FTOS Command Line Reference Guide for the S6000 System FTOS 9.0.2.
Notes, Cautions, and Warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Information in this publication is subject to change without notice. © 2013 Dell Networking. All rights reserved.
1 About this Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
www.dell.com | support.dell.com Basic File Management Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .25 4 Control and Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .43 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 301 11 Content Addressable Memory (CAM) . . . . . . . . . . . . . . . . . . . . . . . . . . .305 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 305 CAM Profile Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .305 Important Points to Remember . . . .
www.dell.com | support.dell.com Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 389 Important Points to Remember . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .390 19 Internet Group Management Protocol (IGMP) . . . . . . . . . . . . . . . . . . . .399 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 399 IGMP Commands .
26 Multicast Source Discovery Protocol (MSDP). . . . . . . . . . . . . . . . . . . . .603 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 603 Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 603 27 Multiple Spanning Tree Protocol (MSTP) . . . . . . . . . . . . . . . . . . . . . . . .615 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
www.dell.com | support.dell.com Global Configuration Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .733 Per-Port QoS Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .736 Policy-Based QoS Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .740 36 Router Information Protocol (RIP). . . . . . . . . . . . . . . . . . . . . . . . . . . . . .767 Overview . . . . . . . . . . .
42 Simple Network Management Protocol and Syslog . . . . . . . . . . . . . . . .873 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 873 SNMP Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .873 Important Points to Remember . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .874 Syslog Commands . . . . . . . . . . . . . . . . . . . . . .
| www.dell.com | support.dell.
1 About this Guide This book provides information on the FTOS Command Line Interface (CLI). It includes some information on the protocols and features found in FTOS and on the Dell Networking systems supported by FTOS (S-Series s, S4810, S6000 , and Z-Series z. This chapter includes: • • • • Objectives Audience Conventions Related Documents Objectives This document is intended as a reference guide for the FTOS command line interface (CLI) commands used with the S6000 system with FTOS version 9.0.2.0.
www.dell.com | support.dell.com Information Symbols Table 1-1 describes symbols contained in this guide. Table 1-1. Information Symbols Symbol Brief Description s S-Series This symbol indicates that the selected feature is supported on the S-Series. Note that when a feature is supported on all the S-Series systems, including the S4810, this symbol is used. S6000 z S4810 This symbol indicates that the selected feature is supported on the S4810 platform.
2 CLI Basics This chapter describes the command structure and command modes. FTOS commands are in a text-based interface that allows you to use launch commands, change the command modes, and configure interfaces and protocols.
www.dell.com | support.dell.com Multiple Configuration Users When a user enters the CONFIGURATION mode and another user(s) is already in that configuration mode, FTOS generates an alert warning message similar to the following: FTOS#conf % Warning: The following users are currently configuring the system: User User User User "" on line "admin" on "admin" on "Irene" on console0 line vty0 ( 123.12.1.123 ) line vty1 ( 123.12.1.123 ) line vty3 ( 123.12.1.
Table 2-1.
www.dell.com | support.dell.com Figure 2-1.
Use the left and right arrow keys to navigate left or right in the FTOS command line. Table 2-2 defines the key combinations valid at the FTOS command line. Table 2-2. Short-cut Keys and their Actions Key Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character. CNTL-D Deletes character at cursor. CNTL-E Moves the cursor to the end of the line. CNTL-F Moves the cursor forward one character. CNTL-I Completes a keyword.
www.dell.com | support.dell.com • • • • • except— display only text that does not match the pattern (or regular expression) find — search for the first occurrence of a pattern grep — display text that matches a pattern no-more — do not paginate the display output save - copy output to a file for future use Note: FTOS accepts a space before or after the pipe, no space before or after the pipe, or any combination.
EXEC Mode When you initially log in to the switch, by default, you are logged into the EXEC mode. This mode allows you to view settings and to enter the EXEC Privilege mode to configure the device. While you are in the EXEC mode, the > prompt is displayed following the “hostname” prompt, as described above. which is “FTOS” by default. You can change it with the hostname command. See the command hostname. Each mode prompt is preceded by the hostname.
www.dell.com | support.dell.com Table 2-3. Interface prompts Prompt Interface Type FTOS(conf-if-lo-0)# Loopback interface number FTOS(conf-if-nu-0)# Null interface followed by zero FTOS(conf-if-po-0)# Port-channel interface number FTOS(conf-if-vl-0)# VLAN interface followed by VLAN number (range 1 to 4094) FTOS(conf-if-ma-0/0)# Management Ethernet interface followed by slot/port information FTOS(conf-if-range)# Designated interface range (used for bulk configuration; see interface range).
IP ACCESS LIST Mode While in the CONFIGURATION mode, use the ip access-list standard or ip access-list extended command to enter the IP ACCESS LIST mode and configure either standard or extended access control lists (ACL). To enter IP ACCESS LIST mode: 1. 2. Verify that you are logged in to the CONFIGURATION mode. Use the ip access-list standard or ip access-list extended command. You must include a name for the ACL.The prompt changes to include (conf-std-nacl) or (conf-ext-nacl).
www.dell.com | support.dell.com IP COMMUNITY LIST Mode Use the IP COMMUNITY LIST mode to configure an IP Community ACL. See Chapter 6, Access Control Lists (ACL). To enter IP COMMUNITY LIST mode: 1. 2. Verify that you are logged in to the CONFIGURATION mode. Enter the ip community-list command. You must include a name for the Community list.The prompt changes to include (config-community-list). You can return to the CONFIGURATION mode by entering the exit command.
RAPID SPANNING TREE Mode Use PVST+ mode to enable and configure the RSTP protocol, as described in Chapter 38, Rapid Spanning Tree Protocol (RSTP). To enter RSTP mode: 1. 2. Verify that you are logged into the CONFIGURATION mode. Enter the protocol spanning-tree rstp command. You can return to the CONFIGURATION mode by entering the exit command.
www.dell.com | support.dell.com ROUTER RIP Mode Use the ROUTER RIP mode to configure RIP, as described in Chapter 36, Router Information Protocol (RIP). To enter ROUTER RIP mode: 1. 2. Verify that you are logged into the CONFIGURATION mode. Enter the router rip command.The prompt changes to include (conf-router_rip). You can switch to the INTERFACE mode by using the interface command or you can switch to the ROUTER OSPF mode by using the router ospf command.
3 File Management Overview This chapter contains commands needed to manage the configuration files and includes other file management commands found in FTOS. The commands in this chapter are supported by FTOS on Dell Networking, as indicated by the characters that appear under each of the command headings: s S-Series, , S6000 and z Z-Series.
www.dell.com | support.dell.com cd s S6000 Syntax Parameters Change to a different working directory. cd directory directory (OPTONAