement-interval command. Parameters Defaults Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format.
Defaults none Command Modes ROUTER BGP Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. neighbor allowas-in Set the number of times an AS number can occur in the AS path.
To remove a default route, use the no neighbor {ip-address | peer-groupname} default-originate command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map. Defaults Not configured.
Version 7.7.1.0 Introduced on the C-Series. neighbor distribute-list Distribute BGP information via an established prefix list. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax neighbor {ip-address | peer-group-name} distribute-list prefixlist-name {in | out} To delete a neighbor distribution list, use the no neighbor {ip-address | peergroup-name} distribute-list prefix-list-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
neighbor ebgp-multihop Attempt and accept BGP connections to external peers on networks that are not directly connected. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax neighbor {ip-address | peer-group-name} ebgp-multihop [ttl] To disallow and disconnect connections, use the no neighbor {ip-address | peer-group-name} ebgp-multihop command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced Usage Information When you enable fall-over, BGP keeps track of IP or IPv6 ability to reach the peer remote address and the peer local address.
Increased the name string to accept up to 140 characters. Prior to 7.8.1.0, ACL names were up to 16 characters long. Version 7.7.1.0 Introduced on the C-Series. Usage Information Use the ip as-path access-list command in CONFIGURATION mode to enter ASPATH ACL mode and configure the AS-PATH filters to deny or permit BGP routes based on information in their AS-PATH attribute. Related Commands ip as-path access-list – enter AS-PATH ACL mode and configure the AS-PATH filters.
neighbor local-as Configure Internal BGP (IBGP) routers to accept external routes from neighbors with a local AS number in the AS number path. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax neighbor {ip-address | peer-group-name} local-as as-number [noprepend] To return to the default value, use the no neighbor {ip-address | peer-groupname} local-as command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. The range is 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the E-Series software sends a message. The range is 1 to 100 percent. The default is 75.
Command Modes Command History Usage Information ROUTER BGP Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. If you configure the set next-hop command in ROUTE-MAP mode, its configuration takes precedence over the neighbor next-hop-self (C-, E-, and S-Series) command. neighbor password Enable message digest 5 (MD5) authentication on the TCP connection between two neighbors.
If you specify a BGP peer group by using the peer-group-name parameter, all the members of the peer group inherits the characteristic configured with this command.
• neighbor send-community A neighbor may keep its configuration after it was added to a peer group if the neighbor’s configuration is more specific than the peer group’s, and the neighbor’s configuration does not affect outgoing updates. A peer group must exist before you add a peer to it. If the peer group is disabled (shutdown) the peers within the group are also disabled (shutdown). Related Commands clear ip bgp – resets BGP sessions. neighbor peer-group (creating group) – creates a peer group.
neighbor peer-group passive Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message, but will respond to one. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax neighbor peer-group-name peer-group passive [limit sessions] To delete a passive peer-group, use the no neighbor peer-group-name peergroup passive command. Parameters peer-group-name Enter a text string up to 16 characters long as the name of the peer group.
Parameters ip-address Enter the IP address of the neighbor to enter the remote AS in its routing table. peer-group-name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the peer group. number Enter a number of the AS. The range is 0 to 65535 (2-byte) or 1 to 4294967295 (4-byte). Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
Usage Information Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Added 4-byte support. Applies to EBGP neighbors only. You must configure your system to accept 4-byte formats before entering a 4-byte AS Number. If the AS-PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor, the private AS numbers are not removed.
If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. neighbor route-reflector-client Configure the router as a route reflector and the specified neighbors as members of the cluster.
neighbor send-community Send a COMMUNITY attribute to a BGP neighbor or peer group. A COMMUNITY attribute indicates that all routes with that attribute belong to the same community grouping. C-Series, E-Series, S-Series, Z-Series Syntax neighbor {ip-address | peer-group-name} send-community To disable sending a COMMUNITY attribute, use the no neighbor {ip-address | peer-group-name} send-community command. Parameters ip-address Enter the IP address of the peer router in dotted decimal format.
Command Modes Command History ROUTER BGP Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Usage Information Peers that are enabled within a peer group are disabled when their peer group is disabled. Related Commands show ip bgp summary – displays the current BGP configuration. The neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer group.
CAUTION: Inbound update storage is a memory-intensive operation. The entire BGP update database from the neighbor is stored in memory regardless of the inbound policy results applied on the neighbor. NOTE: This command is supported in BGP Router Configuration mode for IPv4 Unicast address only. Related Commands show ip bgp neighbors – displays routes received by a neighbor. neighbor subnet Enable passive peering so that the members of the peer group are dynamic.
Defaults Command Modes Command History Usage Information keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. The range is 1 to 65535. The default is 60 seconds. holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead. The range is 3 to 65535. The default is 180 seconds. • keepalive = 60 seconds • holdtime = 180 seconds ROUTER BGP Version 8.3.11.
Command Modes Command History Usage Information ROUTER BGP Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Loopback interfaces are up constantly and the BGP session may need one interface constantly up to stabilize the session. The neighbor update-source command is not necessary for directly connected internal BGP sessions.
network Specify the networks for the BGP process and enter them in the BGP routing table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax network ip-address mask [route-map map-name] To remove a network, use the no network ip-address mask [route-map mapname] command. Parameters ip-address Enter an IP address in dotted decimal format of the network. mask Enter the mask of the IP address in the slash prefix length format (for example, /24).
network backdoor Specify this IGP route as the preferred route. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax network ip-address mask backdoor To remove a network, use the no network ip-address mask backdoor command. Parameters ip-address Enter an IP address in dotted decimal format of the network. mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). Defaults Not configured.
route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 8.3.11.1 Introduced on the Z9000.
To return to the default values, enter the no redistribute isis [WORD][level-1| level-1-2 | level-2] [metric metric-value] [route-map map-name] command. Parameters WORD ISO routing area tag. level-1 (OPTIONAL) Enter the keyword level-1 to independently redistributed into Level 1 routes only. level-1-2 (OPTIONAL) Enter the keyword level-1-2 to independently redistributed into Level 1 and Level 2 routes. This is the default.
Related Commands neighbor default-originate – injects the default route. redistribute ospf Redistribute OSPF routes into BGP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax redistribute ospf process-id [[match external {1 | 2}] [match internal]] [route-map map-name] To stop redistribution of OSPF routes, use the no redistribute ospf process-id command. Parameters process-id Enter the number of the OSPF process. The range is 1 to 65535.
router bgp Enter ROUTER BGP mode to configure and enable BGP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax router bgp as-number To disable BGP, use the no router bgp as-number command. Parameters as-number Defaults Not enabled. Command Modes CONFIGURATION Command History Enter the AS number. The range is 1 to 65535 (2-byte), 1 to 4294967295 (4-byte), or 0.1 to 65535.65535 (dotted format). Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.
Example Version 7.7.1.0 Introduced on the C-Series. Version 7.5.1.0 Introduced. FTOS(conf-router_bgp)#show capture bgp-pdu neighbor 20.20.20.2 Incoming packet capture enabled for BGP neighbor 20.20.20.
Example FTOS(conf-router_bgp)#show confi ! router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown neighbor 123.34.55.123 peer-group suzanne neighbor 123.34.55.123 shutdown FTOS(conf-router_bgp)# Related Commands capture bgp-pdu max-buffer-size – specifies a size for the capture buffer. show ip bgp View the current BGP IPv4 routing table for the system.
Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network.
show ip bgp cluster-list View BGP neighbors in a specific cluster. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History Usage Information Example show ip bgp [ipv4 unicast] cluster-list [cluster-id] ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. cluster-id (OPTIONAL) Enter the cluster id in dotted decimal format. • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000.
*>I * I * I * I * I 10.19.75.5/32 * I *>I * I * I * I * I 10.30.1.0/24 * I *>I * I * I * I 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.
• Command History Usage Information EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found.
i *>i 6.4.0.0/16 i *>i 6.5.0.0/19 i *>i 6.8.0.0/20 i *>i 6.9.0.0/20 i *>i 6.10.0.0/15 i *>i 6.14.0.0/15 i *>i 6.133.0.0/21 i *>i 6.151.0.0/1 i --More-- 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.16 100 0 209 7170 1455 205.171.0.
Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network.
Example Field Description Reuse Displays the hour:minutes:seconds until the dampened route is available. Path Lists all the ASs the dampened route passed through to reach the destination network. FTOS>show ip bgp damp BGP table version is 210708, local router ID is 63.114.8.
NdTmpRRClP 0x41a4b000 : NdTmpOptP 0x41a4b800 : NdTmpNHP : NdOrigPAP 0 NdOrgNHP 0 : NdModPathP 0x419efcc0 : NdModASPAP 0x41a4c000 : NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 : NdModNHP : NdComSortBufP 0x41a19110 : NdComSortHdP 0x41a19d04 : NdUpdAFMsk 0 : AFRstSet 0x41a1a298 : NHopDfrdHdP 0x41a1a3e0 : NumNhDfrd 0 : CfgHdrAFMsk 1 AFChkNetTmrP 0x41ee705c : AFRtDamp 0 : AlwysCmpMed 0 : LocrHld 10 : LocrRem 10 : softReconfig 0x41a1a58c DefMet 0 : AutoSumm 1 : NhopsP 0x41a0d100 : Starts 0 : Stops 0 : Opens 0 Clos
MpathCtxAddr 1101111140 : MpathCtxAddrlen 255 : AfEorSet 0x41a19f98 : NumDfrdPfx 0 AfActPeerHd 0x41a1a3a4 : AfExtDist 1101112312 : AfIntDist 200 : AfLocDist 200 AfNumRRc 0 : AfRR 0 : AfNetRttP 0x41a0d300 : AfNetCtxAddr 1101112392 : AfNetCtxAddrlen 255 AfNwCtxAddr 1101112443 : AfNwCtxAddrlen 255 : AfNetBKDrRttP 0x41a0d500 : AfNetBKDRCnt 0 : AfDampHLife 0 AfDampReuse 0 : AfDampSupp 0 : AfDampMaxHld 0 : AfDampCeiling 0 : AfDampRmapP show ip bgp extcommunity-list View information on all routes with Extended Co
Parameters Command Modes Command History Usage Information Example ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. as-path-name Enter the name of an AS-PATH. • • EXEC EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series.
* I * I *>I * I * I * I * I * I * I *>I * I * I * I * I * I * I FTOS# 192.100.9.2 192.100.10.2 6.1.5.1 6.1.6.1 6.1.20.1 6.1.6.0/24 192.100.11.2 192.100.8.2 192.100.9.2 192.100.10.2 6.1.5.1 6.1.6.1 6.1.20.1 6.1.20.0/24 192.100.11.2 192.100.8.2 192.100.9.2 192.100.10.
Command Modes Command History Usage Information Example • EXEC • EXEC Privilege • ^ = (caret) the beginning of the input string. If you use the caret at the beginning of a sequence or range, it matches on everything BUT the characters specified. • $ = (dollar sign) the end of the output string. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series.
show ip bgp inconsistent-as View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax show ip bgp [ipv4 unicast] inconsistent-as Command Modes Command History Usage Information Example EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series.
* * *> 4.0.0.0/8 * * * * 6.0.0.0/20 * *> * * 9.2.0.0/16 * --More-- 63.114.8.33 63.114.8.33 63.114.8.60 63.114.8.34 63.114.8.33 63.114.8.33 63.114.8.60 63.114.8.34 63.114.8.33 63.114.8.33 63.114.8.60 63.114.8.34 0 0 0 0 0 0 0 0 0 0 0 0 0 18508 18508 18508 18508 18508 18508 18508 18508 18508 18508 18508 18508 701 209 209 209 701 209 209 209 ? 209 209 209 7018 7018 1 i 1 i 1 i 1 i 3549 3549 ? ? i i 3549 i 701 i 701 i show ip bgp neighbors Allows you to view the information exchanged by BGP neighbors.
denied-routes [network [network-mask] Command Modes Command History Usage Information • EXEC • EXEC Privilege (OPTIONAL) Enter the keywords denied-routes followed by either the network address (in dotted decimal format) or the network mask (in slash prefix format) to view all information on routes denied via neighbor inbound filters. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.8.0 Added the add-path option to the S4810. Output on the S4810 shows the ADDPATH parameters. Version 8.3.7.
The Lines Beginning with: Description • Example (S4810) keepalive interval is the number of seconds between keepalive messages to help ensure that the TCP session is still alive. Received messages This line displays the number of BGP messages received, the number of notifications (error messages), and the number of messages waiting in a queue for processing.
Example FTOS#show ip bgp neighbors BGP neighbor is 100.10.10.2, remote AS 200, external link BGP version 4, remote router ID 192.168.2.
Example (ReceivedRoutes) BGP table version is 13, local router ID is 120.10.10.1 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete Network D 70.70.21.0/24 D 70.70.22.0/24 D 70.70.23.0/24 D 70.70.24.0/24 *> 70.70.25.0/24 *> 70.70.26.0/24 *> 70.70.27.0/24 *> 70.70.28.0/24 *> 70.70.29.
Usage Information Example Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. The following describes the show ip bgp next-hop command shown in the Example below. Field Description Next-hop Displays the next-hop IP address. Via Displays the IP address and interface used to reach the next hop. RefCount Displays the number of BGP routes using this next hop. Cost Displays the cost associated with using this next hop.
Command Modes Command History Usage Information Example • EXEC • EXEC Privilege • { } = (braces) minimum and the maximum match count. • ^ = (caret) the beginning of the input string. If you use the caret at the beginning of a sequence or range, it matches on everything BUT the characters specified. • $ = (dollar sign) the end of the output string. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.
show ip bgp paths as-path View all unique AS-PATHs in the BGP database. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Command Modes Command History Usage Information Example 438 show ip bgp paths as-path • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series.
show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Command Modes Command History Usage Information Example show ip bgp paths community • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series.
0x1ce6be44 80 2 209:209 209:999 209:40832 0x1c6e2374 80 2 209:777 209:41528 0x1f58ad6c 82 46 209:209 209:41528 0x1c6e2064 83 2 209:777 209:40832 0x1f588ecc 85 570 209:209 209:40832 0x1f57cc0c 98 2 209:209 209:21226 286:3031 13646:1044 13646:1124 13646:1154 13646:1164 13646:1184 13646:1194 13646:1204 13646:1214 13646:1224 13646:1234 13646:1244 13646:1254 13646:1264 13646:3000 0x1d65b2ac 117 6 209:209 209:999 209:31272 0x1f5854ac 119 18 209:209 209:21226 286:108 286:111 286:777 286:3033 517:5104 show ip bgp
Example (S4810) Line beginning with: Description Peer-group Displays the peer group’s name. Administratively shut Displays the peer group’s status if the peer group is not enabled. If you enable the peer group, this line is not displayed. BGP version Displays the BGP version supported. Minimum time Displays the time interval between BGP advertisements. For address family Displays IPv4 Unicast as the address family. BGP neighbor Displays the name of the BGP neighbor.
12.3.1.5* 12.3.1.6* 12.4.1.2* 12.4.1.3* 12.4.1.4* 12.4.1.5* 12.4.1.6* Related Commands neighbor peer-group (assigning peers) – assigns a peer to a peer-group. neighbor peer-group (creating group) – creates a peer group. show ip bgp peer-group (multicast) – views information on the BGP peers in a peer group. show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified.
Version 7.7.1.0 Usage Information Example (S4810) Introduced on the C-Series. The following describes the show ip bgp regexp command shown in the Example below. Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then non-BGP routes exist in the router’s routing table. Metric Displays the BGP router’s metric, if assigned.
*>I 6.3.0.0/18 i 1.1.1.2 0 100 0 2914 701 668 show ip bgp summary Allows you to view the status of all BGP connections. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax show ip bgp [ipv4 unicast] summary Command Modes Command History Usage Information 444 • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series.
Field Description MsgRcvd Displays the number of BGP messages that neighbor received. MsgSent Displays the number of BGP messages that neighbor sent. TblVer Displays the version of the BGP table that was sent to that neighbor. InQ Displays the number of messages from that neighbor waiting to be processed. OutQ Displays the number of messages waiting to be sent to that neighbor. If a number appears in parentheses, the number represents the number of messages waiting to be sent to the peer group.
120.10.10.2 300 FTOS# 40 47 34 0 0 00:37:10 0 show running-config bgp Use this feature to display the current BGP configuration. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax show running-config bgp Defaults none Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the E-Series.
Version 7.6.1.0 Introduced on the E-Series. MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (ASs). FTOS MBGP is implemented as per IETF RFC 1858. BGPv4 is supported in the following: FTOS Version Platform Support 7.8.1.0, MBGP for IPv6 TeraScale and C-Series 7.8.1.0, MBGP for IPv4 S-Series Multicast Only 8.2.1.
aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. C-Series, E-Series TeraScale, S-Series Syntax Parameters aggregate-address ip-address mask [advertise-map map-name] [asset] [attribute-map map-name] [summary-only] [suppress-map mapname] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x).
The summary-only parameter suppresses all advertisements. If you want to suppress advertisements to only specific neighbors, use the neighbor distribute-list command. bgp dampening Enable MBGP route dampening. C-Series, E-Series TeraScale, S-Series Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command.
peer-group Command Modes Command History (OPTIONAL) Enter the keywords peer-group to clear all members of a peer-group. EXEC Privilege Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. clear ip bgp dampening Clear information on route dampening.
• * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences). • ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression. Command Modes Command History • [ ] = (brackets) a range of single-character patterns. • ( ) = (parenthesis) groups a series of pattern elements to a single element.
debug ip bgp peer-group updates View information about BGP peer-group updates. C-Series, E-Series TeraScale, S-Series Syntax debug ip bgp peer-group peer-group-name updates [in | out] To disable debugging, use the no debug ip bgp peer-group peer-group-name updates [in | out] command. Parameters Command Modes Command History peer-group peer- group-name Enter the keywords peer-group followed by the name of the peergroup. updates Enter the keyword updates to view BGP update information.
Command History Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced IPv6 MGBP on the E-Series. distance bgp Configure three administrative distances for routes. C-Series, E-Series TeraScale, S-Series, S4810 Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command.
neighbor activate This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI. C-Series, E-Series TeraScale, S-Series Syntax neighbor [ip-address | peer-group-name] activate To disable, use the no neighbor [ip-address | peer-group-name] activate command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group.
seconds Defaults Command Modes Command History Enter a number as the time interval, in seconds, between BGP advertisements. The range is 0 to 600 seconds. The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers. • seconds = 5 seconds (internal peers) • seconds = 30 seconds (external peers) ROUTER BGP Address Family (conf-router_bgp_af) Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.
neighbor distribute-list Distribute BGP information using an established prefix list. C-Series, E-Series TeraScale, S-Series Syntax neighbor [ip-address | peer-group-name] distribute-list prefixlist-name [in | out] To delete a neighbor distribution list, use the no neighbor [ip-address | peergroup-name] distribute-list prefix-list-name [in | out] command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. as-path-name Enter the name of an established AS-PATH access list (up to 140 characters). If the AS-PATH access list is not configured, the default is permit (allow routes). in Enter the keyword in to filter inbound BGP routes. out Enter the keyword out to filter outbound BGP routes. Defaults Not configured.
warning-only (OPTIONAL) Enter the keyword warning-only to set the router to send a log message when the maximum value is reached. If this parameter is not set, the router stops peering when the maximum number of prefixes is reached. Defaults threshold = 75 Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced IPv6 MGBP on the E-Series.
peer-group-name Enter the name of the peer group to remove the private AS numbers. Defaults Disabled (that is, private AS numbers are not removed). Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Added 4-byte support. Version 7.6.1.0 Introduced IPv6 MGBP on the E-Series.
neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster. C-Series, E-Series TeraScale, S-Series Syntax neighbor {ip-address | peer-group-name} route-reflector-client To indicate that the neighbor is not a route reflector client or to delete a route reflector configuration, use the no neighbor ip-address | peer-group-name routereflector-client command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Version 7.8.1.
route-map mapname (OPTIONAL) Enter the keyword route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ip address • set community • set local-preference • set metric • set next-hop • set origin • set weight If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Usage Information Version 7.8.1.
match internal (OPTIONAL) Enter the keywords match internal to redistribute OSPF internal routes only. route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGP Address Family (conf-router_bgp_af) Command History Usage Information Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced IPv6 MGBP on the E-Series.
Usage Information When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. The following describes the show ip bgp ipv4 multicast command shown the Example below. Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table.
Command History Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced IPv6 MGBP on the E-Series. show ip bgp community View information on all routes with Community attributes or view specific BGP community groups.
The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output. show ip bgp community-list View routes that are affected by a specific community list.
Example Field Description From Displays the IP address of the neighbor advertising the dampened route. Reuse Displays the hour:minutes:seconds until the dampened route is available. Path Lists all the ASs the dampened route passed through to reach the destination network. FTOS>show ip bgp damp BGP table version is 210708, local router ID is 63.114.8.
mask (OPTIONAL) Enter the network mask (in slash prefix (/x) format) of the BGP network address. filter-list as-path- name (OPTIONAL) Enter the keyword filter-list followed by the name of a configured AS-PATH ACL. regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences).
Command History Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. show ip bgp ipv4 multicast neighbors Allows you to view the information exchanged by BGP neighbors.
Example 470 Lines beginning with: Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
60 seconds Received 1404 messages, 0 in queue 3 opens, 1 notifications, 1394 updates 6 keepalives, 0 route refresh requests Sent 48 messages, 0 in queue 3 opens, 2 notifications, 0 updates 43 keepalives, 0 route refresh requests Minimum time between advertisement runs is 5 seconds Minimum time before advertisements start is 0 seconds Capabilities received from neighbor for IPv4 unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv4 Multicast : MULT
show ip bgp peer-group Allows you to view information on the BGP peers in a peer group. C-Series, E-Series TeraScale, S-Series Syntax Parameters Command Modes Command History Related Commands show ip bgp ipv4 multicast peer-group [peer-group-name [detail | summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view detailed status information of the peers in that peer group.
Version 7.6.1.0 Usage Information Introduced IPv6 MGBP on the E-Series. The following describes the sho ip bgp ipv4 multicast summary command shown in the Example below. Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries.
Field Description If the neighbor is disabled, the phrase (Admin shut) appears in this column. Example (S4810) FTOS#sho ip bgp ipv4 multicast summary BGP router identifier 100.10.10.1, local AS number 6400 BGP table version is 14, main routing table version 14 7 network entrie(s) and 7 paths using 972 bytes of memory 2 BGP path attribute entrie(s) using 112 bytes of memory 1 BGP AS-PATH entrie(s) using 35 bytes of memory Neighbor State/Pfx 25.25.25.25 00:02:04 211.1.1.
IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte community value). Defaults Not configured. Command Modes CONFIGURATION (conf-ext-community-list) Command History Related Commands Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the E-Series. permit – configures to add (permit) rules. show ip extcommunity-list – displays the extended community list.
description Use this feature to designate a meaningful description to the extended community. C-Series, E-Series, S-Series, Z-Series Syntax description {line} To remove the description, use the no description {line} command. Parameters line Enter a description (maximum 80 characters). Defaults Not configured. Command Modes CONFIGURATION (conf-ext-community-list) Command History Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.
match extcommunity Use this feature to match an extended community in the Route Map mode. C-Series, E-Series, S-Series, Z-Series Syntax match extcommunity {extended community list name} To change the match, use the no match extcommunity {extended community list name} command. Parameters extended community list name Enter the name of the extended community list. Defaults none Command Modes ROUTE MAP (config-route-map) Command History Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.
ASN:NNNN Enter the 2-octet AS specific extended community number in the format ASN:NNNN (2-byte AS number:4-byte community value). IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte community value). Defaults Not configured. Command Modes CONFIGURATION (conf-ext-community-list) Command History Related Commands Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.
set extcommunity rt Use this feature to set Route Origin community attributes in Route Map. C-Series, E-Series, S-Series, Z-Series Syntax set extcommunity rt {as4 ASN4:NN [non-trans] | ASN:NNNN [nontrans] | IPADDR:NN [non-trans]} [additive] To delete the Route Origin community, use the no set extcommunity command. Parameters as4 ASN4:NN Enter the keyword as4 followed by the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value).
set extcommunity soo Use this feature to set extended community site-of-origin in Route Map. C-Series, E-Series, S-Series, Z-Series Syntax set extcommunity soo {as4 ASN4:NN | ASN:NNNN | IPADDR:NN [nontrans]} To delete the site-of-origin community, use the no set extcommunity command. Parameters as4 ASN4:NN Enter the keyword as4 followed by the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value).
show ip bgp ipv4 extcommunity-list Use this feature to display the IPv4 routes matching the extended community list name. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Defaults Command Modes Command History Usage Information show ip bgp [ipv4 [multicast | unicast] | ipv6 unicast] extcommunity-list name multicast Enter the keyword multicast to display the multicast route information. unicast Enter the keyword unicast to display the unicast route information.
SoO:38:50529045 SoO:0.0.0.2:33 SoO:506.62106:34 0x0303:254:11223* FTOS# show ip bgp paths extcommunity Use this feature to display all BGP paths having extended community attributes. C-Series, E-Series, S-Series, Z-Series Syntax Command Modes Command History Usage Information Example show ip bgp paths extcommunity • EXEC • EXEC Privilege Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the E-Series.
Parameters Command Modes Command History Example word Enter the name of the extended community list you want to view. • EXEC • EXEC Privilege Version 7.8.1.0 Introduced on the S-Series. Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the E-Series.
IPv6 BGP Commands IPv6 border gateway protocol (IPv6 BGP) is supported on the C-Series, E-Series, Z-Series and S4810 platforms. BGP is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS). Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically send messages to update those routing tables. address-family Enable the IPv4 multicast or the IPv6 address family.
attribute-map map-name (OPTIONAL) Enter the keywords attribute-map followed by the name of a configured route map to modify attributes of the aggregate, excluding AS_PATH and NEXT_HOP attributes. summary-only (OPTIONAL) Enter the keywords summary-only to advertise only the aggregate address. Specific routes will not be advertised.
Usage Information Any update without a MED attribute is the least preferred route. If you enable this command, use the clear ip bgp * command to recompute the best path. bgp bestpath as-path ignore Ignore the AS PATH in BGP best path calculations. C-Series, E-Series Syntax bgp bestpath as-path ignore To return to the default, use the no bgp bestpath as-path ignore command. Defaults Disabled (that is, the software considers the AS_PATH when choosing a route as best).
bgp bestpath med missing-as-best During path selection, indicate preference to paths with missing MED (MULTI_EXIT_DISC) over those paths with an advertised MED attribute. C-Series, E-Series Syntax bgp bestpath med missing-as-best To return to the default selection, use the no bgp bestpath med missing-as-best command. Defaults Disabled Command Modes ROUTER BGP Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. C-Series, E-Series Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 8.2.1.
Command Modes Command History Usage Information ROUTER BGP Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. FTOS accepts confederation EBGP peers without a LOCAL_PREF attribute.
bgp dampening Enable BGP route dampening and configure the dampening parameters. C-Series, E-Series Syntax bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] command. Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
bgp default local-preference Change the default local preference value for routes exchanged between internal BGP peers. C-Series, E-Series Syntax bgp default local-preference value To return to the default value, use the no bgp default local-preference command. Parameters value Defaults 100 Command Modes ROUTER BGP Command History Usage Information Enter a number to assign to routes as the degree of preference for those routes.
Related Commands • show ip bgp neighbors – views the information exchanged by BGP neighbors. • show ip protocols – views information on routing protocols. bgp fast-external-fallover Enable the fast external fallover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. C-Series, E-Series Syntax bgp fast-external-fallover To disable fast external fallover, use the no bgp fast-external-fallover command. Defaults Enabled.
For more information about using the 2– or 4-Byte format, refer to the FTOS Configuration Guide. bgp graceful-restart Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. C-Series, E-Series Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, use the no bgp graceful-restart command.
Defaults Enabled. Command Modes ROUTER BGP Command History Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced Usage Information The bgp log-neighbor-changes command appears in the show config command output. Related Commands show config – views the current configuration. bgp non-deterministic-med Compare MEDs of paths from different autonomous systems.
Defaults Enabled. Command Modes ROUTER BGP Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced This command is a knob to disable BGP next-hop resolution via BGP learned routes. During the next-hop resolution, only the first route that the next-hop resolves through is verified for the route’s protocol source and is checked if the route is learned from BGP or not.
bgp router-id Assign a user-given ID to a BGP router. C-Series, E-Series Syntax bgp router-id ip-address To delete a user-assigned IP address, use the no bgp router-id command. Parameters ip-address Enter an IP address in dotted decimal format to reset only that BGP neighbor. Defaults The router ID is the highest IP address of the Loopback interface or, if you do not configure Loopback interfaces, the highest IP address of a physical interface on the router.
executing the clear ip bgp soft in command), BGP sends a route-refresh request to the neighbor and receives all of the peer’s updates. Related Commands clear ip bgp – activates inbound policies without resetting the BGP TCP session. capture bgp-pdu neighbor (ipv6) Enable capture of an IPv6 BGP neighbor packet.
Command Modes Command History • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced Related Commands • show capture bgp-pdu neighbor – configures a route reflector and clients. • capture bgp-pdu neighbor – enables capture of an IPv4 BGP neighbor packet. clear ip bgp * (asterisk) Reset all BGP sessions in the specified category on the E-Series.
clear ip bgp as-number Reset BGP sessions on the E-Series. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection.
clear ip bgp ipv6-address Reset BGP sessions specific to an IPv6 address on the E-Series. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection.
clear ip bgp peer-group Reset a peer-group’s BGP sessions. C-Series, E-Series Syntax Parameters Command Modes Command History clear ip bgp peer-group peer-group-name peer-group-name Enter the peer group name to reset the BGP sessions within that peer group. EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced debug ip bgp ipv6 dampening View information on IPv6 routes being dampened.
clear ip bgp ipv6 flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap. C-Series, E-Series Syntax Parameters clear ip bgp ipv6 unicast flap-statistics [ipv6-address | filter-list as-path-name | regexp regular-expression] ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. C-Series, E-Series TeraScale, S4810 Syntax Parameters clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6neighbor-addr | peer-group name} ipv6 unicast soft [in | out] * Clear and reapply policies for all BGP sessions. as-number Clear and reapply policies for all neighbors belonging to the AS.
Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peer- group-name Command Modes Command History Usage Information Enter the keywords peer-group followed by the name of the peer group. in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes.
Command Modes Command History EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced Usage Information Enter the no debug ip bgp command to remove all configured debug commands for BGP. Related Commands show ip bgp dampened-paths – View BGP dampened routes. debug ip bgp events Allows you to view information on local BGP state changes and other BGP events.
debug ip bgp ipv6 unicast soft-reconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes. C-Series, TeraScale, S4810 Syntax debug ip bgp [ipv4-address | ipv6-address | peer-group-name] ipv6 unicast soft-reconfiguration To disable debugging, use the no debug ip bgp [ipv4-address | ipv6address | peer-group-name] ipv6 unicast soft-reconfiguration command.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peer- group-name Command Modes Command History Usage Information (OPTIONAL) Enter the keywords peer-group followed by the name of the peer group. in (OPTIONAL) Enter the keyword in to view only information on inbound keepalive routes. out (OPTIONAL) Enter the keyword out to view only information on outbound keepalive routes. EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
Usage Information Enter the no debug ip bgp command to remove all configured debug commands for BGP. debug ip bgp updates Allows you to view information about BGP updates. C-Series, E-Series Syntax debug ip bgp [ipv6-address | peer-group peer-group-name | ipv6 unicast [ipv6-address]] updates [in | out | prefix-list prefixlist-name] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name | ipv6 unicast [ipv6-address]] updates [in | out] command.
Parameters number Defaults 0 Command Modes ROUTER BGP Command History Usage Information Related Commands Enter a number as the metric to be assigned to routes from other protocols. The range is 1 to 4294967295. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. • bgp always-compare-med – enables comparison of all BGP MED attributes.
Parameters external-distance Enter a number to assign to routes learned from a neighbor external to the AS. The range is 1 to 255. The default is 20. internal-distance Enter a number to assign to routes learned from a router within the AS. The range is 1 to 255. The default is 200. local-distance Enter a number to assign to routes learned from networks listed in the network command. The range is 1 to 255. The default is 200.
Related Commands show ipv6 prefix-list – View the selected IPv6 prefix-list. maximum-paths Configure the maximum number of parallel routes (multipath support) BGP supports. C-Series, E-Series Syntax maximum-paths {ebgp | ibgp} number To return to the default values, use the no maximum-paths command. Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes.
Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced By default, when you create a neighbor/peer group configuration in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/ peer group is enabled for AFI/SAFI.
neighbor allowas-in Set the number of times an AS number can occur in the AS path. C-Series, E-Series Syntax neighbor {ip-address | peer-group-name} allowas-in number To return to the default value, use the no neighbor {ip-address | peer-groupname} allowas-in command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced If you apply a route map to a BGP peer or neighbor with the neighbor defaultoriginate command configured, the software does not apply the set filters in the route map to that BGP peer or neighbor.
To delete a neighbor distribution list, use the no neighbor {ipv6-address | peergroup-name} distribute-list prefix-list-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. prefix-list-name Enter the name of an established prefix list. If you do not configure the prefix list, the default is permit (to allow all routes).
Defaults Disabled. Command Modes ROUTER BGP Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced To prevent loops, the neighbor ebgp-multihop command does not install default routes of the multihop peer. Networks not directly connected are not considered valid for best path selection. neighbor fall-over Enable or disable fast fall-over for BGP neighbors.
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. C-Series, E-Series Syntax neighbor {ipv6-address | peer-group-name} filter-list as-pathname {in | out} To delete a BGP filter, use the no neighbor {ipv6-address | peer-groupname} filter-list as-path-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. The range is 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the E-Series software sends a message. The range is 1 to 100 percent. The default is 75.
Usage Information The TCP session is authentication and hence prevents the data from being compromised. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP). C-Series, E-Series Syntax neighbor {ipv6-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ipv6-address | peergroup-name} next-hop-self command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced You can assign up to 64 peers to one peer group. When you add a peer to a peer group, it inherits all the peer group’s configured parameters.
Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced When a peer group is created, it is disabled (shut mode). Related Commands • neighbor peer-group (assigning peers) – assigns routers to a peer group. • neighbor remote-as – assigns an indirectly connected AS to a neighbor or peer group. • neighbor shutdown – disables a peer or peer group.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the peer group. number Enter a number of the AS. The range is 1 to 65535. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
Usage Information Applies to EBGP neighbors only. If the AS-PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor, the private AS numbers are not removed. If a confederation contains private AS numbers in its AS-PATH, the software removes the private AS numbers only if they follow the confederation numbers in the AS path. Private AS numbers are 64512 to 65535.
neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster. C-Series, E-Series Syntax neighbor {ipv6-address | peer-group-name} route-reflectorclient To indicate that the neighbor is not a route reflector client or to delete a route reflector configuration, use the no neighbor {ipv6-address | peer-group-name} route-reflector-client command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
peer-group-name Enter the name of the peer group to send a COMMUNITY attribute to all routers within the peer group. Defaults Not configured and COMMUNITY attributes are not sent to neighbors. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced neighbor shutdown Disable a BGP neighbor or peer group.
neighbor soft-reconfiguration inbound Enable a BGP soft-reconfiguration and start storing updates for inbound IPv6 unicast routes. C-Series, E-Series TeraScale, S4810 Syntax Parameters neighbor {ipv4-address | ipv6-address | peer-group-name} softreconfiguration inbound ipv4-address | ipv6-address Enter the IP address of the neighbor for which you want to start storing inbound routing updates. peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates.
mask Enter a prefix mask in / prefix-length format (/x). Defaults Not configured. Command Modes ROUTER BGP Command History Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group. C-Series, E-Series Syntax neighbor {ipv6-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ipv6-address | peergroup-name} timers command.
• the lower of the holdtime values is the new holdtime value, and • whichever is the lower value; one-third of the new holdtime value, or the configured keepalive value is the new keepalive value. neighbor update-source Enable the E-Series software to use Loopback interfaces for TCP connections for BGP sessions.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to disable all routers within the peer group. weight Enter a number as the weight. The range is 0 to 65535. The default is 0. Defaults 0 Command Modes ROUTER BGP Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced In the FTOS best path selection process, the path with the highest weight value is preferred.
Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced Usage Information The E-Series software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable via nonBGP routes and non-default routes. Related Commands redistribute – redistributes routes into BGP.
Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes. route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of an established route map.
metric-type route-map mapname (OPTIONAL) The external link type associated with the default route advertised into a routing domain. You must specify one of the following: • external • internal (default) (OPTIONAL) Enter the keywords route-map followed by the name of an established route map.
• match ipv6 address • match ipv6 next-hop • match ipv6 route-source • set ipv6 next-hop If you do not configure the route map, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
Command Modes Command History Related Commands • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced • capture bgp-pdu neighbor – enables capture of an IPv6 BGP neighbor packet. • clear ip bgp – specifies a size for the capture buffer. show config View the current ROUTER BGP configuration.
show ip bgp ipv6 unicast View the current BGP routing table for the E-Series. C-Series, E-Series Syntax Parameters Command Modes Command History Usage Information show ip bgp ipv6 unicast [network [network-mask] [longerprefixes]] network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network. network-mask (OPTIONAL) Enter the network mask (in slash prefix format) of the BGP network address.
show ip bgp ipv6 unicast community View information on all routes with Community attributes or view specific BGP community groups. C-Series, E-Series Syntax Parameters Command Modes Command History Usage Information show ip bgp ipv6 unicast community [community-number] [localas] [no-export] [no-advertise] communitynumber Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system.
Parameters Command Modes Command History community-listname Enter the name of a configured IP community list. exact-match (OPTIONAL) Enter exact-match to display only for an exact match of the communities. • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced show ip bgp ipv6 unicast dampened-paths View BGP routes that are dampened (non-active).
show ip bgp ipv6 unicast extcommunity-list View information on all routes with Extended Community attributes. C-Series, E-Series, S-Series Syntax Parameters Command Modes Command History Usage Information show ip bgp ipv6 unicast extcommunity-list [list name] list name • EXEC • EXEC Privilege Enter the extended community list name you wish to view. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. C-Series, E-Series Syntax Parameters show ip bgp ipv6 unicast flap-statistics [ipv6-address prefixlength] [filter-list as-path-name] [regexp regular-expression] ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. C-Series, E-Series Syntax Command Modes Command History show ip bgp ipv6 unicast inconsistent-as • • EXEC EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
Command History Related Commands Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced show ip bgp – view the current BGP routing table. show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group.
9000::9:2* FTOS# show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections. C-Series, E-Series Syntax Command Modes Command History Example 542 show ip bgp ipv6 unicast summary • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. FTOS# show ip bgp summary BGP router identifier 55.55.55.
show ip bgp next-hop View all next hops (via learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. C-Series, E-Series Syntax Parameters Command Modes Command History Example show ip bgp next-hop [local-routes] local-routes (OPTIONAL) Show next-hop information for local routes. • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.
Command Modes Command History • EXEC • EXEC Privilege • ^ = (caret) the beginning of the input string. If the caret is used at the beginning of a sequence or range, it matches on everything BUT the characters specified. • $ = (dollar sign) the end of the output string. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced show ip bgp paths as-path View all unique AS-PATHs in the BGP database.
show ip bgp paths extcommunity View all unique Extended community information in the BGP database. C-Series, E-Series Syntax show ip bgp paths extcommunity Command Modes Command History • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced show ip bgp regexp Allows you to view the subset of BGP routing table matching the regular expressions specified.
Version 7.4.1.0 Introduced show ipv6 prefix-list Displays the specified IPv6 prefix list. Z-Series Syntax Parameters show ipv6 prefix-list detail {prefix-list name} | summary detail Display a detailed description of the selected IPv6 prefix list. prefix-list name Enter the name of the prefix list. NOTE: There is a 140-character limit for prefix list names. summary Command Modes Command History Related Commands Display a summary of RPF routes. EXEC Version 9.0.0.0 Introduced on the Z9000.
Command History Related Commands Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced neighbor timers – adjusts BGP timers for a specific peer or peer group. IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables the multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). FTOS MBGP is implemented as per IETF RFC 1858.
Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. advertise-map map-name (OPTIONAL) Enter the keywords advertise-map followed by the name of a configured route map to set filters for advertising an aggregate route.
bgp dampening Enable MBGP route dampening. C-Series, E-Series Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the half-life period expires. The range is 1 to 45. The default is 15 minutes.
Command Modes Command History EXEC Privilege Version 7.4.1.0 Introduced clear ip bgp ipv6 unicast dampening Clear information on route dampening. E-Series Syntax Parameters Command Modes Command History clear ip bgp dampening ipv6 unicast [network network-mask] network (OPTIONAL) Enter the IPv6 network address in x:x:x:x::x format. network-mask If you enter the network address, then enter the network mask, from 0 to 128. EXEC Privilege Version 7.4.1.
Command Modes Command History • ^ (caret) matches the beginning of the input string. If you use the caret at the beginning of a sequence or range, it matches on everything BUT the characters specified. • $ (dollar sign) matches the end of the output string. EXEC Privilege Version 7.4.1.0 Introduced debug ip bgp ipv6 unicast dampening View information on routes being dampened.
Command Modes Command History EXEC Privilege Version 7.4.1.0 Introduced debug ip bgp ipv6 unicast updates View information about BGP updates. E-Series Syntax debug ip bgp ipv6 unicast ipv6-address prefix-length updates [in | out] To disable debugging, use the no debug ip bgp ipv6 unicast ipv6-address prefix-length updates [in | out] command. Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
local-distance Defaults Command Modes Command History Usage Information Enter a number to assign to routes learned from networks listed in the network command. The range is 1 to 255. The default is 200. • external-distance = 20 • internal-distance = 200 • local-distance = 200 ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.0 Introduced CAUTION: Dell Force10 recommends that you do not change the administrative distance of internal routes.
Related Commands address family ipv4 multicast (MBGP) – changes the context to SAFI. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. E-Series Syntax neighbor {ipv6-address | peer-group-name} advertisementinterval seconds To return to the default value, use the no neighbor {ipv6-address | peergroup-name} advertisement-interval command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format.
peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of a configured route map. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version 7.4.1.0 Introduced neighbor distribute-list Distribute BGP information via an established prefix list.
neighbor filter-list2 Configure a BGP filter based on the AS-PATH attribute. E-Series Syntax neighbor {ipv6-address | peer-group-name} filter-list aspath as-path-name {in | out} To delete a BGP filter, use the no neighbor {ipv6-address | peer-groupname} filter-list aspath as-path-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
maximum Enter a number as the maximum number of prefixes allowed for this BGP router. The range is 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the E-Series software sends a message. The range is 1 to 100 percent. The default is 75. warning-only (OPTIONAL) Enter the keywords warning-only to set the router to send a log message when the maximum value is reached.
neighbor remove-private-as Remove private AS numbers from the AS-PATH of outgoing updates. E-Series Syntax neighbor {ipv6-address | peer-group-name} remove-private-as To return to the default, use the no neighbor {ipv6-address | peer-groupname} remove-private-as command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to remove the private AS numbers.
Command Modes Command History Usage Information ROUTER BGPV6-ADDRESS FAMILY Version 7.4.1.0 Introduced When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer.
To remove a network, use the no network ip-address [route-map map-name] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of an established route map.
route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of an established route map. Only the following ROUTE-MAP mode commands are supported: • match ipv6 address • match ipv6 next-hop • match ipv6 route-source • set ipv6 next-hop If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale.
Command History Usage Information Example Version 7.4.1.0 Introduced Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0::0/0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight.
show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster. E-Series Syntax Parameters Command Modes Command History show ip bgp ipv6 unicast cluster-list [cluster-id] cluster-id • EXEC • EXEC Privilege Version 7.4.1.0 (OPTIONAL) Enter the cluster id in dotted decimal format. Introduced show ip bgp ipv6 unicast community View information on all routes with Community attributes or view specific BGP community groups.
Command History Usage Information Version 7.4.1.0 Introduced To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found. show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list.
Command Modes Command History Example • EXEC • EXEC Privilege Version 7.5.1.
show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes. C-Series, E-Series Syntax Parameters show ip bgp ipv6 unicast flap-statistics [ipv6-address prefixlength] [filter-list as-path-name] [regexp regular-expression] ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
h dead:4::/100 h dead:4::/100 FTOS# 5ffe:10::3 5ffe:11::3 1 1 00:04:39 00:04:39 1 i 1 i show ip bgp ipv6 unicast inconsistent-as Allows you to view the information exchanged by BGP neighbors. E-Series Syntax Parameters show ip bgp ipv6 unicast neighbors [ipv6-address prefix-length [advertised-routes | dampened-routes | detail | flap-statistics | routes]] ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format.
Example 568 Lines Beginning with Description BGP version Displays the BGP version (always version 4) and the remote router ID. BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
BGP neighbor is 5ffe:10::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Prefix advertised 0, rejected 0, withdrawn 0 Connections established 3; dropped 2 Last reset 00:00:41, due to Closed by neighbor Notification History 'OPEN error/Bad AS' Sent : 0 Recv: 1 Local host: 5ffe:11::4, Local port: 179 Foreign host: 5ffe:11::3, Foreign port: 36800 Related Commands show ip bgp – view the current BGP routing table. show ip bgp ipv6 unicast neighbors Allows you to view the information exchanged by BGP neighbors.
Related Commands show ip bgp – view the current BGP routing table. show ip bgp ipv6 unicast peer-group Allows you to view information on the BGP peers in a peer group. E-Series Syntax Parameters Command Modes Command History Related Commands show ip bgp ipv6 unicast peer-group [peer-group-name [summary]] peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
Field Description network entries Displays the number of network entries and route paths and the amount of memory used to process those entries. BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them. BGP AS-PATH entries Displays the number of BGP AS_PATH attributes processed and the amount of memory used to process them.
Dampening enabled. 0 history paths, 0 dampened paths, 0 penalized paths Neighbor State/Pfx 5ffe:10::3 5ffe:11::3 FTOS# AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down 1 1 28 27 0 0 12 12 0 0 0 0 00:01:01 00:00:55 2 2 show ipv6 mbgproutes Display the selected IPv6 MBGP route or a summary of all MBGP routes in the table.
Bare Metal Provisioning (BMP) 10 Bare metal provisioning (BMP) is supported on the Dell Force10 S55, S60, S4810, and Z-Series platforms. BMP version 1.5 is supported on the S55 and S60 platforms. BMP 3.0 is supported on S4810 and Z-Series platforms. In a data center network, BMP automates the configuration and updating of switches, ensuring standard configurations across the installed devices. You can configure autoconfiguration on a single switch or on multiple switches.
reload type Configure a switch to reload in Normal mode or as a DHCP client in BMP mode with all ports configured for Layer 3 traffic. S4810, Z-Series Syntax Parameters reload-type {normal-reload | bmp [config-scr-download {enable | disable}] [dhcp-timeout minutes]| user-defined-string} normal-reload The switch reloads in Normal mode using the FTOS image and startup configuration file stored in the local flash. bmp The switch reloads in BMP mode as a DHCP client.
If the switch attempts to contact a DHCP server and one is not found, it enters a loop while reloading in BMP mode. Enter the stop bmp command to interrupt the reload and boot up in Normal mode. The startup configuration is then loaded from the local flash on the switch. Use the reload-type command in BMP 3.0 to toggle between Normal and BMP AutoConfiguration modes.
Defaults none Command Modes EXEC Privilege Command History Usage Information Version 9.1(0.0) Updated reload type parameters. Version 8.3.11.4 Introduced on the Z9000. Version 8.3.10.0 Introduced for the S4810. Check the currently configured AutoConfiguration mode (BMP or Normal reload) on a switch running BMP 3.0 using the show reload-type command. The show bootvar or show system brief commands can also be used to display the current reload mode for BMP 3.0.
Related Commands reload type – Configures the reload mode as normal or BMP. stop jumpstart Stop the switch from reloading in BMP mode to prevent an infinite loop. Z-Series, S4810 Syntax stop jumpstart NOTE: This command has been deprecated. It has been replaced by the disable-bmp command. Defaults none Command Modes CONFIGURATION Command History Version 9.1(0.0) Deprecated command. Replaced by the disable-bmp command. Version 8.3.11.4 Introduced on the Z9000. Version 8.3.10.
Content Addressable Memory (CAM) 11 Content addressable memory (CAM) commands are supported on the Dell Force10 E-Series TeraScale, C-Series, SSeries, Z-Series, or S4810 platforms. NOTE: Not all CAM commands are supported on all platforms. Be sure to note the platform when looking for a command. WARNING: If you are using these features for the first time, contact Dell Force10 Technical Assistance Center (TAC) for guidance.
cam-acl (Configuration) Select the default CAM allocation settings or reconfigure a new CAM allocation for Layer 2, IPv4, and IPv6 ACLs, Layer 2 and Layer 3 (IPv4) QoS, Layer 2 Protocol Tunneling (L2PT), IP and MAC source address validation for DHCP, Ethernet Connectivity Fault Management (CFM) ACLs, OpenFlow, and Policy-based Routing (PBR).
Usage Information You must save the new CAM settings to the startup-config (write-mem or copy run start) then reload the system for the new settings to take effect. The total amount of space allowed is 16 FP Blocks. System flow requires three blocks and these cannot be reallocated. The ipv4acl profile range is 1 to 4. When configuring space for IPv6 ACLs, the total number of Blocks must equal 13.
cam-optimization Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space. C-Series, S-Series, Z-Series Syntax Parameters cam-optimization [qos] qos Optimize CAM usage for QoS. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series. Version 7.8.1.0 Introduced on the C-Series.
microcode microcode • Enter the keywords unified-default to specify the CAM profile that maintains the CAM allocations for the IPv6 and IPv4 FIB while allocating more CAM space for the Ingress and Egress Layer 2 ACL and IPv4 ACL regions. • Enter the keywords ipv4-vrf to specify the CAM profile that maintains the CAM allocations for the IPv4 FIB while allocating CAM space for VRF.
Usage Information Version 7.4.1.0 Added the lag-hash-mpls microcode. Version 6.5.1.0 Added the eg-default and ipv4-320k CAM profiles. Version 6.3.1.0 Introduced on the E-Series. You must save the running configuration using the copy running-config startupconfig command after changing the CAM profile from CONFIGURATION mode. CAM profile changes take effect after the next chassis reboot. NOTE: Do not use the ipv4-egacl-16 CAM profile for Layer 2 egress ACLs.
Ipv4Qos : L2Qos : L2PT : IpMacAcl : VmanQos : VmanDualQos: Ipv4pbr : 1 1 0 0 0 0 0 FTOS# Example (NonDefault) FTOS#show cam-acl -- Chassis Cam ACL Current L2Acl : Ipv4Acl : Ipv6Acl : Ipv4Qos : L2Qos : L2PT : IpMacAcl : VmanQos : VmanDualQos: Ipv4pbr : -Settings(in block sizes) 2 2 2 2 2 1 2 0 0 0 -- Line card 4 -Current Settings(in block sizes) L2Acl : 5 Ipv4Acl : 5 Ipv6Acl : 1 Ipv4Qos : 1 L2Qos : 1 L2PT : 0 IpMacAcl : 0 VmanQos : 0 VmanDualQos: 0 Ipv4pbr : 0 FTOS# show cam-usage Display Layer 2, Laye
Defaults none Command Modes EXEC Privilege Command History Version 6.5.1.0 Introduced on the E-Series.
| | | | | | |IN-L3-SysFlow | |IN-L3-TrcList | |IN-L3-McastFib| |IN-L3-Qos | |IN-L3-PBR | |OUT-L3 ACL | 2878| 1024| 9215| 8192| 1024| 16384| 0| 0| 0| 0| 0| 0| 2878 1024 9215 8192 1024 16384 FTOS# Example (switch) FTOS#show cam-usage switch Linecard|Portpipe|CAM Partition|Total CAM|Used CAM | AvailableCAM ========|========|=============|=========|=========|=========== 11 | 0 |IN-L2 ACL | 7152| 0 | 7152 | |IN-L2 FIB | 32768| 1081 | 31687 | |OUT-L2 ACL | 0| 0 | 0 11 | 1 |IN-L2 ACL | 7152| 0 | 7152 | |IN-L
• microcode microcode Choose a microcode based on the CAM profile you chose. Not all microcodes are available to be paired with a CAM profile. • • • • • • • • summary Defaults none Command Modes EXEC Privilege Command History Enter the keywords ipv4-64k-ipv6 to specify the CAM profile that provides an alternate to ipv6-extacl that redistributes CAM space from the IPv4FIB to IPv4Flow and IPv6FIB.
MicroCode Name : Default : Default : Current Settings : Next Boot -- Line card 6 -Profile Name : Default : Default MicroCode Name : Default : Default FTOS# Example FTOS#show cam-profile -- Chassis Cam Profile -CamSize : : Profile Name : L2FIB : L2ACL : IPv4FIB : IPv4ACL : IPv4Flow : EgL2ACL : EgIPv4ACL : Reserved : IPv6FIB : IPv6ACL : IPv6Flow : EgIPv6ACL : MicroCode Name : 18-Meg Current Settings DEFAULT 32K entries 1K entries 256K entries 12K entries 24K entries 1K entries 1K entries 8K entries 0 ent
number Defaults none Command Modes EXEC Privilege Command History Usage Information Enter all to get information for all the linecards/stack-units or enter the linecard/ stack-unit number to get information for a specific card. The range is 0 to 6 for E-Series, 0 to 7 for C-Series, and 0 to 7 for SSeries. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced. This command applies to both IPv4 and IPv6 CAM Profiles, but is best used when verifying QoS optimization for IPv6 ACLs.
Linecard|Portpipe|CAM Partition|AvailableCAM|EstimatedCAM per Port|Status ---------------------------------------------------------------------4| 0| IPv4Flow| 232| 0|Allowed 4| 0| IPv6Flow| 0| 0|Allowed FTOS# FTOS#test cam-usage service-policy input LauraMapTest linecard 2 port-set 1 Linecard|Portpipe|CAM Partition|AvailableCAM|EstimatedCAM per Port|Status --------------------------------------------------------------------2| 1| IPv4Flow| 232| 0|Allowed 2| 1| IPv6Flow| 0| 0|Allowed FTOS# Usage Information
----------0| 102| FTOS# 1| IPv4Flow| 0|Allowed CAM IPv4flow Commands IPv4Flow sub-partitions are supported on the E-Series TeraScale platform. The 18-megabit user-configurable CAM is divided into multiple regions such as Layer 2 FIB, Layer 3 FIB, IPv4Flow, IPv4 Ingress ACL The IPv4Flow region is further subdivided into five regions: System Flow, QoS, PBR, Trace-lists, Multicast FIB & ACL. You can change the amount of CAM space allocated to each sub-region.
pbr value Enter the keyword pbr followed by the number of entries for the PBR sub-region in 1K increments. The range is 1 to 32 KB. The default is 1 KB. qos value Enter the keyword qos followed by the number of entries for the QoS sub-region in 1K increments. The range is 1 to 32 KB. The default is 8 KB. system-flow value Enter the keywords system-flow followed by the number of entries for the system-flow sub-region in 1K increments. The range is 4 to 32 KB. The default is 5 KB.
-- Line card 2 -Acl Multicast Fib/Acl Pbr Qos System Flow Trace Lists : : : : : : Current Settings Next Boot 5K 0K 9K 12K 1K 1K 8K 8K 5K 5K 1K 1K : : : : : : Current Settings Next Boot 5K 0K 9K 12K 1K 1K 8K 8K 5K 5K 1K 1K -- Line card 8 -Acl Multicast Fib/Acl Pbr Qos System Flow Trace Lists -- Line card 13 -Acl Multicast Fib/Acl Pbr Qos System Flow Trace Lists FTOS# Related Commands : : : : : : Current Settings Next Boot 5K 0K 9K 12K 1K 1K 8K 8K 5K 5K 1K 1K cam-ipv4flow (CONFIGURATION) — configures
TeraScale Syntax cam l2acl {chassis all | linecard number} {default | systemflow percentage l2acl percentage pvst percentage qos percentage l2pt percentage frrp percentage} Command Modes EXEC Privilege Command History Version 8.3.1.0 COMMAND DEPRECATED Version 7.7.1.0 Introduced on the E-Series. cam-l2acl (CONFIGURATION) Re-allocate the amount of space, in percentage, for each Layer 2 ACL CAM sub-partition.
Usage Information The PVST sub-partition requires a minimum number of entries when employing PVST+. For the E-Series, refer to the “CAM” chapter of the FTOS Configuration Guide. Related Commands show cam-l2acl – displays the percentage of the Layer 2 ACL CAM partition that is allocated to each Layer 2 ACL CAM sub-partition. show cam-l2acl Display the percentage of the Layer 2 ACL CAM partition that is allocated to each Layer 2 ACL CAM sub-partition.
Control Plane Policing (CoPP) 12 The CoPP commands are supported on the Dell Force10 S4810 and Z-Series platforms. control-plane-cpuqos Enter control-plane mode and configure the switch to manage control-plane traffic. Z-Series, S4810 Syntax control-plane-cpuqos Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810.
Usage Information You must create a policy-map by associating a queue number with the qos-policy. You must create QoS policies prior to enabling this command. For CoPP, the keywords cpu-qos must not be used when creating qos-policy-input. Related Commands qos-policy-input – creates a QoS input policy map. policy-map-input – creates an input policy map. service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis.
show cpu-queue rate cp Display the rates for each queue. Z-Series, S4810 Syntax show cpu-queue rate cp Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. This command applies the service-policy based on the type of protocol defined in the ACL rules. You must create ACL and QoS policies prior to enabling this command.
Example FTOS#show ip protocol-queue-mapping Protocol Src-Port Dst-Port TcpFlag Queue EgPort Rate(kbps) ------------------------ ----- ---------------TCP (BGP) any/179 179/any _ Q6 CP 100 UDP (DHCP) 67/68 68/67 _ Q6/Q5 CP UDP (DHCP-R) 67 67 _ Q6 CP TCP (FTP) any 21 _ Q6 CP ICMP any any _ Q6 CP IGMP any any _ Q7 CP TCP (MSDP) any/639 639/any _ Q6 CP UDP (NTP) any 123 _ Q6 CP OSPF any any _ Q7 CP PIM any any _ Q7 CP UDP (RIP) any 520 _ Q7 CP TCP (SSH) any 22 _ Q6 CP TCP (TELNET) any 23 _ Q6 CP VRRP any any _
show mac protocol-queue-mapping Display the queue mapping for the MAC protocols. Z-Series, S4810 Syntax show mac protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810.
Data Center Bridging (DCB) 13 Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. The Dell Force10 operating software (FTOS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging exchange (DCBX) protocol.
Related Commands dcb-policy input – applies the input policy with the PFC configuration to an ingress interface. PFC Commands The following PFC commands are supported on the S4810 platform. clear pfc counters Clear the PFC TLV counters and PFC statistics on an interface or stack unit. S4810 Syntax Parameters clear pfc counters [port-type slot/port | stack-unit {unit number | all } all stack-ports all}]] port-type Enter the keywords port-type followed by the slot/port information.
Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. As soon as you apply a DCB policy with PFC enabled on an interface, DCBX starts exchanging information with PFC-enabled peers. The IEEE802.1Qbb, CEE, and CIN versions of PFC TLV are supported. DCBX also validates PFC configurations received in TLVs from peer devices.
In a switch stack, configure all stacked ports with the same PFC configuration. A DCB input policy for PFC applied to an interface may become invalid if the dot1p-queue mapping is reconfigured. This situation occurs when the new dot1p-queue assignment exceeds the maximum number (2) of lossless queues supported globally on the switch. In this case, all PFC configurations received from PFC-enabled peers are removed and resynchronized with the peer devices.
dcb stack-unit pfc-buffering pfc-port pfc-queues Configure the PFC buffer for all port pipes in a specified stack unit by specifying the port-pipe number, number of PFCenabled ports, and number of configured lossless queues.
Defaults Command Modes Command History Related Commands none • DCB INPUT POLICY • DCB OUTPUT POLICY Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. • dcb-input – creates a DCB PFC input policy. • dcb-policy input – applies the output policy. • dcb-output – creates a DCBETS output policy. • dcb-policy output – applies the output policy. pfc link-delay Configure the link delay used to pause specified priority traffic.
Defaults PFC mode is on. Command Modes DCB INPUT POLICY Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. By applying a DCB input policy with PFC enabled, you enable PFC operation on ingress port traffic.
dot1p Value in the Incoming Frame Description heading 2 0 3 1 4 2 5 3 6 3 7 3 pfc priority Configure the CoS traffic to be stopped for the specified delay. S4810 Syntax pfc priority priority-range To delete the pfc priority configuration, use the no pfc priority command. Parameters priority-range Defaults none Command Modes DCB INPUT POLICY Command History Usage Information Enter the 802.1p values of the frames to be paused.
show dcb Displays the data center bridging status, the number of PFC-enabled ports, and the number of PFC-enabled queues. S4810 Syntax show dcb [stack-unit unit-number] [port-set port-set port-set number] Parameters Command Modes unit number Enter the DCB unit number. The range is 0 to 5. port-set number Enter the port-set number. EXEC Privilege Command History Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
The following describes the show interface pfc summary command shown in the Example below. 614 Field Description Interface Interface type with stack-unit and port number. Admin mode is on Admin is enabled PFC admin mode is on or off with a list of the configured PFC priorities. When the PFC admin mode is on, PFC advertisements are enabled to be sent and received from peers; received PFC configuration will take effect.
Example (Summary) Field Description Application Priority TLV: Remote FCOE Priority Map Status of FCoE advertisements in application priority TLVs from the remote peer port: enabled or disabled. Application Priority TLV: Remote ISCSI Priority Map Status of iSCSI advertisements in application priority TLVs from the remote peer port: enabled or disabled. PFC TLV Statistics: Input TLV pkts Number of PFC TLVs received. PFC TLV Statistics: Output TLV pkts Number of PFC TLVs transmitted.
ISCSI TLV Tx Status is disabled Local FCOE PriorityMap is 0x8 Local ISCSI PriorityMap is 0x10 Remote FCOE PriorityMap is 0x8 Remote ISCSI PriorityMap is 0x8 0 Input TLV pkts, 1 Output TLV pkts, 0 Error pkts, 0 Pause Tx pkts, 0 Pause Rx pkts show interface pfc statistics Displays counters for the PFC frames received and transmitted (by dot1p priority class) on an interface.
Command History Example (Summary) Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
ETS Commands The following ETS commands are supported on the S4810 platform. bandwidth-percentage Configure the bandwidth percentage allocated to priority traffic in port queues. S4810 Syntax bandwidth-percentage percentage To remove the configured bandwidth percentage, use the no bandwidth-percentage command. Parameters percentage Defaults none Command Modes QOS-POLICY-OUT-ETS Command History Usage Information (Optional) Enter the bandwidth percentage.
clear ets counters Clear all ETS TLV counters on an interface. S4810 Syntax Parameters clear ets counters port-type slot/port port-type Defaults none Command Modes EXEC Privilege Command History Enter the keywords port-type followed by the slot/port information. Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. dcb-enable Enable data center bridging. S4810 Syntax dcb enable To disable DCB, use the no dcb enable command.
dcb-output Create a DCB output policy to associate an ETS configuration with priority traffic. S4810 Syntax dcb-output policy-name To remove the ETS output policy globally, use the no dcb output policy-name command. Parameters policy-name Defaults none Command Modes CONFIGURATION Command History Usage Information Enter the DCB output policy name. The maximum is 32 alphanumeric characters. Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.
Usage Information When you apply an ETS output policy to on interface, ETS-configured scheduling and bandwidth allocation take precedence over any configured settings in QoS output policies. When you disable DCB, ETS is disabled by default. When you enable DCB, ETS is enabled for all interfaces that have the default ETS configuration applied (all dot1p priorities in the same group with equal bandwidth allocation). Related Commands dcb-output – creates a DCB output policy.
description Enter a text description of the DCB policy (PFC input or ETS output). S4810 Syntax description text To remove the text description, use the no description command. Parameters Defaults Command Modes Command History Related Commands text Enter the description of the output policy. The maximum is 32 characters. none • DCB INPUT POLICY • DCB OUTPUT POLICY Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
service-policy output command), the QoS configuration in the output policy takes precedence. Related Commands • • dcb-output – creates a DCB output policy. dcb-policy output – applies the output policy. priority-list Configure the 802.1p priorities for the traffic on which you want to apply an ETS output policy. S4810 Syntax priority-list value To remove the priority list, use the no priority-list command. Parameters value Enter the priority list value.
Defaults none Command Modes CONFIGURATION Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. A priority group consists of 802.1p priority values that are grouped together for similar bandwidth allocation and scheduling, and that share latency and loss requirements. All 802.1p priorities mapped to the same queue must be in the same priority group. All 802.
you configure QoS settings at the interface or global level and in an output policy map (the service-policy output command), the QoS configuration in the output policy takes precedence. Related Commands • dcb-output – creates a DCB output policy. • dcb-policy output – applies the output policy. qos-policy-output ets Create a QoS output policy to configure the ETS bandwidth allocation and scheduling for priority traffic.
Defaults WERR scheduling is used to queue priority traffic. Command Modes POLICY-MAP-OUT-ETS Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. dot1p priority traffic on the switch is scheduled to the current queue mapping. dot1p priorities within the same queue must have the same traffic properties and scheduling method. ETS-assigned scheduling applies only to data queues, not to control queues.
show interface ets Displays the ETS configuration applied to egress traffic on an interface, including priority groups with priorities and bandwidth allocation. S4810 Syntax Parameters Command Modes Command History Usage Information show interface port-type slot/port ets {summary | detail} port-type slot/ port ets Enter the port-type slot and port ETS information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results.
Example (Summary) Field Description Operational status (local port) Port state for current operational ETS configuration: • Init: Local ETS configuration parameters were exchanged with the peer. • Recommend: Remote ETS configuration parameters were received from the peer. • Internally propagated: ETS configuration parameters were received from the configuration source. ETS DCBX Oper status Operational status of the ETS configuration on the local port: match or mismatch.
TC-grp Priority# Bandwidth TSA -----------------------------------------------0 1 0,1,2 100% ETS 2 3 0 % SP 3 4,5,6,7 0 % SP 4 5 6 7 Oper status is init ETS DCBX Oper status is Down State Machine Type is Asymmetric Conf TLV Tx Status is enabled Reco TLV Tx Status is enabled 0 Input Conf TLV Pkts, 1955 Output Conf TLV Pkts, 0 Error Conf TLV Pkts 0 Input Reco TLV Pkts, 1955 Output Reco TLV Pkts, 0 Error Reco TLV Pkts FTOS(conf-qos-policy-out-ets)#do sho int te 0/3 ets de Interface TenGigabitEthernet 0/3 Max S
ETS DCBX Oper status is Down State Machine Type is Asymmetric Conf TLV Tx Status is enabled Reco TLV Tx Status is enabled 0 Input Conf TLV Pkts, 1955 Output Conf TLV Pkts, 0 Error Conf TLV Pkts 0 Input Reco TLV Pkts, 1955 Output Reco TLV Pkts, 0 Error Reco TLV Pkts FTOS(conf)# show interfaces tengigabitethernet 0/0 ets detail Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters : -----------------Admin is enabled TC-grp Priority# Band
TLV Pkts 0T LIVnput Traffic Class TLV Pkts, 0 Output Traffic Class TLV Pkts, 0 Error Traffic Class Pkts Example (Detail) FTOS(conf)# show interfaces tengigabitethernet 0/0 ets detail Interface TenGigabitEthernet 0/0 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters : -----------------Admin is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# 0 1 2 3 4 5 6 7 Remote Parameters:
TLV Pkts 0 Input Traffic Class TLV Pkts, 0 Output Traffic Class TLV Pkts, 0 Error Traffic Class TLV Pkts show qos dcb-output Displays the ETS configuration in a DCB output policy. S4810 Syntax Parameters Command Modes Command History Example (Summary) show qos dcb-output [ets-profile] [ets-profile] Enter the ETS profile. EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
show stack-unit stack-ports ets detail Displays the ETS configuration applied to egress traffic on stacked ports, including ETS Operational mode on each unit and the configurated priority groups with dot1p priorities, bandwidth allocation, and scheduler type. S4810 Syntax Parameters Command Modes Command History Example (Summary) show stack-unit {all | stack-unit} stack-ports {all | portnumber} ets detail stack-unit Enter the stack unit identification. port-number Enter the port number.
7 8 - - DCBX Commands The following DCBX commands are supported on the S4810 platform. advertise dcbx-app-tlv Configure DCBX to send iSCSI TLV advertisements. S4810 Syntax advertise dcbx-app-tlv iscsi To disable DCBX iSCSI TLV advertisements, use the no advertise dcbx-app-tlv iscsi command. Defaults Enabled Command Modes PROTOCOL LLDP Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information PROTOCOL LLDP Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. To disable TLV transmission, use the no form of the command; for example, no advertise dcbx-appln-tlv iscsi. advertise dcbx-tlv On a DCBX port with a manual role, configure the PFC and ETS TLVs advertised to DCBX peers.
dcbx port-role Configure the DCBX port role the interface uses to exchange DCB information. S4810 Syntax dcbx port-role {config-source | auto-downstream | auto-upstream | manual} To remove DCBX port role, use the no dcbx port-role {config-source | autodownstream | auto-upstream | manual} command. Parameters config-source | auto-downstream | auto-upstream | manual Enter the DCBX port role, where: • config-source: configures the port to serve as the configuration source on the switch.
Parameters auto | cee | cin | ieee-v2.5 Enter the DCBX version type used on the interface, where: • • cee: configures the port to use CDD (Intel 1.01). • cin: configures the port to use Cisco-Intel-Nuova (DCBX 1.0). • ieee-v2: configures the port to use IEEE 802.1az (Draft 2.5). Defaults Auto Command Modes INTERFACE PROTOCOL LLDP Command History Usage Information auto: configures the port to operate using the DCBX version received from a peer. Version 8.3.12.0 Introduced on the S4810.
Defaults none Command Modes EXEC Privilege Command History Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. fcoe priority-bits Configure the FCoE priority advertised for the FCoE protocol in application priority TLVs. S4810 Syntax fcoe priority-bits priority-bitmap To remove the configured FCoE priority, use the no fcoe priority-bits command.
Usage Information This command is available at the global level only. show interface dcbx detail Displays the DCBX configuration on an interface. S4810 Syntax Parameters Command Modes Command History Usage Information show interface port-type slot/port dcbx detail port-type Enter the port type. slot/port Enter the slot/port number. EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
Example Field Description Local DCBX Status: DCBX Operational Version DCBX version advertised in Control TLVs. Local DCBX Status: DCBX Max Version Supported Highest DCBX version supported in Control TLVs. Local DCBX Status: Sequence Number Sequence number transmitted in Control TLVs. Local DCBX Status: Acknowledgment Number Acknowledgement number transmitted in Control TLVs. Local DCBX Status: Protocol State Current operational state of the DCBX protocol: ACK or IN-SYNC.
i-Application Priority for iSCSI disabled ----------------------------------------------------------Interface TenGigabitEthernet 0/49 Remote Mac Address 00:00:00:00:00:11 Port Role is Auto-Upstream DCBX Operational Status is Enabled Is Configuration Source? TRUE Local DCBX Compatibility mode is CEE Local DCBX Configured mode is CEE Peer Operating version is CEE Local DCBX TLVs Transmitted: ErPfi Local DCBX Status ----------------DCBX Operational Version is 0 DCBX Max Version Supported is 0 Sequence Number:
Debugging and Diagnostics 14 The basic debugging and diagnostic commands are supported by the Dell Force10 operating software (FTOS) on the CSeries, E-Series, S-Series, S4810, or Z-9000 platforms as indicated. This chapter contains the following sections: • Offline Diagnostic Commands • Buffer Tuning Commands • Hardware Commands Offline Diagnostic Commands The offline diagnostics test suite is useful for isolating faults and debugging hardware.
level1 Enter the keyword Level1 to run Level 1 diagnostics. Level 1 diagnostics is a smaller set of diagnostic tests with support for automatic partitioning. They perform status/self test for all the components on the board and test their registers for appropriate values. In addition, they perform extensive tests on memory devices (for example, SDRAM, flash, NVRAM, EEPROM, and CPLD) wherever possible. There are no tests on 10G links. At this level, stack ports are shut down automatically.
Usage Information Version 8.2.1.0 Added a warning message to the off-line diagnostic. Version 7.7.1.0 Introduced on the S-Series. You cannot enter this command on a Master or Standby unit. The system reboots when the off-line diagnostics complete. This is an automatic process. A warning message appears when the offline stack-unit command is implemented. Warning - Diagnostic execution will cause stack-unit to reboot after completion of diags.
Buffer Tuning Commands The following sections detail the buffer tuning commands. WARNING: Altering the buffer allocations is a sensitive operation. Do not use any buffer tuning commands without first contacting the Dell Force10 Technical Assistance Center (TAC). buffer (Buffer Profile) Allocate an amount of dedicated buffer space, dynamic buffer space, or packet pointers to queues 0 to 3.
Defaults none Command Modes BUFFER PROFILE Command History Related Commands • Dynamic Buffer Range: FP: 0 to 2013. CSF: 0 to 131200 (in multiples of 80). • Packet Pointer Range: 0 to 2047. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. buffer-profile (Configuration) – creates a buffer profile that can be applied to an interface. buffer (Configuration) Apply a buffer profile to all Field or Switch Fabric processors in a port-pipe.
profile correctly returns to the default values, but the profile name remains. Remove it from the show buffer-profile [detail | summary] command output by entering no buffer [fp-uplink | csf] linecard port-set buffer-policy from CONFIGURATION mode and no buffer-policy from INTERFACE mode. Related Commands buffer-profile (Configuration) – creates a buffer profile that can be applied to an interface. buffer-profile (Configuration) Create a buffer profile that can be applied to an interface.
Related Commands buffer (Buffer Profile) – allocates an amount of dedicated buffer space, dynamic buffer space, or packet pointers to queues 0 to 3. buffer-profile (Interface) Apply a buffer profile to an interface. C-Series, S-Series Syntax Parameters buffer-profile profile-name profile-name Defaults none Command Modes INTERFACE Command History Related Commands Enter the name of the buffer profile you want to apply to the interface. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.
Example FTOS#show Linecard 0 4 FTOS# Related Commands buffer-profile (Configuration) – creates a buffer profile that can be applied to an interface. buffer-profile summary fp-uplink Port-set Buffer-profile 0 test1 0 test2 show buffer-profile interface Display the buffer profile that is applied to an interface. C-Series, S-Series Syntax Parameters show buffer-profile {detail | summary} interface interface slot/port detail Display the buffer allocations of a buffer profile.
Hardware Commands These commands display information from a hardware sub-component or ASIC. clear hardware stack-unit Clear statistics from selected hardware components.
clear hardware system-flow Clear system-flow statistics from selected hardware components. Syntax Parameters clear hardware system-flow layer2 stack-unit number port-set number counters stack-unit number port-set number counters Enter the keywords stack-unit then a number to select a particular stack member and then enter one of the following command options to clear a specific collection of data.
Usage Information This command enables a hardware watchdog mechanism that automatically reboots an FTOS switch/ router with a single unresponsive unit. This is a last resort mechanism intended to prevent a manual power cycle. show hardware layer2 Display Layer 2 ACL or eg data for the selected stack member and stack member port-pipe.
Defaults none Command Modes EXEC Privilege Command History Version 8.3.11.0 Introduced on the Z9000. Version 7.8.1.0 Introduced on the S-Series. show hardware stack-unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member.
Defaults Command Modes Command History unit 0-3 {counters | details | portstats [detail] | register} Enter the keyword unit followed by 0 or 3 and then enter one of the following keywords to troubleshoot errors on the selected port-pipe and to give status on why a port is not coming up to register level: counters, details, port-stats [detail], or register. TI monitor S55 only: Enter the unit keyword to show information regarding the TI register. none • EXEC • EXEC Privilege Version 8.3.11.
0 errors FTOS# Example (Drops) FTOS#sh hard stack-unit 0 drops UNIT No: 0 Total Ingress Drops: 0 Total IngMacDrops: 0 Total MmuDrops: 0 Total EgMacDrops: 0 Total Egress Drops: 0 FTOS# Example (Drops Unit) FTOS#sh hard stack-unit 0 drops unit 0 PortNumberIngress Drops IngMac Drops Total Mmu Drops 1 0 0 0 2 0 0 0 3 0 0 0 4 0 0 0 EgMac Drops Egress Drops 0 0 0 0 0 0 0 0 FTOS# Example (Drops Unit, Port) FTOS#show hardware stack-unit 0 drops unit 1 port 27 --- Ingress Drops --Ingress Drops : 0 IBP CBP Full
ge0 down ge1 !ena ge2 !ena ge3 !ena ge4 !ena ge5 !ena ge6 !ena ge7 !ena ge8 !ena ge9 !ena ge10 !ena ge11 !ena ge12 !ena ge13 !ena ge14 !ena ge15 !ena ge16 !ena ge17 !ena ge18 !ena ge19 !ena ge20 !ena ge21 !ena ge22 !ena ge23 !ena hg0 up 12G FD hg1 up 12G FD hg2 down 10G FD hg3 down 10G FD 0 FTOS# Example (Register) SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW SW Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No No No
0x0061c04c ASFPORTSPEED.cpu0 = 0x00000000 0x00780000 AUX_ARB_CONTROL.ipipe0 = 0x0000001c 0x0e700102 BCAST_BLOCK_MASK.ge0 = 0x00000000 0x0e701102 BCAST_BLOCK_MASK.ge1 = 0x00000000 0x0e702102 BCAST_BLOCK_MASK.ge2 = 0x00000000 0x0e703102 BCAST_BLOCK_MASK.ge3 = 0x00000000 0x0e704102 BCAST_BLOCK_MASK.ge4 = 0x00000000 0x0e705102 BCAST_BLOCK_MASK.ge5 = 0x00000000 0x0e706102 BCAST_BLOCK_MASK.ge6 = 0x00000000 0x0e707102 BCAST_BLOCK_MASK.ge7 = 0x00000000 0x0e708102 BCAST_BLOCK_MASK.
Front End Link Status 0x000000000000400000000000 Front End Port Present Status 0x000000000000000000000000 Back Plane Link Status 0x00000000 ****************************************************** Link Status of all the ports in the Device - 1 The linkStatus of Front End Port 0 is FALSE The linkStatus of Front End Port 1 is FALSE The linkStatus of Front End Port 2 is FALSE The linkStatus of Front End Port 3 is FALSE The linkStatus of Front End Port 4 is FALSE The linkStatus of Front End Port 5 is FALSE The li
Related Commands clear hardware system-flow – clears the statistics from selected hardware components. show interfaces stack-unit – displays information on all interfaces on a specific S-Series stack member. show processes cpu (S-Series) – displays the CPU usage information based on the processes running in an S-Series. show system (S-Series and Z-Series) – displays the current status of all the stack members or a specific member.
2037 2036 2035 2034 2033 384 383 382 380 379 4 3 2 1 25 FTOS# Example OSPF2 STUB VRRP STUB L2_DST_HIT+BC MAC+VLAN 4095 L2_DST_HIT+BC MAC Catch all OSPF[224.0.0.5] Packets OSPF[224.0.0.
slice=15, slice_idx=0x04, prio=0x7fb, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 00000000 00000000 00000000 00000806 00001600 , FPF4=0x00 MASK=0x00000000 00000000 00000000 00000000 00000000 0000ffff 00001600 , 0x00 action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=6(0x06), param1=0(0x00)}, action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)}, action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)}, !--------- output truncate
Dynamic Host Configuration Protocol (DHCP) 15 Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators. The basic DHCP commands are supported by FTOS on all Dell Force10 C-Series, E-Series, S-Series, Z-Series, or S4810 platforms.
Usage Information Entering after the clear ip dhcp binding command clears all the IPs from the binding table. debug ip dhcp server Display FTOS debugging messages for DHCP. C-Series, S-Series, Z-Series Syntax Parameters debug ip dhcp server [events | packets] events Enter the keyword events to display the DHCP state changes. packet Enter the keyword packet to display packet transmission/reception. Defaults none Command Modes EXEC Privilege Command History Version 8.3.11.
disable Disable the DHCP server. C-Series, S-Series, Z-Series, S4810 Syntax disable DHCP Server is disabled by default. Enable the system to be a DHCP server using the no disable command. Defaults Disabled Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the C-Series and S-Series. dns-server Assign a DNS server to clients based on address pool.
Defaults none Command Modes DHCP Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the C-Series and S-Series. excluded-address Prevent the server from leasing an address or range of addresses in the pool. C-Series, S-Series, Z-Series, S4810 Syntax excluded-address [address | low-address high-address] Parameters address Enter a single address to be excluded from the pool.
Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the C-Series and S-Series. host For manual (rather than automatic) configurations, assign a host to a single-address pool. C-Series, S-Series, Z-Series, S4810 Syntax Parameters host address address/mask Defaults none Command Modes DHCP Command History Enter the host IP address and subnet mask. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.
netbios-name-server Specify the NetBIOS Windows Internet Naming Service (WINS) name servers, in order of preference, that are available to Microsoft Dynamic Host Configuration Protocol (DHCP) clients. C-Series, S-Series, Z-Series, S4810 Syntax Parameters netbios-name-server address [address2...address8] address Defaults none Command Modes DHCP Command History Enter the address of the NETBIOS name server. You may enter up to eight, in order of preference. Version 8.3.11.
network Specify the range of addresses in an address pool. C-Series, S-Series, Z-Series, S4810 Syntax Parameters network network /prefix-length network/ prefixlength Defaults none Command Modes DHCP Command History Specify a range of addresses. Prefix-length range is 17 to 31. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the C-Series and S-Series. pool Create an address pool.
Command Modes Command History EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the C-Series and S-Series. show ip dhcp configuration Display the DHCP configuration. C-Series, S-Series, Z-Series Syntax Parameters show ip dhcp configuration [global | pool name] pool name Display the configuration for a DHCP pool. global Display the DHCP configuration for the entire system. Defaults none Command Modes EXEC Privilege Command History Version 8.3.11.
show ip dhcp server Display the DHCP server statistics. C-Series, S-Series, Z-Series Syntax show ip dhcp server statistics Defaults none Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the C-Series and S-Series. Commands to Configure Secure DHCP DHCP, as defined by RFC 2131, provides no authentication or security mechanisms.
arp inspection-trust Specify a port as trusted so that ARP frames are not validated against the binding table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax arp inspection-trust Defaults Disabled Command Modes Command History Related Commands • INTERFACE • INTERFACE PORT-CHANNEL Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the E-Series. Version 8.2.1.0 Introduced on the C-Series and S-Series.
ip dhcp relay Enable Option 82. C-Series, E-Series, S-Series, S4810 Syntax Parameters ip dhcp relay information-option [remote-id | trust-downstream] remote-id Configure the system to enable the remote-id string in option-82. trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. Defaults Disabled Command Modes CONFIGURATION Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the E-Series. Version 7.8.1.
Related Commands ip dhcp snooping vlan – enables DHCP snooping on one or more VLANs. ip dhcp snooping binding Create a static entry in the DHCP binding table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History 674 [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ip-address interface type slot/port lease number mac address Enter the keyword mac followed by the MAC address of the host to which the server is leasing the IP address.
Version 7.8.1.0 Related Commands Introduced on the C-Series and S-Series. show ip dhcp snooping – displays the contents of the DHCP binding table. ip dhcp snooping database Delay writing the binding table for a specified time. C-Series, E-Series, S-Series, Z-Series Syntax ip dhcp snooping database write-delay minutes Parameters minutes Defaults none Command Modes CONFIGURATION Command History The range is 5 to 21600. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.
ip dhcp snooping trust Configure an interface as trusted. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the E-Series. Version 7.8.1.0 Introduced on the C-Series and S-Series. ip dhcp source-address-validation Enable the IP Source Guard.
ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. C-Series, E-Series, Z-Series, S-Series Syntax Parameters [no] ip dhcp snooping vlan name name Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Enter the name of a VLAN on which to enable DHCP Snooping. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced on the E-Series. Version 7.8.1.0 Introduced on the C-Series and S-Series.
ip dhcp relay information-agent remote-id Manually re-set the remote-id for Option 82. Z-Series Syntax Parameters ip dhcp relay information-agent remote-id [hostname | remoteid] hostname Set the hostname as the remote-id in Option 82. remote-id Enter the name of the remote-id, maximum 64 characters. Default Chassis MAC address Command Modes CONFIGURATION Command History Version 9.0.0.0 Introduced on the Z9000.
show ip dhcp snooping Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Defaults Command Modes Command History Related Commands show ip dhcp snooping [binding | source-address-validation] binding Display the interfaces configured with IP Source Guard. source-addressvalidation Display the interfaces configured with IP Source Guard. none • EXEC • EXEC Privilege Version 8.3.11.
Equal Cost Multi-Path (ECMP) 16 Equal cost multi-path (ECMP) is supported on the Dell Force10 C-Series, E-Series, S-Series, Z-Series, or S4810 platforms. ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle. A system log is generated when the standard deviation of traffic distribution on a member link exceeds a defined threshold.
Version 8.3.10.0 Usage Information Introduced on the S4810. Using CONFIGURATION mode, create an ECMP group ID. You can then assign interfaces to the ECMP group using CONFIGURATION ECMP-GROUP mode. You can also enable on the portchannel configuration using the CONFIGURATION ECMP-GROUP command mode. hash-algorithm Changes the hash algorithm used to distribute traffic flows across a Port Channel. The ECMP and LAG options are supported on the Z-Series.
hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} stack-unit stack-unitnumber | port-set port-pipe • xor2: Use CRC16_BISYNC_AND_XOR2 - Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor2 • xor4: Use CRC16_BISYNC_AND_XOR4 - Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor4 • xor8: Use CRC16_BISYNC_AND_XOR8 - Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor8 • xor16: Use CR16 - 16 bit XOR Z-Series only: Enter the keyword hg followed by one of the following opti
• 0 to 6 on an E600/E600i • 0 to 5 on an E300 ip-sa-mask value E-Series only: (OPTIONAL) Enter the keyword ip-sa-mask followed by the ECMP/ LAG hash mask value. The range is 0 to FF. The default is FF. ip-da-mask E-Series only: (OPTIONAL) Enter the keywordip-da-mask followed by the ECMP/LAG hash mask value. The range is 0 to FF. The default is FF. Defaults 0 for hash-algorithm value on TeraScale and ExaScale. IPSA and IPDA mask value is FF for the line card.
• hash-algorithm linecard 1 ip-sa-mask aa ip-da-mask 00 • hash-algorithm linecard 2 ip-sa-mask 00 ip-da-mask aa The different hash algorithms are based on the number of Port Channel members and packet values. The default hash algorithm (number 0) yields the most balanced results in various test scenarios, but if the default algorithm does not provide a satisfactory distribution of traffic, use the hash-algorithm command to designate another algorithm.
NOTE: You cannot separate LAG and ECMP, but you can use different algorithms across chassis with the same d. If LAG member ports span multiple port-pipes and line cards, set the d to the same value on each port-pipe to achieve deterministic behavior. NOTE: If the hash algorithm configuration is removed, Hash d does not go to the original factory default setting. hash-algorithm ecmp Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing) group.
Term heading Description heading When a member leaves or is added to the ECMP group, the hash algorithm is recalculated to balance traffic across the members. Related Commands load-balance (C-Series and S-Series) hash-algorithm hg Change the hash algorithm to distribute traffic flows across different internal HiGig links.
hash-algorithm hg-seed Select the seed value to be used in HiGig hashing. Z-Series Syntax Parameters [no] hash-algorithm hg-seed number | stack-unit unit number port-set port-pipe hg-seed number Enter the keywords hg-seed followed by the hash algorithm seed value. The range is 0 to 2147483646. stack-unit unit Enter the keywords stack-unit followed by the stack unit number. The range is 0 to 7. number port-set port-pipe Enter the keywords port-set followed by the line card’s port-pipe number.
Usage Information Deterministic ECMP sorts ECMPs in order even though RTM provides them in a random order. However, the hash algorithm uses as a seed the lower 12 bits of the chassis MAC, which yields a different hash result for every chassis. This means that for a given flow, even though the prefixes are sorted, two unrelated chassis will select different hops. FTOS provides a CLI-based solution for modifying the hash seed to ensure that on each configured system, the ECMP selection is same.
ip ecmp-group Enable and specify the maximum number of ecmp that the L3 CAM hold for a route, By default, when maximum paths are not configured, the CAM can hold a maximum of 16 ecmp per route. Z-Series, S4810 Syntax ip ecmp-group {maximum-paths | {number} {path-fallback} To negate a command, use the no ip ecmp-group maximum-paths {number} command. Parameters maximum-paths Specify the maximum number of ECMP for a route. The range is 2 to 64.
arranged. This implementation ensures that every chassis having the same prefixes orders the ECMPs the same. With eight or less ECMPs, the ordering is lexicographic and deterministic. With more than eight ECMPs, ordering is deterministic but is not lexicographic. After enabling IPv6 Deterministic ECMP, traffic loss occurs for a few milliseconds while FTOS sorts the CAM entries.
Version 8.3.10.0 Introduced on the S4810. show config Display the ECMP configuration. S4810 Syntax show config Command Modes CONFIGURATION-ECMP-GROUP Command History Related Commands Version 8.3.10.0 Introduced on the S4810. show running-config ecmp-group – displays interfaces, LAG, or LAG link bundles being monitored for uneven traffic distribution.
17 FIPS Cryptography The following commands are used to configure Federal Information Processing Standards (FIPS) Cryptography on the S4810 and Z-Series platforms. FIPS • fips mode enable • show fips status • show ip ssh • ssh fips mode enable Enable the FIPS cryptography mode on the platform. Z-Series, S4810 Syntax [no] fips mode enable Use the no fips mode enable command to disable the FIPS cryptography mode.
ssh Open an SSH connection specifying the hostname, username, port number, and version of the SSH client. show fips status Displays the status of the FIPS mode. Z-Series, S4810 Syntax show fips status Defaults None Command Modes EXEC Example FTOS #show fips status FIPS Mode: Enabled FTOS# Command History Related Commands Version 9.1(0.0) Introduced on the Z9000. Version 8.3.12.0 Introduced on the S4810. show ip ssh Display information about established SSH sessions.
Hostbased Authentication RSA Authentication Vty Encryption 1 3des-cbc 2 3des-cbc : disabled. : disabled. HMAC Remote IP hmac-md5 10.1.20.48 hmac-md5 10.1.20.48 With FIPS Mode enabled: FTOS #show ip ssh SSH server : enabled. SSH server version : v2. Password Authentication : enabled. Hostbased Authentication : disabled. RSA Authentication : disabled. Vty Encryption HMAC Remote IP 0 aes128-cbc hmac-sha1 10.11.8.13 1 aes128-cbc hmac-sha1 10.1.20.48 Command History Related Commands Version 9.1(0.
Note: The :: notation specifies successive hexadecimal fields of zeros. -c encryption cipher Enter the following encryption cipher to use. (For v2 clients only.) Without the FIPS mode enabled: • 3des-cbc: Force ssh to use 3des-cbc encryption cipher. With the FIPS mode enabled: • aes128–cbc: Force ssh to use the aes128–cbc encryption cipher. • aes256–cbc: Force ssh to use the aes256–cbc encryption cipher. -l username (OPTIONAL) Enter the keyword —l followed by the user name used in this SSH session.
Command History Related Commands Example Version 9.1(0.0) Introduced on the Z9000. Version 8.3.12.0 Introduced on the S4810. ip ssh server Configure an SSH server. show ip ssh client-pub-keys Display the client-public keys. If FIPS mode is not enabled: FTOS #ssh 10.11.8.12 ? -c Encryption cipher to use (for v2 client -l User name option -m HMAC algorithm to use (for v2 clients only) -p SSH server port option (default 22) -v SSH protocol version FTOS#ssh 10.11.8.
18 FIP Snooping The following Dell Force10 operating software (FTOS) commands are used to configure and verify the FIP snooping feature on the S4810 and MXL Switch platforms. In a converged Ethernet network, an MXL switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet initialization protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs).
clear fip-snooping statistics Clears the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port interface. S4810 and MXL Switch Syntax Parameters Command Modes Command History clear fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel portchannel-number] vlan-id Enter the VLAN ID of the FIP packet statistics to be cleared.
Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. feature fip-snooping Enable the FIP snooping feature on a switch. S4810 and MXL Switch Syntax feature fip-snooping To disable the FIP snooping feature, use the no feature fip-snooping command. Defaults Disabled Command Modes CONFIGURATION Command History Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
fip-snooping fc-map Configure the FC-MAP value FIP snooping uses on all VLANs. S4810 and MXL Switch Syntax fip-snooping fc-map fc-map-value To remove the configured FM-MAP value, use the no fip-snooping fc-map command. Parameters Defaults Command Modes Command History fc-map-value Enter the FC-MAP value FIP snooping uses. The range is 0EFC00 to 0EFCFF. 0x0EFC00 • CONFIGURATION • VLAN INTERFACE Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.
fip-snooping port-mode fcoe-trusted Configure the port for bridge-to-bridge links. S4810 and MXL Switch Syntax fip-snooping port-mode fcoe-trusted To remove the bridge-to-bridge link configuration from the port, use the no fip-snooping port-mode fcoe-trusted command. Command Modes Command History Usage Information INTERFACE Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module. The maximum number of FCoE VLANs supported on the switch is eight.
show fip-snooping enode Display information on the ENodes in FIP-snooped sessions, including the ENode interface and MAC address, FCF MAC address, VLAN ID and FC-ID. S4810 and MXL Switch Syntax Parameters Command Modes Command History Usage Information Example 704 show fip-snooping enode [enode-mac-address] enode-macaddress • EXEC • EXEC Privilege Enter the MAC address of the ENodes to be displayed. Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.
show fip-snooping fcf Display information on the FCFs in FIP-snooped sessions, including the FCF interface and MAC address, FCF interface, VLAN ID, FC-MAP value, FKA advertisement period, and number of ENodes connected. S4810 and MXL Switch Syntax Parameters Command Modes Command History Usage Information Example show fip-snooping fcf [fcf-mac-address] fcf-mac-address • EXEC • EXEC Privilege Enter the MAC address of the FCF to be displayed. Version 8.3.12.0 Introduced on the S4810. Version 8.
show fip-snooping sessions Display information on FIP-snooped sessions on all VLANs or a specified VLAN, including the ENode interface and MAC address, the FCF interface and MAC address, VLAN ID, FCoE MAC address and FCoE session ID number (FC-ID), worldwide node name (WWNN) and the worldwide port name (WWPN).
show fip-snooping statistics Display statistics on the FIP packets snooped on all interfaces, including VLANs, physical ports, and port channels. S4810 and MXL Switch Syntax Parameters Command Modes Command History Usage Information show fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel portchannel-number] vlan-id Enter the VLAN ID of the FIP packet statistics displays.
Example 708 Field Description Number of VN Port Keep Alives Number of FIP-snoop VN port keep-alive frames received on the interface Number of Multicast Discovery Advertisements Number of FIP-snoop multicast discovery advertisements received on the interface. Number of Unicast Discovery Advertisements Number of FIP-snoop unicast discovery advertisements received on the interface. Number of FLOGI Accepts Number of FIP FLOGI accept frames received on the interface.
Number of FLOGO Rejects :0 Number of CVL :0 Number of FCF Discovery Timeouts :0 Number of VN Port Session Timeouts :0 Number of Session failures due to Hardware Config :0 FTOS(conf)# FTOS# show fip-snooping statistics int tengigabitethernet 0/11 Number of Vlan Requests :1 Number of Vlan Notifications :0 Number of Multicast Discovery Solicits :1 Number of Unicast Discovery Solicits :0 Number of FLOGI :1 Number of FDISC :16 Number of FLOGO :0 Number of Enode Keep Alive :4416 Number of VN Port Keep Alive :3136
show fip-snooping system Display information on the status of FIP snooping on the switch (enabled or disabled), including the number of FCoE VLANs, FCFs, ENodes, and currently active sessions. S4810 and MXL Switch Syntax Command Modes Command History Example show fip-snooping system • EXEC • EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
show fips status Display the FIPs status on the platform. S4810 and MXL Switch Syntax show fips status NOTE: You must have a license to access this command. For more information, contact your Dell Force10 representative. Defaults none Command Modes EXEC Command History Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module.
Force10 Resilient Ring Protocol (FRRP) 19 Force10 Resilient Ring Protocol (FRRP) is supported on Dell Force10 platforms, as indicated by the characters that appear under each of the command headings: E-Series, C-Series, S-Series, Z-Series, or S4810. FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the Spanning Tree Protocol.
Usage Information Example Version 8.2.1.0 Introduced on the C-Series. Version 7.5.1.0 Introduced. Executing this command without the optional ring-id command clears the statistics counters on all the available rings. FTOS requires a command line confirmation before the command executes.
Defaults Disabled. Command Modes CONFIGURATION (conf-frrp) Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced. Because the resilient ring protocol can potentially transmit 20 packets per interface, you must restrict debug information. description Enter an identifying description of the ring.
Defaults Disabled Command Modes CONFIGURATION (conf-frrp) Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced. interface Configure the primary, secondary, and control-vlan interfaces. C-Series, E-Series, S-Series, Z-Series Syntax interface {primary interface secondary interface control-vlan vlan-id} To return to the default, use the no interface {primary interface secondary interface control-vlan vlan-id} command.
secondary interface control-vlan vlan- id Enter the keyword secondary to configure the secondary interface followed by one of the following interfaces and slot/port information: Fast Ethernet interface: enter the keyword FastEthernet followed by the slot/port information 1-Gigabit Ethernet interface: enter the keywordGigabitEthernet followed by the slot/port information Port Channel interface: enter the keywordport-channel followed by a number: C-Series and S-Series Range: 1-128 • E-Series Range:
member-vlan Specify the member VLAN identification numbers. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax member-vlan {vlan-range} To return to the default, use the no member-vlan [vlan-range] command. Parameters vlan-range Enter the member VLANs using VLAN IDs (separated by commas), a range of VLAN IDs (separated by a hyphen), a single VLAN ID, or a combination. For example: VLAN IDs (comma-separated): 3, 4, 6. Range (hyphen-separated): 5-10. Combination: 3, 4, 5-10, 8.
Version 8.2.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced. protocol frrp Enter the Resilient Ring Protocol and designate a ring identification. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command. Parameters ring-id Defaults none Command Modes CONFIGURATION Command History Usage Information Enter the ring identification number. Range: 1 to 255. Version 8.3.11.
Command Modes Command History Usage Information Usage Information Example (Summary) EXEC Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced. Executing this command without the optional ring-id command clears the statistics counters on all the available rings. FTOS requires a command line confirmation before the command executes.
Related Commands protocol frrp — enters the resilient ring protocol and designate a ring identification. timer Set the hello interval or dead interval for the Ring control packets. C-Series, E-Series, S-Series, Z-Series Syntax timer {hello-interval milliseconds}| {dead-interval milliseconds} To remove the timer, use the no timer {hello-interval [milliseconds]}| {dead-interval milliseconds} command.
GARP VLAN Registration (GVRP) 20 The basic GVRP commands are supported by FTOS on all Dell Force10 C-Series, E-Series, S-Series, Z-Series, and S4810 platforms. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes.
• GVRP manages the active topology, not non-topological data such as VLAN protocols. If a local bridge needs to classify and analyze packets by VLAN protocols, you must manually configure protocol-based VLANs, and simply rely on GVRP for VLAN updates. But if the local bridge needs to know only how to reach a given VLAN, then GVRP provides all necessary information. • The VLAN topologies that GVRP learns are treated differently from VLANs that are statically configured.
debug gvrp Enable debugging on GVRP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax debug gvrp {config | events | pdu} To disable debugging, use the no debug gvrp {config | events | pdu} command. Parameters config Enter the keyword config to enable debugging on the GVRP configuration. event Enter the keyword event to enable debugging on the JOIN/LEAVE events. Not available on the S4810.
disable Globally disable GVRP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax disable To re-enable GVRP, use the no disable command. Defaults Enabled. Command Modes CONFIGURATION-GVRP Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series, E-Series, and S-Series gvrp enable – enables GVRP on physical interfaces and LAGs. protocol gvrp – access GVRP protocol.
NOTE: Designate the milliseconds in multiples of 100. Defaults As above. Command Modes CONFIGURATION-GVRP Command History Usage Information Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on C-Series, E-Series, and S-Series • Join Timer—Join messages announce the willingness to register some attributes with other participants.
Related Commands disable – globally disables GVRP. gvrp registration Configure the GVRP register type. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax gvrp registration {fixed | normal | forbidden} To return to the default, use the gvrp register normal command. Parameters fixed Enter the keyword fixed followed by the VLAN range in a comma separated VLAN ID set. normal Enter the keyword normal followed by the VLAN range in a comma separated VLAN ID set. This is the default.
protocol gvrp Access GVRP protocol — (config-gvrp)#. C-Series, E-Series, S-Series, Z-Series Syntax protocol gvrp Defaults Disabled. Command Modes CONFIGURATION Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on C-Series, E-Series, and S-Series disable – globally disables GVRP. show config Display the global GVRP configuration.
show garp timers Display the GARP timer settings for sending GARP messages. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax show garp timers Defaults none Command Modes Command History • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.
Defaults Command Modes Command History • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information.
Parameters interface interface summary Defaults Command Modes Command History Usage Information (OPTIONAL) Enter the keyword interface followed by one of the interface keywords and slot/ port or number information: • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/ port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
LeaveIn Received: 0 Leave Empty Received: 0 Leave All Received: 40 Join Empty Transmitted: 156 Join In Transmitted: 0 Empty Transmitted: 0 Leave In Transmitted: 0 Leave Empty Transmitted: 0 Leave All Transmitted: 41 Invalid Messages/Attributes skipped: 0 Failed Registrations: 0 FTOS# Related Commands show gvrp – displays the GVRP configuration.
High Availability (HA) 21 High availability (HA) in the Dell Force10 operating software (FTOS) is configuration synchronization to minimize recovery time in the event of a route processor module (RPM) failure. The feature is available on the C-Series, E-Series, S-Series, and S4810 platforms. High availability is supported on the S-Series S4810 with FTOS version 8.3.12.0 and on the E-Series ExaScale with FTOS version 8.1.1.0 and later. FTOS on the E-Series supports RPM 1 + 1 redundancy.
Related Commands show patch – displays the system patches loaded with the in-service modular hot fix command. process restartable Enable a process to be restarted. Restartability is subject to a maximum restart limit. This limit is defined as a configured number of restarts within a configured amount of time. On the software exception that exceeds the limit, the system reloads (for systems with a single RPM) or fails over (for systems with dual RPMs).
Parameters Default Command Modes Command History Usage Information count number Enter the number of times the RPMs can automatically failover within the period defined in the period parameter. The range is 2 to 10. The default is 3. period minutes Enter a duration in which to allow a number of automatic failovers (limited to the number defined in the count parameter). The range is 5 to 9000 minutes. The default is 60 minutes. • Count: 3 • Period: 60 minutes CONFIGURATION Version 8.3.12.
Usage Information Version 8.3.1.0 Added the all option. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the E-Series Enabling this command keeps the failed RPM in the failed state. If there are two RPMs in the system, enabling this command prevents the failed RPM from becoming a working Standby RPM. If there is only one RPM in the system, the failed RPM does not recover and affects the system.
Example (rpm) FTOS#redundancy force-failover rpm Peer RPM's SW version is different but HA compatible. Failover can be done by warm or hitless upgrade. All linecards will be reset during warm upgrade. Specify hitless upgrade or warm upgrade [confirm hitless/ warm]:hitless Proceed with warm upgrade [confirm yes/no]: Example (sfm) FTOS#redundancy force-failover sfm 0 %TSM-6-SFM_FAILOVER: Standby switch to SFM 8 Standby switch to SFM 0 FTOS# redundancy primary Set an RPM as the primary RPM.
redundancy protocol Enable hitless protocols. C-Series, E-Series, S4810 Syntax redundancy protocol {lacp | xstp} To disable a hitless protocol, use the no redundancy protocol {lacp | xstp} command. Parameters lacp Enter the keyword lacp to make LACP hitless. xstp Enter the keyword xstp to invoke hitless STP (all STP modes — MSTP, PVST+, RSTP, and STP). NOTE: On the C-Series, hitless STP is available only for MSTP, PVST+, and RSTP.
Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the E-Series. redundancy sfm standby Place the SFM in an offline state. C-Series, S4810 Syntax redundancy sfm standby To place the SFM in an online state, use the no redundancy sfm standby command. Default The SFM is online by default. Command Modes CONFIGURATION Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 7.5.1.0 Introduced on the C-Series.
Taking secondary SFM online... ! 10FTOS(conf)#do show sfm all Switch Fabric State: up -- Switch Fabric Modules -Slot Status ------------------------------------------0 active 1 active Related Commands • show sfm – displays the SFM status. • show switch links – displays the switch fabric backplane or internal status. redundancy synchronize Manually synchronize data once between the Primary RPM and the Secondary RPM.
show patch Display the system patches loaded with the In-Service Modular Hot Fix command. E-Series, S4810 Syntax show patch Command Modes EXEC Command History Related Commands Version 8.3.12.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the E-Series. patch flash://RUNTIME_PATCH_DIR – inserts an In-Service Modular Hot-Fix patch. show processes restartable Display the processes and tasks configured for restartability.
Related Commands process restartable show redundancy Display the current redundancy configuration. C-Series, E-Series, S4810 Syntax Command Modes Command History Usage Information 744 show redundancy • EXEC • EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the E-Series. The following describes the show redundancy command shown in the Example below.
Field Description • the parameter for auto failover limit control (the redundancy auto-failover-limit command) • RPM Failover Record Last Data Sync Record Displays the following information: • RPM failover counter (to reset the counter, use the redundancy reset-counter command) • the time and date of the last RPM failover • the reason for the last RPM failover Displays the data sync information and the timestamp for the data sync: • Start-up Config is the contents of the startup-config file.
SFM Config State: succeeded Jul 13 2007 21:28:53 Runtime Event Log: succeeded Jul 13 2007 21:28:53 Running Config: succeeded Jul 13 2007 21:28:53 FTOS# 746
22 ICMP Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. ICMP Messages and Their Definitions.\ Symbol Type Code . Query Error Timeout (no reply) ! 0 U 3 C Description 4 3 echo reply . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable .
Symbol & Type Code Description 1 redirect for host . 2 redirect for type-of-service and network . 3 redirect for type-of-service and host . 8 0 echo request . 9 0 router advertisement . 10 0 router solicitation . 11 Error time exceeded: 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 748 Query parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request .
Internet Group Management Protocol (IGMP) 23 The IGMP commands are supported by the Dell Force10 operating software (FTOS) on the E-Series, C-Series, S-Series, Z-Series, and S4810 platforms. This chapter contains the following sections: • IGMP Commands • IGMP Snooping Commands IGMP Commands FTOS supports IGMPv1/v2/v3 and is compliant with RFC-3376.
• • • Command Modes Command History For a SONET interface, enter the keyword sonet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by the slot/port information. For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. EXEC Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
Defaults Disabled. Command Modes EXEC Privilege Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Usage Information IGMP commands accept only non-VLAN interfaces—specifying VLAN does not yield results. This command displays packets for IGMP and IGMP snooping. ip igmp access-group Use this feature to specify access control for packets.
Parameters number Enter the number of IGMP groups permitted to join in a second. The range is 1 to 10000. Defaults none Command Modes CONFIGURATION (conf-if-interface-slot/port) Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the C-Series and S-Series. Version 7.6.1.0 Introduced on the E-Series. ip igmp immediate-leave Enable IGMP immediate leave.
ip igmp last-member-query-interval Change the last member query interval, which is the Max Response Time inserted into Group-Specific Queries sent in response to Leave Group messages. This interval is also the interval between Group-Specific Query messages. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip igmp last-member-query-interval milliseconds To return to the default value, use the no ip igmp last-member-query-interval command.
Version 7.7.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the S-Series in Interface VLAN mode only to enable the system to act as an IGMP Proxy Querier. Version 7.5.1.0 Introduced on the C-Series in Interface VLAN mode only to enable the system to act as an IGMP Proxy Querier. E-Series legacy command. ip igmp query-interval Change the transmission frequency of IGMP general queries sent by the Querier.
Parameters seconds Defaults 10 seconds Command Modes INTERFACE Command History Enter the number of seconds for the maximum response time. The range is 1 to 25. The default is 10 seconds. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the S-Series in Interface VLAN mode only to enable the system to act as an IGMP Proxy Querier. Version 7.
Related Commands ip access-list standard – creates a standard access list to filter based on IP address. ip igmp static-group Configure an IGMP static group. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip igmp static-group {group address [exclude [source address]] | [include {source address}]} To delete a static address, use the no ip igmp static-group {group address [exclude [source address]] | [include {source address}]} command.
Related Commands show ip igmp groups – displays IGMP group information. ip igmp version Manually set the version of the router to IGMPv2 or IGMPv3. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters ip igmp version {2 | 3} 2 Enter the number 2 to set the IGMP version number to IGMPv2. 3 Enter the number 3 to set the IGMP version number to IGMPv3. Defaults 2 (that is, IGMPv2) Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
detail Command Modes Command History • For a SONET interface, enter the keyword sonet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN interface enter the keyword vlan followed by a number from 1 to 4094.
225.0.0.0 Vlan 100 Member Ports: Po 2 225.0.0.1 Vlan 100 Member Ports: Po 2 225.0.0.2 Vlan 100 Member Ports: Po 2 225.0.0.3 Vlan 100 Member Ports: Po 2 225.0.0.4 Vlan 100 Member Ports: Po 2 Example (VLT) IGMPv2 00:00:05 00:02:04 3.0.0.51 IGMPv2 00:00:05 00:02:04 3.0.0.51 IGMPv2 00:00:05 00:02:04 3.0.0.51 IGMPv2 00:00:05 00:02:04 3.0.0.51 IGMPv2 00:00:05 00:02:04 3.0.0.
Command Modes Command History • EXEC • EXEC Privilege • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN interface enter the keyword vlan followed by a number from 1 to 4094. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command.
Command Modes Command History Related Commands • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the C-Series and S-Series. Version 7.7.1.0 Introduced on the E-Series. ip igmp ssm-map – Uses a statically configured list to translate (*,G) memberships to (S,G) memberships. IGMP Snooping Commands FTOS supports IGMP Snooping version 2 and 3 on all Dell Force10 systems.
• When enabled, IGMP snooping Querier periodically sends general queries with an IP source address of the VLAN interface. If it receives a general query on any of its VLAN member, it checks the IP source address of the incoming frame. If the IP SA in the incoming IGMP general query frame is lower than the IP address of the VLAN interface, the switch disables its IGMP snooping Querier functionality.
Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command. Usage Information Queriers normally send a certain number of queries when a leave message is received prior to deleting a group from the membership database.
ip igmp snooping last-member-query-interval The last member query interval is the maximum response time inserted into Group-Specific queries sent in response to Group-Leave messages. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip igmp snooping last-member-query-interval milliseconds To return to the default value, use the no ip igmp snooping last-member-queryinterval command.
• For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
need to be routed. You must assign an IP address to the VLAN interface for the switch to act as a querier for this VLAN. show ip igmp snooping mrouter Display multicast router interfaces. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History show ip igmp snooping mrouter [vlan number] vlan number • EXEC • EXEC Privilege Enter the keyword vlan followed by the vlan number. The range is 1 to 4094. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
24 Interfaces The commands in this chapter are supported by Dell Force10 operating software (FTOS) on the E-Series, C-Series, SSeries, S4810, or Z-Series platforms. Although all interfaces are supported on E-Series ExaScale, some interface functionality is supported on E-Series ExaScale with FTOS 8.2.1.0 and later. When this is the case, it is noted in the Command History section.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. vrrp [[ipv6] vrid] (OPTIONAL) Enter the keyword vrrp to clear the counters of all VRRP groups. To clear the counters of VRRP groups on all IPv6 interfaces, enter ipv6.
clear dampening Clear the dampening counters on all the interfaces or just the specified interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters clear dampening [interface] interface (OPTIONAL) Enter any of the following keywords and slot/port or number to clear counters from a specified interface: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
cx4-cable-length Configure the length of the cable to be connected to the selected CX4 port. S-Series Syntax Parameters [no] cx4-cable-length {long | medium | short} long | medium | short Defaults medium Command Modes INTERFACE Command History Usage Information Version 7.7.1.0 Enter the keyword that matches the cable length to be used at the selected port: • short = For 1-meter and 3-meter cable lengths. • medium = For 5-meter cable length. • long = For 10-meter and 15-meter cable lengths.
shutdown FTOS(conf-if-0/52)#exit FTOS(config)# Related Commands show config – displays the configuration of the selected interface. dampening Configure dampening on an interface. C-Series, E-Series, S-Series, Z-Series Syntax Parameters dampening [[[[half-life] [reuse-threshold]] [suppressthreshold]] [max-suppress-time]] half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires. The range is 1 to 30 seconds.
NOTE: You cannot apply dampening on an interface that is monitoring traffic for other interfaces. Example FTOS(conf-if-gi-3/2)#dampening 20 800 4500 120 FTOS(conf-if-gi-3/2)# Related Commands clear dampening – clears the dampening counters on all the interfaces or just the specified interface. show interfaces dampening – displays interface dampening information. description Assign a descriptive text string to the interface.
disable-on-sfm-failure Disable select ports on E300 systems when a single switch fabric modules (SFM) is available. E-Series Syntax disable-on-sfm-failure To delete a description, use the no disable-on-sfm-failure command. Defaults Port is not disabled. Command Modes INTERFACE Command History Usage Information Version 7.7.1.0 Introduced on the E300 systems only. When an E300 system boots up and a single SFM is active on this configuration, any ports you configure with this feature are shut down.
Usage Information This command applies only to the Management interface on the route processor modules (RPMs). Related Commands interface ManagementEthernet – configures the Management port on the system (either the Primary or Standby RPM). duplex (Management) – sets the mode of the Management interface. management route – configures a static route that points to the Management interface or a forwarding router. speed (Management interface) – sets the speed on the Management interface.
flowcontrol Control how the system responds to and generates 802.3x pause frames on 1Gig and 10Gig line cards. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax flowcontrol rx {off | on} tx {off | on} threshold {<1-2047> <1-2013> <1-2013>} NOTE: The threshold keyword is supported on the C-Series and S-Series only. Parameters rx on Enter the keywords rx on to process the received flow control frames on this port. This is the default value for the receive side.
Usage Information The globally assigned 48-bit Multicast address 01-80-C2-00-00-01 is used to send and receive pause frames. To allow full duplex flow control, stations implementing the pause operation instruct the MAC to enable the reception of frames with a destination address equal to this multicast address. The pause: • Starts when either the packet pointer or the buffer threshold is met (whichever is met first). When the discard threshold is met, packets are dropped.
Example FTOS(conf-if-gi-0/1)#show config ! interface GigabitEthernet 0/1 no ip address switchport no negotiation auto flowcontrol rx off tx on no shutdown ... Example (Values) This Example shows how FTOS negotiates the flow control values between two Dell Force10 chassis connected back-to-back using 1G copper ports.
interface Configure a physical interface on the switch. C-Series, E-Series, S-Series, Z-Series Syntax Parameters interface interface interface Defaults Not configured. Command Modes CONFIGURATION Command History Enter one of the following keywords and slot/port or number information: • For 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
show interfaces – displays the interface configuration. interface loopback Configure a Loopback interface. C-Series, E-Series, S-Series, Z-Series Syntax interface loopback number To remove a loopback interface, use the no interface loopback number command. Parameters number Defaults Not configured. Command Modes CONFIGURATION Command History Enter a number as the interface number. The range is 0 to 16383. Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.11.1 Introduced on the S55, S60, and S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced on the C-Series. Version 6.4.1.0 Introduced You cannot delete a Management port. The Management port is enabled by default (no shutdown). Use the ip address command to assign an IP address to the Management port.
Example FTOS(conf)#interface null 0 FTOS(conf-if-nu-0)# Related Commands interface – configures a physical interface. interface loopback – configures a Loopback interface. interface port-channel – configures a port channel. interface vlan – configures a VLAN. ip unreachables – enables generation of internet control message protocol (ICMP) unreachable messages. interface range This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration).
Command Modes Command History Usage Information CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.2.1.0 Added support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
NOTE: If a range has VLAN, physical, port-channel, and SONET interfaces, only commands related to physical interfaces can be bulk configured. To configure commands specific to VLAN, port-channel, or SONET, only those respective interfaces should be configured in a particular range. Example (Single Range) This example shows a single range bulk configuration.
5 is valid; interface range gigabitethernet 0/1-5 is not valid. Defaults none Command Modes CONFIGURATION Command History Example (Single Range) • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale.
interface range macro name Run the interface-range macro to automatically configure the pre-defined range of interfaces. C-Series, E-Series, S-Series, Z-Series Syntax Parameters interface range macro name name Defaults none Command Modes CONFIGURATION Command History Enter the name of an existing macro. Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
Command Modes Command History Usage Information CONFIGURATION Version 9.1.(0.0) Introduced on the S4810; added support for OpenFlow. Version 8.3.11.1 Introduced on the Z9000. For more information about VLANs and the commands to configure them, refer to the Virtual LAN (VLAN) Commands section of the Layer 2 chapter. FTP, TFTP, and SNMP operations are not supported on a VLAN. MAC ACLs are not supported in VLANs. IP ACLs are supported.
Command History Usage Information Version 8.2.1.0 Support for 4093 VLANs on E-Series ExaScale. Prior releases supported 2094. Version 8.1.1.0 Introduced on E-Series ExaScale. pre-Version 6.1.1.0 Introduced for E-Series For 1-Gigabit Ethernet interfaces only. NOTE: This command is an EtherScale-only command. ipg (10 Gigabit Ethernet interfaces) Set the inter-packet gap for traffic on 10–Gigabit Ethernet interface. E-Series Syntax ipg {ieee-802.
Parameters seconds Defaults Enabled. Command Modes INTERFACE Command History Usage Information (OPTIONAL) For SONET interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets. The range is 0 to 23767. The default is 10 seconds. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.2 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
link debounce-timer Assign the debounce time for link change notification on this interface. E-Series Syntax Parameters Command Modes Command History Usage Information link debounce [milliseconds] milliseconds Enter the time to delay link status change notification on this interface. The range is 100 to 5000 ms. The default for copper is 3100 ms. The default is for fiber is 100 ms. INTERFACE Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the E-Series.
Command Modes Command History Usage Information Example (Single Interface) • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.0 Introduced on the E-Series.
Input bytes: Output bytes: Input packets: Output packets: 64B packets: Over 64B packets: Over 127B packets: Over 255B packets: Over 511B packets: Over 1023B packets: Error statistics: Input underruns: Input giants: Input throttles: Input CRC: Input IP checksum: Input overrun: Output underruns: Output throttles: m l T q Example (All Interfaces) - 9069828 606915800 54001 9401589 67 49166 350 1351 286 2781 43 43 0 0 0 0 0 0 0 0 Bps Bps pps pps pps pps pps pps pps pps 86 86 1 1 0 1 0 0 0 0 0 0 0 0 0 0 0 0
mtu Set the link maximum transmission unit (MTU) (frame size) for an Ethernet interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax mtu value To return to the default MTU value, use the no mtu command. Parameters value Enter a maximum frame size in bytes. The range is 594 to 9252. The S4810 range is 594 to 12000. The default is 1554. Defaults 1554 Command Modes INTERFACE Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
members with Link MTU of 1522 and IP MTU of 1500 and untagged members with Link MTU of 1518 and IP MTU of 1500. The VLAN’s Link MTU cannot be higher than 1518 bytes and its IP MTU cannot be higher than 1500 bytes. The following shows the difference between Link MTU and IP MTU.
• Forced-master • Force-slave • Master • Slave • Auto-neg Error—typically indicates that both ends of the node are configured with forced-master or forced-slave. CAUTION: Ensure that one end of your node is configured as forced-master and one is configured as forced-slave. If both are configured the same (that is, forced-master or forced-slave), the show interfaces command flaps between an auto-neg-error and forced-master/slave states.
• auto-negotiation enabled* speed 1000 or auto • auto-negotiation enabled speed 100 • auto-negotiation disabled speed 100 • auto-negotiation enabled speed 100 • auto-negotiation disabled speed 100 Link Status Between Port 1 and Port 2 • Up at 1000 Mb/s • Up at 100 Mb/s • Up at 100 Mb/s • Down • Down * You cannot disable auto-negotiation when the speed is set to 1000 or auto.
• True—port is tagged • False—port is untagged • Hybrid—port accepts both tagged and untagged frames The following describes the interface vlan command shown in the Example below. This example shows unconfiguration of the hybrid port using the no portmode hybrid command. NOTE: You must remove all other configurations on the port before you can remove the hybrid configuration from the port.
NOTE: Because polling occurs every 15 seconds, the number of seconds designated here will round to the multiple of 15 seconds lower than the entered value. For example, if 44 seconds is designated, it will round to 30; 45 to 59 seconds will round to 45, and so forth. Defaults 299 seconds Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
no shutdown FTOS(conf-if)# show config (from INTERFACE RANGE mode) Display the bulk configured interfaces (interface range). C-Series, E-Series, S-Series, Z-Series Syntax show config Command Modes CONFIGURATION INTERFACE (conf-if-range) Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.1.1.0 Introduced on the E-Series.
Command Modes Command History • EXEC • EXEC Privilege • For the management interface on an RPM, enter the keyword ManagementEthernet followed by the slot/port information. The slot range is 0 to 1 and the port range is 0. • For a Null interface, enter the keywords null 0. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale.
Usage Information Use the show interfaces command for details on a specific interface. Use the show interfaces linecard command for details on all interfaces on the designated line card. On the S4810, the show interface output displays incorrect rate information details over time for link monitoring when the rate-interval is configured for 5 seconds. Dell Force10 recommends using higher rate-intervals such as 15 to 299 seconds to minimize the errors seen.
Line Description Last clearing... Displays the time when the show interfaces counters where cleared. Queuing strategy... States the packet queuing strategy. FIFO means first in first out.
Line Description Rate information... Estimate of the input and output traffic rate over a designated interval (30 to 299 seconds). Traffic rate is displayed in bits, packets per second, and percent of line rate. Time since... Elapsed time since the last interface status change (hh:mm:ss format).
Example (TeraScale) FTOS#show interfaces tengigabitethernet 0/0 TenGigabitEthernet 3/0 is up, line protocol is up Hardware is Force10Eth, address is 00:01:e8:41:77:c5 Current address is 00:01:e8:41:77:c5 Pluggable media present, XFP type is 10GBASE-SR Medium is MultiRate, Wavelength is 850.00nm XFP receive power reading is -2.
0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output Statistics: 0 packets, 0 bytes, 0 underruns 0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts, 0 Unicasts 0 Vlans, 0 throttles, 0 discarded, 0 collisions, 0 wreddrops Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec,0.
Virtual-IP IPv6 address is not set MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 1000 Mbit, Mode full duplex ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interface" counters 00:06:14 Queueing strategy: fifo Input 791 packets, 62913 bytes, 775 multicast Received 0 errors, 0 discarded Output 21 packets, 3300 bytes, 20 multicast Output 0 errors, 0 invalid protocol Time since last interface status change: 00:06:03 Example (OpenFlow instance) FTOS#show interfaces vlan 6 Vlan 6 is down, line protoco
show interfaces configured Display any interface with a non-default configuration. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Command Modes Command History Example 806 show interfaces configured • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.4.1.
Related Commands show interfaces – displays information on a specific physical interface or virtual interface. show interfaces dampening Display interface dampening information. C-Series, E-Series, S-Series, Z-Series Syntax Parameters show interfaces dampening [[interface] [summary] [detail]] interface For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number.
Gi 3/10 FTOS# Related Commands Up 0 0 5 750 2500 20 dampening – configures dampening on an interface. show interfaces – displays information on a specific physical interface or virtual interface. show interfaces configured – displays any interface with a non-default configuration. show interfaces debounce Display information on interfaces with the debounce timer configured.
Command Modes Command History Usage Information • EXEC • EXEC Privilege • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For Loopback interfaces, enter the keyword loopback followed by a number from 0 to 16383. • For the management interface on the RPM, enter the keyword ManagementEthernet followed by the slot/port information.
Field Description Protocol States whether IP is enabled (up) or disabled (down) on the interface. Description Displays the description (if any) manually configured for the interface.
Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. Usage Information The Example below shows a line card that has an XFP interface. The type, medium, wavelength, and receive power details are displayed. When a device that is not certified by Dell Force10 is inserted, it might work, but its details might not be readable by FTOS and not displayed here.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 6.5.4.0 Introduced on the E-Series. The following describes the show interfaces gigabitethernet command Example below. Mode Control Indicates if auto negotiation is enabled. If so, indicates the selected speed and duplex. Mode Status Displays auto negotiation fault information.
Speed: • Auto • 1000MB • 100MB • 10MB Example FTOS#show int gigabitethernet 1/0 phy Mode Control: SpeedSelection: 10b AutoNeg: ON Loopback: False PowerDown: False Isolate: False DuplexMode: Full Mode Status: AutoNegComplete: False RemoteFault: False LinkStatus: False JabberDetect: False AutoNegotation Advertise: 100MegFullDplx: True 100MegHalfDplx: True 10MegFullDplx: False 10MegHalfDplx: True Asym Pause: False Sym Pause: False AutoNegotiation Remote Partner's Ability: 100MegFullDplx: False 100MegH
Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series.
linecard slotnumber Defaults Command Modes Command History • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. (OPTIONAL) Enter the keyword linecard followed by the slot number. For the C-Series, the range is 0 to 7 for C300 and 0 to 3 for C150.
show interfaces switchport Display only virtual and physical interfaces in Layer 2 mode. This command displays the Layer 2 mode interfaces’ IEEE 802.1Q tag status and VLAN membership.
Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Usage Information Example The following describes the show interfaces switchport command for the Example below. Items Description Name Displays the interface’s type, slot, and port number. 802.1QTagged Displays whether if the VLAN tagged (“True”), untagged (“False”), or hybrid (“Hybrid”), which supports both untagged and tagged VLANs by port 13/0. Vlan membership Lists the VLANs to which the interface is a member.
show interfaces transceiver Display the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Command Modes Command History Usage Information 818 show interfaces [gigabitethernet slot/port | tengigabitethernet slot/port | fortyGigE slot/port] transceiver gigabitethernet For a 10/100/1000 interface, enter the keyword gigabitethernet followed by the slot/port information.
Line Description TX Power High Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. RX Power High Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Temp Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Bias Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+.
Line Description Voltage Current voltage of the sfps. If this voltage crosses voltage high alarm/warning thresholds, the voltage high alarm/warning flag is set to true. Tx Bias Current Present Tx bias current of the SFP. If this crosses bias high alarm/ warning thresholds, the tx bias high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, the tx bias low alarm/warning flag is set to true. Tx Power Present Tx power of the SFP.
Example Line Description Voltage Low Alarm Flag This can be either true or false, depending on the Current voltage value displayed above. Tx Bias Low Alarm Flag This can be either true or false, depending on the Tx bias current value displayed above. Tx Power Low Alarm Flag This can be either true or false, depending on the Current Tx power value displayed above. Rx Power Low Alarm Flag This can be either true or false, depending on the Current Rx power value displayed above.
SFP SFP SFP SFP SFP SFP SFP SFP SFP 0 0 0 0 0 0 0 0 0 Laser Wavelength = 850 nm CheckCodeBase = 0x66 Serial Extended ID fields Options = 0x00 0x12 BR max= 0 BR min= 0 Vendor SN= P5N1ACE Datecode = 040528 CheckCodeExt = 0x5b SFP 1 Diagnostic Information =================================== SFP 1 Rx Power measurement type = Average =================================== SFP 1 Temp High Alarm threshold = 95.000C SFP 1 Voltage High Alarm threshold = 3.900V SFP 1 Bias High Alarm threshold = 17.
Related Commands interface – configures a physical interface on the switch. show ip interface – displays Layer 3 information about the interfaces. show interfaces – displays information on a specific physical interface or virtual interface. show inventory (C-Series and E-Series) – displays the chassis type, components (including media), FTOS version including hardware identification numbers and configured protocols.
Command Modes Command History Related Commands CONFIGURATION Version 8.3.10.0 Introduced on the S4810. ecmp-group – configures a mechanism to monitor traffic distribution. shutdown Disable an interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax shutdown To activate an interface, use the no shutdown command. Defaults The interface is disabled. Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.
speed (for 10/100/1000 interfaces) Set the speed for 10/100/1000 Base-T Ethernet interfaces. Both sides of a link must be set to the same speed (10/100/1000) or to auto or the link may not come up. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax speed {10 | 100 | 1000 | auto} To return to the default setting, use the no speed {10 | 100 | 1000} command. Parameters 10 Enter the keyword 10 to set the interface’s speed to 10 Mb/s.
When you configure a speed for the 10/100/1000 interface, you should confirm the negotiation auto command setting. Both sides of the link must have auto-negotiation either enabled or disabled. For speed settings of 1000 or auto, the software sets the link to auto-negotiation and you cannot change that setting. In FTOS, the command speed 100 is an exact equivalent of speed auto 100 in IOS. NOTE: Starting with FTOS version 7.8.1.
management route – configures a static route that points to the Management interface or a forwarding router. stack-unit portmode Split a single 40G port into 4-10G ports on the S4810 or Z9000. S4810, Z-Series Syntax Parameters stack-unit stack-unit port number portmode quad stack-unit Enter the stack member unit identifier of the stack member to reset. For the S4810, the range is 0 to 11. For the Z9000, the range is 0 to 7. number Enter the port number of the 40G port to be split.
switchport backup interface {gigabit slot/port | tengigabit slot/port | fortyGigE slot/port | port-channel number} command. Parameters backup interface Use this option to configure a redundant Layer 2 link without using Spanning Tree. The keywords backup interface configures a backup port so that if the primary port fails, the backup port changes to the up state. If the primary later comes up, it becomes the backup. gigabit Enter the keyword gigabit if the backup port is a 1G port.
wanport Enable WAN mode on a TenGigabitEthernet interface. E-Series wanport Syntax To disable the WAN Port, enter the no wanport command. Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 8.1.1.2 Introduced on the E-Series ExaScale. pre-Version 6.2.1.0 Introduced on the E-Series. The port must be in a shutdown state to change from LAN mode to WAN mode and vice-versa as shown in the Example below.
Because each port can be assigned to only one Port Channel, and each Port Channel must have at least one port, some of those nominally available Port Channels might have no function because they could have no members if there are not enough ports installed. In the S-Series, those ports could be provided by stack members. NOTE: The FTOS implementation of LAG or Port Channel requires that you configure a LAG on both switches manually.
Usage Information Use the interface port-channel command to access this command. You cannot add an interface to a Port Channel if the interface contains an IP address in its configuration. Only the shutdown, description, mtu, and ip mtu commands can be configured on an interface if it is to be added to a Port Channel. The mtu and ip mtu commands are only available when the chassis is in Jumbo mode.
port-channel number Enter the keywords port-channel followed by an existing LAG number. Enter this keyword/variable combination twice, identifying the two LAGs to be paired. Defaults none Command Modes PORT-CHANNEL FAILOVER-GROUP (conf-po-failover-grp) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the C-Series, E-Series, and S-Series.
Usage Information Port Channel interfaces are logical interfaces and can be either in Layer 2 mode (by using the switchport command) or Layer 3 mode (by configuring an IP address). You can add a Port Channel in Layer 2 mode to a VLAN. The shutdown, description, and name commands are the only commands that you can configure on an interface while it is a member of a Port Channel.
Usage Information Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.0 Introduced on the E-Series. If you use this command to configure the minimum number of links in a LAG that must be in “oper up” status, the LAG must have at least that number of “oper up” links before it can be declared as up. For example, if the required minimum is four, and only three are up, the LAG is considered down.
Command Modes Command History Example INTERFACE PORTCHANNEL Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.0 Introduced on the E-Series. FTOS(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown FTOS(conf-if-po-1)# show interfaces port-channel Display information on configured Port Channel groups.
Example 836 Field Description Port-Channel 1... Displays the LAG’s status. In the Example, the status of the LAG’s LAG fate-sharing group (“Failover-group”) is listed. Hardware is... Displays the interface’s hardware information and its assigned MAC address. Port-channel is part... Indicates whether the LAG is part of a LAG fate-sharing group (“Failover-group”). Internet address... States whether an IP address is assigned to the interface. If an IP address is assigned, that address is displayed.
Queueing strategy: fifo 44507301 packets input, 3563070343 bytes Input 44506754 IP Packets, 0 Vlans 0 MPLS 41 64-byte pkts, 44502871 over 64-byte pkts, 249 over 127byte pkts 407 over 255-byte pkts, 3127 over 511-byte pkts, 606 over 1023-byte pkts Received 0 input symbol errors, 0 runts, 0 giants, 0 throttles 0 CRC, 0 IP Checksum, 0 overrun, 0 discarded 1218120 packets output, 100745130 bytes, 0 underruns Output 5428 Multicasts, 4 Broadcasts, 1212688 Unicasts 1216142 IP Packets, 0 Vlans, 0 MPLS 0 throttles,
Related Commands show lacp – displays the LACP matrix. show port-channel-flow Display an egress port in a given port-channel flow.
destination-port number source-mac address destination-mac Command Modes Command History Usage Information Enter the keywords destination-port followed by the destination port number. The range is 1 to 65536. The default is None. Enter the keywords source-mac followed by the MAC source address in the nn:nn:nn:nn:nn:nn format. address Enter the keywords destination-mac followed by the MAC destination address in the nn:nn:nn:nn:nn:nn format.
{protocol number [icmp/tcp/udp]} {source-port number destination-port number} Example • Load-balance is configured for IP 5-tuple/3-tuple • An IP payload is going out of a Layer 2 LAG interface that is a member of a VLAN with an IP address FTOS#show port-channel-flow outgoing-port-channel 2 incominginterface gi 3/0 source-ip 2.2.2.0 destination-ip 3.2.3.
Command History Usage Information Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 6.1.1.0 Introduced on the E-Series.
Status Definition Length: 92 (+/- 1) meters, Status: Shorted A short is detected on the cable. The location, in this Example is 92 meters. The short is accurate to plus or minus one meter. Length: 93 (+/- 1) meters, Status: Open An opening is detected on the cable. The location, in this Example is 93 meters. The open is accurate to plus or minus one meter. Status: Impedance Mismatch There is an impedance mismatch in the cables.
Command History Example Version 8.3.7.0 Introduced on the S4810. Pre-version 8.3.7.0 Introduced on the E-Series ExaScale. FTOS#debug ip udp-helper UDP helper debugging is on 01:20:22: Pkt rcvd on Gi 5/0 with IP DA (0xffffffff) will be sent on Gi 5/1 Gi 5/2 Vlan 3 01:44:54: Pkt rcvd on Gi 7/0 is handed over for DHCP processing. Related Commands ip udp-broadcast-address – configures a UDP IP address for broadcast. ip udp-helper udp-port – enables the UDP broadcast feature on an interface.
ip udp-helper udp-port Enable the UDP broadcast feature on an interface either for all UDP ports or a specified list of UDP ports. E-Series, S4810 Syntax ip udp-helper udp-port [udp-port-list] To disable the UDP broadcast on a port, use the no ip udp-helper udp-port [udpport-list] command. Parameters udp-port-list (OPTIONAL) Enter up to 16 comma-separated UDP port numbers. NOTE: If you do not use this option, all UDP ports are considered by default.
Pre-version 8.3.7.0 Introduced on the E-Series ExaScale. Example FTOS#show ip udp-helper -------------------------------------------------Port UDP port list -------------------------------------------------Gi 10/0 656, 658 Gi 10/1 All Related Commands debug ip udp-helper – enables debug and displays the debug information on a console. ip udp-broadcast-address – configures a UDP IP address for broadcast.
25 IPv4 Routing The basic IPv4 commands are supported by FTOS on all Dell Force10 E-Series, C-Series, S-Series or Z-Series platforms. arp Use address resolution protocol (ARP) to associate an IP address with a MAC address in the switch. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax arp vrf {vrf name} ip-address mac-address interface To remove an ARP address, use the no arp ip-address command.
Command Modes Command History CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.0 Introduced on the E-Series. Usage Information You cannot use Class D or Class E IP addresses or zero IP address (0.0.0.
arp learn-enable Enable ARP learning using gratuitous ARP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax arp learn-enable Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced. In FTOS versions prior to 8.3.1.0, if a gratuitous ARP is received some time after an ARP request is sent, only RP2 installs the ARP information. For example: 1.
Usage Information Retries are 20 seconds apart. Related Commands show arp retries – displays the configured number of ARP retries. arp timeout Set the time interval for an ARP entry to remain in the ARP cache. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters arp timeout minutes seconds Defaults 240 minutes (4 hours) Command Modes INTERFACE Command History Related Commands Enter the number of minutes. The range is 0 to 35790. The default is 240 minutes. Version 8.3.11.
Parameters vrf name E-Series Only: Clear only the ARP cache entries tied to the VRF process. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For the Management interface, enter the keyword ManagementEthernet followed by the slot/port information. The slot range is 0-1 and the port range is 0.
pre-Version 6.2.1.1 Introduced on the E-Series. clear host Remove one or all dynamically learned host table entries. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History clear host name name Enter the name of the host to delete. Enter * to delete all host table entries. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.
Command History Version 8.1.1.2 Introduced on the E-Series ExaScale E600i. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.9.1.0 Introduced VRF on the E-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. Usage Information Use this command to clear Layer 3 CAM inconsistencies. Related Commands show ip fib linecard – shows FIB entries. CAUTION: Executing this command causes traffic disruption.
clear ip route Clear one or all routes in the routing table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History Related Commands clear ip route {* | ip-address mask | vrf vrf instance} * Enter an asterisk (*) to clear all learned IP routes. ip-address mask Enter a specific IP address and mask in dotted decimal format to clear that IP address from the routing table. vrf instance (Optional) E-Series Only: Clear only the routes tied to the VRF instance.
Command Modes Command History cp (OPTIONAL) Enter the cp to clear only statistics from the Control Processor. rp1 (OPTIONAL) Enter the keyword rp1 to clear only the statistics from Route Processor 1. rp2 (OPTIONAL) Enter the keyword rp2 to clear only the statistics from Route Processor 2. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.
• count value Defaults none Command Modes EXEC Privilege Command History Usage Information For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. (OPTIONAL) Enter the keyword count followed by the count value. The range is 1 to 65534. Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.
Version 7.5.1.0 Introduced on the C-Series. Version 6.4.10 Introduced on the E-Series. Example FTOS#debug ip dhcp 00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.0 00:12:21 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for 00:60:CF:20:7B:8C to 14.4.4.2 00:12:26 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.
debug ip icmp View information on the internal control message protocol (ICMP). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax debug ip icmp [interface] [count value] To disable debugging, use the no debug ip icmp command. Parameters interface count value Command Modes Command History 858 (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Example Usage Information ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: echo request rcvd from src 40.40.40.40 src 40.40.40.40, dst 40.40.40.40, echo src 40.40.40.40, dst 40.40.40.40, echo echo request sent to dst 40.40.40.40 echo request rcvd from src 40.40.40.40 src 40.40.40.40, dst 40.40.40.40, echo src 40.40.40.40, dst 40.40.40.40, echo echo request sent to dst 40.40.40.40 reply reply reply reply Use the count option to stop packets from flooding the user terminal when debugging is turned on.
Command Modes Command History Usage Information Example 860 EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Added support for 4094 VLANs on the E-Series ExaScale (the prior limit was 2094). Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Added the access-group option. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
win=8192 ACK PUSH IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.255, len 78, rcvd UDP src=0, dst=0 IP: s=10.1.2.62 (local), d=10.1.2.3 (Ma 0/0), len 1500, sending fragment IP Fragment, Ident = 4741, fragment offset = 0 ICMP type=0, code=0 IP: s=10.1.2.62 (local), d=10.1.2.3 (Ma 0/0), len 1500, sending fragment IP Fragment, Ident = 4741, fragment offset = 1480 IP: s=40.40.40.40 (local), d=224.0.0.5 (Gi 4/11), len 64, sending broad/multicast proto=89 IP: s=40.40.40.40 (local), d=224.0.0.
ip address Assign a primary and secondary IP address to the interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip address ip-address mask [secondary] To delete an IP address from an interface, use the no ip address [ip-address] command. Parameters ip-address Enter an IP address in dotted decimal format. mask Enter the mask of the IP address in slash prefix format (for example, / 24). secondary (OPTIONAL) Enter the keyword secondary to designate the IP address as the secondary address.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. ip domain-list Configure names to complete unqualified host names. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip domain-list name To remove the name, use the no ip domain-list name command.
Related Commands ip domain-name – specifies a DNS server. ip domain-lookup Enable dynamic host-name to address resolution (that is, DNS). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax p domain-lookup To disable DNS lookup, use the no ip domain-lookup command. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.
Parameters name Enter one domain name to be used to complete unqualified names (that is, incomplete domain names that cannot be resolved). Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
Command History Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. ip helper-address Specify the address of a DHCP server so that DHCP broadcast messages can be forwarded when the DHCP server is not on the same subnet as the client.
Usage Information You can add multiple DHCP servers by entering the ip helper-address command multiple times. If multiple servers are defined, an incoming request is sent simultaneously to all configured servers and the reply is forwarded to the DHCP client. FTOS uses standard DHCP ports, that is UDP ports 67 (server) and 68 (client) for DHCP relay services.
ip host Assign a name and IP address to be used by the host-to-IP address mapping table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip host name ip-address To remove an IP host, use the no ip host name [ip-address] command. Parameters name Enter a text string to associate with one IP address. ip address Enter an IP address, in dotted decimal format, to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced for the E-Series. To avoid denial of service (DOS) attacks, keep the number of fragments allowed for reassembly low.
Port Channels: • • All members must have the same link MTU value and the same IP MTU value. The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members. For example, if the members have a link MTU of 2100 and an IP MTU 2000, the Port Channel’s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU. VLANs: • • • All members of a VLAN must have same IP MTU value. Members can have different Link MTU values.
Defaults No name servers are configured. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. FTOS does not support sending DNS queries over a VLAN.
ip redirects Enable the interface to send ICMP redirect messages. E-Series Syntax ip redirects To return to default, use the no ip redirects command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Version 8.1.1.0 Introduced on the E-Series ExaScale. pre-Version 6.1.1.0 Introduced on the E-Series. This command is available for physical interfaces and port-channel interfaces on the E-Series.
interface • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a loopback interface, enter the keyword loopback followed by a number from zero (0) to 16383. • For the null interface, enter the keyword null followed by zero (0). • For a Port Channel interface, enter the keyword portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128.
Usage Information Related Commands Using the following example of a static route: ip route 33.33.33.0 /24 gigabitethernet 0/0 172.31.5.43 • The software installs a next hop that is not on the directly connected subnet but which recursively resolves to a next hop on the interface’s configured subnet. In the example, if gig 0/0 has an ip address on subnet 2.2.2.0 and if 172.31.5.43 recursively resolves to 2.2.2.0, FTOS installs the static route. • When the interface goes down, FTOS withdraws the route.
ip unreachables Enable the generation of internet control message protocol (ICMP) unreachable messages. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip unreachables To disable the generation of ICMP messages, use the no ip unreachables command. Defaults Disabled. Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series.
load-balance (C-Series, S-Series, Z-Series) By default, for C-Series and S-Series, FTOS uses an IP 4-tuple (IP SA, IP DA, Source Port, and Destination Port) to distribute IP traffic over members of a Port Channel as well as equal-cost paths. To designate another method to balance traffic over Port Channel members, use the load-balance command.
Defaults IP 4-tuple (IP SA, IP DA, Source Port, Destination Port) Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.10.0 Added the ingress-port parameter for the S4810. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
NOTE: For IPV6, only the first 32 bits (LSB) of IP SA and IP DA are used for hash generation. ip-selection packet-based Enter the keywords ip-selection packet-based to distribute IPV4 traffic based on the IP Identification field in the IPV4 header. This option does not affect IPV6 traffic; that is, IPV6 traffic is not distributed when this command is executed. NOTE: Hash-based load-balancing on MPLS does not work when packet-based hashing (load-balance ip-selection packet-based) is enabled.
Related Commands Configuration Switched IP Traffic Routed IP Traffic (IPV4 Only) Switched Non-IP Traffic ip-selection packetbased and mac MAC based Packet based: IPV4 MAC based ip address – change the algorithm used to distribute traffic on an E-Series chassis. load-balance hg Choose the traffic flow parameters to be used in the hash calculation while distributing the traffic across internal higig links.
mac [source-mac | source-port-id | source-module-id | dest-mac | destport-id | destmodule-id | vlan | ethertype | source-destmac ] tunnel [ipv4-overipv4 | ipv4-overgre-ipv4 | mac-inmac]} To use MAC key fields in hash computation, enter the keyword mac followed by one of the parameters: • source-mac—Use source-mac field in hash calculation. • source-port-id—Use src-port-id field in hash calculation. • source-module-id—Use src-module-id field in hash calculation.
ipv6-address prefix-length Enter an IPv6 address (x:x:x:x::x format) and mask (/prefix format) of the destination subnet. Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. forwardingrouter-address Enter an IP address (dotted decimal format) or an IPv6 address (x:x:x:x::x format) of a forwarding router.
Parameters vrf name E-Series Only: Show only the ARP cache entries tied to the VRF process. cpu (OPTIONAL) Enter the keyword cpu with one of the following keywords to view ARP entries on that CPU: interface interface Command History 882 cp - view ARP entries on the control processer. • rp1 - view ARP entries on Routing Processor 1. • rp2 - view ARP entries on Routing Processor 2.
Usage Information Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Added support for 4094 VLANs on the E-Series ExaScale (the prior limit was 2094). Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.9.1.0 Introduced VRF on the E-Series. Version 7.8.1.0 Augmented to display local ARP entries learned from private VLANs (PVLANs). Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.
Example (Private VLAN) NOTE: In this example, Line 1 shows community VLAN 200 (in primary VLAN 10) in a PVLAN. Line 2 shows primary VLAN 10. FTOS#show arp Protocol Address Age(min) Hardware Address Interface VLAN CPU --------------------------------------------------------------Internet 5.5.5.1 - 00:01:e8:43:96:5e Vl 10 pv 200 CP Internet 5.5.5.10 - 00:01:e8:44:99:55 Vl 10 CP Internet 10.1.2.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.10.10.4 1 00:01:e8:d5:9e:e2 Ma 0/0 CP Internet 10.16.127.
show arp retries Display the configured number of ARP retries. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Command Modes Command History Related Commands show arp retries • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Introduced. arp retries – sets the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request. show hosts View the host table and DNS configuration.
Field Description Default domain... Displays the domain name (if configured). Name/address lookup... States if DNS is enabled on the system. • If DNS is enabled, the Name/Address lookup is domain service. • If DNS is not enabled, the Name/Address lookup is static mapping Name servers are... Lists the name servers, if configured. Host Displays the host name assigned to the IP address.
show ip cam linecard View CAM entries for a port pipe on a line card. C-Series, E-Series, S4810 Syntax Parameters show ip cam linecard number port-set pipe-number [ip-address mask [longer-prefixes] | index index-number | summary | vrf vrf instance] number Enter the number of the line card. The range is 0 to 13 on a E1200/1200i, 0 to 6 on a E600600i, and 0 to 5 on a E300. pipe-number Enter the number of the line card’s port-pipe. The range is 0 to 1.
Field Description EC Displays the number of equal cost multipaths (ECMP) available for the default route for non-Jumbo line cards. For Jumbo line cards, displays 0,1 when ECMP is more than eight. CG Displays 0. V Displays a 1 if the entry is valid and a 0 if the entry is for a line card with Catalog number beginning with LC-EF. C Displays the CPU bit. 1 indicates that a packet hitting this entry is forwarded to the CP or RP2, depending on Egress port.
Example (Summary) Field Description Initial Size Displays the CAM size allocated by FTOS for the corresponding mask. The CAM size is adjusted by FTOS if the number of routes for the mask exceeds the initial allocation.
Parameters id Enter the stack-unit ID. The unit ID range is 0 to 7 for S-Series. pipe-number Enter the number of the Port-Pipe number. The S50n and S50V range is 0 to 1. The S25N, S25P, and S25V range is 0 to 0. ip-address mask (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that route only. Enter the keywords longer-prefixes to view routes with a common prefix.
Destination EC CG V C VId Mac-Addr Port ----------------- -- -- - ------ -------------------10.10.10.10 0 0 1 1 0 00:00:00:00:00:00 3f01 CP FTOS# Usage Information Example (ECMPGroup) Example (Member-Info) The following describes the show ip cam ecmp-group command shown in the Example below. Field Description Prefix Length Displays the prefix-length or mask for the IP address configured on the linecard 0 port pipe 0.
Parameters vrf instance (OPTIONAL) E-Series Only: Enter the keyword vrf followed by the VRF instance name to show the FIB cache entries tied to that VRF instance. slot-number Enter the number of the line card slot. For the C-Series, the range is 0 to 7. For the E-Series, the range is 0 to 13 on a E1200, 0 to 6 on a E600/ E600i, and 0 to 5 on a E300. ip-address mask (OPTIONAL) Enter the IP address of the network destination to view only information on that destination.
Example FTOS>show ip fib linecard 12 Destination Gateway First-Hop Mac-Addr Port VId Index EC ------------------------------------------------------------------------------3.0.0.0/8 via 100.10.10.10, So 2/8 100.10.10.10 00:01:e8:00:03:ff So 2/8 0 60260 0 3.0.0.0/8 via 101.10.10.10, So 2/9 00.10.10.0/24 Direct, So 2/8 0.0.0.0 00:01:e8:00:03:ff So 2/8 0 11144 0 100.10.10.1/32 via 127.0.0.1 127.0.0.1 00:00:00:00:00:00 CP 0 3276 0 100.10.10.10/32 via 100.10.10.10, So 2/8 100.10.10.
Command History Usage Information Example Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Added support for up to seven stack members. Version 7.6.1.0 Introduced on the S-Series. The following describes the show ip fib stack-unit command shown in the Example below. Field Description Destination Lists the destination IP address. Gateway Displays either the word “direct” and an interface for a directly connected route or the remote IP address to be used to forward the traffic.
interface interface source-ip address destination-ip Command History Usage Information • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a SONET interface, enter the keyword sonet followed by the slot/ port information.
The show ip flow command does not compute the egress port information when loadbalance mac hashing is also configured due to insufficient information (the egress MAC is not available). S-Series produces the following error message: %Error: Unable to read IP route table. C-Series produces the message: %Error: FIB cannot compute the egress port with the current trunk hash setting. Example FTOS#show ip flow interface Gi 1/8 189.1.1.1 63.0.0.1 protocol tcp source-port 7898 destination-port 8 flow: 189.1.1.
(OPTIONAL) Enter an in or out parameter in conjunction with the optional interface. • For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. brief (OPTIONAL) Enter the keyword brief to view a brief summary of the interfaces and whether an IP address is assigned. linecard slotnumber (OPTIONAL) Enter the keyword linecard followed by the number of the line card slot. For the C-Series, the range is 0-7.
Example Lines Description Poison Reverse... States whether poison for RIP is enabled on the interface. ICMP redirects... States if ICMP redirects are sent. ICMP unreachables... States if ICMP unreachable messages are sent.
show ip management-route View the IP addresses assigned to the Management interface. C-Series, E-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History Example show ip management-route [all | connected | summary | static] all (OPTIONAL) Enter the keyword all to view all IP addresses assigned to all Management interfaces on the switch. connected (OPTIONAL) Enter the keyword connected to view only routes directly connected to the Management interface.
show ipv6 management-route Display the IPv6 static routes configured for the management interface. C-Series, E-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History Example show ipv6 management-route [all | connected | summary | static] all (OPTIONAL) Enter the keyword all to view all IP addresses assigned to all Management interfaces on the switch. connected (OPTIONAL) Enter the keyword connected to view only routes directly connected to the Management interface.
Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Regular evaluation optimization enabled/disabled added to display output. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. FTOS#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.
longer-prefixes (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. list prefix-list (OPTIONAL) Enter the keyword list and the name of a configured prefix list. For more information, refer to the show ip route list command. protocol (OPTIONAL) Enter the name of a routing protocol (bgp, isis, ospf, rip) or the keywords connected or static. NOTE: bgp, isis, ospf, and rip are E-Series-only options.
Usage Information Example The following describes the show ip route all command in the Example below.
R 3.0.0.0/8 100.10.10.0/24 > R 100.10.10.0/24 C 101.10.10.0/24 > R 101.10.10.0/24 FTOS# Example (Summary) via 100.10.10.10, So 2/8 120/1 via 101.10.10.
Example FTOS#show ip route list test Codes:C- connected, S - static, R - RIP, B- BGP, IN - internal BGP, EX - external BGP,LO Locally Originated, O- OSPF, IA - OSPF inter area, N1 - OSPF NSSA external type 1, N2- OSPF NSSA external type 2, E1 - OSPF external type 1, E2- OSPF external type 2, i - IS-IS, L1 - IS-IS level-1, L2- IS-IS level-2, IA - IS-IS inter area, * - candidate default, >- non-active route, + - summary route Gateway of last resort is not set Destination ----------2.1.0.0/24 2.1.1.0/24 2.1.
Usage Information Example The following describes the show ip route summary shown in the Example below. Column Heading Description Route Source Identifies how the route is configured in FTOS. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route becomes the best route.
Command Modes Command History Usage Information rp1 (OPTIONAL) Enter the keyword rp1 to view only the statistics from Route Processor 1. rp2 (OPTIONAL) Enter the keyword rp2 to view only the statistics from Route Processor 2. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.5.1.
Keyword Definition Rcvd: ...short packets The number of bytes in the packet are too small. ...bad length The length of the packet was not correct. ...no port broadcasts The incoming broadcast/multicast packet did not have any listener. ...socket full The applications buffer was full and the incoming packet had to be dropped. The F10 Monitoring MIB provides access to the statistics described below. Example • IP Statistics: Bcast: Received: Object = f10BcastPktRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.
Sent: 21 requests, 10 replies (0 proxy) Routing Processor1 IP Traffic: show protocol-termination-table Display the IP packet termination table (IPPTT). E-Series Syntax Parameters show protocol-termination-table linecard number port-set portpipe-number linecard number Enter the keyword linecard followed by slot number of the line card. For the E-Series, the range is 0 to 13 on a E1200/1200i, 0 to 6 on a E600/E600i, and 0 to 5 on a E300.
10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 Related Commands UDP UDP TCP TCP UDP TCP TCP UDP UDP TCP TCP UDP UDP UDP UDP TCP TCP TCP TCP UDP UDP UDP UDP PIM-SM IGMP OSPF 646 any 23 any any any any any any 21 20 21 20 any 69 any 161 162 any any 161 any 162 any any any any 646 any 23 123 21 20 21 20 any any any any 69 any 161 any any 162 161 any 162 any any any any Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q7 Q6 Q7 Q7 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6
Usage Information Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 6.4.1.0 Introduced The following describes the show tcp statistics cp command shown in the Example below. Field Description Rcvd: Displays the number and types of TCP packets received by the switch. 0 checksum error...
Example Field Description 355 ack.. Displays the number of acknowledgement packets sent and the number of packet delayed. 0 window probe... Displays the number of window probe and update packets sent. 7 Connections initiated... Displays the number of TCP connections initiated, accepted, and established. 14 Connections closed... Displays the number of TCP connections closed, dropped. 20 Total rxmt...
IPv6 Access Control Lists (IPv6 ACLs) 26 IPv6 ACLs and IPv6 Route Map commands are supported on Dell Force10 E-Series, C-Series, S-Series S4810. or Z9000 platforms. This chapter contains the following sections • IPv6 ACL Commands • IPv6 Route Map Commands NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember • E-Series platforms require IPv6-ExtACL content addressable memory (CAM) profile to support IPv6 ACLs.
Parameters default Use the default CAM profile settings, and set the CAM as follows: • • • • • l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10 Command Modes Command History Usage Information L3 ACL (ipv4acl): 6 L2 ACL(l2acl): 5 IPv6 L3 ACL (ipv6acl): 0 L3 QoS (ipv4qos): 1 L2 QoS (l2qos): 1 Allocate space to support IPv6 ACLs. You must enter all of the profiles and a range. Enter the CAM profile name followed by the amount to be allotted. The total space allocated must equal 13.
Command Modes Command History Usage Information CONFIGURATION Version 8.3.7.0 Introduced on the S4810. Version 8.4.2.0 Introduced on the E-Series TeraScale. Version 8.2.1.0 Introduced on the S-Series. Version 7.8.1.0 Introduced on the C-Series. For the new settings to take effect, you must save the new CAM settings to the startup-config (write-mem or copy run start), then reload the system. The total amount of space allowed is 16 FP Blocks.
Version 7.8.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series TeraScale Added the monitor option. deny Configure a filter that drops IPv6 packets that match the filter criteria.
Parameters • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no deny icmp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address} command source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero.
Usage Information The C-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. The information below lists the keywords displayed in the CLI help and their corresponding ICMP Message Type Name.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no deny tcp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address} command source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
• urg: urgent field (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Not configured.
Related Commands deny – assigns a filter to deny IP traffic. deny udp – assigns a filter to deny UDP traffic. deny udp Configure a filter to drop user datagram protocol (UDP) packets meeting the filter criteria.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Defaults Not configured.
deny tcp – assigns a deny filter for TCP traffic. ipv6 access-group Assign an IPv6 access-group to an interface. C-Series, E-Series, S-Series Syntax ipv6 access-group access-list-name {in | out} [implicit-permit] [vlan range] To delete an IPv6 access-group configuration, use the no ipv6 access-group access-list-name {in} [implicit-permit] [vlan range] command. Parameters access-list-name Enter the name of a configured access list, up to 140 characters.
ipv6 access-list Configure an access list based on IPv6 addresses or protocols. C-Series, E-Series, S-Series, S4810 Syntax ipv6 access-list access-list-name To delete an access list, use the no ipv6 access-list access-list-name command. Parameters access-list-name Enter the as the access list name as a string, up to 140 characters. Defaults All access lists contain an implicit “deny any”; that is, if no match occurs, the packet is dropped. Command Modes CONFIGURATION Command History Version 8.3.
permit Select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP to configure a filter that match the filter criteria. C-Series, E-Series, S-Series, S4810 Syntax permit {ipv6-protocol-number | icmp | ipv6 | tcp | udp} To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no permit {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command ip-protocolnumber Enter an IPv6 protocol number.
format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x). host ipv6-address Enter the keyword host followed by the IPv6 address of the host in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero. destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format.
address} [bit] [operator port [port]] [count [byte]] | [log] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no permit tcp {source address mask | any | host ipv6-address} {destination address | any | host ipv6address} command. source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format.
• • • count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to have the information kept in an ACL log file. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Defaults Not configured.
Related Commands permit – assigns a permit filter for IP packets. permit udp – assigns a permit filter for UDP packets. permit udp Configure a filter to pass UDP packets meeting the filter criteria.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to have the information kept in an ACL log file. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Defaults Not configured.
permit tcp – assigns a permit filter for TCP packets. remark Enter a description for an IPv6 ACL entry. C-Series, E-Series, S-Series Syntax remark remark number [description] To delete the description, use the no remark remark number command (it is not necessary to include the remark description that you are deleting). Parameters remark number Enter the remark number. The range is 0 to 4294967290. NOTE: You can use the same sequence number for the remark and an ACL rule.
resequence access-list Re-assign sequence numbers to entries of an existing access-list. C-Series, E-Series, S-Series Syntax Parameters Defaults Command Modes Command History resequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Step-to-Increment} ipv4 | ipv6 | mac Enter the keyword ipv4, ipv6 or mac to identify the access list type to resequence. access-list-name Enter the name of a configured IP access list, up to 140 characters.
Parameters Defaults Command Modes Command History prefix-list-name Enter the name of configured prefix list, up to 140 characters. Increased the name string to accept up to 140 characters. Prior to version 7.8.1.0, the names are up to 16 characters long. StartingSeqNum Enter the starting sequence number to resequence. The range is 0 to 65535. Step-toIncrement Enter the step to increment the sequence number. The range is 1 to 65535. none • EXEC • EXEC Privilege Version 8.4.2.
icmp Enter the keyword icmp to configure an Internet Control Message Protocol version 6 filter. ipv6 Enter the keyword ipv6 to configure any Internet Protocol version 6 filter. tcp Enter the keyword tcp to configure a Transmission Control protocol filter. udp Enter the keyword udp to configure a User Datagram Protocol filter. source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format.
byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enter ACL matches in the log. Supported on Jumbo-enabled line cards only. monitor (OPTIONAL) Enter the keyword monitor to monitor traffic on the monitoring interface specified in the flow-based monitoring session along with the filter operation. Defaults Not configured. Command Modes ACCESS-LIST Command History Related Commands Version 8.4.2.
L2Acl Ipv4Acl Ipv6Acl Ipv4Qos L2Qos Current Settings(in block sizes) 5 6 0 1 1 : : : : : FTOS#show cam-acl Example (Manual Profiles) FTOS#show cam-acl -- Chassis Cam ACL -Current Settings(in block sizes) L2Acl : 2 Ipv4Acl : 2 Ipv6Acl : 4 Ipv4Qos : 2 L2Qos : 3 -- Line card 4 -Current L2Acl : Ipv4Acl : Ipv6Acl : Ipv4Qos : L2Qos : Settings(in block sizes) 2 2 4 2 3 FTOS#show cam-acl Related Commands cam-acl – configures CAM profiles to support IPv6 ACLs.
Ipv6Acl : 2 -- Stack unit 0 -Current Settings(in block sizes) L2Acl : 1 Ipv4Acl : 1 Ipv6Acl : 2 FTOS#show cam-acl Related Commands cam-acl – configures CAM profiles to support IPv6 ACLs. show config View the current IPv6 ACL configuration. C-Series, E-Series, S-Series Syntax show config Command Modes ACCESS-LIST Command History Example Version 8.4.2.1 Introduced on the S-Series. Version 8.4.2.0 Introduced on the E-Series TeraScale. Version 8.2.1.0 Introduced on the E-Series ExaScale.
interface interface Command Modes Command History Usage Information Example 938 • EXEC • EXEC Privilege Enter the keyword interface followed by the interface type and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128.
show running-config acl Display the ACL running configuration. C-Series, E-Series, S-Series Syntax Command Modes Command History Example show running-config acl • EXEC • EXEC Privilege Version 8.4.2.1 Introduced on the S-Series. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series TeraScale.
Command Modes Command History Usage Information EXEC Privilege Version 8.4.2.1 Introduced on the S-Series. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series and E-Series TeraScale. This command applies to both IPv4 and IPv6 CAM Profiles, but is best used when verifying QoS optimization for IPv6 ACLs. QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single (or the first of several) interfaces.
FTOS#test cam-usage service-policy input LauraMapTest linecard 2 port-set 1 Linecard|Portpipe| CAM Partition|Available CAM|Estimated CAM per Port|Status ---------------------------------------------------------------2| 1| IPv4Flow| 232| 0| Allowed 2| 1| IPv6Flow| 0| 0| Allowed FTOS# IPv6 Route Map Commands The following commands allow you to configure route maps and their redistribution criteria. match ipv6 address Configure a filter to match routes based on IPv6 addresses specified in an access list.
match ipv6 next-hop Configure a filter which matches based on the next-hop IPv6 addresses specified in the IPv6 prefix list. C-Series, E-Series, S-Series Syntax match ipv6 next-hop prefix-list prefix-list-name To delete a match, use the no match ipv6 next-hop prefix-list prefixlist-name command. Parameters prefix-list prefix- list-name Defaults Not configured.
Related Commands Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series. Increased the name string to accept up to 140 characters. Prior to version 7.8.1.0, the names are up to 16 characters long. Version 7.4.1.0 Introduced on the E-Series TeraScale. match ipv6 address – redistributes routes that match an IP address. match ipv6 next-hop – redistributes routes that match the next-hop IP address.
set ipv6 next-hop Configure a filter that specifies IPv6 address as the next hop. C-Series, E-Series, S-Series Syntax set ipv6 next-hop ipv6-address To delete the setting, use the no set ipv6 next-hop ipv6-address command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Not configured. Command Modes ROUTE-MAP Command History Usage Information Version 8.4.2.1 Introduced on the S-Series.
seq 20 permit udp any any gt 100 count FTOS(conf-ipv6-acl)# show route-map View the current route map configurations. C-Series, E-Series, S-Series Syntax Command Modes Command History show route-map • EXEC • EXEC Privilege Version 8.4.2.1 Introduced on the S-Series. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series TeraScale.
27 IPv6 Basics IPv6 Basic Commands are supported on Dell Force10 E-Series, C-Series, S-Series, Z-Series, or S4810 platforms. NOTE: For information about the Force10 operating software (FTOS) version and platform that supports IPv6 in each software feature, refer to the "IPv6 Addressing" chapter of the FTOS Configuration Guide. clear ipv6 fib Clear (refresh) all forwarding information base (FIB) entries on a linecard or stack unit.
Parameters * Enter the * to clear (refresh) all routes from the IPv6 routing table. ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History EXEC Privilege Version 9.0.0.0 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.
Command Modes Command History Usage Infomation INTERFACE (management interface only) Version 9.1.(0.0) Updated Usage Information section. Version 8.3.12.0 Introduced on the S4810. • Up to two addresses can be configured by SAA. If any preferred prefix or valid timers time out, the corresponding address will be deprecated or removed respectively. If an address is removed due to a time out, an address from the current unused prefix is used to create a new address.
Command History Usage Information Example Version 9.1(0.0) Updated Usage Information. Version 9.0.0.0 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.4.1.0 Added support on the management Ethernet port. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series TeraScale.
To restore the default value, use the no ipv6 control-plane icmp error-ratelimit command. Parameters pps Default 100 pps Command Modes CONFIGURATION Command History Version 8.3.12.0 Enter the maximum number of error packets to be generated per second. The range is 1 to 200, where 0 disables the rate-limiting. Introduced on the S4810. ipv6 flowlabel-zero Configure system to set the flow label field in the packets to zero.
ipv6-address Defaults Not configured. Command Modes CONFIGURATION Command History Enter the IPv6 address (X:X:X:X::X) to be mapped to the name. Version 9.0.0.0 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.4.2.1 Introduced on the C-Series and S-Series. Version 8.4.1.0 Introduced on the E-Series TeraScale. ipv6 name-server Enter up to six IPv6 addresses of name servers. The order you enter the addresses determines the order of their use.
ipv6 nd dad attempts Configure the number of neighbor solicitation messages that are sent to perform duplicate address detection (DAD) on the management interface. S4810 Syntax ipv6 nd dad attempts {number of attempts} To restore the default value, use the no ipv6 nd dad attempts command. Parameters number of attempts Enter the number of attempts to be made to detect a duplicate address. The range is 0 to 15. Setting the value to 0 disables DAD on the interface.
Command Modes Command History Usage Information valid-lifetime | infinite Enter the amount of time that the prefix is advertised, or enter infinite for an unlimited amount of time. The range is 0 to 4294967295. The default is 2592000. The maximum value means that the preferred lifetime does not expire for the valid-life time parameter. preferred-lifetime | infinite Enter the amount of time that the prefix is preferred, or enter infinite for an unlimited amount of time. The range is 0 to 4294967295.
• For the null interface, enter the keyword null followed by zero (0). • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN interface, enter the keyword VLAN followed by the vlan number. • For a port channel interface, enter the keyword portchannel followed by the port channel number.
Usage Information When the interface goes down, FTOS withdraws the route. The route is re-installed, by FTOS, when the interface comes back up. When a recursive resolution is “broken,” FTOS withdraws the route. The route is re-installed, by FTOS, when the recursive resolution is satisfied. After an IPv6 static route interface is created, if an IP address is not assigned to a peer interface, the peer must be manually pinged to resolve the neighbor information.
Usage Information Version 8.4.2.1 Introduced on the S-Series. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series TeraScale. Because this command is enabled by default, it does not appear in the running configuration. When you disable unicast routing, the no ipv6 unicast-routing command is included in the running configuration.
Defaults Command Modes Command History Usage Information none • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series TeraScale. The forwarding table displays host route first, then displays route originated by routing protocol including static route.
[ 3016] fe80::201:e8ff:fe5a:e59e [ 3452] fe80::201:e8ff:fe5a:e21f 00:00:00:00:00:00 00:00:00:00:00:00 CP CP 0 0 Prefix First-Hop Mac-Addr Port VId EC ---------------------------------------------------------[ 4096] 500::/64 [ 4096] 700::/64 FTOS# : : 0 0 : : 0 0 :00:00:00:00:00 :00:00:00:00:00 CP CP 0 0 0 0 show ipv6 cam stack-unit Displays the IPv6 CAM entries for the specified stack-unit.
NOTE: If a route has a mask greater than 64, no output is displayed and no output is displayed for show ipv6 cam stack-unit unit-number port-set {0-1} ipv6-address, but an equivalent /64 entry would be listed in the show ipv6 cam stack-unit unit-number port-set {0-1} output.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History • EXEC • EXEC Privilege Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series TeraScale. show ipv6 fib stack-unit View all FIB entries. S-Series, Z-Series, S4810 Syntax Parameters show ipv6 fib stack-unit unit-number [summary | ipv6-address] slot-number Enter the number of the stack unit.
show ipv6 flowlabel-zero Display the flow label zero setting. S4810 Syntax show ipv6 flowlabel-zero Default Disabled Command Modes EXEC Command History Related Commands Version 8.3.12.0 Introduced on the S4810. ipv6 nd dad attempts – Configure system to set the flow label field in the packets to zero. show ipv6 interface Display the status of interfaces configured for IPv6.
brief (OPTIONAL) View a summary of IPv6 interfaces. configured (OPTIONAL) View information on all IPv6 configured interfaces. gigabitethernet (OPTIONAL) View information for an IPv6 gigabitethernet interface.
Link Local address: fe80::201:e8ff:fe8a:e8f7 Global Unicast address(es): 2001::1, subnet is 2001::/64 2002::1, subnet is 2002::/120 2003::1, subnet is 2003::/120 2004::1, subnet is 2004::/32 Global Anycast address(es): Joined Group address(es): ff02::1 ff02::2 ff02::1:ff00:1 ff02::1:ff8a:e8f7 ND MTU is 0 ICMP redirects are not sent DAD is enabled, number of DAD attempts: 3 ND reachable time is 0 milliseconds ND advertised reachable time is 0 milliseconds ND advertised retransmit interval is 0 milliseconds N
show ipv6 mld_host Display the IPv6 MLD host counters. S4810 Syntax show ipv6 mld_host Command Modes EXEC Command History Usage Information Example Version 8.3.12.0 Introduced on the S4810. The following describes the show ipv6 mld-host command shown in the Example below: Field Description Valid MLD Packets The total number of packets received and sent from the last time the elapsed time was cleared.
show ipv6 route Displays the IPv6 routes. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show ipv6 route [ipv6-address prefix-length] [hostname] [all] [bgp as number] [connected] [isis tag] [list prefix-list name] [ospf process-id] [rip] [static] [summary] ipv6-address prefix-length (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Example (ESeries) Field Description (undefined) Identifies the type of route: • L = Local • C = connected • S = static • R = RIP • B = BGP • IN = internal BGP • EX = external BGP • LO = Locally Originated • O = OSPF • IA = OSPF inter area • N1 = OSPF NSSA external type 1 • N2 = OSPF NSSA external type 2 • E1 = OSPF external type 1 • E2 = OSPF external type 2 • i = IS-IS • L1 = IS-IS level-1 • L2 = IS-IS level-2 • IA = IS-IS inter-area • * = candidate default • > =
C L Example (SSeries) Direct, Gi 1/1, 00:28:49 2004::/32 [0/0] Direct, Gi 1/1, 00:28:49 fe80::/10 [0/0] Direct, Nu 0, 00:29:09 FTOS#show ipv6 route Codes:C-connected, L-local, S-static, R-RIP, B-BGP, IN-internal BGP, EX-external BGP,LO-Locally Originated, O-OSPF, IA-OSPF inter area, N1-OSPF NSSA external type 1, N2-OSPF NSSA external type 2, E1-OSPF external type 1, E2-OSPF external type 2, i-IS-IS, L1-IS-IS level-1, L2-IS-IS level-2, IA- IS-IS inter area, *-candidate default, Gateway of last resort is n
Usage Information Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced on the E-Series TeraScale. When you configure trust IPv6 diffserv, matched bytes/packets counters are not incremented in the show qos statistics command. Trust diffserv (IPv4) can co-exist with trust ipv6-diffserv in an Input Policy Map.
28 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic on an S4810 system. Use the following Dell Force10 operating software (FTOS) commands to configure and verify the iSCSI optimization feature. advertise dcbx-app-tlv Configure DCBX to send iSCSI TLV advertisements. S4810 Syntax advertise dcbx-app-tlv iscsi To disable DCBX iSCSI TLV advertisements, use the no advertise dcbx-app-tlv iscsi command.
Parameters time Defaults 10 minutes Command Modes CONFIGURATION Command History Enter the aging time for the iSCSI session. The range is 5 to 43,200 minutes. Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module. iscsi cos Set the QoS policy that is applied to the iSCSI flows. S4810 Syntax iscsi cos {enable | disable | dot1p vlan-priority-value [remark] | dscp dscp-value [remark]} To disable the QoS policy, use the no iscsi cos dscp command.
Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module. By default, iSCSI flows are assigned to dot1p priority 4. Dell Force10 recommends changing the dot1p priority-queue setting to 0 (zero). iscsi enable Globally enable iSCSI optimization. S4810 Syntax iscsi enable To disable iSCSI optimization, use the no iscsi command. Parameters enable Defaults Enabled.
iscsi profile-compellant Configure the auto-detection of Dell Compellent arrays on a port. S4810 Syntax iscsi profile-compellent Defaults Dell Compellent disk arrays are not detected. Command Modes INTERFACE Command History Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module. iscsi target port Configure the iSCSI target ports and optionally, the IP addresses on which iSCSI communication is monitored. S4810 Syntax iscsi target port [tcp-port-2.
When you use the no iscsi target port command and the TCP port to be deleted is one bound to a specific IP address, the IP address value must be included in the command. show iscsi Display the currently configured iSCSI settings. S4810 Syntax Command Modes Command History Example Related Commands show iscsi • EXEC • EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module.
show iscsi session Display information about active iSCSI sessions on the switch. S4810 Syntax Command Modes Command History Example show iscsi session • EXEC • EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module. FTOS# show isci session Session 0: -----------------------------------------------------Target: iqn.2001-05.com.equallogic: 0-8a0906-0e70c2002-10a0018426a48c94-iom010 Initiator: iqn.1991-05.com.
show iscsi session detailed Display detailed information on active iSCSI sessions on the switch. S4810 Syntax Parameters Command Modes Command History Example Related Commands show iscsi session detailed [session isid] isid Enter the session’s iSCSi ID to display detailed information about the specified iSCSi session. • EXEC • EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module.
show run iscsi Display all globally configured non-default iSCSI settings in the current FTOS session. S4810 Syntax show run iscsi Command Modes EXEC Privilege Command History Related Commands 978 Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module. • show iscsi – displays the currently configured iSCSI settings. • show iscsi session – displays detailed information about active iSCSI sessions on the switch.
29 Intermediate System to Intermediate System (ISIS) The intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6 is supported on the E-Series and S4810 platforms. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
advertise Leak routes between levels (distribute IP prefixes between Level 1 and Level 2 and vice versa). E-Series, S4810 Syntax advertise {level1-into-level2 | level2-into-level1} prefixlist-name To return to the default, use the no advertise {level1-into-level2 | level2into-level1}[prefix-list-name] command. Parameters Defaults level1-into-level2 Enter the keywords level1-into-level2 to advertise Level 1 routes into Level 2 LSPs. This is the default.
Parameters hmac-md5 (OPTIONAL) Enter the keywords hmac-md5 to encrypt the password. encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES. password Enter a 1 to 16-character length alphanumeric string to prevent unauthorized access or incorrect routing information corrupting the link state database. The password is processed as plain text, which only provides limited security. Defaults Not configured. Command Modes ROUTER ISIS Command History Usage Information Version 8.3.12.
clear isis Restart the IS-IS process. All IS-IS data is cleared. E-Series, S4810 Syntax Parameters Command Modes Command History clear isis [tag] {* | database | traffic} tag (Optional) Enter an alphanumeric string to specify the IS-IS routing tag area. * Enter the keyword * to clear all IS-IS information and restart the IS-IS process. This command removes IS-IS neighbor information and IS-IS LSP database information and the full SPF calculation is done.
Related Commands hostname dynamic – enables dynamic learning of host names from routers in the domain and allows the routers to advertise the host names in LSPs. debug isis Enable debugging for all IS-IS operations. E-Series, S4810 Syntax debug isis To disable debugging of IS-IS, use the no debug isis command. Command Modes Command History Usage Information EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Entering debug isis enables all debugging parameters.
Command Modes Command History • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. EXEC Privilege Version 8.3.12.0 Introduced on the S4810. debug isis local-updates Enables debugging on a specific interface and provides diagnostic information to debug IS-IS local update packets.
debug isis snp-packets Enable debugging on a specific interface and provides diagnostic information to debug IS-IS complete sequence number PDU (CSNP) and partial sequence number PDU (PSNP) packets. E-Series, S4810 Syntax debug isis snp-packets [interface] To turn off debugging, use the no debug isis snp-packets [interface] command.
Command History Version 8.3.12.0 Introduced on the S4810. Version 6.3.1.0 Introduced. debug isis update-packets Enable debugging on link state PDUs (LSPs) that are detected by a router. E-Series, S4810 Syntax debug isis update-packets [interface] To turn off debugging, use the no debug isis update-packets [interface] command.
default-information originate Generates a default route into an IS-IS routing domain and controls the distribution of default information. E-Series, S4810 Syntax default-information originate [always] [metric metric] [routemap map-name] To disable the generation of a default route into the specified IS-IS routing domain, use the no default-information originate [always] [metric metric] [routemap map-name] command.
description Enter a description of the IS-IS routing protocol. C-Series, E-Series, S-Series, S4810 Syntax description {description} To remove the description, use the no description {description} command. Parameters description Defaults none Command Modes ROUTER ISIS Command History Related Commands Enter a description to identify the IS-IS protocol (80 characters maximum). Version 8.3.12.0 Introduced on the S4810. pre-7.7.1.0 Introduced. router isis – Enter ROUTER mode on the switch.
Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 6.3.1.0 Introduced. The administrative distance indicates the trust value of incoming packets. A low administrative distance indicates a high trust rate. A high value indicates a lower trust rate. For example, a weight of 255 is interpreted that the routing information source is not trustworthy and should be ignored. distribute-list in Filter network prefixes received in updates.
Version 7.5.1.0 Added IPv6 ISIS support. Version 6.3.1.0 Introduced. Related Commands • distribute-list out – suppresses networks from being advertised in updates. • redistribute – redistributes routes from one routing domain to another routing domain. distribute-list out Suppress network prefixes from being advertised in outbound updates.
Usage Information Related Commands You can assign a name to a routing process so a prefix list IS applied to only the routes derived from the specified routing process. • distribute-list in – filters the networks received in updates. • redistribute – redistributes routes from one routing domain to another routing domain. distribute-list redistributed-override Suppress flapping of routes when the same route is redistributed into IS-IS from multiple routers in the network.
encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES. password Enter an alphanumeric string up to 16 characters long. If you do not specify an encryption type or hmac-md5 keywords, the password is processed as plain text which provides limited security. Defaults No default password. Command Modes ROUTER ISIS Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 6.3.1.0 Introduced.
The ISIS graceful restart-enabled router can co-exist in mixed topologies where some routers are graceful restart-enabled and others are not. For neighbors that are not graceful restartenabled, the restarting router brings up the adjacency per the usual methods. graceful-restart interval Set the graceful restart grace period, the time during that all graceful restart attempts are prevented.
Command History Related Commands Version 8.3.12.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the E-Series. graceful-restart t3 – configures the overall wait time before graceful restart completes. graceful-restart t1 Set the graceful restart wait time before unacknowledged restart requests are generated. This wait time is the interval before the system sends a restart request (an IIH with RR bit set in Restart TLV) until the CSNP is received from the helping router.
Parameters level-1, level-2 Enter the keywords level-1 or level-2 to identify the database instance type to which the wait interval applies. seconds Enter the gracefule-restart t2 time in seconds. The range is 5 to 120 seconds. The default is 30 seconds. Defaults 30 seconds Command Modes ROUTER ISIS Command History Version 8.3.12.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the E-Series. graceful-restart t3 Configure the overall wait time before graceful restart completes.
Related Commands graceful-restart restart-wait – enables the graceful restart maximum wait time before a restarting peer comes up. hello padding Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs. E-Series, S4810 Syntax hello padding [multi-point | point-to-point] To return to the default, use the no hello padding [multi-point | point-topoint] command.
Defaults Enabled. Command Modes ROUTER ISIS Command History Version 8.3.12.0 Introduced on the S4810. Usage Information Use this command to build name-to-systemID mapping tables through the protocol. All show commands that display systems also display the hostname. Related Commands clns host – defines a name-to-NSAP mapping. ignore-lsp-errors Ignore LSPs with bad checksums instead of purging those LSPs.
Defaults No processes are configured. Command Modes INTERFACE Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 7.5.1.0 Introduced. Use the net command to assign a network entity title to enable IS-IS. Related Commands • net – configures an IS-IS network entity title (NET) for the routing process. • router isis – enables the IS-IS routing protocol. ipv6 router isis Enable the IPv6 IS-IS routing protocol and specify an IPv6 IS-IS process.
isis circuit-type Configure the adjacency type on interfaces. E-Series, S4810 Syntax isis circuit-type {level-1 | level-1-2 | level-2-only} To return to the default values, use the no isis circuit-type command. Parameters level-1 You can form a Level 1 adjacency if there is at least one common area address between this system and neighbors. You cannot form Level 2 adjacencies on this interface.
Parameters seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. The range is 0 to 65535. The default is 10. level-1 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 1. level-2 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 2.
Usage Information Hello packets are held for a length of three times the value of the hello interval. Use a high hello interval seconds to conserve bandwidth and CPU usage. Use a low hello interval seconds for faster convergence (but uses more bandwidth and CPU resources). Related Commands isis hello-multiplier – specifies the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency as down.
isis hello padding Turn ON or OFF padding of hello PDUs from INTERFACE mode. E-Series, S4810 Syntax isis hello padding To return to the default, use the no isis hello padding command. Defaults Padding of hello PDUs is enabled (ON). Command Modes INTERFACE Command History Version 8.3.12.0 Introduced on the S4810. Usage Information Hello PDUs are “padded” only when both the global and interface padding options are ON. Turning either one OFF disables padding for the corresponding interface.
Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 7.5.1.0 Introduced on the E-Series. Dell Force10 recommends configuring metrics on all interfaces. Without configuring this command, the IS-IS metrics are similar to hop-count metrics. isis metric Assign a metric to an interface. E-Series, S4810 Syntax isis metric default-metric [level-1 | level-2] To return to the default values, use the no isis metric [default-metric] [level-1 | level-2] command.
isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface. E-Series, S4810 Syntax isis network point-to-point To disable the feature, use the no isis network point-to-point command. Defaults Not enabled. Command Modes INTERFACE Command History Version 8.3.12.0 Introduced on the S4810. isis password Configure an authentication password for an interface.
You can assign different passwords for different routing levels by using the keywords level-1 and level-2. The no form of this command disables the password for Level 1 or Level 2 routing, using the respective keywords level-1 or level-2. This password provides limited security as it is processed as plain text. isis priority Set the priority of the designated router you select.
is-type Configure IS-IS operating level for a router. E-Series, S4810 Syntax is-type {level-1 | level-1-2 | level-2-only} To return to the default values, use the no is-type command. Parameters level-1 Allows a router to act as a Level 1 router. level-1-2 Allows a router to act as both a Level 1 and Level 2 router. This is the default. level-2-only Allows a router to act as a Level 2 router. Defaults level-1-2 Command Modes ROUTER ISIS Command History Usage Information Version 8.3.12.
lsp-gen-interval Set the minimum interval between successive generations of link-state packets (LSPs). E-Series, S4810 Syntax lsp-gen-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] To restore default values, use the no lsp-gen-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command.
lsp-mtu Set the maximum transmission unit (MTU) of IS-IS link-state packets (LSPs). This command only limits the size of LSPs generated by this router. E-Series, S4810 Syntax lsp-mtu size To return to the default values, use the no lsp-mtu command. Parameters size Defaults 1497 bytes. Command Modes ROUTER ISIS Command History Usage Information The maximum LSP size, in bytes. The range is 128 to 1497 for NonJumbo mode and 128 to 9195 for Jumbo mode. The default is 1497. Version 8.3.12.
Version 7.5.1.0 Usage Information Added support for LSP Throttling Enhancement. The refresh interval determines the rate at which route topology information is transmitted preventing the information from becoming obsolete. The refresh interval must be less than the LSP lifetime specified with the max-lsplifetime command. A low value reduces the amount of time that undetected link state database corruption can persist at the cost of increased link utilization.
max-lsp-lifetime Set the maximum time that link-state packets (LSPs) exist without being refreshed. E-Series, S4810 Syntax max-lsp-lifetime seconds To restore the default time, use the no max-lsp-lifetime command. Parameters seconds Defaults 1200 seconds Command Modes ROUTER ISIS Command History Usage Information Version 8.3.12.0 The maximum lifetime of LSP in seconds. This value must be greater than the lsp-refresh-interval command. The higher the value the longer the LSPs are kept.
Command History Version 8.3.12.0 Introduced on the S4810. Version 7.8.1.0 Added support for multi-topology ISIS. Version 6.3.1.0 Introduced. metric-style Configure a router to generate and accept old-style, new-style, or both styles of type, length, and values (TLV).
multi-topology Enables multi-topology IS-IS. It also allows enabling/disabling of old and new style TLVs for IP prefix information in the LSPs. E-Series, S4810 Syntax multi-topology [transition] To return to a single topology configuration, use the no multi-topology [transition] command. Parameters transition Defaults Disabled Command Modes CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 Command History Version 8.3.12.0 Introduced on the S4810. Version 7.8.1.0 Introduced.
passive-interface Suppress routing updates on an interface. This command stops the router from sending updates on that interface. E-Series, S4810 Syntax passive-interface interface To delete a passive interface configuration, use the no passive-interface interface command. Parameters interface Defaults Not configured. Command Modes ROUTER ISIS Command History Usage Information Version 8.3.12.
To end redistribution or disable any of the specified keywords, use the no redistribute {static | connected | rip} [metric metric-value] [metric-type {external | internal}] [level-1 | level-1-2 | level-2] [routemap map-name] command. Parameters Defaults Command Modes Command History Usage Information connected Enter the keyword connected to redistribute active routes into ISIS. rip Enter the keyword rip to redistribute RIP routes into IS-IS.
When an LSP with an internal metric is received, the FTOS considers the route cost while considering the advertised cost to reach the destination. Redistributed routing information is filtered with the distribute-list out command to ensure that the routes are properly are passed to the receiving routing protocol. How a metric value assigned to a redistributed route is advertised depends on how on the configuration of the metric-style command.
• route-map mapname internal map-name is an identifier for a configured route map. The route map filters imported routes from the source routing protocol to the current routing protocol. If you do not specify a map-name, all routes are redistributed. If you specify a keyword, but fail to list route map tags, no routes are imported. Defaults Command Modes Command History IS-IS Level 2 routes only • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 8.3.12.
Parameters process-id Enter a number that corresponds to the OSPF process ID to be redistributed. The range is 1 to 65355. metric metricvalue (OPTIONAL) The value used for the redistributed route. Use a metric value that is consistent with the destination protocol. The range is 0 to 16777215. The default is 0. metric-type {external | internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
command is set for wide mode, an the metric value in the redistribute ospf command is advertised. router isis Allows you to enable the IS-IS routing protocol and to specify an IP IS-IS process. E-Series, S4810 Syntax router isis [tag] To disable IS-IS routing, use the no router isis [tag] command. Parameters tag (OPTIONAL) This is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router.
set-overload-bit Configure the router to set the overload bit in its non-pseudonode LSPs. This prevents other routers from using it as an intermediate hop in their shortest path first (SPF) calculations. E-Series, S4810 Syntax set-overload-bit To return to the default values, use the no set-overload-bit command. Defaults Command Modes Command History Usage Information Not set. • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version 8.3.12.
set-overload-bit spf-interval level-1 100 15 20 spf-interval level-2 120 20 25 exit-address-family Example (AddressFamily_IPv6) The bold section identifies that Multi-Topology IS-IS is enabled in Transition mode. FTOS(conf-router_isis-af_ipv6)#show conf ! address-family ipv6 unicast maximum-paths 16 multi-topology transition set-overload-bit spf-interval level-1 100 15 20 spf-interval level-2 120 20 25 exit-address-family show isis database Display the IS-IS link state database.
Field Description LSPID Displays the LSP identifier. The first six octets are the System ID of the originating router. The first six octets are the System ID of the originating router. The next octet is the pseudonode ID. If this byte is not zero, the LSP describes system links. If this byte is zero (0), the LSP describes the state of the originating router. The designated router for a LAN creates and floods a pseudonode LSP and describes the attached systems. The last octet is the LSP number.
IS-IS Level-1 Link State Database LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL ISIS.00-00 * 0x0000002B 0x853B 1075 0/0/0 Area Address: 49.0000.0001 NLPID: 0xCC 0x8E IP Address: 10.1.1.1 IPv6 Address: 1011::1 Topology: IPv4 (0x00) IPv6 (0x8002) Metric: 10 IS OSPF.00 Metric: 10 IS (MT-IPv6) OSPF.00 Metric: 10 IP 15.1.1.0 255.255.255.0 Metric: 10 IPv6 (MT-IPv6) 1511::/64 Metric: 10 IPv6 (MT-IPv6) 2511::/64 Metric: 10 IPv6 (MT-IPv6) 1011::/64 Metric: 10 IPv6 1511::/64 Metric: 10 IP 10.1.1.0 255.255.255.
Version 8.3.1.0 Example Introduced on the E-Series.
show isis interface Display detailed IS-IS interface status and configuration information. E-Series, S4810 Syntax Parameters Command Modes Command History Example 1024 show isis interface [interface] interface • EXEC • EXEC Privilege Version 8.3.12.0 (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Level-1 Metric: 10, Priority: 64, Circuit Hello Interval: 10, Hello Multiplier: 3, Number of active level-1 adjacencies: 1 Level-2 Metric: 10, Priority: 64, Circuit Hello Interval: 10, Hello Multiplier: 3, --More-- ID: systest-3.02 CSNP Interval: 10 ID: systest-3.02 CSNP Interval: 10 show isis neighbors Display information about neighboring (adjacent) routers.
The following describes the show isis neighbors command shown in the Example below. Example Field Description System Id The value that identifies a system in an area. Interface The interface, slot, and port in which the router was discovered. State The value providing status about the adjacency state. The range is Up and Init. Type This value displays the adjacency type (Layer 2, Layer 2 or both). Priority IS-IS priority advertised by the neighbor.
Example The bold section below identifies that Multi-Topology IS-IS is enabled. FTOS#show isis protocol IS-IS Router: System Id: F100.E120.0013 IS-Type: level-1-2 Manual area address(es): 49.0000.0001 Routing for area address(es): 49.0000.
Command History Usage Information Example 1028 Version 8.3.12.0 Introduced on the S4810. The following describes the show isis traffic command shown in the Example below. Item Description Level-1/Level-2 Hellos (sent/rcvd) Displays the number of Hello packets sent and received. PTP Hellos (sent/ rcvd) Displays the number of point-to-point Hellos sent and received. Level-1/Level-2 LSPs sourced (new/ refresh) Displays the number of new and refreshed LSPs.
spf-interval Specify the minimum interval between shortest path first (SPF) calculations. E-Series, S4810 Syntax spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] To restore default values, use the no spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command.
previous one until the wait interval reaches the maximum wait time specified (interval seconds). After the network calms down and there are no triggers for two times the maximum interval, fast behavior is restored (the initial wait time).
Link Aggregation Control Protocol (LACP) 30 This chapter contains commands for Dell Force10’s implementation of the link aggregation control protocol (LACP) for creating dynamic link aggregation groups (LAGs)—known as “port-channels” in the Dell Force10 operating software [FTOS]. The LACP commands in this chapter are supported by FTOS on all E-Series, C-Series, S-Series, Z-Series, or S4810 Dell Force10 systems.
Related Commands show lacp – displays the lacp configuration. debug lacp Debug LACP (configuration, events, etc.) C-Series, E-Series, S-Series, Z-Series, S4810 Syntax debug lacp [config | events | pdu [in | out | [interface [in | out]]]] To disable LACP debugging, use the no debug lacp [config | events | pdu [in | out | [interface [in | out]]]] command. Parameters config (OPTIONAL) Enter the keyword config to debug the LACP configuration.
Command Modes Command History • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. lacp long-timeout Configure a long timeout period (30 seconds) for an LACP session.
lacp port-priority Configure the port priority to influence which ports will be put in standby mode when there is a hardware limitation that prevents all compatible ports from aggregating. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax lacp port-priority priority-value To return to the default setting, use the no lacp port-priority priority-value command. Parameters priority-value Defaults 32768 Command Modes INTERFACE Command History Enter the port-priority value.
Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. port-channel mode Configure the LACP port channel mode. C-Series, E-Series, Z-Series, S-Series Syntax Parameters port-channel number mode [active] [passive] [off] number Enter the keywords port-channel followed by a number. For the C-Series and S-Series, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale.
Mode Function state respond to negotiation requests from other ports that are in active states. Ports in a passive state respond to LACP packets off An interface can not be part of a dynamic port channel in off mode. LACP does not run on a port configured in off mode. port-channel-protocol lacp Enable LACP on any LAN port. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax port-channel-protocol lacp To disable LACP on a LAN port, use the no port-channel-protocol lacp command.
Defaults Command Modes Command History Example (PortChannel-Number) Without a Port Channel specified, the command clears all Port Channel counters. • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series.
31 Layer 2 This chapter describes commands to configure Layer 2 features. This chapter contains the following sections: • MAC Addressing Commands • Virtual LAN (VLAN) Commands • Far-End Failure Detection (FEFD) Some MAC addressing commands are supported only on the E-Series, some commands on all three Dell Force10 platforms, and some commands on only two Dell Force10 platforms. The VLAN commands are supported on all the E-Series, C-Series, S-Series, Z-Series, or S4810 Dell Force10 platforms.
vlan vlan-id Command Modes Command History • For a SONET interface, enter the keyword sonet followed by the slot/ port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. Enter the keyword vlan followed by a VLAN ID number from 1 to 4094. EXEC Privilege Version 8.3.12.0 Added support for sticky MAC addresses.
Usage Information You must place the interface in Layer 2 mode (using the switchport command) prior to configuring the mac accounting destination command. mac-address-table aging-time Specify an aging time for MAC addresses to be removed from the MAC address table.
mac-address-table static Associate specific MAC or hardware addresses to an interface and VLANs. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax mac-address-table static mac-address {multicast vlan vlan-id output—range interface}{output interface vlan vlan-id} To remove a MAC address, use the no mac-address-table static mac-address output interface vlan vlan-id command. Parameters mac-address Enter the 48-bit hexidecimal address in nn:nn:nn:nn:nn:nn format.
• vlan vlan-id Defaults Not configured. Command Modes CONFIGURATION Command History For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. Enter the keyword vlan followed by a VLAN ID number from 1 to 4094. Version 9.1(0.0) Added support for output range parameter for S4810 and Z9000. Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810.
Command History Usage Information Version 8.3.7.0 Introduced on the S4810. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. For information about the specific trap sent and the corresponding Syslog, refer to the SNMP Traps chapter. mac-address-table station-move time-interval Reduce the amount of time FTOS takes to detect aged entries and station moves.
Version 7.4.1.0 Usage Information Introduced on the E-Series. For details about using this command, refer to the “NIC Teaming” section of the Layer 2 chapter in the FTOS Configuration Guide. mac cam fib-partition Reapportion the amount of content addressable memory (CAM) available for MAC address learning forwarding information base (FIB) versus the amount available for MAC ACLs on a line card.
Defaults vlan vlan-id E-Series only: Enter the keyword followed by the VLAN ID. The range is 1 to 4094. dynamic (OPTIONAL) Enter the keyword dynamic to allow aging of MACs even though a learning limit is configured. station-move (OPTIONAL) Enter the keywords station-move to allow a station move on learned MAC addresses. • On C-Series, the default behavior is no-station-move + static. • On E-Series, the default behavior is station-move + static. • On S-Series, the default behavior is dynamic.
Related Commands clear counters – Clear counters used in the show interface command. clear mac-address-table dynamic – clears the MAC address table of all MAC address learned dynamically. mac learning-limit mac-address-sticky – Replaces deprecated no-station-move parameter. show mac learning-limit – displays MAC learning-limit configuration. mac learning-limit learn-limit-violation Configure an action for a MAC address learning-limit violation.
Parameters mac-addresssticky Defaults none Command Modes INTERFACE Command History Configures the dynamic MAC addresses as sticky on an interface. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.12.0 Introduced on the S4810. Usage Information If you configure mac-learn-limit and the sticky MAC feature is enabled, dynamicallylearned MAC addresses are converted to sticky for that port. Any new MAC address that is learned also becomes sticky for that port.
Version 7.5.1.0 Introduced on the E-Series. Usage Information This is supported on physical interfaces, static LAGs, and LACP LAGs. Related Commands show mac learning-limit – displays details of the mac learning-limit. mac learning-limit reset Reset the MAC address learning-limit error-disabled state. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax mac learning-limit reset Defaults none Command Modes Command History • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000.
interface interface vlan vlan-id Command Modes Command History • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. The E-Series range is 1 to 255 for TeraScale and 1 to 512 for ExaScale.
Command History Usage Information Version 7.6.1.0 Introduced on the C-Series. Use this command to check various flags associated with each MAC address in the CAM. The Example below shows information for two MAC addresses. The second entry is for MAC address 00:00:a0:00:00:00 (leading 0s are not shown), which is shown as learned on VLAN ID 4094 (0xfff), as shown in the next two Examples. “STATIC_BIT=0” means that the address is dynamically learned.
show cam mac linecard (dynamic or static) Display the CAM size and the portions allocated for MAC addresses and for MAC ACLs. C-Series, E-Series, S4810 Syntax Parameters show cam mac linecard slot port-set port-pipe [address mac_addr | dynamic | interface interface | static | vlan vlan-id] linecard slot (REQUIRED) Enter the keyword linecard followed by a slot number to select the linecard for which to gather information. For the CSeries, the range is 0 to 4 (C150) and 0 to 8 (C300).
Command History Example Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
dynamic (OPTIONAL) Enter the keyword dynamic to display only those MAC addresses learned dynamically by the switch. static (OPTIONAL) Enter the keyword static to display only those MAC address specifically configured on the switch.
address mac- address interface interface Command Modes Command History Usage Information (OPTIONAL) Enter the keyword address followed by a MAC address in the nn:nn:nn:nn:nn:nn format to display information on that MAC address. (OPTIONAL) Enter the keyword interface followed by the interface type, slot and port information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Column Heading Description VlanId Displays the VLAN ID number. Mac Address Displays the MAC address in nn:nn:nn:nn:nn:nn format. Type Lists whether the MAC address was manually configured (Static), learned dynamically (Dynamic), or associated with a specific port (Sticky). Interface Displays the interface type and slot/port information. The following abbreviations describe the interface types: State • gi — Gigabit Ethernet followed by a slot/port. • po — Port Channel followed by a number.
show mac-address-table aging-time Display the aging times assigned to the MAC addresses on the switch. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History Example show mac-address-table aging-time [vlan vlan-id] vlan vlan-id • • (OPTIONAL) Enter the keyword vlan followed by the VLAN ID to display the MAC address assigned to the VLAN. The range is 1 to 4094. EXEC EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
vlan vlan-id Command Modes Command History Usage Information • EXEC • EXEC Privilege • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. (OPTIONAL) Enter the keyword vlan followed by the VLAN ID to display the MAC address assigned to the VLAN. The range is 1 to 4094. Version 8.5.1.
Command Modes Command History Usage Information • EXEC • EXEC Privilege pre-Version 6.2.1.1 Introduced on the E-Series. The following describes the show mac cam command shown in the Example below. Field Description Slot Lists the active line card slots. Type Lists the type of line card present in the slot. MAC CAM Size Displays the total CAM size available. NOTE: A portion of the MAC CAM is used for system operations; therefore, adding the MAC FIB and MAC ACL is less than the MAC CAM.
interface interface vlan vlan-id Command Modes Command History Example (ESeries) 1060 • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword interface with the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For SONET interfaces, enter the keyword sonet followed by the slot/ port information.
Example (C/SSeries) FTOS#show mac learning-limit Interface Learning Dynamic Static Slot/port Limit MAC count MAC count Gi 1/0 10 0 0 Gi 1/1 5 0 0 FTOS#show mac learning-limit interface gig Interface Learning Dynamic Static Slot/port Limit MAC count MAC count Gi 1/0 10 0 0 Unknown SA Drops 0 0 1/0 Unknown SA Drops 0 Virtual LAN (VLAN) Commands The following commands configure and monitor virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces.
default vlan-id Specify a VLAN as the Default VLAN. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id syntax. Parameters vlan-id Enter the VLAN ID number of the VLAN to become the new Default VLAN. The range is 1 to 4094. The default is 1. Defaults The Default VLAN is VLAN 1. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000.
Usage Information no default vlan disable is not listed in the running-configuration, but when the default VLAN is disabled, default-vlan disable is listed in the running-configuration. enable vlan-counters Display VLAN counters for ingress and/or egress hardware. You must be in restricted mode to use this command. E-Series ExaScale Syntax enable vlan-output-counters [ingress | egress | all] To return to the default (disabled), use the no enable vlan-output-counters command.
Address is 00:01:e8:13:a5:aa, Current address is 00:01:e8:13:a5:aa Interface index is 1107787777 Internet address is not set MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 1000 Mbit ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interface" counters 01:36:01 Queueing strategy: fifo Input Statistics: 100000 packets, 10000000 bytes Output Statistics: 200000 packets, 20800000 bytes Time since last interface status change: 01:36:01 FTOS# name Assign a name to the VLAN.
show config Display the current configuration of the selected VLAN. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax show config Command Modes INTERFACE VLAN Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 9.1.(0.0) Updated to support OpenFlow. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Augmented to display PVLAN data for the C-Series and S-Series and revised the output to include the Description field to display a userentered VLAN description. Version 7.6.1.0 Introduced on the S-Series and revised the output to display Native VLAN. Version 7.5.1.
Column Heading Description • Ports Example V (capitalized V) for VLT tagged Displays the type, slot, and port information.
x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Vlan-stack NUM 41 Status Description Q Ports Active T Gi 13/47 FTOS#show vlan id 42 Codes: Q: U x G - * - Default VLAN, G - GVRP VLANs Untagged, T - Tagged Dot1x untagged, X - Dot1x tagged GVRP tagged, M - Vlan-stack NUM 42 FTOS# Status Description Q Ports Active U Gi 13/47 Example (Brief) FTOS#show vlan br VLAN Name STG MAC Aging IP Address ---- -----------------------------------1 0 1800 unassigned 2 0 1800 2.2.2.2/24 3 0 1800 3.3.3.
Parameters interface Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale.
Parameters interface Defaults Not configured. Command Modes INTERFACE VLAN Command History Usage Information Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128.
untagged Add a Layer 2 interface to a VLAN as an untagged interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax untagged interface To remove an untagged interface from a VLAN, use the no untagged interface command. Parameters interface Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Far-End Failure Detection (FEFD) The Dell Force10 operating software (FTOS) supports far-end failure detection (FEFD) on the Ethernet interfaces of the ESeries, Z-Series, and S4810 platforms. The FEFD feature detects and reports far-end link failures. • FEFD is not supported on the Management interface. • During an RPM failover, FEFD is operationally disabled for approximately 8-10 seconds. • By default, FEFD is disabled. debug fefd Enable debugging of FEFD.
Related Commands • fefd – enables far-end failure detection on an interface. • fefd reset – enables FEFD globally on the system. fefd Enable far-end failure detection on an interface. E-Series, Z-Series, S4810 Syntax fefd To disable FEFD on an interface, use the no fefd command. Defaults Disabled. Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.12.0 Introduced on the S4810. Legacy E-Series command.
Usage Information Related Commands When you enter no fefd for an interface and fefd-global, FEFD is enabled on the interface because the no fefd command is not retained in the configuration file. To keep the interface FEFD disabled when the global configuration changes, use the fefd reset command. • fefd reset – enables FEFD globally on the system. • fefd mode – changes FEFD mode on an interface. fefd interval Set an interval between control packets.
disabled” state, you must enter the fefd reset command to reset the interface state. Defaults normal Command Modes INTERFACE Command History Version 8.3.12.0 Introduced on the S4810. Legacy E-Series command. Related Commands • fefd – enables far-end failure detection. fefd reset Reset all interfaces or a single interface that was in “error-disabled” mode. E-Series, Z-Series, S4810 Syntax Parameters fefd reset [interface] interface Defaults Not configured.
fefd-global interval Configure an interval between FEFD control packets. E-Series, S4810 Syntax fefd-global interval seconds To return to the default value, use the no fefd-global interval command. Parameters seconds Defaults 15 seconds Command Modes CONFIGURATION Command History Version 8.3.12.0 Enter a number as the time between FEFD control packets. The range is 3 to 300 seconds. The default is 15 seconds. Introduced on the S4810. Legacy E-Series command.
Command Modes Command History CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.3.12.0 Introduced on the S4810. Legacy E-Series command. Usage Information If you enter only the fefd-global syntax, the mode is normal and the default interval is 15 seconds. If you disable FEFD globally (no fefd-global), the system does not remove the FEFD interface configuration. Related Commands • fefd – enables far-end failure detection.
Legacy E-Series command. Usage Information Example The following describes the show fefd command shown in the Example below. Field Description Interface Displays the interfaces type and number. Mode Displays the mode (aggressive or normal) or NA if the interface contains fefd reset in its configuration. Interval Displays the interval between FEFD packets.
Link Layer Discovery Protocol (LLDP) 32 Link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. This chapter contains the following sections: • • LLPD Commands LLDP-MED Commands LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management.
Defaults Disabled. Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Added the vlan-name option. Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. protocol lldp (Configuration) – enables LLDP globally. debug lldp interface – debugs LLDP.
advertise management-tlv Advertise management TLVs (Type, Length, Value). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax advertise management-tlv {management-address | systemcapabilities | system-description | system-name} To remove advertised management TLVs, use the no advertise management-tlv {management-address | system-capabilities | system-description | system-name} command.
To remove advertised management TLVs, use the no advertise management-tlv {management-address | system-capabilities | system-description | system-name} command. Parameters managementaddress Enter the keyword management-address to advertise the management IP address TLVs to the specified interface. systemcapabilities Enter the keywords system-capabilities to advertise the system capabilities TLVs to the specified interface.
Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. clear lldp neighbors Clear LLDP neighbor information for all interfaces or a specific interfaces.
Parameters interface Enter the following keywords and slot/port or number information: • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/ port information. • For a 1-Gigabit Ethernet interface, enter the keyword gigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword tenGigabitEthernet followed by the slot/port information.
disable Enable or disable LLDP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax disable To enable LLDP, use the no disable command. Defaults Enabled, that is no disable. Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.
Version 7.4.1.0 Introduced on the E-Series. mode Set LLDP to receive or transmit. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax mode {tx | rx} To return to the default, use the no mode {tx | rx} command. Parameters tx Enter the keyword tx to set the mode to transmit. rx Enter the keyword rx to set the mode to receive. Defaults Both transmit and receive. Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Related Commands Version 8.3.11.
Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. protocol lldp (Configuration) Enable the LLDP globally on the switch. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax protocol lldp To disable LLDP globally on the chassis, use the no protocol lldp command. Defaults Disabled. Command Modes CONFIGURATION (conf-lldp) Command History Version 8.3.11.
Usage Information Before LLDP can be configured on an interface, it must be enabled globally from CONFIGURATION mode. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations. When you execute the no protocol lldp from INTERFACE mode, interfaces begin to inherit the configuration from global LLDP CONFIGURATION mode.
Usage Information Omitting the keyword detail displays only the remote chassis ID, Port ID, and Dead Interval. Example R1(conf-if-gi-1/31)#do show lldp neighbors Loc PortID Rem Host Name Rem Port Id Rem Chassis Id -------------------------------------------------------------Gi 1/21 R2 GigabitEthernet 2/11 00:01:e8:06:95:3e Gi 1/31 R3 GigabitEthernet 3/11 00:01:e8:09:c2:4a show lldp statistics Display the LLDP statistical information.
Example Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. FTOS#show running-config lldp ! protocol lldp advertise dot1-tlv port-protocol-vlan-id port-vlan-id advertise dot3-tlv max-frame-size advertise management-tlv system-capabilities systemdescription hello 15 multiplier 3 no disable FTOS# LLDP-MED Commands The following are the LLDP-MED (Media Endpoint Discovery) commands.
To return to the default, use the no advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is 1 to 4094. layer2_priority Enter the Layer 2 priority. The range is 0 to 7. DSCP_value Enter the DSCP value. The range is 0 to 63. priority-tagged Enter the keywords priority-tagged followed the Layer 2 priority. The range is 0 to 7. number Defaults Unconfigured.
Command Modes Command History Related Commands CONFIGURATION (conf-lldp) Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series and E-Series. debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration.
Related Commands debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration. advertise med power-via-mdi Configure the system to advertise the Extended Power via MDI TLV. C-Series, S-Series, S4810 Syntax advertise med power-via-mdi To return to the default, use the no advertise med power-via-mdi command. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Version 8.3.7.
priority-tagged number Enter the keywords priority-tagged followed the Layer 2 priority. The range is 0 to 7. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series and E-Series. debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors.
Related Commands debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration.
advertise med video-signaling Configure the system to advertise video control packets that use a separate network policy than video data. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax advertise med video-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} To return to the default, use the no advertise med video-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is 1 to 4094.
Parameters vlan-id Enter the VLAN ID. The range is 1 to 4094. layer2_priority Enter the Layer 2 priority (C-Series and E-Series only). The range is 0 to 7. DSCP_value Enter the DSCP value (C-Series and E-Series only). The range is 0 to 63. priority-tagged Enter the keywords priority-tagged followed the Layer 2 priority. The range is 0 to 7. number Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000.
Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series and E-Series. debug lldp interface – debugs LLDP. show lldp neighbors – displays the LLDP neighbors. show running-config lldp – displays the LLDP running configuration.
Multicast Source Discovery Protocol (MSDP) 33 Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections. FTOS supports MSDP commands on the E-Series, S4810, or Z-Series Dell Force10 platforms.
rejected-sa Enter the keywords rejected-sa to clear the cache source-active entries that are rejected because the RPF check failed, an SA filter or limit is configured, the RP or MSDP peer is unreachable, or because of a format error. local Enter the keyword local to clear out local PIM advertised entries. It applies the redistribute filter (if present) while adding the local PIM SA entries to the SA cache. Defaults Without any options, this command clears the entire source-active cache.
Version 7.8.1.0 Added the local option. Version 7.7.1.0 Added the rejected-sa option. Version 6.2.1.1 Introduced debug ip msdp Turn on MSDP debugging. E-Series, Z-Series, S4810 Syntax debug ip msdp {event peer address | packet peer address | pim} To turn debugging off, use the no debug ip msdp {event peer address | packet peer address | pim} command. Parameters event peer address packet peer address Enter the keyword packet followed by the peer address in a dotted decimal format (A.B.C.D.).
Parameters number Defaults none Command Modes CONFIGURATION Command History Related Commands Enter the number of rejected SA entries to cache. The range is 0 to 32766. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.4.1.0 Introduced show ip msdp sa-cache rejected-sa ip msdp default-peer Define a default peer from which to accept all source-active (SA) messages.
ip msdp log-adjacency-changes Enable logging of MSDP adjacency changes. E-Series, Z-Series, S4810 Syntax ip msdp log-adjacency-changes To disable logging, use the no ip msdp log-adjacency-changes command. Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 6.2.1.1 Introduced ip msdp mesh-group Configure a peer to be a member of a mesh group.
forwards it to all of its peers that are not part of the mesh-group. However, member X can not forward the SA message to other members of the mesh-group. ip msdp originator-id Configure the MSDP Originator ID. E-Series, Z-Series, S4810 Syntax ip msdp originator-id {interface} To remove the originator-id, use the no ip msdp originator-id {interface} command. Parameters interface Defaults Not configured.
ip msdp peer Configure an MSDP peer. E-Series, Z-Series, S4810 Syntax ip msdp peer peer address [connect-source] [description] [salimit number] To remove the MSDP peer, use the no ip msdp peer peer address [connectsource interface] [description name] [sa-limit number] command. Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.).
Usage Information Version 7.5.1.0 Added option for SA upper limit and the description option. Version 6.2.1.1 Introduced The connect-source option is used to supply a source IP address for the TCP connection. When an interface is specified using the connect-source option, the primary configured address on the interface is used. If the total number of SA messages received from the peer is already larger than the limit when this command is applied, those SA messages continue to be accepted.
ip msdp sa-filter Permit or deny MSDP source active (SA) messages based on multicast source and/or group from the specified peer. E-Series, Z-Series, S4810 Syntax ip msdp sa-filter {in | out} peer-address list [access-list name] Remove this configuration using the no ip msdp sa-filter {in | out} peer address list [access-list name] command. Parameters in Enter the keyword in to enable incoming SA filtering. out Enter the keyword out to enable outgoing SA filtering.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.5.1.0 Introduced on the E-Series. FTOS counts the SA messages originated by itself and those received from the MSDP peers. When the total SA messages reach this limit, the subsequent SA messages are dropped (even if they pass RPF checking and policy checking).
ip multicast-msdp Enable MSDP. E-Series, Z-Series, S4810 Syntax ip multicast-msdp To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 6.2.1.1 Introduced show ip msdp Display the MSDP peer status, SA cache, or peer summary.
Local Addr: 100.1.1.2(639) Connect Source: none State: Established Up/Down Time: 00:00:08 Timers: KeepAlive 60 sec, Hold time 75 sec SourceActive packet count (in/out): 0/0 SAs learned from this peer: 0 SA Filtering: Input (S,G) filter: none Output (S,G) filter: none FTOS# Example (Sacache) Example (Summary) FTOS#show ip msdp sa-cache MSDP Source-Active Cache - 1 entries GroupAddr SourceAddr RPAddr UpTime 224.1.1.1 172.21.220.10 172.21.3.
00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 00:00:13 FTOS# 225.1.2.5 10.1.1.3 225.1.2.6 10.1.1.4 225.1.2.7 10.1.1.3 225.1.2.8 10.1.1.4 225.1.2.9 10.1.1.3 225.1.2.10 10.1.1.4 225.1.2.11 10.1.1.3 225.1.2.11 10.1.1.3 225.1.2.12 10.1.1.4 225.1.2.13 10.1.1.3 225.1.2.14 10.1.1.4 225.1.2.15 10.1.1.3 225.1.2.16 10.1.1.4 225.1.2.17 10.1.1.3 225.1.2.18 10.1.1.4 225.1.2.19 10.1.1.3 110.1.1.1 110.1.1.1 110.1.1.1 110.1.1.1 110.
Multiple Spanning Tree Protocol (MSTP) 34 Multiple spanning tree protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s. This command supports the Dell Force10 E-Series, C-Series, S-Series, Z-Series, and S4810 platforms. debug spanning-tree mstp Enable debugging of the multiple spanning tree protocol and view information on the protocol.
• events Command Modes Command History Example For Transmit, enter the keyword out. (OPTIONAL) Enter the keyword events to debug MSTP events. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
forward-delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax forward-delay seconds To return to the default setting, use the no forward-delay command. Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State. The range is 4 to 30. The default is 15 seconds.
Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.5.1.0 Introduced. forward-delay – the amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. max-age – changes the wait time before MSTP refreshes protocol configuration information.
max-hops Configure the maximum hop count. C-Series, E-Series, S-Series, Z-Series Syntax max-hops number To return to the default values, use the no max-hops command. Parameters range Enter a number for the maximum hop count. The range is 1 to 40. The default is 20. Defaults 20 hops Command Modes MULTIPLE SPANNING TREE Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.
bridge-priority priority Enter the keywords bridge-priority followed by a value in increments of 4096 as the bridge priority. The range is zero (0) to 61440. Valid priority values are: 0, 4096, 8192, 12288, 16384, 20480, 24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248, 57344, and 61440. All other values are rejected. Defaults default bridge-priority is 32768. Command Modes INTERFACE Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
Usage Information For two MSTP switches to be within the same MSTP region, the switches must share the same region name (including matching case). Related Commands msti – maps the VLAN(s) to an MST instance. revision – assigns the revision number to the MST configuration. protocol spanning-tree mstp Enter MULTIPLE SPANNING TREE mode to enable and configure the multiple spanning tree group.
revision The revision number for the multiple spanning tree configuration. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax revision range To return to the default values, use the no revision command. Parameters range Enter the revision number for the MST configuration. The range is 0 to 65535. The default is 0. Defaults 0 Command Modes MULTIPLE SPANNING TREE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.
Example Version 7.5.1.0 Introduced on the C-Series. Version 6.5.1.0 Introduced on the E-Series. FTOS(conf-mstp)#show config ! protocol spanning-tree mstp no disable name CustomerSvc revision 2 MSTI 10 VLAN 101-105 max-hops 5 FTOS(conf-mstp)# show spanning-tree mst configuration View the multiple spanning tree configuration. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Command Modes Command History show spanning-tree mst configuration • EXEC • EXEC Privilege Version 8.3.11.
show spanning-tree msti View the multiple spanning tree instance. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History show spanning-tree msti [instance-number [brief]] [guard] instance-number (Optional) Enter the multiple spanning tree instance number. The range is 0 to 63. brief (Optional) Enter the keyword brief to view a synopsis of the MST instance.
Port path cost 0, Port priority 128, Port Identifier 128.88 Designated root has priority 16384, address 0001.e800.0a:5c Designated bridge has priority 16384, address 0001.e800.0a:5c Designated port id is 128.88, designated path cost Number of transitions to forwarding state 4 BPDU (Mrecords): sent 19, received 1103 The port is not in the portfast mode Port 89 (GigabitEthernet 2/7) is alternate Discarding Port path cost 0, Port priority 128, Port Identifier 128.
Designated bridge has priority 32768, address 0001.e801.6aa8 Designated port id is 128.257, designated path cost 0 Number of transitions to forwarding state 1 BPDU (MRecords): sent 21, received 9 The port is not in the Edge port mode Usage Information Example (Guard) The following describes the show spanning-tree msti 5 guard command shown in the Example below. Field Description Interface Name MSTP interface. Instance MSTP instance.
Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.0 Introduced on the E-Series. spanning-tree msti Configure multiple spanning tree instance cost and priority for an interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters spanning-tree msti instance {cost cost | priority priority} msti instance Enter the keyword msti and the MST instance number. The range is zero (0) to 63. cost cost (OPTIONAL) Enter the keyword cost followed by the port cost value.
Version 6.5.1.0 Introduced on the E-Series. spanning-tree mstp edge-port Configures the interface as an MST edge port and optionally a Bridge Protocol Data Unit (BPDU) guard. C-Series, E-Series, S-Series, Z-Series Syntax Parameters Command Modes Command History Usage Information spanning-tree mstp edge-port [bpduguard [shutdown-onviolation]] mstp edge-port Enter the keyword mstp followed by the keywords edge-port to configure the interface as a Multiple Spanning Tree edge port.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.5.1.
35 Multicast The multicast commands are supported by FTOS on all E-Series, C-Series, S-Series, Z-Series, or S4810 Dell Force10 platforms. This chapter contains the following sections: • IPv4 Multicast Commands • IPv6 Multicast Commands IPv4 Multicast Commands The following section contains the IPv4 multicast commands. clear ip mroute Clear learned multicast routes on the multicast forwarding table.
ip mroute Assign a static mroute. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the ip mroute destination mask {ipaddress | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] command. To delete all mroutes matching a certain mroute, use the no ip mroute destination mask command.
E-Series legacy command Related Commands show ip mroute – views the E-Series routing table. ip multicast-lag-hashing Distribute multicast traffic among port channel members in a round-robin fashion. E-Series Syntax ip multicast-lag-hashing To revert to the default, use the no ip multicast-lag-hashing command. Defaults Disabled. Command Modes CONFIGURATION Command History Version 6.3.1.0 Introduced on the E-Series.
Usage Information Version 7.8.1.0 Introduced on the C-Series. Version 7.6.1.0 Introduced on the E-Series. This features allows you to limit the number of multicast entries on the system. This number is the sum total of all the multicast entries on all line cards in the system. On each line card, the multicast module only installs the maximum possible number of entries, depending on the configured CAM profile. Use the IN-L3-McastFib CAM partition to store multicast routes.
Parameters mac-address Enter a multicast MAC address in hexadecimal format. mac-mask Enter the MAC Address mask. vlan vlan-list Enter the VLAN(s) in which flooding is restricted. Separate values by commas — no spaces (1,2,3) or indicate a list of values separated by a hyphen (1-3). The range is 1 to 4094. min-speed minspeed (OPTIONAL) Enter the minimum link speed that ports must have to receive the specified flooded multicast traffic.
E-Series legacy command Usage Information Mtrace is an IGMP protocol based on the Multicast trace route facility and implemented according to the IETF draft “A trace route facility for IP Multicast” (draft-fenner-tracerouteipm-01.txt). FTOS supports the Mtrace client and transmit functionality. As an Mtrace client, FTOS transmits Mtrace queries, receives, parses, and prints out the details in the response packet received.
Parameters min-speed minspeed Defaults none Command Modes INTERFACE VLAN Command History Usage Information Version 7.7.1.0 Enter the minimum link speed that a port must have to receive flooded multicast traffic. The range is 1000. Introduced on the E-Series TeraScale. This command restricts flooding for all unknown multicast traffic on ports below a certain speed.
Enter a VLAN ID to limit the information displayed to the multicast routes discovered by PIM-SM snooping on a specified VLAN. the valid VLAN ID range is 1 to 4094. Enter a multicast group address and, optionally, a source multicast address in dotted decimal format (A.B.C.D) to limit the information displayed to the multicast routes discovered by PIM-SM snooping for a specified multicast group and source.
Usage Information Example The following describes the show ip mroute command shown in the Example below. Field Description (S, G) Displays the forwarding entry in the multicast route table. uptime Displays the amount of time the entry has been in the multicast forwarding table. Incoming interface Displays the reverse path forwarding (RPF) information towards the source for (S,G) entries and the RP for (*,G) entries.
Usage Information Static mroutes are used by network administrators to control the reach-ability of the multicast sources. If a PIM-registered multicast source is reachable using static mroute as well as unicast route, the distance of each route is examined and the route with shorter distance is the one the PIM selects for reach-ability. NOTE: The default distance of mroutes is zero (0) and is CLI configurable on a per route basis. Example FTOS#show ip rpf RPF information for 10.10.10.
clear ipv6 mroute Clear learned multicast routes on the multicast forwarding table. To clear the PIM tib, use the clear ip pim tib command. E-Series Syntax Parameters clear ipv6 mroute {group-address [source-address] | *} group-address [source-address] Enter multicast group address and source address (if desired) to clear information on a specific group. Enter the addresses in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero.
Default Disabled Command Modes EXEC Command History Usage Information Version 8.3.12.0 • For a management interface enter the keyword managementinterface followed by the slot/port information. • For a port-channel interface, enter the keywords portchannel followed by the slot/port information. • For a VLAN interface, enter the keyword vlan followed by the slot/port information. Introduced on the S4810.
Defaults Disabled. Command Modes CONFIGURATION Command History Related Commands E-Series legacy command ipv6 pim sparse-mode – enables IPv6 PIM sparse mode on the interface. ip multicast-limit Use this feature to limit the number of multicast entries on the system. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History Usage Information ip multicast-limit limit limit • Enter the desired maximum number of multicast entries on the system.
show ipv6 mroute View IPv6 multicast routes. E-Series Syntax Parameters Command Modes Command History Example show ipv6 mroute [group-address [source-address]] [active rate] [count group-address [source source-address]] group-address [source-address] (OPTIONAL) Enter the IPv6 multicast group-address to view only routes associated with that group. Optionally, enter the IPv6 sourceaddress to view routes with that group-address and source-address.
Example (Active) FTOS#show ipv6 mroute active 10 Active Multicast Sources - sending >= 10 pps Group: ff05:300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff05:3300::1 Source: 165:87:31::30 Rate: 100 pps Group: ff3e:300::4000:1 Source: 165:87:31::20 Rate: 100 pps Group: ff3e:3300::4000:1 Source: 165:87:31::20 Rate: 100 pps FTOS# Example (Count Group) FTOS#show ipv6 mroute count group ff05:3300::1 IP Multicast Statistics 1 routes using 648 bytes of memory 1 groups, 1.
group-address (OPTIONAL) Enter the multicast group address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero. Defaults Command Modes Command History Example all (OPTIONAL) Enter the keyword all to view all the MLD information. vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID to view MLD VLAN information. none • EXEC • EXEC Privilege Version 7.4.1.0 Introduced.
Command History Example Version 7.4.1.0 Introduced.
Neighbor Discovery Protocol (NDP) 36 Network discovery protocol for IPv6 is supported by the Dell Force10 operating software (FTOS) on all E-Series, CSeries, S-Series or S4810 platforms. The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
interface interface Command Modes Command History • EXEC • EXEC Privilege Version 8.3.7.0 To remove all neighbor entries learned on a specific interface, enter the keyword interface followed by the interface type and slot/ port or number information of the interface: • For a Fast Ethernet interface, enter the keyword fastEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
ipv6 nd max-ra-interval Configure the interval between the IPv6 router advertisement (RA) transmissions on an interface. E-Series Syntax ipv6 nd max-ra-interval {interval} min-ra-interval {interval} To restore the default interval, use the no ipv6 nd max-ra-interval command. Parameters Defaults Command Modes max-ra-interval {interval} Enter the keywords max-ra-interval followed by the interval in seconds. The range is 4 to 1800 seconds.
Related Commands mtu – sets the maximum link MTU (frame size) for an Ethernet interface. ipv6 nd other-config-flag Set the other stateful configuration flag in the IPv6 router advertisement. E-Series Syntax ipv6 nd other-config-flag To clear the flag from the IPv6 router advertisements, use the no ipv6 nd otherconfig-flag command. Defaults 0 Command Modes INTERFACE Usage Information The description of this flag from RFC 2461 (http://tools.ietf.
off-link (OPTIONAL) Enter the keywords off-link to not use prefixes for on-link determination. Defaults Not configured. Command Modes INTERFACE Usage Information The description of an IPv6 prefix from RFC 2461(http://tools.ietf.org/html/rfc2461) is a bit string that consists of some number of initial bits of an address. ipv6 nd ra-lifetime Configure the router lifetime value in the IPv6 router advertisements on an interface.
Parameters milliseconds Defaults 3600000 milliseconds Command Modes INTERFACE Usage Information Enter the reachability time in milliseconds. The range is 0 to 3600000. The description of reachable time from RFC 2461 (http:// tools.ietf.org/html/rfc2461) is: Reachable Time: 32-bit unsigned integer. The time, in milliseconds, that a node assumes a neighbor is reachable after having received a reachability confirmation. Used by the Neighbor Unreachability Detection algorithm.
hardware_addres s Defaults none Command Modes CONFIGURATION Command History Version 8.3.7.0 • For a Fast Ethernet interface, enter the keyword fastEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale.
Defaults Command Modes Command History Example • For a Port Channel interface, enter the keywords portchannel followed by a number. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN, enter the keyword vlan followed by the VLAN ID.
37 Open Shortest Path First (OSPFv2 and OSPFv3) Open Shortest Path First version 2 for IPv4 is supported on C-Series, E-Series, S-Series, Z-Series, and S4810 Dell Force10 platforms. Open Shortest Path First version 3 (OSPFv3) for IPv6 is supported on the C-Series, E-Series, Z-Series and S4810 platforms. NOTE: The C-Series supports OSPFv3 with FTOS version 7.8.1.0 and later.
• description • distance • distance ospf • distribute-list in • distribute-list out • enable inverse mask • fast-convergence • flood-2328 • graceful-restart grace-period • graceful-restart helper-reject • graceful-restart mode • graceful-restart role • ip ospf auth-change-wait-time • ip ospf authentication-key • ip ospf cost • ip ospf dead-interval • ip ospf hello-interval • ip ospf message-digest-key • ip ospf mtu-ignore • ip ospf network • ip ospf priority • ip o
• show ip ospf database asbr-summary • show ip ospf database external • show ip ospf database network • show ip ospf database nssa-external • show ip ospf database opaque-area • show ip ospf database opaque-as • show ip ospf database opaque-link • show ip ospf database router • show ip ospf database summary • show ip ospf interface • show ip ospf neighbor • show ip ospf routess • show ip ospf statistics • show ip ospf topology • show ip ospf virtual-links • summary-address •
pre-Version 6.1.1.1 Introduced on the E-Series. Usage Information In the Dell Force10 operating software (FTOS), cost is defined as reference bandwidth/ bandwidth. Related Commands area stub – creates a stub area. area nssa Specify an area as a not so stubby area (NSSA). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax area area-id nssa [default-information-originate] [noredistribution] [no-summary] To delete an NSSA, use the no area area-id nssa command.
area range Summarize routes matching an address/mask at an area border router (ABR). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax area area-id range ip-address mask [not-advertise] To disable route summarization, use the no area area-id range ip-address mask command. Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. ip-address Specify an IP address in dotted decimal format. mask Specify a mask for the destination prefix.
Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-summary (OPTIONAL) Enter the keywords no-summary to prevent the ABR from sending summary Link State Advertisements (LSAs) into the stub area. Defaults Disabled. Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for the Multi-Process OSPF. Version 7.6.1.
authenticationkey [encryptiontype] key | message-digestkey keyid md5 [encryption-type] (OPTIONAL) Choose between two authentication methods: • Enter the keywords authentication-key to enable simple authentication followed by an alphanumeric string up to eight characters long. Optionally, for the encryptiontype variable, enter the number seven before entering the key string to indicate that an encrypted password will follow.
You cannot enable both authentication options. Choose either the authentication-key or message-digest-key option. Related Commands router ospf – enters ROUTER OSPF mode to configure an OSPF instance. auto-cost Specify how the OSPF interface cost is calculated based on the reference bandwidth method.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for the Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. clear ip ospf statistics Clear the packet statistics in interfaces and neighbors.
Related Commands Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for the Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. show ip ospf statistics – displays the OSPF statistics. debug ip ospf Display debug information on OSPF. Entering the debug ip ospf commands enables OSPF debugging for the first OSPF process.
Usage Information Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. The following describes the debug ip ospf command shown in the Example below. Field Description 8:14 Displays the time stamp. OSPF Displays the OSPF process ID: instance ID. v: Displays the OSPF version. FTOS supports version 2 only.
Field Example Description • N + (N-bit is set) • N - (N-bit is not set) • MC+ (bit used by MOSPF is set and router is able to forward IP multicast packets) • MC- (bit used by MOSPF is not set and router cannot forward IP multicast packets) • E + (router is able to accept AS External LSAs) • E - (router cannot accept AS External LSAs) • T + (router can support TOS) • T - (router cannot support TOS) hi: Displays the amount of time configured for the HELLO interval.
• route-map mapname Defaults Disabled. Command Modes ROUTER OSPF Command History Related Commands 2 = Type 2 external route (OPTIONAL) Enter the keywords route-map followed by the name of an established route map. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for the Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series.
Related Commands redistribute – redistributes routes from other routing protocols into OSPF. description Add a description about the selected OSPF configuration. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax description description To remove the OSPF description, use the no description command. Parameters description Defaults none Command Modes ROUTER OSPF Command History Related Commands Enter a text string description to identify the OSPF configuration (80 characters maximum).
access-list-name Defaults 110 Command Modes ROUTER OSPF Command History (OPTIONAL) Enter the name of an IP standard access list, up to 140 characters. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for the Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series.
Usage Information Version 7.8.1.0 Added support for the Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. To specify a distance for routes learned from other routing domains, use the redistribute command. distribute-list in Apply a filter to incoming routing updates from OSPF to the routing table.
Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. distribute-list out Apply a filter to restrict certain routes destined for the local routing table after the SPF calculation.
Usage Information Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. The distribute-list out command applies to routes being redistributed by autonomous system boundary routers (ASBRs) into OSPF. It can be applied to external type 2 and external type 1 routes, but not to intra-area and inter-area routes. enable inverse mask By default, FTOS allows you to input the OSPF network command with a net-mask.
Usage Information Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on all platforms. The higher this parameter is set, the faster OSPF converge takes place. NOTE: The faster the convergence, the more frequent the route calculations and updates. This impacts CPU utilization and may impact adjacency stability in larger topologies. Generally, convergence level 1 meets most convergence requirements.
graceful-restart grace-period Specifies the time duration, in seconds, that the router’s neighbors will continue to advertise the router as fully adjacent regardless of the synchronization state during a graceful restart. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax graceful-restart grace-period seconds To disable the grace period, use the no graceful-restart grace-period command.
Version 7.8.1.0 Restart role enabled on the S-Series (Both Helper and Restart roles now supported on S-Series). Added support for Multi-Process OSPF. Version 7.7.1.0 Added Helper-Role support on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. graceful-restart mode Enable the graceful restart mode.
role restart-only (OPTIONAL) Enter the keywords restart-only to specify the OSPF router is a restart only during graceful-restart. Defaults By default, OSPF routers are both helper and restart routers during a graceful restart. Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.12.0 Introduced on the S4810. Version 7.8.1.0 Added support for Multi-Process OSPF. Added Restart and Helper roles support on the S-Series. Version 7.7.1.
ip ospf authentication-key Enable authentication and set an authentication key on OSPF traffic on an interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip ospf authentication-key [encryption-type] key To delete an authentication key, use the no ip ospf authentication-key command. Parameters encryption-type (OPTIONAL) Enter 7 to encrypt the key. key Enter an eight-character string. Strings longer than eight characters are truncated. Defaults Not configured.
Usage Information Related Commands Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. If this command is not configured, cost is based on the auto-cost command. When you configure OSPF over multiple vendors, use the ip ospf cost command to ensure that all routers use the same cost. Otherwise, OSPF routes improperly. auto-cost – controls how the OSPF interface cost is calculated.
ip ospf hello-interval Specify the time interval between the hello packets sent on the interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip ospf hello-interval seconds To return to the default value, use the no ip ospf hello-interval command. Parameters seconds Defaults 10 seconds Command Modes INTERFACE Command History Enter the number of seconds for the interval. The range is 1 to 65535. The default is 10 seconds. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. Users can configure a maximum of six digest keys on an interface. Of the available six digest keys, the switches select the MD5 key that is common. The remaining MD5 keys are unused.
ip ospf network Set the network type for the interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip ospf network {broadcast | point-to-point} To return to the default, use the no ip ospf network command. Parameters broadcast Enter the keyword broadcast to designate the interface as part of a broadcast network. point-to-point Enter the keywords point-to-point to designate the interface as part of a point-to-point network. Defaults Not configured.
Usage Information Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. Setting a priority of 0 makes the router ineligible for election as a designated router or backup designated router. Use this command for interfaces connected to multi-access networks, not point-to-point networks. ip ospf retransmit-interval Set the retransmission time between lost link state advertisements (LSAs) for adjacencies belonging to the interface.
Parameters seconds Enter the number of seconds as the interval between retransmission. The range is 1 to 3600. The default is 1 second. This value must be greater than the transmission and propagation delays for the interface. Defaults 1 second Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.
maximum-paths Enable the software to forward packets over multiple paths. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax maximum-paths number To disable packet forwarding over multiple paths, use the no maximum-paths command. Parameters number Specify the number of paths. The range for OSPFv2 is 1 to 16. The default for OSPFv2 is 4 paths. The range for OSPFv3 is 1 to 64. The default for OSPFv3 is 8 paths.
Usage Information This command is either enabled or disabled. If no OSPF process is identified as the MIB manager, the first OSPF process is used. If an OSPF process has been selected, it must be disabled prior to assigning new process ID the MIB responsibility. network area Define which interfaces run OSPF and the OSPF area for those interfaces.
passive-interface Suppress both receiving and sending routing updates on an interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax passive-interface {default | interface} To enable both the receiving and sending routing, use the no passive-interface interface command. To return all OSPF interfaces (current and future) to active, use the no passiveinterface default command.
Usage Information Although the passive interface will neither send nor receive routing updates, the network on that interface will still be included in OSPF updates sent using other interfaces. The default keyword sets all interfaces as passive. You can then configure individual interfaces, where adjacencies are desired, using the no passive-interface interface command.
rip Enter the keyword rip to specify that RIP routing information is redistributed. static Enter the keyword static to specify that information from static routes is redistributed. metric metric- value (OPTIONAL) Enter the keyword metric followed by a number. The range is 0 (zero) to 16777214.
Parameters as number Enter the autonomous system number. The range is 1 to 65535. metric metric- value (OPTIONAL) Enter the keyword metric followed by the metric-value number. The range is 0 to16777214. metric-type typevalue (OPTIONAL) Enter the keywords metric-type followed by one of the following: • • route-map mapname (OPTIONAL) Enter the keywords route-map followed by the name of the route map. tag tag-value (OPTIONAL) Enter the keyword tag to set the tag for routes redistributed into OSPF.
level-1-2 (OPTIONAL) Enter the keywords level-1-2 to redistribute both ISIS Level-1 and Level-2 routes. level-2 (OPTIONAL) Enter the keywords level-2 to redistribute only IS-IS Level-2 routes. metric metricvalue (OPTIONAL) Enter the keyword metric followed by a number. The range is 0 (zero) to 4294967295.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. Usage Information You can configure an arbitrary value in the IP address format for each router. However, each router ID must be unique.
Usage Information Version 8.3.7.0 Introduced on the S4810. Version 7.9.1.0 Added support for VRF. Version 7.8.1.0 Added support for Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. You must have an IP address assigned to an interface to enter ROUTER OSPF mode and configure OSPF. After the OSPF process and the VRF are tied together, you cannot use the OSPF Process ID again in the system.
show ip ospf Display information on the OSPF process configured on the switch. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History Usage Information show ip ospf process-id [vrf vrf name] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. vrf name E-Series Only: Show only the OSPF information tied to the VRF process. • EXEC • EXEC Privilege Version 8.3.11.
Line Beginning with Description “Number of...” Displays the number and type of areas configured for this process ID. Example FTOS#show ip ospf 10 Routing Process ospf 10 with ID 1.1.1.
Usage Information Use this command to isolate problems with external routes. In OSPF, external routes are calculated by adding the LSA cost to the cost of reaching the ASBR router. If an external route does not have the correct cost, use this command to determine if the path to the originating router is correct. The display output is not sorted in any order. NOTE: ASBRs that are not in directly connected areas are also displayed.
Example Field Description Link ID Identifies the router ID. ADV Router Identifies the advertising router’s ID. Age Displays the link state age. Seq# Identifies the link state sequence number. This number allows you to identify old or duplicate link state advertisements. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Link count Displays the number of interfaces for that router. FTOS>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.
Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Field Description Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. TOS Displays the Type of Service (TOS) options. Option 0 is the only option. Metric Displays the LSA metric. FTOS#show ip ospf 100 database asbr-summary OSPF Router with ID (1.1.1.10) (Process ID 100) Summary Asbr (Area 0.0.0.0) LS age: 1437 Options: (No TOS-capability, No DC, E) LS type: Summary Asbr Link State ID: 103.1.50.1 Advertising Router: 1.1.1.
• adv-router ipaddress Command Modes Command History Usage Information • EXEC • EXEC Privilege the default destination (0.0.0.0) for Type 5 LSAs (OPTIONAL) Enter the keywords adv-router and the ip-address to display only the LSA information about that router. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
Example Field Description TOS Displays the Type of Service (TOS) options. Option 0 is the only option. Metric Displays the LSA metric. Forward Address Identifies the address of the forwarding router. Data traffic is forwarded to this router. If the forwarding address is 0.0.0.0, data traffic is forwarded to the originating router. External Route Tag Displays the 32-bit field attached to each external route. This field is not used by the OSPF protocol, but can be used for external route management.
show ip ospf database network Display the network (type 2) LSA information. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show ip ospf process-id database network [link-state-id] [advrouter ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Field Description • Example E or No E is displayed on whether the originating router can accept AS External LSAs. LS Type Displays the LSA’s type. Link State ID Displays the Link State ID. Advertising Router Identifies the router ID of the LSA’s originating router. Checksum Identifies the link state sequence number. This number enables you to identify old or duplicate LSAs. Length Displays the Fletcher checksum of an LSA’s complete contents.
show ip ospf database nssa-external Display NSSA-External (type 7) LSA information. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show ip ospf database nssa-external [link-state-id] [adv-router ip-address] link-state-id adv-router ip- address Command Modes Command History Related Commands • EXEC • EXEC Privilege (OPTIONAL) Specify LSA ID in dotted decimal format.
link-state-id adv-router ipaddress Command Modes Command History Usage Information 1204 • EXEC • EXEC Privilege (OPTIONAL) Specify LSA ID in dotted decimal format. The LSA ID value depends on the LSA type, and it can be one of the following: • the network’s IP address for Type 3 LSAs or Type 5 LSAs • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.
Example Item Description Opaque ID Displays the Opaque type-specific ID (the remaining 24 bits of the Link State ID). FTOS>show ip ospf 1 database opaque-area OSPF Router with ID (3.3.3.3) (Process ID 1) Type-10 Opaque Link Area (Area 0) LS age: 1133 Options: (No TOS-capability, No DC, E) LS type: Type-10 Opaque Link Area Link State ID: 1.0.0.1 Advertising Router: 10.16.1.
Command Modes Command History Related Commands • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. show ip ospf database – displays OSPF database information. show ip ospf database opaque-link Display the opaque-link (type 9) LSA information.
Related Commands Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. show ip ospf database – displays OSPF database information. show ip ospf database router Display the router (type 1) LSA information. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show ip ospf process-id database router [link-state-id] [advrouter ip-address] process-id Enter the OSPF Process ID to show a specific process.
Example Item Description LS Age Displays the LSA age. Options Displays the optional capabilities available on router. The following options can be found in this item: • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. • DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits. • E or No E is displayed on whether the originating router can accept AS External LSAs.
(Link Data) Router Interface address: 192.68.129.1 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.130.1 (Link Data) Router Interface address: 192.68.130.1 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.142.2 (Link Data) Router Interface address: 192.68.142.
Command Modes Command History Usage Information Example • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. The following describes the show ip ospf process-id database summary command shown in the Example below.
LS age: 1551 Options: (No TOS-capability, DC, E) LS type: Summary Network Link State ID: 192.68.16.0 Advertising Router: 192.168.17.1 LS Seq Number: 0x80000054 Checksum: 0xb5a2 Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 9 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.32.0 Advertising Router: 1.1.1.
Command Modes Command History Usage Information 1212 • EXEC • EXEC Privilege • For Port Channel groups, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale. • For a SONET interface, enter the keyword sonet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
Example Item Description Timer intervals... This line displays the interface’s timer settings for Hello interval, Dead interval, Transmit Delay (Wait), and Retransmit Interval. Hello due... This line displays the amount time untill the next Hello packet is sent out this interface. Neighbor Count... This line displays the number of neighbors and adjacent neighbors. Listed below this line are the details about each adjacent neighbor.
show ip ospf neighbor Display the OSPF neighbors connected to the local router. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History Usage Information Example show ip ospf process-id neighbor process-id EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
show ip ospf routes Display routes as calculated by OSPF and stored in OSPF RIB. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History Usage Information show ip ospf process-id routes process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
show ip ospf statistics Display OSPF statistics. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show ip ospf process-id statistics global | [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. global Enter the keyword global to display the packet counts received on all running OSPF interfaces and packet counts received and transmitted by all OSPF neighbors.
Usage Information Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. The following describes the show ip ospf statistics process-id global command shown in the Example below. Row Heading Description Total Displays the total number of packets received/transmitted by the OSPF process. Error Displays the error count while receiving and transmitting packets by the OSPF process. Hello Number of OSPF Hello packets. DDiscr Number of database description packets.
Example Error Type Description Nbr-State LSA, LSR, and LSU are received from a neighbor with stats less than the loading state. Auth-Error Simple authentication error. MD5-Error MD5 error Cksum-Err Checksum Error Version Version mismatch AreaMismatch Area mismatch Conf-Issue The received hello packet has a different hello or dead interval than the configuration. No-Buffer Buffer allocation failure. Seq-no A sequence no errors occurred during the database exchange process.
Example (Statistics) • The grace-timer remaining value for each interface • The packet count received and transmitted for each neighbor • Dead timer remaining value for each neighbor • Transmit timer remaining value for each neighbor • The LSU Q length and its highest mark for each neighbor • The LSR Q length and its highest mark for each neighbor FTOS#show ip ospf 100 statistics Interface GigabitEthernet 0/8 Hello-Timer 9, Wait-Timer 0, Grace-Timer 0 Error packets (Only for RX) Intf-Down Wrong
Example FTOS#show ip ospf 10 timers rate-limit List of LSAs in rate limit Queue LSA id: 1.1.1.0 Type: 3 Adv Rtid: 3.3.3.3 Expiry time: 00:00:09.111 LSA id: 3.3.3.3 Type: 1 Adv Rtid: 3.3.3.3 Expiry time: 00:00:23.96 FTOS# show ip ospf topology Display routers in directly connected areas. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History show ip ospf process-id topology process-id Enter the OSPF Process ID to show a specific process.
show ip ospf virtual-links Display the OSPF virtual links configured and is useful for debugging OSPF routing operations. If no OSPF virtual-links are enabled on the switch, no output is generated. C-Series, E-Series, S-Series Syntax show ip ospf process-id virtual-links NOTE: This command was deprecated. Parameters Command Modes Command History Usage Information process-id • EXEC • EXEC Privilege Enter the OSPF Process ID to show a specific process.
Example Items Description “Adjacency State...” This line displays the adjacency state between neighbors. FTOS#show ip ospf 1 virt Virtual Link to router 192.168.253.5 is up Run as demand circuit Transit area 0.0.0.1, via interface GigabitEthernet 13/16, Cost of using 2 Transmit Delay is 1 sec, State POINT_TO_POINT, Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5 Hello due in 00:00:02 FTOS# summary-address Set the OSPF ASBR to advertise one external route.
Usage Information Related Commands The area range command summarizes routes for the different areas. With the not-advertise parameter configured, you can use this command to filter out some external routes. For example, if you want to redistribute static routes to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.0, you can configure the summaryaddress 1.1.0.0 255.255.0.0 not-advertise to filter out all the routes fall in range 1.1.0.0/16. area range – summarizes routes within an area.
timers throttle lsa all Configure LSA transmit intervals. Z-Series, S4810 Syntax timers throttle lsa all {start-interval | hold-interval | maxinterval} To return to the default, use the no timers throttle lsa command. Parameters Defaults Command Modes Command History Usage Information start-interval Set the minimum interval between initial sending and resending the same LSA. The range is 0 to 600,000 milliseconds. hold-interval Set the next interval to send the same LSA.
Defaults 1000 msec Command Modes ROUTER OSPF Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. OSPFv3 Commands Open Shortest Path First version 3 (OSPFv3) for IPv6 is supported on the C-Series, E-Series, Z-Series, and S4810 platforms. NOTE: The C-Series supports OSPFv3 with FTOS version 7.8.1.0 and later. The fundamental mechanisms of OSPF (flooding, DR election, area support, SPF calculations, etc.) remain unchanged.
• show ipv6 ospf neighbor area authentication Configure an IPsec authentication policy for OSPFv3 packets in an OFSPFv3 area. E-Series TeraScale, Z-Series, S4810 Syntax Parameters area area-id authentication ipsec spi number {MD5 | SHA1} [keyencryption-type] key area area-id Area for which OSPFv3 traffic is to be authenticated. For area-id, you can enter a number. The range is 0 to 4294967295. ipsec spi number Security Policy index (SPI) value that identifies an IPsec security policy.
cannot use the area authentication command in the area at the same time. The configuration of IPsec authentication on an interface-level takes precedence over an area-level configuration. If you remove an interface configuration, an area authentication policy that has been configured is applied to the interface. To remove an IPsec authentication policy from an OSPFv3 area, enter the no area area-id authentication spi number command.
key-encryptiontype (OPTIONAL) Specifies if the authentication key is encrypted. key Text string used in authentication. Valid values: 0 (key is not encrypted) or 7 (key is encrypted). For MD5 authentication, the key must be 32 hex digits (nonencrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (nonencrypted) or 80 hex digits (encrypted). null Defaults Not configured.
clear ipv6 ospf process Reset an OSPFv3 router process without removing or re-configuring the process. C-Series, E-Series, Z-Series, S4810 Syntax Command Modes Command History clear ipv6 ospf process • EXEC • EXEC Privilege Version 9.1.(0.0) Introduced on the S4810 and Z9000. Version 7.8.1.0 Added support for C-Series. Version 7.4.1.0 Introduced on the E-Series. debug ipv6 ospf packet Display debug information and interface types on OSPF IPv6 packets.
Example debug ipv6 ospf Output Fields 1230 Version 7.8.1.0 Added support for C-Series. Version 7.4.1.0 Introduced on E-Series. FTOS#debug ipv6 ospf packet OSPFv3 packet related debugging is on for all interfaces 05:21:01 : OSPFv3: Sending, Ver:3, Type:1(Hello), Len:40, Router ID:223.255.255.254, Area ID:0, Inst:0, on Po 255 05:21:03 : OSPFv3: Received, Ver:3, Type:1(Hello), Len:40, Router ID:223.255.255.
default-information originate Configure the FTOS to generate a default external route into an OSPFv3 routing domain. C-Series, E-Series, Z-Series, S4810 Syntax default-information originate [always] [metric metric-value] [metric-type type-value] [route-map map-name] To return to the default values, use the no default-information originate command. Parameters always (OPTIONAL) Enter the keyword always to specify that default route information must always be advertised.
Parameters seconds Time duration, in seconds, that specifies the duration of the restart process before OSPFv3 terminates the process. The range is 40 to 1800 seconds. Defaults OSPFv3 graceful restart is disabled and functions in a helper-only role. Command Modes ROUTER OSPFv3 Command History Usage Information Version 9.1.(0.0) Introduced on the S4810 and Z9000. Version 8.4.2.2 Introduced on the E-Series TeraScale.
Usage Information OSPFv3 graceful restart supports planned-only and/or unplanned-only restarts. The default is support for both planned and unplanned restarts. • A planned restart occurs when you enter the redundancy force-failover rpm command to force the primary RPM to switch to the backup RPM. During a planned restart, OSPF sends out a Type-11 Grace LSA before the system switches over to the backup RPM.
MD5 | SHA1 Authentication type: Message Digest 5 (MD5) or Secure Hash Algorithm 1 (SHA-1). key-encryptiontype (OPTIONAL) Specifies if the key is encrypted. key Valid values: 0 (key is not encrypted) or 7 (key is encrypted). Text string used in authentication. For MD5 authentication, the key must be 32 hex digits (nonencrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (nonencrypted) or 80 hex digits (encrypted). Defaults Not configured.
Parameters interface-cost Enter a unsigned integer value expressed as the link-state metric. Range: 1 to 65535 Defaults Default cost based on the bandwidth. Command Modes INTERFACE Command History Usage Information Version 9.1.(0.0) Introduced on the S4810 and Z9000. Version 7.8.1.0 Added support for C-Series. Version 7.4.1.0 Introduced on the E-Series.
Related Commands ipv6 ospf hellointerval Specify the time interval between hello packets. ipv6 ospf encryption Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface. E-Series TeraScale, Z-Series, S4810 Syntax Parameters ipv6 ospf encryption {null | ipsec spi number esp encryptionalgorithm [key-encryption-type] key athentication-algorithm [key-encryption-type] key}} null Causes an encryption policy configured for the area to not be inherited on the interface.
Version 8.4.2.0 Usage Information Introduced on the E-Series TeraScale. Before you enable IPsec encryption on an OSPFv3 interface, you must first enable IPv6 unicast routing globally, configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area. An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router. You must configure the same encryption policy (same SPI and key) on each OSPFv3 interface in a link.
ipv6 ospf hello-interval Specify the time interval between the hello packets sent on the interface. C-Series, E-Series, Z-Series, S4810 Syntax ipv6 ospf hello—interval seconds To return to the default time interval, enter no ipv6 ospf hello—interval. Parameters seconds Enter the time interval in seconds as the time between hello packets. Range: 1 to 65535 seconds. Defaults 10 seconds (Ethernet). Command Modes INTERFACE Command History Usage Information Related Commands Version 9.1.(0.
Version 7.4.1.0 Usage Information Introduced on the E-Series. Setting a priority of 0 makes the router ineligible for election as a Designated Router or Backup Designated Router. Use this command for interfaces connected to multi-access networks, not point-to-point networks. ipv6 router ospf Enable OSPF for IPv6 router configuration. C-Series, E-Series, Z-Series, S4810 Syntax ipv6 router ospf process-id To exit OSPF for IPv6, enter no ipv6 router ospf process-id.
Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Added support for Multi-Process OSPF. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. passive-interface Disable (suppress) sending routing updates on an interface. C-Series, E-Series, Z-Series, S4810 Syntax passive—interface interface To enable sending routing updates on an interface, use the no passive-interface interface.
If you disable the sending of routing updates on an interface, the particular address prefix will continue to be advertised to other interfaces, and updates from other routers on that interface continue to be received and processed. OSPFv3 for IPv6 routing information is neither sent nor received through the specified router interface. The specified interface address appears as a stub network in the OSPFv3 for IPv6 domain. redistribute Redistribute into OSPFv3.
Defaults Command Modes Not configured. ROUTER OSPF for OSPFv2 ROUTER OSPFv3 for OSPFv3 Command History Usage Information Related Commands Version 9.1.(0.0) Introduced support for OSPFv3 on the S4810 and Z9000. Version 7.8.1.0 Added support for the C-Series. Version 7.4.1.0 Introduced on the E-Series. To redistribute the default route (x:x:x:x::x), configure the default-information originate command. defaultinformation originate Configure default external route into OSPFv3.
Related Commands clear ipv6 ospf process Reset an OSPFv3 router process. show crypto ipsec policy Display the configuration of IPsec authentication and encryption policies. E-Series TeraScale, Z-Series, S4810 Syntax Parameters show crypto ipsec policy [name name] name name (OPTIONAL) Displays configuration details about a specified policy. Defaults No default behavior or values. Command Modes EXEC EXEC Privilege Command History Usage Information Version 9.1.(0.
Inbound ESP Auth Key : bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba8ed8bb5efe91e97 eb7c0 c30808825fb5 Outbound ESP Auth Key : bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba8ed8bb5efe91e97 eb7c0 c30808825fb5 Inbound ESP Cipher Key : bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8 a Outbound ESP Cipher Key : bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8 a Transform set : esp-128-aes esp-sha1-hmac show crypto ipsec policy Command Fields Field Description Policy name
• • • Defaults No default behavior or values. Command Modes EXEC For a 10-Gigabit Ethernet interface, enter TenGigabitEthernet slot/port. For a 40–Gigabit Ethernet interface, enter fortyGigE slot/port. For a VLAN interface, enter vlan vlan-id. Valid VLAN IDs: 1 to 4094. EXEC Privilege Command History Usage Information Related Commands Version 9.1.(0.0) Introduced on the S4810 and Z9000. Version 8.4.2.0 Introduced on the E-Series TeraScale.
spi : 600 (0x258) transform : esp-des esp-sha1-hmac in use settings : {Transport, } replay detection support : N STATUS : ACTIVE outbound esp sas spi : 600 (0x258) transform : esp-des esp-sha1-hmac in use settings : {Transport, } replay detection support : N STATUS : ACTIVE show crypto ipsec sa ipv6 Command Fields Field Description Interface IPv6 interface Link local address IPv6 address of interface IPSecv6 policy name Name of the IPsec security policy applied to the interface.
Defaults No default behavior or values. Command Modes EXEC EXEC Privilege Command History Usage Information Related Commands Example Version 9.1.(0.0) Added support for OSPFv3 on the S4810 and Z9000. Version 8.4.2.2 Added support for the display of graceful restart parameters and Type-11 Grace LSAs on E-Series TeraScale routers. Version 7.8.1.0 Added support for C-Series.
LSA count 6 Rtr LSA Count 2 Net LSA Count 1 Inter Area Pfx LSA Count 1 Inter Area Rtr LSA Count 0 Group Mem LSA Count 0 Type-7 LSA count 0 Intra Area Pfx LSA Count 2 Intra Area TE LSA Count 2 Area 1 database summary Type Count/Status Brd Rtr Count 1 AS Bdr Rtr Count 1 LSA count 8 Rtr LSA Count 1 Net LSA Count 0 Inter Area Pfx LSA Count 5 Inter Area Rtr LSA Count 0 Group Mem LSA Count 0 Type-7 LSA count 0 Intra Area Pfx LSA Count 2 Intra Area TE LSA Count 2 E1200-T2C2#sh ipv6 ospf neighbor Neighbor ID ID Int
Defaults No default behavior or values. Command Modes EXEC Command History Example Version 9.1.(0.0) Added support for OSPFv3 on the S4810 and Z9000. Version 7.8.1.0 Added support for the C-Series. Version 7.4.1.0 Introduced on the E-Series. show ipv6 ospf interface command FTOS#show ipv6 ospf interface gigabitethernet 1/0 GigabitEthernet 1/0 is up, line protocol is up Link Local Address fe80::201:e8ff:fe17:5bbd, Interface ID 67420217 Area 0, Process ID 1, Instance ID 0, Router ID 11.1.1.
Defaults No default behavior or values. Command Modes EXEC EXEC Privilege Command History Example Version 9.1.(0.0) Introduced support for OSPFv3 on the S4810 and Z9000. Version 7.8.1.0 Added support for the C-Series. Version 7.4.1.0 Introduced on the E-Series. show ipv6 ospf interface command FTOS#show ipv6 ospf neighbor gi 9/0 Neighbor ID Interface 63.114.8.
PIM-Sparse Mode (PIM-SM) 38 The protocol-independent multicast (PIM) commands are supported by the Dell Force10 operating software (FTOS) on all E-Series, C-Series, S-Series, Z-Series, or S4810 platforms. IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands. clear ip pim rp-mapping Used by the bootstrap router (BSR) to remove all or particular rendezvous point (RP) advertisement.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the S-Series. debug ip pim View IP PIM debugging messages.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.12.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the S-Series. ip pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip pim bsr-border To return to the default value, use the no ip pim bsr-border command. Defaults Disabled.
For a SONET interface, enter the keyword sonet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. hash-masklength (OPTIONAL) Enter the hash mask length. The range is zero (0) to 32. The default is 30. priority (OPTIONAL) Enter the priority used in Bootstrap election process. The range is zero (0) to 255.
ip pim graceful-restart This feature permits configuration of non-stop forwarding (NSF or graceful restart) capability of a PIM router to its neighbors. E-Series Syntax Parameters [ipv6] ip pim graceful-restart {helper-only | nsf [restart-time | stale-entry-time]} ipv6 Enter the keyword ipv6 to enable graceful-restart for the IPv6 multicast routes.
To remove the access list, use the no ip pim join-filter ext-access-list {in | out} command. Parameters ext-access-list Enter the name of an extended access list. in Enter this keyword to apply the access list to inbound traffic. out Enter this keyword to apply the access list to outbound traffic. Defaults none Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale.
FTOS(conf)#int gig 1/1 FTOS(config-if-gi-1/1)# ip pim ingress-interface-map map1 ip pim neighbor-filter Configure this feature to prevent a router from participating in protocol independent multicast (PIM). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip pim neighbor-filter {access-list} To remove the restriction, use the no ip pim neighbor-filter {access-list} command.
Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the C-Series for the port-channels and the S-Series. ip pim register-filter Use this feature to prevent a PIM source DR from sending register packets to an RP for the specified multicast source and group. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip pim register-filter access-list To return to the default, use the no ip pim register-filter access-list command.
override Enter the keyword override to override the BSR updates with static RP. The override takes effect immediately during enable/ disable. NOTE: This option is applicable to multicast group range. Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the S-Series. pre-Version 6.1.1.
• priority Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. (OPTIONAL) Enter the priority used in Bootstrap election process. The range is zero (0) to 255. The default is 192. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the S-Series. pre-Version 6.1.1.
ip pim sparse-mode sg-expiry-timer Enable expiry timers globally for all sources, or for a specific set of (S,G) pairs defined by an access list. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip pim sparse-mode sg-expiry-timer seconds [access-list name] To disable configured timers and return to default mode, use the no ip pim sparsemode sg-expiry-timer command. Parameters seconds Enter the number of seconds the S, G entries are retained. The range is 211 to 86400.
Command Modes Command History Usage Information CONFIGURATION Version 8.3.12.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. This is applicable to last hop routers on the shared tree towards the rendezvous point (RP). no ip pim snooping dr-flood Disable the flooding of multicast packets to the PIM designated router.
show ip pim bsr-router View information on the Bootstrap router. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Command Modes Command History Example show ip pim bsr-router • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the S-Series.
Example Field Description Address Lists the IP addresses of the interfaces participating in PIM. Interface List the interface type, with either slot/port information or ID (VLAN or Port Channel), of the interfaces participating in PIM. Ver/Mode Displays the PIM version number and mode for each interface participating in PIM: • v2 = PIM version 2 • S = PIM Sparse mode Nbr Count Displays the number of PIM neighbors discovered over this interface.
Usage Information The following describes the show ip pim neighbor command shown in the Example below. Field Description Neighbor address Displays the IP address of the PIM neighbor. Interface List the interface type, with either slot/port information or ID (VLAN or Port Channel), on which the PIM neighbor was found.
Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.8.1.0 Introduced on the S-Series. Example FTOS#sh ip pim rp Group RP 224.2.197.115 165.87.20.4 224.2.217.146 165.87.20.4 224.3.3.3 165.87.20.4 225.1.2.1 165.87.20.4 225.1.2.2 165.87.20.4 229.1.2.1 165.87.20.4 229.1.2.2 165.87.20.4 FTOS# Example (Mapping) FTOS#sh ip pim rp mapping Group(s): 224.0.0.0/4 RP: 165.87.20.4, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:02:46 RP: 165.87.20.
Usage Information Example (#2) The following describes the show ip pim snooping interface commands shown in the Example below. Field Description Interface Displays the VLAN interfaces with PIM-SM snooping enabled. Ver/Mode Displays the PIM version number for each VLAN interface with PIMSM snooping enabled: • v2 = PIM version 2 • S = PIM Sparse mode Nbr Count Displays the number of neighbors learned through PIM-SM snooping on the interface.
Field Description Neighbor address Displays the IP address of the neighbor learned through PIM-SM snooping. Interface Displays the VLAN ID number and slot/port on which the PIM-SMenabled neighbor was discovered. Uptime/expires Displays the amount of time the neighbor has been up followed by the amount of time until the neighbor is removed from the multicast routing table (that is, until the neighbor hold time expires).
Command Modes Command History Usage Information Example • • EXEC EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.1 Introduced on the E-Series ExaScale. The following describes the show ip pim snooping tib commands shown in the Example below. Field Description (S, G) Displays the entry in the PIM multicast snooping database. uptime Displays the amount of time the entry has been in the PIM multicast route table.
(*, 225.1.2.1), uptime 00:00:01, expires 00:02:59, RP 165.87.70.1, flags: J Incoming interface: Vlan 2, RPF neighbor 0.0.0.0 Outgoing interface list: GigabitEthernet 4/11 RPF 165.87.32.2 00:00:01/00:02:59 GigabitEthernet 4/13 Upstream Port -/FTOS#show ip pim snooping tib vlan 2 225.1.2.1 165.87.1.7 PIM Multicast Snooping Table Flags: J/P - (*,G) Join/Prune, j/p - (S,G) Join/Prune SGR-P - (S,G,R) Prune Timers: Uptime/Expires * : Inherited port (165.87.1.7, 225.1.2.
TIB summary: 1/1 (*,G) entries in PIM-TIB/MFC 1/1 (S,G) entries in PIM-TIB/MFC 0/0 (S,G,Rpt) entries in PIM-TIB/MFC 0 0 0 0 PIM nexthops RPs sources Register states Message summary: 2582/2583 Joins sent/received 5/0 Prunes sent/received 0/0 Candidate-RP advertisements sent/received 0/0 BSR messages sent/received 0/0 State-Refresh messages sent/received 0/0 MSDP updates sent/received 0/0 Null Register messages sent/received 0/0 Register-stop messages sent/received Data path event summary: 0 no-cache messag
Usage Information Example The following describes the show ip pim tib command shown in the Example below. Field Description (S, G) Displays the entry in the multicast PIM database. uptime Displays the amount of time the entry has been in the PIM route table. expires Displays the amount of time until the entry expires and is removed from the database. RP Displays the IP address of the RP/source for this entry.
GigabitEthernet 8/0 (*, 226.1.1.2), uptime 00:18:08, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: GigabitEthernet 4/23, RPF neighbor 10.211.1.2 Outgoing interface list: GigabitEthernet 8/0 (*, 226.1.1.3), uptime 00:18:08, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: GigabitEthernet 4/23, RPF neighbor 10.211.1.2 Outgoing interface list: GigabitEthernet 8/0 (*, 226.1.1.4), uptime 00:18:08, expires 00:00:52, RP 10.211.2.
ipv6 pim bsr-border Invoke IPv6 PIM debugging. E-Series, S4810 Syntax debug ipv6 pim [bsr | events | group group | packet | register [group] | state | | timer [assert | hello | joinprune | register]] To disable IPv6 PIM debugging, use the no debug ipv6 pim command. Parameters bsr (OPTIONAL) Enter the keyword bsr to invoke debugging of IPv6 PIM Candidate RP/BSR activities. events (OPTIONAL) Enter the keyword events to invoke debugging of IPv6 PIM events.
ipv6 pim bsr-candidate Configure the router as a bootstrap (BSR) candidate. E-Series, S4810 Syntax ipv6 pim bsr-candidate interface [hash-mask-length] [priority] To disable the bootstrap candidate, use the no ipv6 pim bsr-candidate command. Parameters interface Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Defaults 1 Command Modes INTERFACE Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 7.4.1.0 Introduced The router with the largest value assigned to an interface becomes the designated router. If two interfaces contain the same designated router priority value, the interface with the largest interface IP address becomes the designated router. ipv6 pim join-filter Permit or deny PIM Join/Prune messages on an interface using an access list.
Parameters access-list Defaults none Command Modes CONFIGURATION Command History Usage Information Enter the name of a standard access list. Maximum 16 characters. Version 8.3.12.0 Introduced on the S4810. Version 8.3.1.0 Introduced Do not enter this command before creating the access-list. ipv6 pim query-interval Change the frequency of IPv6 PIM router-query messages.
Command History Example Version 8.3.12.0 Introduced on the S4810. Version 8.3.1.0 Introduced FTOS(conf)#ipv6 pim register-filter REG-FIL_ACL FTOS(conf)#ipv6 access-list REG-FIL_ACL FTOS(conf-ipv6-acl)#deny ipv6 165:87:34::10/128 ff0e:: 225:1:2:0/112 FTOS(conf-ipv6-acl)#permit ipv6 any any FTOS(conf-ipv6-acl)#exit ipv6 pim rp-address Configure a static PIM rendezvous point (RP) address for a group.
Without the override option, RPs advertised by the BSR updates take precedence over the statically configured RPs. ipv6 pim rp-candidate Specify an interface as an RP candidate.
Command History Usage Information Version 8.3.12.0 Introduced on the S4810. Version 7.4.1.0 Introduced The interface must be enabled (use the no shutdown command) and not have the switchport command configured. Multicast must also be enabled globally. PIM is supported on the port-channel interface. ipv6 pim spt-threshold Specifies when a PIM leaf router should join the shortest path tree.
Example FTOS#show ipv6 pim bsr-router PIMv2 Bootstrap information This system is the Bootstrap Router (v2) BSR address: 14::2 Uptime: 00:02:54, BSR Priority: 0, Hash mask length: 126 Next bootstrap message in 00:00:06 This system is a candidate BSR Candidate BSR address: 14::2, priority: 0, hash mask length: 126 FTOS# show ipv6 pim interface Display IPv6 PIM enabled interfaces. E-Series, S4810 Syntax Command Modes Command History Example show ipv6 pim interface • EXEC • EXEC Privilege Version 8.3.
Command Modes Command History Example • EXEC • EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 7.4.1.0 Introduced FTOS#show ipv6 pim neighbor detail Neighbor Interface Uptime/Expires Ver DR Address Prio/Mode fe80::201:e8ff:fe00:6265 Gi 10/3 00:07:39/00:01:42 v2 1 / S 165:87:50::6 FTOS# show ipv6 pim rp View all IPv6 multicast groups-to-rendezvous point (RP) mappings.
Info source: 14::1, via bootstrap, priority 192 Uptime: 00:03:37, expires: 00:01:53 Group(s): ff00::/8, Static RP: 14::2, v2 FTOS# show ipv6 pim tib View the IPv6 PIM multicast-routing database (tree information base—tib). E-Series, S4810 Syntax Parameters show ipv6 pim tib [group-address [source-address]] group-address (OPTIONAL) Enter the multicast group address in the x:x:x:x::x format to view RP mappings for a specific group. NOTE: The :: notation specifies successive hexadecimal fields of zero.
GigabitEthernet 10/11 (25::2, ff0e::225:1:2:2), uptime 00:09:54, expires 00:00:00,flags: CJ RPF neighbor: GigabitEthernet 10/3, fe80::201:e8ff:fe00:6265 Outgoing interface list: GigabitEthernet 10/11 (25::1, ff0e::226:1:2:1), uptime 00:09:54, expires 00:00:00,flags: CJ RPF neighbor: GigabitEthernet 10/3, fe80::201:e8ff:fe00:6265 Outgoing interface list: GigabitEthernet 10/11 FTOS# 1284
Port Monitoring 39 The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. The commands in this chapter are generally supported on the C-Series, E-Series, S-Series, Z-Series, and S4810. Important Points to Remember • On the E-Series, port monitoring is supported on TeraScale and ExaScale platforms. • Port monitoring is supported on physical ports only.
Parameters description Enter a description regarding this session (80 characters maximum). Defaults none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-7.7.1.0 Introduced on the E-Series. monitor session – enables a monitoring session.
monitor session Create a session for monitoring traffic with port monitoring. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax monitor session session-ID To delete a session, use the no monitor session session-ID command. To delete all monitor sessions, use the no monitor session all command. Parameters session-ID Enter a session identification number. The range is 0 to 65535. Defaults none Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command History Version 8.3.11.
Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. FTOS(conf-mon-sess-11)#show config ! monitor session 11 source GigabitEthernet 10/0 destination GigabitEthernet 10/47 direction rx FTOS# show monitor session Display the monitor information of a particular session or all sessions.
Related Commands monitor session – Creates a session for monitoring. show running-config monitor session Display the running configuration of all monitor sessions or a specific session. C-Series, E-Series, S-Series, S4810 Syntax show running-config monitor session {session-ID} To display the running configuration for all monitor sessions, use the show runningconfig monitor session command. Parameters Defaults Command Modes Command History session-ID (OPTIONAL) Enter a session identification number.
Related Commands monitor session – Creates a session for monitoring. show monitor session – Displays a monitor session. source (port monitoring) Configure a port monitor source. C-Series, E-Series, S-Series, Z-Series Syntax source interface destination interface direction {rx | tx | both} To disable a monitor source, use the no source interface destination interface direction {rx | tx | both} command.
Example Usage Information Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. FTOS(conf-mon-sess-11)#source gi 10/0 destination gi 10/47 direction rx FTOS(conf-mon-sess-11)# NOTE: You can only configure a SONET port can as a monitored port.
Private VLAN (PVLAN) 40 The private VLAN (PVLAN) feature of the Dell Force10 operating software (FTOS) is supported on the C-Series, S-Series, Z-Series, or S4810 platforms. Private VLANs extend the FTOS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The FTOS private VLAN implementation is based on RFC 3069.
• • Promiscuous port: A promiscuous port is a port that is allowed to communicate with any other port type. Trunk port: A trunk port carries VLAN traffic across switches: – A trunk port in a PVLAN is always tagged. – Primary or secondary VLAN traffic is carried by the trunk port in Tagged mode. The tag on the packet helps identify the VLAN to which the packet belongs. – A trunk port can also belong to a regular VLAN (non-private VLAN).
private-vlan mode Set PVLAN mode of the selected VLAN to community, isolated, or primary. C-Series, S-Series, Z-Series, S4810 Syntax [no] private-vlan mode {community | isolated | primary} To remove the PVLAN configuration, use the no private-vlan mode {community | isolated | primary} command syntax. Parameters community Enter the keyword community to set the VLAN as a community VLAN. isolated Enter the keyword isolated to configure the VLAN as an isolated VLAN.
private-vlan mapping secondary-vlan Map secondary VLANs to the selected primary VLAN. C-Series, S-Series, Z-Series, S4810 Syntax [no] private-vlan mapping secondary-vlan vlan-list To remove specific secondary VLANs from the configuration, use the no private-vlan mapping secondary-vlan vlan-list command syntax.
Parameters interface interface Defaults Command Modes Command History Usage Information (OPTIONAL) Enter the keyword interface followed by the ID of the specific interface for which to display PVLAN status. none • EXEC • EXEC Privilege Version 7.8.1.0 Introduced on the C-Series and S-Series. This command has two types of display — a list of all PVLAN interfaces or for a specific interface. Examples of both types of output are shown below.
show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN. C-Series, S-Series Syntax Parameters show vlan private-vlan [community | interface | isolated | primary | primary_vlan | interface interface] community (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces. interface (OPTIONAL) Enter the keyword interface to display VLANs configured as community VLANs, along with their interfaces.
Example (All) FTOS# show vlan private-vlan Primary Secondary Type Active ------- --------- --------- -----10 primary Yes 100 isolated Yes 101 community Yes 20 primary Yes 200 201 202 isolated Yes community No community Yes Ports ----------Gi 2/1,3 Gi 2/2 Gi 2/10 Po 10, 12-13 Gi 3/1 Gi 3/2,4-6 Gi 3/11-12 Example (Primary) FTOS# show vlan private-vlan primary Primary Secondary Type Active Ports ------- --------- --------- ------ ------10 primary Yes Gi 2/1,3 20 primary Yes Gi 3/1,3 Example (Isolated) F
Related Commands private-vlan mode – sets the mode of the selected VLAN to community, isolated, or primary. show interfaces private-vlan – displays type and status of PVLAN interfaces. show vlan private-vlan mapping – displays the primary-secondary VLAN mapping. switchport mode private-vlan – sets PVLAN mode of the selected port. show vlan private-vlan mapping Display primary-secondary VLAN mapping.
switchport mode private-vlan Set PVLAN mode of the selected port. C-Series, S-Series, Z-Series, S4810 Syntax [no] switchport mode private-vlan {host | promiscuous | trunk} To remove PVLAN mode from the selected port, use the no switchport mode private-vlan command. Parameters host Enter the keyword host to configure the selected port or port channel as an isolated interface in a PVLAN.
Per-VLAN Spanning Tree Plus (PVST+) 41 The Dell Force10 operating software (FTOS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1d standard spanning tree protocol. PVST+ is supported by FTOS on the E-Series, C-Series, S-Series, Z-Series, or S4810 Dell Force10 systems. NOTE: For easier command line entry, the plus (+) sign is not used at the command line. description Enter a description of the PVST+.
disable Disable PVST+ globally. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax disable To enable PVST+, use the no disable command. Defaults Disabled. Command Modes CONFIGURATION (conf-pvst) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
Bridge ID Priority 32773 (priority 32768 sys-id-ext 5), Address 0001.e832.73f7 We are the root of Vlan 5 Configured hello time 2, max age 20, forward delay 15 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID ------------------------------------------------------------Gi 0/10 128.140 128 200000 FWD 0 32773 0001.e832.73f7 128.140 Gi 0/12 128.142 128 200000 DIS 0 32773 0001.e832.73f7 128.
vlan 2 bridge-priority 4096 vlan 3 bridge-priority 16384 FTOS# Usage Information After you enable PVST+, the device runs an STP instance for each VLAN it supports. Related Commands disable – disables PVST+. show spanning-tree pvst – displays the PVST+ configuration. show spanning-tree pvst View the Per-VLAN spanning tree configuration.
Command History Usage Information Example (Brief) Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.4.2.1 Support for the optional guard keyword was added on the C-Series, S-Series, and E-Series TeraScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.4.1.
Root Bridge hello time 2, max age 20, forward delay 15 Bridge Identifier has priority 4096, Address 0001.e805.e306 Configured hello time 2, max age 20, forward delay 15 We are the root of VLAN 2 Current root has priority 4096, Address 0001.e805.e306 Number of topology changes 3, last change occured 00:57:00 Port 130 (GigabitEthernet 1/0) is designated Forwarding Port path cost 20000, Port priority 128, Port Identifier 128.130 Designated root has priority 4096, address 0001.e805.
Example (EDS/ PVID) FTOS#show spanning-tree pvst vlan 2 interface gigabitethernet 1/0 GigabitEthernet 1/0 of VLAN 2 is PVID_INC discarding Edge port:no (default) port guard :none (default) Link type: point-to-point (auto) bpdu filter:disable (default) Bpdu guard :disable (default) Bpdus sent 1, received 0 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID --------------------------------------------------------Gi 1/0 128.1223 128 20000 EDS 0 32768 0001.e800.a12b 128.
vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). The range is 1 to 4094. cost number Enter the keyword cost followed by the port cost value. The range is 1 to 200000. Defaults: 10-Gigabit Ethernet interface = 2000. • Port Channel interface with one 100 Mb/s Ethernet = 200000. • Port Channel interface with one 1-Gigabit Ethernet = 20000. • Port Channel interface with one 10-Gigabit Ethernet = 2000. • Port Channel with two 1-Gigabit Ethernet = 18000.
NOTE: A port configured as an edge port, on a PVST switch, immediately transitions to the forwarding state. Only ports connected to end-hosts should be configured as an edge port. Consider an edge port similar to a port with a spanning-tree portfast enabled. If you do not enable shutdown-on-violation, BPDUs are still sent to the route process module (RPM) CPU. You cannot enable root guard and loop guard at the same time on a port.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced. Some non-Dell Force10 systems which have hybrid ports participating in PVST+ transmit two kinds of BPDUs: an 802.1D BPDU and an untagged PVST+ BPDU. Dell Force10 systems do not expect PVST+ BPDU on an untagged port. If this happens, FTOS places the port in the Error-Disable state. This behavior might result in the network not converging.
vlan bridge-priority Set the PVST+ bridge-priority for a VLAN or a set of VLANs. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax vlan vlan-range bridge-priority value To return to the default value, use the no vlan bridge-priority command. Parameters vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). The range is 1 to 4094. bridge-priority Enter the keywords bridge-priority followed by the bridge priority value in increments of 4096. The range is 0 to 61440.
forward-delay seconds Enter the keywords forward-delay followed by the time interval, in seconds, that FTOS waits before transitioning PVST+ to the forwarding state. The range is 4 to 30 seconds. The default is 15 seconds. Defaults 15 seconds Command Modes CONFIGURATION (conf-pvst) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
Related Commands Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced. vlan bridge-priority – sets the bridge-priority value. vlan forward-delay – changes the time interval before FTOS transitions to the forwarding state. vlan max-age – changes the time interval before PVST+ refreshes. show spanning-tree pvst – displays the PVST+ configuration.
Quality of Service (QoS) 42 The Dell Force10 operating software (FTOS) commands for quality of service (QoS) include traffic conditioning and congestion control. QoS commands are supported on the C-Series, E-Series, S-Series, Z-Series, and S4810 Dell Force10 platforms. This chapter contains the following sections: • Global Configuration Commands • Per-Port QoS Commands • Policy-Based QoS Commands Global Configuration Commands There is only one global configuration QoS command.
Per-Port QoS Commands Per-port QoS (port-based QoS) allows you to define the QoS configuration on a per-physical-port basis. dot1p-priority Assign a value to the IEEE 802.1p bits on the traffic received by this interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax dot1p-priority priority-value To delete the IEEE 802.1p configuration on the interface, use the no dot1p-priority command. Parameters priority-value Enter a value from 0 to 7.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. The dot1p-priority command changes the priority of incoming traffic on the interface. The system places traffic marked with a priority in the correct queue and processes that traffic according to its queue.
pre-Version 6.1.1.1 Usage Information Introduced on the E-Series. NOTE: Per Port rate limit and rate police is supported for Layer 2 tagged and untagged switched traffic and for Layer 3 traffic. Per VLAN rate limit and rate police is supported on only tagged ports with Layer 2 switched traffic. On one interface, you can configure the rate limit or rate police command for a VLAN or you can configure the rate limit or the rate police command for the interface.
Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Added the kbps option on the C-Series, E-Series, and S-Series. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. Usage Information NOTE: Per Port rate limit and rate police is supported for Layer 2 tagged and untagged switched traffic and for Layer 3 traffic.
burst-KB (OPTIONAL) Enter the burst size in KB. The range is 0 to 10000. The default is 10. Defaults Granularity for rate is Mbps unless you use the kbps option. Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Added the kbps option on the C-Series, E-Series, and S-Series. Version 7.6.1.0 Introduced on the S-Series and C-Series. pre-Version 6.1.1.1 Introduced on the E-Series.
service-class dot1p-mapping Configure a service-class criterion based on a dot1p value. S4810 Syntax Parameters Defaults Command Modes Command History service-class dot1p-mapping {dot1p0 value | dot1p1 value | dot1p2 value | dot1p3 value | dot1p4 value| dot1p5 value | dot1p6 value | dot1p7 value} dot1p0 value ... dot1p7 value Enter a dot1p list number and value. The list number range is 0 to 7. The range is 0 to 3.
Command Modes Command History Usage Information dot1p E-Series Queue ID C-Series Queue ID S-Series Queue ID 3 3 1 1 4 4 2 2 5 5 2 3 6 6 3 3 7 7 3 3 • INTERFACE • CONFIGURATION (C-Series and S-Series only) Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Added the kbps option on the C-Series, E-Series, and S-Series. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.5.1.
show interfaces rate Display information of either rate limiting or rate policing on the interface. E-Series Syntax Parameters Command Modes Command History Usage Information show interfaces [interface] rate [limit | police] interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Field Description Traffic monitor 1 Traffic coming to class 1. Traffic monitor 2 Traffic coming to class 2. Traffic monitor 3 Traffic coming to class 3. Traffic monitor 4 Traffic coming to class 4. Traffic monitor 5 Traffic coming to class 5. Traffic monitor 6 Traffic coming to class 6. Traffic monitor 7 Traffic coming to class 7. Total: yellow Total number of packets that have exceeded the configured committed rate.
Example (Rate Police) Field Description Traffic monitor 1 Traffic coming to class 1. Traffic monitor 2 Traffic coming to class 2. Traffic monitor 3 Traffic coming to class 3. Traffic monitor 4 Traffic coming to class 4. Traffic monitor 5 Traffic coming to class 5. Traffic monitor 6 Traffic coming to class 6. Traffic monitor 7 Traffic coming to class 7. Total: yellow Total number of packets that have exceeded the configured committed rate.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. After you configure a unicast queue as strict-priority, that particular queue, on the entire chassis, is treated as a strict-priority queue. Traffic for a strict priority is scheduled before any other queues are serviced.
Related Commands qos-policy-output – creates a QoS output policy. bandwidth-weight Assign a priority weight to a queue. C-Series, S-Series Syntax bandwidth-weight weight To remove the bandwidth weight, use the no bandwidth-weight command. Parameters weight Enter the weight assignment to queue. The range is 1 to 1024 (in increments of powers of 2: 2, 4, 8, 16, 32, 64, 128, 256, 512, or 1024).
must meet at least one of the match criteria in order to be considered a member of the class. class-map-name Enter a name of the class for the class map in a character format (32 character maximum). layer2 Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3. Defaults Layer 3 Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Class-map names can be 32 characters.
Parameters Defaults Command Modes Command History Usage Information interface-name Enter one of the following keywords: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.
Defaults none Command Modes CONFIGURATION (policy-map-input and policy-map-output; conf-qos-policy-in and conf-qospolicy-out; wred) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. pre-Version 7.7.1.0 Introduced. policy-map-input – creates an input policy map. policy-map-output – creates an output policy map. qos-policy-input – creates an input QoS-policy on the router.
pre-Version 6.1.1.1 Introduced on the E-Series. Usage Information You must enter the class-map command in order to access this command. After the class map is identified, you can configure the match criteria. For class-map match-any, a maximum of five ACL match criteria are allowed. For class-map match-all, only one ACL match criteria is allowed. Related Commands class-map – identifies the class map. match ip dscp Use a differentiated services code point (DSCP) value as a match criteria.
Usage Information You must enter the class-map command in order to access this command. After the class map is identified, you can configure the match criteria. The match ip dscp and match ip precedence commands are mutually exclusive. Up to 64 IP DSCP values can be matched in one match statement. For example, to indicate IP DCSP values 0 1 2 3 4 5 6 7, enter either the match ip dscp 0,1,2,3,4,5,6,7 or match ip dscp 0-7 command.
Usage Information Version 7.5.1.0 Added support for the DSCP Marking option. pre-Version 6.1.1.1 Introduced on the E-Series. You must enter the class-map command in order to access this command. After the class map is identified, you can configure the match criteria. The match ip precedence command and the match ip dscp command are mutually exclusive. Up to eight precedence values can be matched in one match statement.
match mac dot1p Configure a match criterion for a class map based on a dot1p value. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters match mac dot1p {dot1p-list} dot1p-list Defaults none Command Modes CLASS-MAP Command History Enter a dot1p value. The range is 0 to 7. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Available on the C-Series and S-Series. Version 7.5.1.0 Added support for the DSCP Marking option.
Usage Information You must enter the class-map command in order to access this command. You can match against only one VLAN ID. Related Commands class-map – identifies the class map. policy-aggregate Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface.
1. If only an aggregate input QoS policy exists, input traffic conditioning configurations (rate-police) apply. Any marking configurations in the aggregate input QoS policy are ignored. 2. If an aggregate input QoS policy and a per-class input QoS policy coexist, the aggregate input QoS policy preempts the per-class input QoS policy on input traffic conditioning (rate-police).
pre-Version 6.1.1.1 Introduced on the E-Series. Usage Information The input policy map is used to classify incoming traffic to different flows using class-map, QoS policy, or incoming packets DSCP. This command enables Policy-Map-Input Configuration mode (conf-policy-map-in). Related Commands service-queue – assigns a class map and QoS policy to different queues. policy-aggregate – allows an aggregate method of configuring per-port QoS using policy maps.
qos-policy-input Create a QoS input policy on the router. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax qos-policy-input qos-policy-name [layer2] To remove an existing input QoS policy from the router, use the no qos-policy-input qos-policy-name [layer2] command. Parameters qos-policy-name Enter the name for the policy map in character format (32 characters maximum). layer2 (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3.
qos-policy-output Create a QoS output policy. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax qos-policy-output qos-policy-name To remove an existing output QoS policy, use the no qos-policy-output qospolicy-name command. Parameters qos-policy-name Defaults none Command Modes CONFIGURATION Command History Usage Information Enter your output QoS policy name in character format (32 characters maximum). Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
Defaults none Command Modes CONFIGURATION Command History Version 7.7.1.0 Introduced on the E-Series. queue egress Assign a WRED Curve to all eight egress Multicast queues or designate the percentage for the Multicast bandwidth queue.
Related Commands • A unique multicast weighted fair queuing (WFQ) setting can be applied only on a per port-pipe basis. The minimum percentage of the multicast bandwidth assigned to any of the ports in the port-pipe takes effect for the entire port-pipe. • If the percentage of multicast bandwidth is 0, control traffic going through multicast queues are dropped. • The no form of the command without multicast-bandwidth and wredprofile, removes both the wred-profile and multicast-bandwidth configuration.
Version 7.4.1.0 and 6.5.3.0 Usage Information Introduced on the E-Series. This command does not uniquely identify a queue, but rather identifies only a set of queues. The WRED Curve is applied to all eight ingress Multicast queues. NOTE: The multicast-bandwidth option is not supported on queue ingress. If you attempt to use the multicast-bandwidth option, the following reject error message is generated: % Error:Bandwidth-percent is not allowed for ingress multicast.
Related Commands rate limit – specifies the rate-limit functionality on the selected interface. qos-policy-output – creates a QoS output policy. rate-police Specify the policing functionality on incoming traffic. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters rate-police [kbps] committed-rate [burst-KB] [peak [kbps] peakrate [burst-KB]] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps).
rate-shape Shape traffic output as part of the designated policy. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters rate-shape [kbps] rate [burst-KB] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). On C-Series and S-Series, make the following value a multiple of 64. The range is 0 to 10000000. The default granularity is Megabits per second (Mbps). rate Enter the outgoing rate in multiples of 10 Mbps. The range is 10 to 10000.
service-policy input Apply an input policy map to the selected interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax service-policy input policy-map-name [layer2] To remove the input policy map from the interface, use the no service-policy input policy-map-name [layer2] command. Parameters policy-map-name Enter the name for the policy map in character format (16 characters maximum). You can identify an existing policy map or name one that does not yet exist.
service-policy output Apply an output policy map to the selected interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax service-policy output policy-map-name To remove the output policy map from the interface, use the no service-policy output policy-map-name command. Parameters policy-map-name Defaults none Command Modes INTERFACE Command History Enter the name for the policy map in character format (16 characters maximum).
NOTE: This option is available under policy-map-input only. qos-policy qos- policy-name (OPTIONAL) Enter the keywords qos-policy followed by the QoS policy name assigned to the queue in text format (16 characters maximum). This specifies the input QoS policy assigned to the queue under policy-map-input and output QoS policy under policy-map-output context. Defaults none Command Modes CONFIGURATION (conf-policy-map-in and conf-policy-map-out) Command History Version 8.3.11.1 Introduced on the Z9000.
Usage Information Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Added mac-dot1p on the C-Series and S-Series. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 E-Series Only: Added support for mac-dot1p. pre-Version 6.1.1.1 Introduced on the E-Series. C-Series and S-Series After the IP DSCP bit is set, other QoS services can then operate on the bit settings.
Defaults none Command Modes EXEC Command History Version 7.4.1.0 Introduced on the E-Series. Example (Interface) FTOS#show cam layer2-qos interface gigabitethernet 2/0 Example (Linecard) FTOS#show cam layer2-qos linecard 2 port-set 0 Cam Port Dot1p Proto SrcMac SrcMask DstMac DstMask Dot1p DSCP Queue Index Marking Marking -----------------------------------------------01817 0 - 0 00:00:00:00:cc:cc...00:00:00:00:dd:dd 00:00:00:00:ff:ff - - 7 01818 0 - 0 00:00:00:00:00:c0...
port-set number Enter the keywords port-set followed by the line card’s port pipe. The range is 0 or 1. interface Enter the keyword interface followed by one of the keywords below and slot/port or number information: interface summary Defaults none Command Modes EXEC Command History Usage Information Example (Interface) Example (Linecard) 1352 • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
Example (Without Trust) Example (Summary) FTOS#sh cam layer3-qos interface gigabitethernet 2/1 Cam Port Dscp Proto Tcp Src Dst SrcIp DstIp DSCP Queue Index Flag Port Port Marking -------------------------------------------------------------23488 1 56 0 0x0 0 0 0.0.0.0/0 0.0.0.0/0 - 7 23489 1 48 0 0x0 0 0 0.0.0.0/0 0.0.0.0/0 - 6 23490 1 40 0 0x0 0 0 0.0.0.0/0 0.0.0.0/0 - 5 23491 1 0 IP 0x0 0 0 10.1.1.1/32 20.1.1.1/32 - 0 23492 1 0 IP 0x0 0 0 10.1.1.1/32 20.1.1.2/32 - 0 24511 1 0 0 0x0 0 0 0.0.0.0/0 0.0.0.
show qos dot1p-queue-mapping Displays the dot1p priority to queue mapping on the switch. S4810 Syntax show qos dot1p-queue-mapping Defaults Command Modes Command History Related Commands • dot1p Priority: 0 1 2 3 4 5 6 7 • Queue: 0 0 0 1 2 3 3 3 EXEC Privilege Version 8.3.12.0 Introduced on the S4810. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module. service-class dot1p-mapping – Identifies the class map. show qos policy-map View the QoS policy map information.
Defaults Command Modes Command History Example (IPv4) • For a SONET interface, enter the keyword sonet followed by the slot/ port information. • For a Ten Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.
Example (Summary IPv4) FTOS#sho qos policy-map summary Interface policy-map-input policy-map-output Gi 4/1 PM1 Gi 4/2 PM2 PMOut FTOS# show qos policy-map-input View the input QoS policy map details. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show qos policy-map-input [policy-map-name] [class class-mapname] [qos-policy-input qos-policy-name] policy-map-name Enter the policy map name. class class-mapname Enter the keyword class followed by the class map name.
0 1 2 3 4 5 6 7 FTOS# c0 c1 c2 c3 c4 c5 c6 c7 q0 q1 q2 q3 q4 q6 q7 show qos policy-map-output View the output QoS policy map details. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show qos policy-map-output [policy-map-name] [qos-policy-output qos-policy-name] policy-map-name Enter the policy map name. qos-policy-output Enter the keyword qos-policy-output followed by the QoS policy name.
show qos qos-policy-input View the input QoS policy details. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History Example show qos qos-policy-input [qos-policy-name] qos-policy-name Enter the QoS policy name. none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.
Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. pre-Version 6.1.1.1 Introduced on the E-Series. FTOS#show qos qos-policy-output Qos-policy-output qosOut Rate-limit 50 50 peak 50 50 Wred yellow 1 Wred green 1 show qos statistics View QoS statistics.
Defaults Command Modes Command History Usage Information none • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.1 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.1 Introduced on the E-Series. You can use the show qos statistics command on the C-Series, but the keyword wred-profile must be omitted in the syntax.
6 7 Usage Information 0 0 0 0 0 0 The following describes the show qos statistics command Example below. Field (ED and EE) Description Queue # Queue Number Queued Bytes Snapshot of the byte count in that queue. Matched Pkts The number of packets that matched the class-map criteria. NOTE: When you configure trust, matched packet counters are not incremented in this field. Matched Bytes The number of bytes that matched the class-map criteria.
Usage Information Field (EF) Description Dropped Pkts The total of the number of packets dropped for green, yellow and out-of-profile. The following describes the show qos statistics command Example below. Field (EF) Description Queue # Queue Number Queued Bytes Snapshot of the byte count in that queue. Queued Pkts Cumulative packet count in that queue. Matched Pkts The number of packets that matched the class-map criteria.
Usage Information Related Commands The following describes the show qos statistics command Example below. Field (ED, EE, EF) Description Queue # Queue Number Drop-statistic Drop statistics for green, yellow, and out-of-profile packets. WRED-name WRED profile name. Dropped Pkts The number of packets dropped for green, yellow, and out-of-profile. clear qos statistics – clears counters shown in show qos statistics. show qos wred-profile View the WRED profile details.
test cam-usage Check the Input Policy Map configuration for the CAM usage. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters test cam-usage service-policy input policy-map linecard {[number port-set portpipe number] | [all]} policy-map Enter the policy map name. linecard number (OPTIONAL) Enter the keyword linecard followed by the line card slot number. port-set portpipe number Enter the keywords port-set followed by the line card’s port pipe number. The range is 0 or 1.
Field Description NOTE: The CAM entries reserved for the default rules are not included in the Available CAM column; free entries, from the default rules space, can not be used as a policy map for the classification rules. Estimated CAM per Port Indicates the number of free CAM entries required (for the classification rules) to apply the input policy map on a single interface.
To remove the threshold values, use the no threshold min number max number command. Parameters min number Enter the keyword min followed by the minimum threshold number for the WRED profile. The range is 1024 to 77824 KB. max number Enter the keyword max followed by the maximum threshold number for the WRED profile. The range is 1024 to 77824 KB. Defaults none Command Modes CONFIGURATION (config-wred) Command History Usage Information Related Commands Version 8.3.11.1 Introduced on the Z9000.
ipv6-diffserv On E-Series only, enter the keyword ipv6-diffserv to specify trust configuration of IPv6 DSCP. Defaults none Command Modes CONFIGURATION (conf-policy-map-in) Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Added fallback to the E-Series. Version 8.2.1.0 Added dot1p to the C-Series and S-Series. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
wred Designate the WRED profile to yellow or green traffic. E-Series, Z-Series, S4810 Syntax wred {yellow | green} profile-name To remove the WRED drop precedence, use the no wred {yellow | green} [profile-name] command. Parameters yellow | green Enter the keyword yellow for yellow traffic. A DSCP value of xxx110 and xxx100 maps to yellow. Enter the keyword green for green traffic. A DSCP value of xxx010 maps to green.
Command Modes Command History Usage Information CONFIGURATION (conf-qos-policy-out) Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. When you enable wred-ecn, and the number of packets in the queue is below the minimum threshold, packets are transmitted per the usual WRED treatment.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. pre-Version 6.1.1.1 Introduced on the .E-Series Usage Information Use the default pre-defined profiles or configure your own profile. You cannot delete the predefined profiles or their default values. This command enables WRED configuration mode— (conf-wred). Related Commands threshold – specifies the minimum and maximum threshold values of the WRED profile.
Routing Information Protocol (RIP) 43 Routing information protocol (RIP) is a distance vector routing protocol. The Dell Force10 operating software (FTOS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2) on the C-Series, E-Series, S-Series, Z-Series, or S4810 platforms. NOTE: The C-Series platform supports RIP with FTOS version 7.6.1.0 and later. The S-Series platform supports RIP with FTOS version 7.8.1.0 and later. Prior to 7.6.1.0, only the E-Series platform supported RIP.
clear ip rip Update all the RIP routes in the FTOS routing table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax clear ip rip Command Modes EXEC Privilege Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. This command triggers updates of the main RIP routing tables.
• For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. NOTE: This option is available only on E-Series when entered as a standalone option. It is available on both C-Series and E-Series as a sub-option. database (OPTIONAL) Enter the keyword database to display messages when there is a change to the RIP database. events (OPTIONAL) Enter the keyword events to debug only RIP protocol changes. packet (OPTIONAL) Enter the keyword events to debug only RIP protocol packets.
metric metric- value route-map map- name Defaults Disabled. Metric: 1. Command Modes ROUTER RIP Command History Usage Information (OPTIONAL) Enter the keyword metric followed by a number as the metric value. The range is 1 to 16. The default is 1. (OPTIONAL) Enter the keywords route-map followed by the name of a configured route-map. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.
Usage Information This command ensures that route information being redistributed is converted to the same metric value. Related Commands redistribute – allows you to redistribute routes learned by other methods. description Enter a description of the RIP routing protocol. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax description {description} To remove the description, use the no description {description} command.
Parameters weight Enter a number from 1 to 255 for the weight (for prioritization). The default is 120. ip-address (OPTIONAL) Enter the IP address, in dotted decimal format (A.B.C.D), of the host or network to receive the new distance metric. mask If you enter an IP address, you must also enter a mask for that IP address, in either dotted decimal format or /prefix format (/x). prefix-name (OPTIONAL) Enter a configured prefix list name.
Defaults Not configured. Command Modes ROUTER RIP Command History Related Commands • For a SONET interface, enter the keyword sonet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN, enter the keyword vlan followed by a number from 1 to 4094. Version 8.3.11.
Series, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. • For a SONET interface, enter the keyword sonet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For a VLAN, enter the keyword vlan followed by a number from 1 to 4094.
ip poison-reverse Set the prefix of the RIP routing updates to the RIP infinity value. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip poison-reverse To disable poison reverse, use the no ip poison-reverse command. Defaults Disabled. Command Modes INTERFACE Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.
Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. Usage Information If you want the interface to receive both versions of RIP, use the ip rip receive version 1 2 command. Related Commands ip rip send version – sets the RIP version to be used for sending RIP traffic on an interface. version – sets the RIP version to be used for the switch software.
ip split-horizon Enable split-horizon for RIP data on the interface. As described in RFC 2453, the split-horizon scheme prevents any routes learned over a specific interface to be sent back out that interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip split-horizon To disable split-horizon, use the no ip split-horizon command. Defaults Enabled Command Modes INTERFACE Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
Usage Information Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. RIP supports a maximum of 16 ECMP paths. neighbor Define a neighbor router with which to exchange RIP information. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax neighbor ip-address To delete a neighbor setting, use the no neighbor ip-address command. Parameters ip-address Defaults Not configured.
network Enable RIP for a specified network. Use this command to enable RIP on all networks connected to the switch. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax network ip-address To disable RIP for a network, use the no network ip-address command. Parameters ip-address Specify an IP network address in dotted decimal format. You cannot specify a subnet. Defaults No RIP network is configured. Command Modes ROUTER RIP Command History Usage Information Version 8.3.11.
interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. For a SONET interface, enter the keyword sonet followed by the slot/port information.
Parameters delay Defaults Not configured. Command Modes ROUTER RIP Command History Usage Information Specify a number of milliseconds as the delay interval. The range is 8 to 50. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. This command is intended for low-speed interfaces.
Defaults Not configured. Command Modes ROUTER RIP Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
pre-Version 6.2.1.1 Introduced on the E-Series. Usage Information To redistribute the default route (0.0.0.0/0), configure the default-information originate command. Related Commands default-information originate – generates a default route for RIP traffic. redistribute isis Redistribute routing information from an IS-IS instance.
redistribute ospf Redistribute routing information from an OSPF process. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] To disable redistribution, use the no redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] command. Parameters process-id Enter a number that corresponds to the OSPF process ID to be redistributed.
router rip Enter ROUTER RIP mode to configure and enable RIP. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax router rip To disable RIP, use the no router rip command. Defaults Disabled. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
pre-Version 6.2.1.1 Example Introduced on the E-Series. FTOS(conf-router_rip)#show config ! router rip network 172.31.0.0 passive-interface GigabitEthernet 0/1 FTOS(conf-router_rip)# show ip rip database Display the routes that RIP learns. If the switch learned no RIP routes, no output is generated.
Example Field Description 150.100.0.0 redistributed Lists the routes learned through redistribution. 209.9.16.0/24... Lists the routes and the sources advertising those routes. FTOS#show ip rip database Total number of routes in RIP database: 1624 204.250.54.0/24 [50/1] via 192.14.1.3, 00:00:12, GigabitEthernet 9/15 204.250.54.0/24 auto-summary 203.250.49.0/24 [50/1] via 192.13.1.3, 00:00:12, GigabitEthernet 9/14 203.250.49.0/24 auto-summary 210.250.40.0/24 [50/2] via 1.1.18.
distribute-list Test1 in distribute-list Test21 out network 10.0.0.0 passive-interface GigabitEthernet 2/0 neighbor 20.20.20.20 redistribute ospf 999 version 2 timers basic Manipulate the RIP timers for routing updates, invalid, holddown times, and flush time. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax timers basic update invalid holddown flush To return to the default settings, use the no timers basic command.
Usage Information Version 7.8.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. If you change the timers on one router, the timers on all routers in the RIP domain must also be synchronized. version Specify either RIP version 1 or RIP version 2. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax version {1 | 2} To return to the default version setting, use the no version command.
Remote Monitoring (RMON) 44 The Dell Force10 operating software (FTOS) remote monitoring (RMON) is implemented on the C-Series, E-Series, SSeries, Z-Series, or S4810 platforms. FTOS RMON is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection.
variable Enter the MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3. The object type must be a 32 bit integer. interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON alarm table. The range is 5 to 3600 seconds. delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table. absolute Enter the keyword absolute to test each MIB variable directly.
rmon collection history Enable the RMON MIB history group of statistics collection on an interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax rmon collection history {controlEntry integer} [owner name] [buckets number] [interval seconds] To remove a specified RMON history group of statistics collection, use the no rmon collection history {controlEntry integer} command. Parameters controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value.
To remove RMON MIB statistics collection on an interface, use the no rmon collection statistics {controlEntry integer} command. Parameters controlEntry integer owner name Enter the keyword controlEntry to specify the RMON group of statistics using a value. Then enter an integer value from 1 to 65535 that identifies the RMON Statistic Table. The integer value must be a unique in the RMON statistic table.
owner name Defaults As noted above. Command Modes CONFIGURATION Command History (OPTIONAL) Enter the keyword owner followed by the name of the owner of this event. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.1.1.0 Introduced on the E-Series. rmon hc-alarm Set an alarm on any MIB object.
falling-threshold value eventnumber owner string Defaults owner Command Modes CONFIGURATION Command History Enter the keywords falling-threshold followed by the value (64 bit) the falling-threshold alarm is either triggered or reset. Then enter the event-number to trigger when the falling threshold exceeds its limit. This value is the same as the alarmFallingEventIndex or the alarmTable of the RMON MIB. If there is no corresponding fallingthreshold event, the value is zero.
high-capacity alarm table: 5 entries, 1680 bytes event table: 500 entries, 206000 bytes log table: 2 entries, 552 bytes FTOS# show rmon alarms Display the contents of the RMON alarm table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show rmon alarms [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON alarm table in an easy-to-read format.
7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 FTOS# 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table.
Example (Brief) FTOS#show rmon event br index description -----------------------------1 1 2 2 3 3 4 4 5 5 6 6 7 7 8 8 9 9 10 10 11 11 12 12 13 13 14 14 15 15 16 16 17 17 18 18 19 19 20 20 21 21 22 22 FTOS# show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show rmon hc-alarm [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry.
Example (Index) FTOS#show rmon hc-alarm 1 RMON high-capacity alarm entry 1 object: 1.3.6.1.2.1.1.3 sample interval: 5 sample type: absolute value. value: 185638 alarm type: rising or falling alarm. alarm rising threshold value: positive. rising threshold: 1001, RMON event index: 1 alarm falling threshold value: positive. falling threshold: 999, RMON event index: 6 alarm sampling failed 0 times. alarm owner: 1 alarm storage type: non-volatile.
Example (Index) FTOS#show rmon history 6001 RMON history control entry 6001 interface: ifIndex.
Example (Index) FTOS#show rmon log 2 RMON log entry, alarm table index 2, log index 1 log time: 14638 (THU AUG 12 22:10:40 2004) description: 2 FTOS# Example (Brief) FTOS#show rmon log br eventIndex description -----------------------------2 2 4 4 FTOS# show rmon statistics Display the contents of RMON Ethernet statistics table.
collision: 0 64bytes packets: 0 65-127 bytes packets: 0 128-255 bytes packets: 0 256-511 bytes packets: 0 512-1023 bytes packets: 0 1024-1518 bytes packets: 0 owner: 1 status: OK HC packets received overflow: 0 HC packets received: 0 HC bytes received overflow: 0 HC bytes received: 0 HC 64bytes packets overflow: 0 HC 64bytes packets: 0 HC 65-127 bytes packets overflow: 0 HC 65-127 bytes packets: 0 HC 128-255 bytes packets overflow: 0 HC 128-255 bytes packets: 0 HC 256-511 bytes packets
Rapid Spanning Tree Protocol (RSTP) 45 The Dell Force10 operating software (FTOS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges. RSTP is supported by FTOS on the C-Series, E-Series, S-Series, Z-Series, or S4810 platforms. bridge-priority Set the bridge priority for RSTP.
debug spanning-tree rstp Enable debugging of RSTP and view information on the protocol. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax debug spanning-tree rstp [all | bpdu interface {in | out} | events] To disable debugging, use the no debug spanning-tree rstp command. Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug the bridge protocol data units.
Example Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. FTOS#debug spanning-tree rstp bpdu gigabitethernet 2/0 ? in Receive (in) out Transmit (out) description Enter a description of the rapid spanning tree. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax description {description} To remove the description, use the no description {description} command.
Defaults RSTP is disabled. Command Modes CONFIGURATION RSTP (conf-rstp) Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. protocol spanning-tree rstp – enters SPANNING TREE mode on the switch.
hello-time Set the time interval between the generation of the RSTP bridge protocol data units (BPDUs). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax hello-time [milli-second] seconds To return to the default value, use the no hello-time command. Parameters seconds Enter a number as the time interval between transmission of BPDUs. The range is 1 to 10 seconds. The default is 2 seconds. milli-second Enter the keywords milli-second to configure a hello time on the order of milliseconds.
max-age Set the time interval for the RSTP bridge to maintain configuration information before refreshing that information. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax max-age seconds To return to the default values, use the no max-age command. Parameters max-age Enter a number of seconds the FTOS waits before refreshing configuration information. The range is 6 to 40 seconds. The default is 20 seconds.
Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. Usage Information RSTP is not enabled when you enter RSTP mode. To enable RSTP globally on the system, use the no disable command from RSTP mode. Example FTOS(conf)#protocol spanning-tree rstp FTOS(config-rstp)##no disable Related Commands disable – disables RSTP globally on the system. show config View the current configuration for the mode. Only non-default values are displayed.
Parameters brief (OPTIONAL) Enter the keyword brief to view a synopsis of the RSTP configuration information. guard (OPTIONAL) Enter the keyword guard to display the type of guard enabled on an RSTP interface and the current port state. Command Modes Command History Usage Information Example (Brief) • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.4.2.1 Added support for the optional guard keyword on the C-Series, SSeries, and E-Series TeraScale. Version 8.3.7.
Gi 4/0 Gi 4/1 Gi 4/8 Gi 4/9 FTOS# Example (EDS, LBK) Desg Desg Root Altr 128.418 128.419 128.426 128.427 128 128 128 128 20000 20000 20000 20000 FWD FWD FWD BLK 20000 20000 20000 20000 P2P P2P P2P P2P Yes Yes No No NOTE: “LBK_INC” (bold below) means Loopback BPDU Inconsistency. FTOS#show spanning-tree rstp br Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 0001.
spanning-tree rstp Configure an RSTP interface with one of these settings: port cost, edge port with optional bridge port data unit (BPDU) guard, port priority, loop guard, or root guard. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters spanning-tree rstp {cost port-cost | edge-port [bpduguard [shutdown-on-violation]] | priority priority | {loopguard | rootguard}} cost port-cost Enter the keyword cost followed by the port cost value. The range is 1 to 200000.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.4.2.1 Added support for the optional guard keyword on the C-Series, SSeries, and E-Series TeraScale. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced the hardware shutdown-on-violation options. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 7.4.1.0 Added the optional bridge port data unit (BPDU) guard. Version 6.2.1.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled Command Modes CONFIGURATION Command History Usage Information 1420 Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.5.1.
Software-Defined Networking (SDN) 46 Dell Networking operating software (FTOS) supports Software-Defined Networking (SDN). For more information, refer to the SDN Deployment Guide.
47 Security Except for the Trace List feature (E-Series only), most of the commands in this chapter are available on the C-Series, ESeries, S-Series, Z-Series, or S4810 platforms. This chapter contains various types of security commands offered in the Dell Force10 operating software (FTOS).
Parameters system Enter the keyword system to send accounting information of any other AAA configuration. exec Enter the keyword exec to send accounting information when a user has logged in to EXEC mode. commands level Enter the keyword command followed by a privilege level for accounting of commands executed at that privilege level. name | default Enter one of the following: • For default, the default accounting methods is used.
Related Commands enable password – changes the password for the enable command. login authentication – enables AAA login authentication on the terminal lines. password – creates a password. tacacs-server host – specifies a TACACS+ server host. aaa accounting suppress Prevent the generation of accounting records of users with the user name value of NULL.
Defaults none Command Modes LINE Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.3.1.0 Introduced on the E-Series. aaa accounting – enables AAA Accounting and creates a record for monitoring the accounting function. show accounting Display the active accounting sessions for each online user.
Authorization and Privilege Commands Use the following commands to set the command line authorization and privilege levels. authorization Apply an authorization method list to terminal lines. C-Series, E-Series, S-Series, S4810 Syntax Parameters authorization {exec | commands level} method-list exec Enter the keyword exec to apply an EXEC level accounting method list. commands level Enter the keywords commands level to apply an EXEC and CONFIGURATION level accounting method list.
name Define a name for the list of authorization methods. default Define the default list of authorization methods. local Use the authorization parameters on the system to perform authorization. tacacs+ Use the TACACS+ protocol to perform authorization. none Enter the keyword none to apply no authorization. Defaults none Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.
aaa authorization exec Set parameters that restrict (or permit) a user’s access to EXEC-level commands. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax aaa authorization exec {name | default} {local || tacacs+ || if-authenticated || none} To disable authorization checking for EXEC level commands, use the no aaa authorization exec command. Parameters name Define a name for the list of authorization methods. default Define the default list of authorization methods.
level level • line for LINE mode • route-map for ROUTE-MAP mode • router for ROUTER OSPF, ROUTER RIP, ROUTER ISIS and ROUTER BGP modes Enter the keyword level followed by a number for the access level. The range is 0 to 15. Level 1 is EXEC mode and Level 15 allows access to all CLI modes and commands. reset Enter the keyword reset to return the security level to the default setting. command Enter the command’s keywords to assign the command to a certain access level.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. Authentication and Password Commands Use the following the commands to manage access to the system aaa authentication enable Configure AAA Authentication method lists for user access to EXEC privilege mode (the “Enable” access).
Defaults Use the enable password. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. Version 6.2.1.0 Introduced on the E-Series. By default, the Enable password is used. If you configure aaa authentication enable default, FTOS uses the methods defined for Enable access instead.
... method4 • none - no authentication. • radius - use the RADIUS server(s) configured with the radius-server host command. • tacacs+ - use the TACACS+ server(s) configured with the tacacs-server host command. (OPTIONAL) Enter up to four additional methods. In the event of a “no response” from the first method, FTOS applies the next configured method (up to four configured methods). Defaults Not configured (that is, no authentication is performed).
access-class Restrict incoming connections to a particular IP address in a defined IP access control list (ACL). C-Series, E-Series, S-Series, Z-Series, S4810 Syntax access-class access-list-name To delete a setting, use the no access-class command. Parameters access-list-name Defaults Not configured. Command Modes LINE Command History Related Commands Enter the name of an established IP Standard ACL. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
Use this parameter only with a password that you copied from the show running-config file of another Dell Force10 router. password Enter a text string, up to 32 characters long, as the clear text password. Defaults No password is configured. level = 15. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
Use this parameter only with a password that you copied from the show running-config file of another Dell Force10 router. password Defaults Command History Usage Information Enter a text string, up to 32 characters long, as the clear text password. Not configured. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
Usage Information Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. Use this command to define a password for a level and use the privilege level (CONFIGURATION mode) command to control access to command modes. Passwords must meet the following criteria: • Start with a letter, not a number. • Passwords can have a regular expression as the password.
Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.0 Introduced on the E-Series. Usage Information If you configure the aaa authentication login default command, the login authentication default command automatically is applied to all terminal lines. Related Commands aaa authentication login – selects the login authentication methods. password Specify a password for users on terminal lines.
radius-server key – configures a key for all RADIUS communications between the switch and the RADIUS host server. tacacs-server key – configures a key for communication between a TACACS+ server and client. username – establishes an authentication system based on user names. password-attributes Configure the password attributes (strong password).
Related Commands password – specifies a password for users on terminal lines. service password-encryption Encrypt all passwords configured in FTOS. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax service password-encryption To store new passwords as clear text, use the no service password-encryption command. Defaults Enabled. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. Example FTOS#show privilege Current privilege level is 15 FTOS# Related Commands privilege level (CONFIGURATION mode) – assigns access control to different command modes. show users Allows you to view information on all users logged into the switch.
Example Related Commands FTOS#show user Line User 0 console 0 admin * 3 vty 1 admin FTOS# Host(s) Location idle idle 172.31.1.4 username – enables a user. timeout login response Specify how long the software waits for the login input (for example, the user name and password) before timing out. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax timeout login response seconds To return to the default values, use the no timeout login response command. Parameters seconds Defaults See above.
username Establish an authentication system based on user names. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax username name [access-class access-list-name] [nopassword | {password | secret} [encryption-type] password] [privilege level] If you do not want a specific user to enter a password, use the nopassword option. To delete authentication for a user, use the no username name command. Parameters name Enter a text string for the name of the user up to 63 characters.
Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Added support for the secret option and the MD5 password encryption. Extended the name from 25 to 63 characters. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. Usage Information To view the defined user names, use the show running-config user command. Related Commands password – specifies a password for users on terminal lines.
ip radius source-interface Specify an interface’s IP address as the source IP address for RADIUS connections. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip radius source-interface interface To delete a source interface, use the no ip radius source-interface command. Parameters interface Defaults Not configured.
radius-server deadtime Configure a time interval during which non-responsive RADIUS servers to authentication requests are skipped. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax radius-server deadtime seconds To disable this function or return to the default value, use the no radius-server deadtime command. Parameters seconds Defaults 0 seconds Command Modes CONFIGURATION Command History Enter a number of seconds during which non-responsive RADIUS servers are skipped.
timeout seconds (OPTIONAL) Enter the keyword timeout followed by the seconds the time interval the switch waits for a reply from the RADIUS server. This parameter overwrites the radius-server timeout command. The range is 0 to 1000. The default is 5 seconds. key [encryptiontype] key (OPTIONAL) Enter the keyword key followed by an optional encryption-type and a string up to 42 characters long as the authentication key.
radius-server key Configure a key for all RADIUS communications between the switch and the RADIUS host server. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax radius-server key [encryption-type] key To delete a password, use the no radius-server key command. Parameters encryption-type key Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered.
radius-server retransmit Configure the number of times the switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax radius-server retransmit retries To configure zero retransmit attempts, use the no radius-server retransmit command. To return to the default setting, use the radius-server retransmit 3 command.
Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.0 Introduced on the E-Series. radius-server host – configures a RADIUS host. TACACS+ Commands FTOS supports TACACS+ as an alternate method for login authentication. debug tacacs+ View TACACS+ transactions to assist with troubleshooting.
Parameters interface Defaults Not configured. Command Modes CONFIGURATION Command History Enter the following keywords and slot/port or number information: • For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16838.
ipv4-address | ipv6-address Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X) of the TACACS+ server host. port number (OPTIONAL) Enter the keyword port followed by a number as the port to be used by the TACACS+ server. The range is zero (0) to 65535. The default is 49. timeout seconds (OPTIONAL) Enter the keyword timeout followed by the number of seconds the switch waits for a reply from the TACACS+ server. The range is 0 to 1000. The default is 10 seconds.
Parameters encryption-type key Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered. The options are: • 0 is the default and means the key is not encrypted and stored as clear text. • 7 means that the key is encrypted and hidden. Enter a text string, up to 42 characters long, as the clear text password. Leading spaces are ignored. Version 8.3.11.1 Introduced on the Z9000.
• If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is placed in the specified VLAN after authentication. • If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS server assigned VLAN. • If 802.1X is disabled on the port, it is returned to the configured access VLAN. • When the port is in the Force Authorized, Force Unauthorized, or Shutdown state, it is placed in the configured access VLAN. • If an 802.
Related Commands Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series. dot1x authentication (Configuration) – enables dot1x globally. dot1x auth-fail-vlan Configure an authentication failure VLAN for users and devices that fail 802.1X authentication.
dot1x auth-server Configure the authentication server to RADIUS. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax dot1x auth-server radius Defaults none Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series. dot1x guest-vlan Configure a guest VLAN for limited access users or for devices that are not 802.1X capable.
NOTE: The layer 3 portion of guest VLAN and authentication fail VLANs can be created regardless if the VLAN is assigned to an interface or not. After an interface is assigned a guest VLAN (which has an IP address), routing through the guest VLAN is the same as any other traffic. However, the interface may join/leave a VLAN dynamically. Related Commands dot1x auth-fail-vlan – configures a VLAN for authentication failures. dot1x reauthentication – enables periodic re-authentication.
Version 7.4.1.0 Related Commands Introduced on the E-Series. interface range – configures a range of interfaces. dot1x port-control Enable port control on an interface. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters dot1x port-control {force-authorized | auto | forceunauthorized} force-authorized Enter the keywords force-authorized to forcibly authorize a port. auto Enter the keyword auto to authorize a port based on the 802.1X operation result.
Command Modes Command History INTERFACE Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series. dot1x reauthentication Enable periodic re-authentication of the client. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax dot1x reauthentication [interval seconds] To disable periodic re-authentication, use the no dot1x reauthentication command.
Defaults 2 Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series. dot1x server-timeout Configure the amount of time after which exchanges with the server time out. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series and S-Series. Version 7.4.1.0 Introduced on the E-Series. dot1x tx-period Configure the intervals at which EAPOL PDUs are transmitted by the Authenticator PAE. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax dot1x tx-period seconds To return to the default, use the no dot1x tx-period command.
Defaults none Command Modes Command History Example • • EXEC EXEC privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-Series, S-Series, and E-Series. FTOS#show dot1x int Gi 2/32 802.
Parameters rsa Enter the keyword rsa followed by the key size to generate a SSHv2 RSA host keys. The range is 1024 to 2048 if you did not enable FIPS mode; if you enabled FIPS mode, you can only generate a 2048-bit key. The default is 1024. NOTE: You must have a license to access the FIPS mode. For more information, contact your Dell Force10 representative. rsa1 Enter the keyword rsa1 followed by the key size to generate a SSHv1 RSA host keys. The range is 1024 to 2048. The default is 1024.
debug ip ssh Enables collecting SSH debug information. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters client Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server. Defaults Disabled on both client and server.
Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. Usage Information To configure the switch as a SCP server, use the ip ssh server command. Related Commands ip ssh server – enables the SSH and SCP server on the switch. ip ssh authentication-retries Configure the maximum number of attempts that should be used to authenticate a user.
Defaults 10 per minute Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. ip ssh hostbased-authentication Enable hostbased-authentication for the SSHv2 server.
Related Commands ip ssh pub-key-file – public keys of trusted hosts from a file. ip ssh rhostsfile – trusted hosts and users for rhost authentication. ip ssh key-size Configure the size of the server-generated RSA SSHv1 key. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters ip ssh key-size 512-869 512-869 Defaults Key size 768 Command Modes CONFIGURATION Command History Usage Information Enter the key-size number for the server-generated RSA SSHv1 key. The range is 512 to 869.
Usage Information Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. With password authentication enabled, you can authenticate using the local, RADIUS, or TACACS+ password fallback order as configured. ip ssh pub-key-file Specify the file to be used for host-based authentication.
Example FTOS#conf FTOS(conf)# ip ssh pub-key-file flash://knownhosts FTOS(conf)# Related Commands show ip ssh client-pub-keys – displays the client-public keys used for the host-based authentication. ip ssh rhostsfile Specify the rhost file to be used for host-based authorization. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters ip ssh rhostsfile {WORD} WORD Defaults none Command Modes CONFIGURATION Command History Enter the rhost file name for the host-based authentication.
ip ssh rsa-authentication (Config) Enable RSA authentication for the SSHv2 server. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ip ssh rsa-authentication enable To disable RSA authentication, use the no ip ssh rsa-authentication enable command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Command History Enter the keyword enable to enable RSA authentication for the SSHv2 server. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
Command Modes EXEC Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. If you want to log in without being prompted for a password, log in through RSA authentication. To do that, you must first add the SSHv2 RSA public keys to the list of authorized keys.
Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. Usage Information This command enables the SSH server and begins listening on a port. If a port is not specified, listening is on SSH default port 22. Example FTOS# conf FTOS(conf)# ip ssh server port 45 FTOS(conf)# ip ssh server enable FTOS# Related Commands show ip ssh – displays the ssh information.
Usage Information This command is useful if the remote SSH client implements Strict Host Key Checking. You can copy the host key to your list of known hosts.
1 2 Related Commands 3des-cbc 3des-cbc hmac-md5 hmac-md5 10.1.20.48 10.1.20.48 ip ssh server – configures an SSH server. show ip ssh client-pub-keys – displays the client-public keys. show ip ssh client-pub-keys Display the client public keys used in host-based authentication. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax show ip ssh client-pub-keys Defaults none Command Modes EXEC Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
Parameters my-authorizedkeys Defaults none Command Modes EXEC Command History Display the RSA authorized keys. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. Usage Information This command displays the contents of the flash:/ADMIN_DIR/ssh/authorizedkeys.username file.
ipv6-address prefix-length (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. -c encryption cipher Enter the following encryption cipher. (For v2 clients only.): • 3des-cbc: Force ssh to use 3des-cbc encryption cipher. -l username (OPTIONAL) Enter the keyword -l then the user name used in this SSH session.
Usage Information FTOS supports both inbound and outbound SSH sessions using IPv4 or IPv6 addressing. Inbound SSH supports accessing the system through the management interface as well as through a physical Layer 3 interface. Example FTOS#ssh 10.11.8.12 ? -c Encryption cipher to use (for v2 clients only) -l User name option -m HMAC algorithm to use (for v2 clients only) -p SSH server port option (default 22) -v SSH protocol version FTOS#ssh 10.11.8.
ip dhcp relay Enable Option 82. C-Series, S-Series, Z-Series, S4810 Syntax Parameters ip dhcp relay information-option [trust-downstream] trust-downstream Defaults Disabled. Command Modes CONFIGURATION Command History Configure the system to trust Option 82 when it is received from the previous-hop router. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the C-Series and S-Series. ip dhcp snooping Enable DHCP Snooping globally.
ip dhcp snooping binding Create a static entry in the DHCP binding table. C-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History Related Commands [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ip-address interface type slot/port lease number mac address Enter the keyword mac followed by the MAC address of the host to which the server is leasing the IP address.
ip dhcp snooping database Delay writing the binding table for a specified time. C-Series, S-Series, Z-Series, S4810 Syntax ip dhcp snooping database write-delay minutes Parameters minutes Defaults none Command Modes CONFIGURATION Command History The range is 5 to 21600. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the C-Series and S-Series. ip dhcp snooping database renew Renew the binding table.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the C-Series and S-Series. ip dhcp source-address-validation Enable IP Source Guard. C-Series, S-Series, Z-Series, S4810 Syntax [no] ip dhcp source-address-validation Defaults Disabled. Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.
show ip dhcp snooping Display the contents of the DHCP binding table. C-Series, S-Series, Z-Series, S4810 Syntax show ip dhcp snooping binding Defaults none Command Modes Command History Related Commands 1482 • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on the C-Series and S-Series. clear ip dhcp snooping – clears the contents of the DHCP binding table.
Service Provider Bridging 48 Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the FTOS Configuration Guide Service Provider Bridging chapter. This chapter includes command line information (CLI) for the Dell Force10 operating software (FTOS) Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel.
For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. • For a SONET interface, enter the keyword sonet followed by the slot/port information.
e-lmi E-Series ExaScale only: Enter the keyword e-lmi to enable protocol tunneling for the Ethernet local management interface (E-LMI). gmrp E-Series ExaScale only: Enter the keyword gmrp to enable protocol tunneling for the GARP multicast registration protocol (GMRP). gvrp E-Series ExaScale only: Enter the keyword gvrp to enable protocol tunneling for the GARP VLAN registration protocol (GVRP).
protocol-tunnel destination-mac Overwrite the BPDU destination MAC address with a specific value. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters protocol-tunnel destination-mac xstp address stp Change the default destination MAC address used for L2PT to another value. Defaults The default destination MAC is 01:01:e8:00:00:00. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.
Usage Information FTOS must have the default CAM profile with the default microcode before you enable L2PT. protocol-tunnel rate-limit Enable traffic rate limiting per box. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax protocol-tunnel rate-limit rate To reset the rate limit to the default, use the no protocol-tunnel rate-limit rate command. Parameters rate Defaults 75 frames per second.
show protocol-tunnel Display protocol tunnel information for all or a specified VLAN-Stack VLAN. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show protocol-tunnel [vlan vlan-id] vlan vlan-id Defaults none Command Modes EXEC Command History (OPTIONAL) Enter the keyword vlan followed by the VLAN ID to display information for the one VLAN. The range is 1 to 4094. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.
49 sFlow sFlow commands are supported by the Dell Force10 operating software (FTOS) on all Dell Force10 C-Series, E-Series, SSeries, Z-Series, or S4810 platforms. FTOS sFlow monitoring system includes an sFlow Agent and an sFlow Collector. • The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. • The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a networkwide view of traffic flows.
sflow collector Configure a collector device to which sFlow datagrams are forwarded. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax sflow collector {ipv4-address | ipv6-address} agent-addr {ipv4address | ipv6-address} [number [max-datagram-size number]] | [max-datagram-size number] To delete a configured collector, use the no sflow collector {ipv4-address | ipv6-address} agent-addr {ipv4-address | ipv6-address} [number [max-datagram-size number]] | [max-datagram-size number] command.
Usage Information You can configure up to two sFlow collectors (IPv4 or IPv6). If two collectors are configured, traffic samples are sent to both. The sFlow agent address is carried in a field in SFlow packets and is used by the collector to identify the sFlow agent. IPv6 sFlow collectors and agents are supported on E-Series (ExaScale and TeraScale), CSeries, and S-Series routers.
sflow enable (Interface) Enable sFlow on Interfaces. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax sflow enable To disable sFlow, use the no sflow enable command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on S-Series Stacking. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.
extended-switch Enter the keywords extended-switch to collect extended switch information. enable Enter the keyword enable to enable global extended information. Defaults Disabled. Command Modes CONFIGURATION Command History Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced on the E-Series. Usage Information The show sflow command displays the configured global extended information.
enable Defaults Disabled. Command Modes CONFIGURATION Command History Enter the keyword enable to enable global extended information. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.4.1.0 Introduced on the E-Series. Usage Information FTOS 7.8.1.
Usage Information FTOS 7.8.1.0 and later enhances the sflow implementation for real time traffic analysis on the ESeries to provide extended gateway information in cases where the destination IP addresses are learned by different routing protocols and for cases where the destination is reachable over ECMP. Related Commands sflow extended-gateway enable – enables packing information on an extended gateway. sflow extended-router enable – enables packing information on a router.
sflow polling-interval (Interface) Set the sFlow polling interval at an interface (overrides the global-level setting.) C-Series, E-Series, S-Series, Z-Series, S4810 Syntax sflow polling-interval interval value To return to the default, use the no sflow polling-interval interval command. Parameters interval value Enter the interval value in seconds. The range is 15 to 86400 seconds. The default is the global counter polling interval.
Defaults 32768 packets Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on S-Series Stacking. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 7.4.1.0 Introduced on the E-Series. Usage Information Sample-rate is the average number of packets skipped before the sample is taken.
Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. Usage Information This command changes the sampling rate for an Interface. By default, the sampling rate of an interface is set to the same value as the current global default sampling rate.
Version 8.2.1.0 Introduced on S-Series Stacking. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. Usage Information The dropEvent counter (sFlow samples dropped due to sub-sampling) shown in the Example below always displays a value of zero.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on S-Series Stacking. Version 8.1.1.0 Introduced on the E-Series ExaScale. Version 7.7.1.0 Introduced on the S-Series. Version 7.6.1.0 Introduced on the C-Series. Version 6.2.1.1 Introduced on the E-Series. Usage Information The dropEvent counter (sFlow samples dropped due to sub-sampling) shown in the Example below always displays a value of zero.
50 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog. Both features are supported on the following platforms: C-Series, E-Series, S-Series, Z-Series, S4810. The chapter contains the following sections: • SNMP Commands • Syslog Commands SNMP Commands The following SNMP commands are available in the Dell Force10 operating software (FTOS).
show snmp Display the status of SNMP network elements. C-Series, E-Series, S-Series, Z-Series Syntax show snmp Command Modes Command History • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
Command Modes Command History Example • • EXEC EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. FTOS#show snmp engineID Local SNMP engineID: 0000178B02000001E80214A8 Remote Engine ID IP-addr Port 80001F88043132333435 172.31.1.3 5009 80001F88043938373635 172.31.1.
FTOS# Related Commands snmp-server group – configures an SNMP server group. show snmp user Display the information configured on each SNMP user name. C-Series, E-Series, S-Series, Z-Series Syntax Command Modes Command History show snmp user • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
Example Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. unknown Introduced on the E-Series. !----command run on host connected to switch:------! > snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2. This is a port connected to IF-MIB::ifAlias.
access-list-name Defaults none Command Modes CONFIGURATION Command History Usage Information (Optional) Enter a standard IPv4 access list name (a string up to 16 characters long). Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
FTOS(conf)#snmp-server community guest ro snmp-ro-acl FTOS(conf)# Related Commands ip access-list standard – names (or selects) a standard access list to filter based on IP address. ipv6 access-list – configures an access list based on IPv6 addresses or protocols. show running-config snmp – displays the current SNMP configuration and defaults. snmp-server contact Configure contact information for troubleshooting this SNMP node.
• notificationoption config—Notification of changes to the startup or running configuration. • ecfm—Notification of changes to ECFM. • ecmp—Enable an ECMP trap to notify of ECMP or link bumdle traffic imbalances. • envmon—For Dell Force10 device notifications when an environmental threshold is exceeded. • isis—Notification of intermediate service traps. • lacp—Notification of changes. • snmp—Notification of RFC 1157 traps.
Usage Information FTOS supports up to 16 SNMP trap receivers. For the cam-utilization notification option, the system generates syslogs and SNMP traps when the L3 host table or route table utilization goes above the threshold. This applies to the S4810 only. If you do not configure this command, no traps controlled by this command are sent. If you do not specify a notification-type and notification-option, all traps are enabled.
Usage Information Changing the value of the SNMP Engine ID has important side effects. A user's password (entered on the command line) is converted to an message digest algorithm (MD5) or secure hash algorithm (SHA) security digest. This digest is based on both the password and the local Engine ID. The command line password is then destroyed, as required by RFC 2274.
noauth (OPTIONAL) Enter the keyword noauth to specify no authentication of a packet. priv (OPTIONAL) Enter the keyword priv to specify both authentication and then scrambling of the packet. read name (OPTIONAL) Enter the keyword read followed by a name (a string of up to 20 characters long) as the read view name. The default is GlobalView and is assumed to be every object belonging to the Internet (1.3.6.1) OID space.
snmp-server host Configure the recipient of an SNMP trap operation. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax snmp-server host ip-address | ipv6-address [traps | informs] [version 1 | 2c | 3] [auth | no auth | priv] [community-string] [udp-port port-number] [notification-type] To remove the SNMP host, use the no snmp-server host ip-address [traps | informs] [version 1 | 2c | 3] [auth | noauth | priv] [community-string] [udp-port number] [notification-type] command.
NOTE: For version 1 and version 2c security models, this string represents the name of the SNMP community. The string can be set using this command; however, Dell Force10 recommends setting the community string using the snmp-server community command before executing this command. For version 3 security model, this string is the USM user security name. udp-port portnumber (OPTIONAL) Enter the keywords udp-port followed by the port number of the remote host to use. The range is 0 to 65535.
When multiple snmp-server host commands are given for the same host and type of notification (trap or inform), each succeeding command overwrites the previous command. Only the last snmp-server host command will be in effect. For example, if you enter an snmp-server host inform command for a host and then enter another snmpserver host inform command for the same host, the second command replaces the first command. The snmp-server host command is used in conjunction with the snmp-server enable command.
Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command snmp-server packetsize Set the largest SNMP packet size permitted. Wen the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command. C-Series, E-Series, S-Series, Z-Series Syntax Parameters snmp-server packetsize byte-count byte-count Defaults 8 Command Modes CONFIGURATION Command History Enter one of the following values 8, 16, 24 or 32.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/port information. • For VLAN interface, enter the keyword vlan followed by a number from 1 to 4094. Defaults The IP address assigned to the management interface is the default. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
• v1v2creadu — maps to a community with ro permissions. • 1v2cwriteu — maps to a community rw permissions. remote ipaddress Enter the keywords udp-port followed by the user datagram protocol (UDP) port number on the remote device. The range is 0 to 65535. The default is 162. udp-port portnumber Enter the keywords udp-port followed by the UDP (User Datagram Protocol) port number on the remote device. The range is 0 to 65535. The default is 162.
Defaults As above. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Usage Information NOTE: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP. TCP and ICMP rules are not valid for SNMP. In IPv6 ACLs port rules are not valid for SNMP.
snmp-server view Configure an SNMPv3 view. C-Series, E-Series, S-Series, S4810, Z-Series Syntax snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command. Parameters view-name Enter the name of the view (not to exceed 20 characters). oid-tree Enter the OID sub tree for the view (not to exceed 20 characters). included (OPTIONAL) Enter the keyword included to include the MIB family in the view.
Defaults Enabled. Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Usage Information If the interface is expected to flap during normal usage, you could disable this command. Syslog Commands The following commands allow you to configure logging functions on all Dell Force10 switches.
default logging buffered Return to the default setting for messages logged to the internal buffer. C-Series, E-Series, S-Series, Z-Series Syntax default logging buffered Defaults size = 40960; level = 7 or debugging Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Related Commands logging buffered – sets the logging buffered parameters.
default logging monitor Return to the default settings for messages logged to the terminal. C-Series, E-Series, S-Series, Z-Series Syntax default logging monitor Defaults level = 7 or debugging Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
logging Configure an IP address or host name of a Syslog server where logging messages are sent. Multiple logging servers of both IPv4 and/or IPv6 can be configured. C-Series, E-Series, S-Series, Z-Series Syntax logging {ipv4-address | ipv6-address | hostname} To disable logging, use the no logging command. Parameters ipv4-address | ipv6-address Enter an IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X) address. hostname Enter the name of a host already configured and recognized by the switch.
warnings, notifications, informational, or debugging. The default is 7 or debugging. size (OPTIONAL) Indicate the size, in bytes, of the logging buffer. The number of messages buffered depends on the size of each message. The range is 40960 to 524288. The default is 40960 bytes. Defaults level = 7; size = 40960 bytes Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series.
Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Related Commands clear logging – clears the logging buffer. default logging console – returns the logging console parameters to the default setting. show logging – displays the logging setting and system messages in the internal buffer. logging facility Configure the Syslog facility used for error messages sent to Syslog servers.
• uucp (Unix to Unix copy process) The default is local7. Defaults local7 Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Related Commands logging – enables logging to a Syslog server. logging on – enables logging.
Usage Information When you configure the snmp-server trap-source command, the system messages logged to the history table are also sent to the SNMP network management station. Related Commands show logging – displays information logged to the history buffer. logging history size Specify the number of messages stored in the FTOS logging history table. C-Series, E-Series, S-Series, Z-Series Syntax logging history size size To return to the default values, use the no logging history size command.
Defaults 7 or debugging Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Related Commands default logging monitor – returns the logging monitor parameters to the default setting.
logging source-interface Specify that the IP address of an interface is the source IP address of Syslog packets sent to the Syslog server. C-Series, E-Series, S-Series, Z-Series Syntax logging source-interface interface To disable this command and return to the default setting, use the no logging sourceinterface command. Parameters interface Defaults Not configured.
Usage Information Syslog messages contain the IP address of the interface used to egress the router. By configuring the logging source-interface command, the Syslog packets contain the IP address of the interface configured. Related Commands logging – enables logging to the Syslog server. logging synchronous Synchronize unsolicited messages and FTOS output.
Related Commands logging on – enables logging. logging trap Specify which messages are logged to the Syslog server based the message severity. C-Series, E-Series, S-Series, Z-Series Syntax logging trap [level] To return to the default values, use the default logging trap command. To disable logging, use the no logging trap command.
Command Modes Command History history (OPTIONAL) Enter the keyword history to view only information in the Syslog history table. reverse (OPTIONAL) Enter the keyword reverse to view the Syslog messages in FIFO (first in, first out) order. summary (OPTIONAL) Enter the keyword summary to view a table showing the number of messages per type and per slot. Slots *7* and *8* represent RPMs. • • EXEC EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810.
192.200.12.2 Up Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Up Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: neighbor 1.1.10.2 (Hold time expired) Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: 192.200.14.7 Up Oct 8 09:26:25: %RPM1:RP1 %BGP-5-ADJCHANGE: neighbor 1.1.11.2 closed. Neighbor recycled Oct 8 09:26:25: %RPM1:RP1 %BGP-5-ADJCHANGE: neighbor 1.1.14.2 closed. Neighbor recycled --More-Example (History) Neighbor 1.1.10.
defaults Command Modes Command History Disabled. • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. E-Series legacy command Related Commands 1534 logging monitor – sets the logging parameters on the monitor/terminal.
51 SNMP Traps This chapter lists the traps sent by the Dell Force10 operating software (FTOS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Message ID Trap Type Trap Option COLD_START SNMP COLDSTART WARM_START SNMP WARMSTART COPY_CONFIG_COMPLETE SNMP NONE SNMP LINKDOWN SNMP LINKUP SNMP AUTH EGP_NEIGHBOR_LOSS SNMP NONE OSTATE_DOWN SNMP LINKDOWN SNMP LINKUP SNMP NONE SNMP NONE SNMP NONE %SNMP-5-SNMP_COLD_START: SNMP COLD_START trap sent.
Message ID Trap Type Trap Option SNMP NONE NONE NONE ENVMON NONE ENVMON NONE ENVMON NONE CHM_CARD_PROBLEM ENVMON NONE CHM_ALARM_CUTOFF ENVMON NONE CHM_SFM_UP ENVMON NONE CHM_SFM_DOWN ENVMON NONE CHM_RPM_UP ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE %RPM0-P:CP %SNMP-4-RMON_HC_RISING_THRESHOLD: RMON high-capacity rising threshold alarm from SNMP OID RMON_HC_FALLING_THRESHOLD %RPM0-P:CP %SNMP-4-RMON_HC_FALLING_THRESHOLD: RMO
Message ID Trap Type Trap Option ENVMON NONE ENVMON NONE ENVMON SUPPLY ENVMON SUPPLY ENVMON SUPPLY ENVMON SUPPLY ENVMON SUPPLY ENVMON SUPPLY ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON FAN %CHMGR-5-MAJOR_SFM_CLR: Major alarm cleared: Switch fabric up CHM_MIN_SFM_DOWN %CHMGR-2-MINOR_SFM: MInor alarm: No working standby SFM CHM_MIN_SFM_DOWN_CLR %CHMGR-5-MINOR_SFM_CLR: Minor alarm cleared: Working standby SFM present CHM_PWRSRC_DOWN %CHMGR-2-PEM_PRBLM: Major alarm: probl
Message ID Trap Type Trap Option ENVMON FAN ENVMON FAN ENVMON FAN ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE PROTO NONE For E1200: %CHMGR-2-FAN_TRAY_BAD: Major alarm: fan tray %d is missing or down %CHMGR-2-ALL_FAN_BAD: Major alarm: all fans in fan tray %d are down.
Message ID %RPM1-P:RP2 %VRRP-3-VRRP_BAD_AUTH: 11/12 rcvd pkt with authentication %RPM1-P:RP2 %VRRP-3-VRRP_BAD_AUTH: 11/12 rcvd pkt with authentication Trap Type Trap Option PROTO NONE PROTO NONE PROTO NONE PROTO NONE vrid-1 on Gi type mismatch.
52 Stacking All commands in this chapter are specific to the Dell Force10 operating software (FTOS) on the S-Series and S4810 platforms. The commands are always available and operational, whether or not the S-Series has a stacking module inserted. You can use the commands to pre-configure a switch, so that the configuration settings are invoked when the switch is attached to other S-Series units.
redundancy force-failover stack-unit Force the standby unit in the stack to become the management unit. S-Series Syntax redundancy force-failover stack-unit Defaults Not enabled. Command Modes EXEC Privilege reset stack-unit Reset any designated stack member except the management unit (master unit). S-Series Syntax Parameters reset stack-unit 0-11 hard 0-11 Enter the stack member unit identifier of the stack member to reset. hard Reset the stack unit if the unit is in a problem state.
6 7 8 9 10 11 Related Commands Member Member Member Member Member Member not not not not not not present present present present present present • reload – reboots FTOS. • upgrade system stack-unit (S-Series stack member) – resets the designated S-Series stack member. show redundancy Display the current redundancy configuration (status of automatic reboot configuration on stack management unit).
Auto reboot Stack-unit: Enabled Auto failover limit: 3 times in 60 minutes -- Stack-unit Failover Record ------------------------------------------------Failover Count: 0 Last failover timestamp: None Last failover Reason: None Last failover type: None -- Last Data Block Sync Record: ------------------------------------------------Stack Unit Config: succeeded Jul 11 2012 09:42:35 Start-up Config: succeeded Jul 11 2012 09:42:35 Runtime Event Log: succeeded Jul 11 2012 09:42:35 Running Config: succeeded Jul 1
Field Description Topology Lists the topology of stack ports connected: Ring, Daisy chain, or Standalone. Interface The unit/port ID of the connected stack port on this unit. Link Speed Link Speed of the stack port (10 or 40) in Gb/s. Admin Status The only currently listed status is Up. Connection The stack port ID to which this unit’s stack port is connected.
Related Commands • reset stack-unit – resets the designated S-Series stack member. • show hardware stack-unit – displays the data plane or management plane input and output statistics of the designated component of the designated stack member. • show system (S-Series) – displays the current status of all stack members or a specific member. • upgrade (S-Series management unit) – upgrades the bootflash image or system image of the S-Series management unit.
stack-unit provision Preconfigure a logical stacking ID of a switch that joins the stack. This is an optional command that is executed on the management unit. S-Series Syntax Parameters stack-unit 0-11 provision {S25N|S25P|S25V|S50N|S50V|S4810} 0-11 Enter a stack member identifier, from 0 to 11, of the switch that you want to add to the stack. S25N|S25P|S25V| S50N|S50V|S4810 Enter the S-Series model identifier of the switch to be added as a stack member.
Usage Information You can renumber any switch, including the management unit or a stand-alone unit. You cannot renumber a unit to a number of an active member in the stack. When executing this command on the master, the stack reloads. When the members are renumbered, only that specific unit is reset and comes up with the new unit number. Example FTOS#stack-unit 5 renumber 6 Renumbering will reset the unit.
NOTE: Any scripts used to streamline the stacking configuration process must be updated to reflect the Command Mode change from EXEC Privilege to CONFIGURATION to allow the scripts to work correctly. upgrade system stack-unit (S-Series stack member) Copy the boot image or FTOS from the management unit to one or more stack members.
53 Storm Control The Dell Force10 operating software (FTOS) storm control feature allows you to limit or suppress traffic during a traffic storm (Broadcast/Unknown Unicast Rate Limiting or Multicast on the C-Series and S-Series). Storm control is supported on the Dell Force10 C-Series, E-Series, S-Series, Z-Series, or S4810 platforms.
Defaults Command Modes Command History Example (ESeries) • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE followed by the slot/ port information. • For a SONET interface, enter the keyword sonet followed by the slot/port information.
show storm-control multicast Display the storm control multicast configuration. C-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History Example show storm-control multicast [interface] interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration: • For Fast Ethernet, enter the keyword Fastethernet followed by the slot/port information.
show storm-control unknown-unicast Display the storm control unknown-unicast configuration. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Defaults Command Modes Command History Example (ESeries) show storm-control unknown-unicast [interface] interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Example (CSeries) FTOS#show storm-control unknown-unicast gigabitethernet 3/0 Unknown-unicast storm control configuration Interface Direction Packets/Second --------------------------------------Gi 3/0 Ingress 1000 FTOS# storm-control broadcast (Configuration) Configure the percentage of broadcast traffic allowed in or out of the network.
Usage Information Version 7.4.1.0 E-Series Only: Added the percentage decimal value option. Version 6.5.1.0 Introduced on the E-Series. Broadcast storm control is valid on Layer 2/Layer 3 interfaces only. Layer 2 broadcast traffic is treated as unknown-unicast traffic. storm-control broadcast (Interface) Configure the percentage of broadcast traffic allowed on an interface (ingress only).
Version 6.5.1.0 Introduced on the E-Series. storm-control multicast (Configuration) Configure the packets per second (pps) of multicast traffic allowed in to the C-Series and S-Series networks only. C-Series, S-Series, Z-Series, S4810 Syntax storm-control multicast packets_per_second in To disable storm-control for multicast traffic into the network, use the no storm-control multicast packets_per_second in command.
Defaults none Command Modes INTERFACE (conf-if-interface-slot/port) Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the C-series and S-Series. storm-control unknown-unicast (Configuration) Configure the percentage of unknown-unicast traffic allowed in or out of the network.
Usage Information Version 7.4.1.0 E-Series Only: Added the percentage decimal value option. Version 6.5.1.0 Introduced on the E-Series. Unknown Unicast Storm-Control is valid for Layer 2 and Layer 2/Layer 3 interfaces. storm-control unknown-unicast (Interface) Configure percentage of unknown-unicast traffic allowed on an interface (ingress only).
Version 6.5.1.0 1560 Introduced on the E-Series.
Spanning Tree Protocol (STP) 54 The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP) and are supported on the C-series, E-Series, S-series, Z-Series, or S4810 Dell Force10 switch/routing platforms. bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax bridge-priority {priority-value | primary | secondary} To return to the default value, use the no bridge-priority command.
bpdu-destination-mac-address Use the Provider Bridge Group address in Spanning Tree or GVRP PDUs. C-Series, S-Series, S4810 Syntax Parameters bpdu-destination-mac-address [stp | gvrp] provider-bridge-group xstp Force STP, RSTP, and MSTP to use the Provider Bridge Group address as the destination MAC address in its BPDUs. gvrp Forces GVRP to use the Provider Bridge GVRP Address as the destination MAC address in its PDUs. Defaults The destination MAC address for BPDUs is the Bridge Group Address.
Command Modes Command History general (OPTIONAL) Enter the keyword general to debug general STP operations. root (OPTIONAL) Enter the keyword root to debug STP root transactions. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series.
Related Commands protocol spanning-tree – enters SPANNING TREE mode on the switch. disable Disable the spanning tree protocol globally on the switch. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax disable To enable Spanning Tree Protocol, use the no disable command. Defaults Enabled (that is, the spanning tree protocol is disabled.) Command Modes SPANNING TREE Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.
Defaults 15 seconds Command Modes SPANNING TREE Command History Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. max-age – changes the wait time before STP refreshes protocol configuration information. hello-time – changes the time interval between BPDUs.
max-age Set the time interval for the spanning tree bridge to maintain configuration information before refreshing that information. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax max-age seconds To return to the default values, use the no max-age command. Parameters seconds Defaults 20 seconds Command Modes SPANNING TREE Command History Related Commands Enter a number of seconds the FTOS waits before refreshing configuration information. The range is 6 to 40. The default is 20 seconds.
Command Modes Command History CONFIGURATION Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. Usage Information STP is not enabled when you enter SPANNING TREE mode. To enable STP globally on the switch, use the no disable command from SPANNING TREE mode.
show spanning-tree 0 Display the spanning tree group configuration and status of interfaces in the spanning tree group. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters show spanning-tree 0 [active | brief | guard | interface interface | root | summary] 0 Enter 0 (zero) to display information about that specific spanning tree group. active (OPTIONAL) Enter the keyword active to display only active interfaces in spanning tree group 0.
Usage Information Example Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. You must enable spanning tree group 0 prior to using this command. The following describes the show spanning-tree 0 command shown in the Example below. Field Description “Bridge Identifier...” Lists the bridge priority and the MAC address for this STP bridge. “Configured hello...
Timers:hold 1, topology change 35 hello 2, max age 20, forward_delay 15 Times:hello 1, topology change 1, notification 0, aging 2 Port 26 (GigabitEthernet 1/1) is Forwarding Port path cost 4, Port priority 8, Port Identifier 8.26 Designated root has priority 32768, address 0001.e800.0a56 Designated bridge has priority 32768, address 0001.e800.0a56 Designated port id is 8.
Example (Guard) Field Description Sts Port state: root-inconsistent (INCON Root), forwarding (FWD), listening (LIS), blocking (BLK), or shut down (EDS Shut). Guard Type Type of STP guard configured (Root, Loop, or BPDU guard).
portfast [bpduguard [shutdown-onviol ation]] Enter the keyword portfast to enable Portfast to move the interface into Forwarding mode immediately after the root fails. Enter the optional keyword bpduguard to disable the port when it receives a BPDU. Enter the optional keyword shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. priority priority Enter keyword priority followed by a number as the priority. The range is zero (0) to 15. The default is 8.
To display the type of STP guard (Portfast BPDU, root, or loop guard) enabled on a port, enter the show spanning-tree 0 command.
System Time and Date 55 The commands in this chapter configure time values on the system, either using the Dell Force10 operating software (FTOS), or the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol” section of the Management chapter in the FTOS Configuration Guide.
Usage Information You can change the order of the month and day parameters to enter the time and date as time day month year. In the switch, the hardware clock is separate from the software and is called the calendar. This hardware clock runs continuously. After the hardware clock (the calendar) is set, the FTOS automatically updates the software clock after system bootup. You cannot delete the hardware clock (calendar).
clock set Set the software clock in the switch. C-Series, E-Series, S-Series, Z-Series Syntax Parameters clock set time month day year time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format; example, 17:15:00 is 5:15 pm. month Enter the name of one of the 12 months, in English. You can enter the number of a day and change the order of the display to time day month year. day Enter the number of the day. The range is 1 to 31.
clock summer-time date Set a date (and time zone) on which to convert the switch to daylight saving time on a one-time basis. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax clock summer-time time-zone date start-month start-day startyear start-time end-month end-day end-year end-time [offset] To delete a daylight saving time zone configuration, use the no clock summer-time command. Parameters time-zone Enter the three-letter name for the time zone. This name is displayed in the show clock output.
pre-Version 6.1.1.0 Related Commands Introduced on the E-Series. calendar set – sets the hardware clock. clock summer-time recurring – sets a date (and time zone) on which to convert the switch to daylight saving time each year. show clock – displays the current clock settings. clock summer-time recurring Set the software clock to convert to daylight saving time on a specific day each year.
• end-day Enter the weekday name that you want daylight saving time to end. Enter the weekdays using the three letter abbreviations; for example Sun, Sat, Mon etc. The range is Sun to Sat. end-month Enter the name of one of the 12 months in English. end-time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format; example, 17:15:00 is 5:15 pm. offset (OPTIONAL) Enter the number of minutes to add during the summertime period. The range is 1 to 1440.
Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information • a number from 1 to 23 as the number of hours in addition to universal time coordinated (UTC) for the timezone. • a minus sign (-) followed by a number from 1 to 23 as the number of hours. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.
debug ntp Display network time protocol (NTP) transactions and protocol messages for troubleshooting. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax debug ntp {adjust | all | authentication | events | loopfilter | packets | select | sync} To disable debugging of NTP transactions, use the no debug ntp {adjust | all | authentication | events | loopfilter | packets | select | sync} command.
ntp authenticate Enable authentication of NTP traffic between the switch and the NTP time serving hosts. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ntp authenticate To disable NTP authentication, use the no ntp authentication command. Defaults Not enabled. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.
7 Specify that the authentication key is entered in DES encrypted format. key Enter the authentication key in the previously specified format. Defaults NTP authentication is not configured by default. If you do not specify the option [0 | 7], 0 is selected by default. Command Modes CONFIGURATION Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Added options [0 | 7] for entering the authentication key. Version 7.6.1.0 Introduced on the S-Series.
Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. ntp disable Prevent an interface from receiving NTP packets. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax ntp disable To re-enable NTP on an interface, use the no ntp disable command.
Parameters multicastaddress Defaults Not configured. Command Modes INTERFACE Command History (OPTIONAL) Enter a multicast address. Enter either an IPv4 address in dotted decimal format or an IPv6 address in X:X:X:X::X format. If you do not enter a multicast address, the address: • 224.0.1.1 is configured if the interface address is IPv4 • ff05::101 is configured if the interface address is IPv6 Version 8.3.11.1 Introduced on the Z9000. Version 8.4.1.
Usage Information Version 8.4.1.0 Added IPv6 support. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. You can configure multiple time serving hosts (up to 250). From these time serving hosts, the FTOS choses one NTP host with which to synchronize. Use the show ntp associations command to determine which server was selected.
Defaults Not configured. Command Modes CONFIGURATION Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.5.1.0 Added support for 4-port 40G line cards on ExaScale. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series. ntp trusted-key Set a key to authenticate the system to which NTP will synchronize.
ntp update-calendar Configure the FTOS to update the calendar (the hardware clock) with the NTP-derived time. C-Series, E-Series, S-Series, Z-Series Syntax ntp update-calendar [minutes] To return to default setting, use the no ntp update-calendar command. Parameters minutes Defaults Not enabled. Command Modes CONFIGURATION Command History (OPTIONAL) Enter the number of minutes between updates from NTP to the hardware clock. The range is 1 to 1440. The default is 60 minutes. Version 8.3.11.
Example FTOS#show calendar 16:33:30 UTC Tue Jun 26 2001 FTOS# Related Commands show clock – displays the time and date from the switch software clock. show clock Display the current clock settings. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax Parameters Command Modes Command History show clock [detail] detail (OPTIONAL) Enter the keyword detail to view the source information of the clock. • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.
show ntp associations Display the NTP master and peers. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax show ntp associations Command Modes Command History Usage Information • EXEC • EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.1.1.0 Introduced on the E-Series.
Field Description disp Displays the dispersion. Example FTOS#show ntp associations remote ref clock st when poll reach delay offset disp ============================================================= 10.10.120.5 0.0.0.0 16 - 256 0 0.00 0.000 16000.0 *172.16.1.33 127.127.1.0 11 6 16 377 -0.08 -1499.9 104.16 172.31.1.33 0.0.0.0 16 - 256 0 0.00 0.000 16000.0 192.200.0.2 0.0.0.0 16 - 256 0 0.00 0.000 16000.
Field Description “clock offset is...” Displays the system offset to the synchronized peer and the time delay on the path to the NTP root clock. “root dispersion is...” Displays the root and path dispersion. “peer mode is...” State what NTP mode the switch is. This should be Client mode. Example FTOS#sh ntp status Clock is synchronized, stratum 2, reference is 100.10.10.10 frequency is -32.000 ppm, stability is 15.156 ppm, precision is 4294967290 reference time is BC242FD5.C7C5C000 (10:15:49.
56 u-Boot All commands in this chapter are in u-Boot and are supported on the Dell Force10 S4810 platform only. To access this mode, press any key when the following line appears on the console during a system boot: Hit any key to stop autoboot: You enter u-Boot immediately, as indicated by the => prompt. NOTE: This chapter describes only a few commands available in u-Boot. The commands included here are those that are comparable to those found in Boot User mode on other S-Series systems.
protect on 0xfff80000 +$filesize; cmp.b $loadaddr 0xfff80000 $filesize ethact=eTSEC1 ethaddr=00:01:E8:82:09:B2 serverip=10.11.9.4 primary_boot=f10boot tftp://10.11.9.2/si-S4810-40g secondary_boot=f10boot flash0 default_boot=f10boot tftp://192.168.128.1/FTOS-SC-1.2.0.0E3.bin gatewayip=10.11.192.254 ipaddr=10.11.198.114 netmask=255.255.0.
save Save configurations created in uBoot. S4810 Syntax save Command Modes uBoot Command History Usage Information Version 8.3.7.0 Introduced on the S4810. You must save your changes before resetting the system or all your changes will be lost. setenv Configure system settings.
Command Modes Command History 1598 ipaddr Enter the keyword ippaddr to configure the system management IP address. ethaddr Enter the keyword ethaddr to configure system management MAC address. address Enter the IP address in standard IPv4 format and the MAC address in standard MAC format. enablepwdignore Enter the keywords enableprdignore true to reload the system software without the enable password configured.
Uplink Failure Detection (UFD) 57 Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if used with NIC teaming, automatic recovery from a failed link. UFD is supported on the S-Series (S50 only) and S4810 Dell Force10 platforms. clear ufd-disable Re-enable one or more downstream interfaces on the switch/router that are in a UFD-Disabled Error state so that an interface can send and receive traffic.
Version 8.4.2.3 Related Commands Introduced on the S-Series S50. • downstream – assigns a port or port-channel to the uplink-state group as a downstream interface. • uplink-state-group – creates an uplink-state group and enables the tracking of upstream links. debug uplink-state-group Enable debug messages for events related to a specified uplink-state group or all groups.
Defaults none Command Modes UPLINK-STATE-GROUP Command History Version 8.3.12.0 Introduced on the S4810. Version 8.4.2.3 Introduced on the S-Series S50. Example FTOS(conf-uplink-state-group-16)# description test FTOS(conf-uplink-state-group-16)# Related Commands uplink-state-group – creates an uplink-state group and enables the tracking of upstream links. downstream Assign a port or port-channel to the uplink-state group as a downstream interface.
Usage Information You can assign physical port or port-channel interfaces to an uplink-state group. You can assign an interface to only one uplink-state group. You must configure each interface assigned to an uplink-state group as either an upstream or downstream interface, but not both. You can assign individual member ports of a port channel to the group. An uplink-state group can contain either the member ports of a port channel or the port channel itself, but not both.
downstream disable links Configure the number of downstream links in the uplink-state group that will be disabled if one upstream link in an uplink-state group goes down. S-Series (S50 only), S4810 Syntax downstream disable links {number |all} To revert to the default setting, use the no downstream disable links command. Parameters number Enter the number of downstream links to be brought down by UFD. The range is 1 to 1024. all Brings down all downstream links in the group.
Command Modes Command History Related Commands UPLINK-STATE-GROUP Version 8.3.12.0 Introduced on the S4810. Version 8.4.2.3 Introduced on the S-Series S50. • uplink-state-group – creates an uplink-state group and enables the tracking of upstream links. show running-config uplink-state-group Display the current configuration of one or more uplink-state groups.
show uplink-state-group Display status information on a specified uplink-state group or all groups. S-Series (S50 only), S4810 Syntax Parameters Defaults Command Modes Command History Example show uplink-state-group [group-id] [detail] group-id Displays status information on a specified uplink-state group or all groups. The valid group-id values are 1 to 16.
Uplink State Group : 7 Status: Enabled, Up Upstream Interfaces : Downstream Interfaces : Uplink State Group : 16 Status: Disabled, Up Upstream Interfaces : Gi 0/41(Dwn) Po 8(Dwn) Downstream Interfaces : Gi 0/40(Dwn) Related Commands • show running-config uplink-state-group – displays the current configuration of one or more uplink-state groups. • uplink-state-group – create an uplink-state group and enables the tracking of upstream links.
Related Commands • show running-config uplink-state-group – displays the current configuration of one or more uplink-state groups. • show uplink-state-group – displays the status information on a specified uplink-state group or all groups. upstream Assign a port or port-channel to the uplink-state group as an upstream interface. S-Series (S50 only), S4810 Syntax upstream interface To delete an uplink-state group, use the no upstream interface command.
Example Related Commands 1608 FTOS(conf-uplink-state-group-16)# upstream gigabitethernet 1/10-15 FTOS(conf-uplink-state-group-16)# • downstream – assigns a port or port-channel to the uplink-state group as a downstream interface. • uplink-state-group – creates an uplink-state group and enables the tracking of upstream links.
VLAN Stacking 58 With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. This feature is supported by the Dell Force10 operating software (FTOS) on the C-Series, E-Series, S-Series, Z-Series, or S4810 platforms. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
Defaults Packets are colored green; no packets are dropped. Command Modes CONFIGURATION Command History Version 8.3.7.0 Introduced on the S4810. Version 8.3.1.0 Introduced on the C-Series and S-Series. dei honor Honor the incoming DEI value by mapping it to an FTOS drop precedence. You may enter the command once for 0 and once for 1. C-Series, S-Series, Z-Series, S4810 Syntax Parameters dei honor {0 | 1} {green | red | yellow} 0|1 Enter the bit value you want to map to a color.
dei mark Set the DEI value on egress according to the color currently assigned to the packet. C-Series, S-Series, Z-Series, S4810 Syntax Parameters dei mark {green | yellow} {0 | 1} 0|1 Enter the bit value you want to map to a color. green | red | yellow Choose a color: • Green: High priority packets that are the least preferred to be dropped. • Yellow: Lower priority packets that are treated as besteffort. Defaults All the packets on egress are marked with DEI 0.
Defaults Not configured. Command Modes CONF-IF-VLAN Command History • For a Port Channel interface, enter the keywords portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
Example FTOS#show interface dei-honor Default Drop precedence: Green Interface CFI/DEI Drop precedence --------------------------------------------Gi 0/1 0 Green Gi 0/1 1 Yellow Gi 8/9 1 Red Gi 8/40 0 Yellow Related Commands dei honor show interface dei-mark Display the dei mark configuration.
stack-unit stack-group Configure stacking group specified by ID. S4810 Syntax Parameters Command Modes Command History Usage Information [no] stack-unit unit-id stack-group stack-group-id unit-id Enter the stack unit ID. stack-group-id Enter the stack group ID. The range is 0 to 16. [no] Use no stack-unit unit-id stack-group stack-id to remove the current stack group configuration. CONFIGURATION Version 8.3.10.2 Introduced on the S4810.
E-Series original Command Usage Information Prior to enabling this command, you must enter the switchport command to place the interface in Layer 2 mode. To remove the access port designation, the port must be removed (using the no member interface command) from all stackable VLAN enabled VLANs. vlan-stack compatible Enable the stackable VLAN feature on a VLAN.
5 Active FTOS# M M M M Gi 13/4 Po1(Gi 13/14-15) Gi 13/18 Gi 13/5 vlan-stack dot1p-mapping Map C-Tag dot1p values to a S-Tag dot1p value. C-Tag values may be separated by commas and dashed ranges are permitted. Dynamic mode CoS overrides any Layer 2 QoS configuration in case of conflicts.
• Defaults 0x9100 Command Modes CONFIGURATION Command History On the C-Series and S-Series: You may specify both bytes of the 2-byte S-Tag TPID. The range is 0 to FFFF. The default is 9100. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the E-Series ExaScale. C-Series and S-Series accept both bytes of the 2-byte S-Tag TPID. Version 8.2.1.0 Introduced on the E-Series ExaScale. Version 7.6.1.0 Introduced on the C-Series and S-Series.
vlan-stack trunk Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax vlan-stack trunk To remove a trunk port designation from the selected interface, use the no vlan-stack trunk command. Defaults Not configured. Command Modes INTERFACE Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 8.2.1.0 Introduced on the E-Series ExaScale.
Example 1 FTOS(conf-if-gi-0/42)#switchport FTOS(conf-if-gi-0/42)#vlan-stack trunk FTOS(conf-if-gi-0/42)#show config ! interface GigabitEthernet 0/42 no ip address switchport vlan-stack trunk no shutdown FTOS(conf-if-gi-0/42)#interface vlan 100 FTOS(conf-if-vl-100)#vlan-stack compatible FTOS(conf-if-vl-100-stack)#member gigabitethernet 0/42 FTOS(conf-if-vl-100-stack)#show config ! interface Vlan 100 no ip address vlan-stack compatible member GigabitEthernet 0/42 shutdown FTOS(conf-if-vl-100-stack)#interface
FTOS(config)#interface vlan 40 FTOS(conf-if-vlan)#tagged TenGi 8/0 FTOS(conf-if-vlan)#exit FTOS(config)# 1620
Virtual Link Trunking (VLT) 59 Virtual link trunking (VLT) is supported on the Z-Series and S4810 platforms. VLT is not supported on the E-Series platform. VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
Defaults 1 second Command Modes VLT DOMAIN Command History Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. clear vlt statistics Clear the statistics on VLT operations. Z-Series, S4810 Syntax Parameters clear vlt statistics [domain | mac | arp | igmp-snoop | stp] domain Clear the VLT statistics for the domain. mac Clear the VLT statistics for the MAC address. arp Clear the VLT statistics for ARP. igmp-snoop Clear the VLT statistics for IGMP snooping.
delay-restore Configure the delay in bringing up VLT ports after reload or peer-link restoration between the VLT peer switches. Z-Series, S4810 Syntax Parameters delay-restore delay-restore Defaults Not configured. Command Modes VLT DOMAIN Command History Usage Information Related Commands Enter the amount of time, in seconds, to delay bringing up the VLT ports after the VLTi device is reloaded or after the peer-link is restored between VLT peer switches. The range 1 to 1200.
vlt become switchports All VLT LACP members Defaults Not configured. Command Modes CONFIGURATION Usage Information LACP on the VLT ports (on a VLT switch or access device), which are members of the virtual link trunk, is not brought up until the VLT domain is recognized on the access device. On the S4810, during boot-up in a stacking configuration, the system must be able to reach the DHCP server with the boot image and configuration image.
Usage Information Version 8.3.12.0 Added support for the peer-down-vlan parameter. Version 8.3.8.0 Introduced on the S4810. Use the peer-down-vlan parameter to configure the VLAN from where the VLT peer forwards packets received over the VLTi from an adjacent VLT peer that is down. When a VLT peer with bare metal provisioning (BMP) is booting up, it sends untagged DHCP discover packets to its peer over the VLTi.
Version 8.3.8.0 Usage Information Introduced on the S4810. The version shown in the show vlt brief output command displays the VLT version number which is different from the FTOS version number. VLT version numbers are begin with odd numbers such as 3 or 5.
show vlt counter Displays the counter information. Z-Series, S4810 Syntax Parameters show vlt counter [arp| igmp-snoop | interface | mac] arp Enter the keyword arp to display the ARP counter information for the VLT. igmp-snoop Enter the keywords igmp-snoop to display the igmp-snooping counter information for the VLT. interface Enter the keyword interface to display the interface counter information for the VLT. mac Enter the keyword mac to display the MAC address counter information for the VLT.
IGMP Mcast Groups count Ve : 0 show vlt detail Displays detailed status information about VLT domains currently configured on the switch. Z-Series, S4810 Syntax show vlt detail Default Not configured. Command Modes EXEC Command History Example Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810.
VLT Role: System MAC address: System Role Priority: Local System MAC address: Local System Role Priority: Primary 00:01:e8:8a:df:bc 32768 00:01:e8:8a:df:bc 32768 FTOS_VLTpeer2# show vlt role VLT Role ---------VLT Role: System MAC address: System Role Priority: Local System MAC address: Local System Role Priority: Secondary 00:01:e8:8a:df:bc 32768 00:01:e8:8a:df:e6 32768 show vlt statistics Displays statistics on VLT operations.
Version Mismatch Errors: Config Mismatch Errors: 0 0 VLT MAC Statistics ---------------L2 Info Pkts sent:6, L2 Mac-sync Pkts Sent:0 L2 Info Pkts Rcvd:3, L2 Mac-sync Pkts Rcvd:2 L2 Reg Request sent:1 L2 Reg Request rcvd:2 L2 Reg Response sent:1 L2 Reg Response rcvd:1 VLT Igmp-Snooping Statistics ------------------------------IGMP Info Pkts sent: 4 IGMP Info Pkts Rcvd: 1 IGMP Reg Request sent: 1 IGMP Reg Request rcvd: 2 IGMP Reg Response sent: 1 IGMP Reg Response rcvd: 1 IGMP PDU Tunnel Pkt sent: 5 IGMP PDU
IGMP IGMP IGMP IGMP IGMP Reg Response rcvd: 1 PDU Tunnel Pkt sent:5 PDU Tunnel Pkt rcvd:10 Tunnel PDUs sent: 10 Tunnel PDUs rcvd: 19 system-mac Reconfigure the default MAC address for the domain. Z-Series, S4810 Syntax Parameters system-mac mac-address mac-address Defaults Not configured. Command Modes VLT DOMAIN Command History Usage Information Enter the system MAC address for the VLT domain. Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810.
Command Modes Command History Usage Information VLT DOMAIN Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. When you create a VLT domain on a switch, FTOS automatically assigns a unique unit ID (0 or 1) to each peer switch. The unit IDs are used for internal system operations. Use the unit-id command to explicitly configure the unit ID of a VLT peer. You must configure a different unit ID (0 or 1) on each peer switch.
vlt-peer-lag port-channel Associate the port channel to the corresponding port channel in the VLT peer for the VLT connection to an attached device. Z-Series, S4810 Syntax Parameters vlt-peer-lag port-channel id-number id-number Enter the respective vlt port-channel number of the peer device. Defaults Not configured. Command Modes INTERFACE PORT-CHANNEL Command History Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810.
Virtual Router Redundancy Protocol (VRRP) 60 Virtual router redundancy protocol (VRRP) is supported by the Dell Force10 operating system (FTOS) on all Dell Force10 C-Series, E-Series, S-Series, Z-Series, or S4810 platforms. IPv4 VRRP Commands The following are IPv4 VRRP commands. advertise-interval Set the time interval between VRRP advertisements. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax advertise-interval seconds To return to the default settings, use the no advertise-interval command.
authentication-type Enable authentication of VRRP data exchanges. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax authentication-type simple [encryption-type] password To delete an authentication type and password, use the no authentication-type command. Parameters simple Enter the keyword simple to specify simple authentication. encryption-type (OPTIONAL) Enter one of the following numbers: password Defaults Not configured.
Command Modes Command History EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. debug vrrp Allows you to enable debugging of VRRP.
Command Modes Command History Usage Information state Enter the keyword state to enable debugging of VRRP state changes. timer Enter the keyword timer to enable debugging of the VRRP timer. EXEC Privilege Version 8.3.11.1 Introduced on the Z9000. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. If no options are specified, debug is active on all interfaces and all VRRP groups. description Configure a short text string describing the VRRP group.
Defaults Command Modes Command History • C and S-Series default: VRRP is enabled. • E-Series default: VRRP is disabled. VRRP Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. Usage Information To enable VRRP traffic, assign an IP address to the VRRP group using the virtualaddress command and enter no disable.
Related Commands disable – disables a VRRP group. preempt Permit a BACKUP router with a higher priority value to preempt or become the MASTER router. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax preempt To prohibit preemption, use the no preempt command. Defaults Enabled (that is, a BACKUP router can preempt the MASTER router). Command Modes VRRP Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.
pre-Version 6.2.1.1 Usage Information Introduced on the E-Series. To guarantee that a VRRP group becomes MASTER, configure the VRRP group’s virtual address with same IP address as the interface’s primary IP address and change the priority of the VRRP group to 255. If you set the priority command to 255 and the virtual-address is not equal to the interface’s primary IP address, an error message appears. show config View the non-default VRRP configuration.
brief Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For Port Channel interface types, enter the keywords portchannel followed by the number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is 1 to 255 for TeraScale. • For SONET interfaces, enter the keyword sonet followed by the slot/port information.
Item Description • NA/IF (the interface is not available). • MASTER (the interface associated with the MASTER router). • BACKUP (the interface associated with the BACKUP router). Master addr Displays the IP address of the MASTER router. Virtual addr(s) Displays the virtual IP addresses of the VRRP routers associated with the interface.
Item Description • Example Gratuitous ARP sent displays the number of gratuitous ARPs sent. Virtual MAC address Displays the virtual MAC address of the VRRP group. Virtual IP address Displays the virtual IP address of the VRRP router to which the interface is connected. Authentication:... States whether authentication is configured for the VRRP group. If it is, the authentication type and the password are listed. Tracking states..
Parameters interface priority-cost Defaults priority cost = 10 Command Modes VRRP Command History Usage Information (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383. • For Port Channel interface types, enter the keywords portchannel followed by the number.
Parameters ip-address1 Enter an IP address of the virtual router in dotted decimal format. The IP address must be on the same subnet as the interface’s primary IP address. ... ip-address12 (OPTIONAL) Enter up to 11 additional IP addresses of virtual routers in dotted decimal format. Separate the IP addresses with a space. The IP addresses must be on the same subnet as the interface’s primary IP address. Defaults Not configured. Command Modes VRRP Command History Usage Information Version 8.3.11.
Command History Usage Information Related Command Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. This command applies to a single interface. When used in conjunction with the vrrp delay reload CLI, the later timer rules the VRRP enabling. For example, if vrrp delay reload is 600 and the vrrp delay minimum is 300: • When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up VRRP on all interfaces that are up and configured for VRRP.
vrrp-group Assign a VRRP ID to an interface. You can configure up to 12 VRRP groups per interface. C-Series, E-Series, S-Series, Z-Series, S4810 vrrp-group vrrp-id Syntax Parameters vrrp-id Defaults Not configured. Command Modes INTERFACE Command History Enter a number as the group ID. The range is 1 to 255. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series.
• show config • track • virtual-address clear counters vrrp ipv6 Clear the counters recorded for IPv6 VRRP groups. C-Series, E-Series, S-Series, S4810 Syntax Parameters Command Modes Command History clear counters vrrp ipv6 [vrid | vrf instance] vrid (OPTIONAL) Enter the number of an IPv6 VRRP group. The range is 1 to 255. vrf instance (OPTIONAL) E-Series only: Enter the name of a VRF instance (32 characters maximum) to clear the counters of all IPv6 VRRP groups in the specified VRF.
Command Modes Command History Usage Information all Enter the keyword all to enable debugging of all VRRP groups. bfd Enter the keyword bfd to enable debugging of all VFFP BFD interactions. database Enter the keyword database to display changes related to group, prefix, and interface entries in the VRRP table. packets Enter the keyword packets to enable debugging of VRRP control packets.
brief Command Modes Command History Usage Information (OPTIONAL) Enter the keyword brief to view a table of information on the VRRP groups on the E-Series. • EXEC • EXEC Privilege Version 8.3.10.0 Introduced on the S4810. Version 8.3.2.0 Introduced on the E-Series TeraScale. The following describes the show vrrp ipv6 command shown in the Example below. Line Beginning with Description GigabitEthernet... Displays the Interface, the VRRP group ID, and the network address.
Line Beginning with Example Description • UP or DOWN state of the tracked interface or object (Up or Dn). • Interface type and slot/port or object number, description, and time since the last change in the state of the tracked object. • Cost to be subtracted from the VRRP group priority if the state of the tracked interface/object goes DOWN.
Usage Information The VRRP group only becomes active and sends VRRP packets when a link-local virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. E-Series ExaScale and TeraScale only: Starting in FTOS release 8.4.2.1, you can configure up to 255 VRRP groups per interface if VRF microcode is not loaded, and up to 15 groups if VRF microcode is loaded. E-Series ExaScale and TeraScale only: Starting in FTOS release 8.4.2.
pre-Version 6.2.1.1 Usage Information Introduced on the E-Series. Dell Force10 recommends keeping the default setting for this command. If you do change the time interval between VRRP advertisements on one router, you must change it on all routers. description Configure a short text string describing the VRRP group. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax description text To delete a VRRP group description, use the no description command.
Command Modes Command History VRRP Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. Usage Information To enable VRRP traffic, assign an IP address to the VRRP group using the virtualaddress command and enter no disable. Related Commands virtual-address – specifies the IP address of the virtual router.
Related Commands disable – disables a VRRP group. preempt Permit a BACKUP router with a higher priority value to preempt or become the MASTER router. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax preempt To prohibit preemption, use the no preempt command. Defaults Enabled (that is, a BACKUP router can preempt the MASTER router). Command Modes VRRP Command History Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.
Command History Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.3.7.0 Introduced on the S4810. Version 7.6.1.0 Introduced on the S-Series. Version 7.5.1.0 Introduced on the C-Series. pre-Version 6.2.1.1 Introduced on the E-Series. To guarantee that a VRRP group becomes MASTER, configure the VRRP group’s virtual address with same IP address as the interface’s primary IP address and change the priority of the VRRP group to 255.
track Monitor an interface and lower the priority value of the VRRP group on that interface if it is disabled. C-Series, E-Series, S-Series (S50) Syntax track interface [priority-cost cost] To disable monitoring, use the no track interface command.
virtual-address Configure up to 12 IP addresses of virtual routers in the VRRP group. You must set at least one virtual address for the VRRP group to start sending VRRP packets. C-Series, E-Series, S-Series, Z-Series, S4810 Syntax virtual-address ip-address1 [... ip-address12] To delete one or more virtual IP addresses, use the no virtual-address ipaddress1 [... ip-address12] command. Parameters ip-address1 Enter an IP address of the virtual router in dotted decimal format.
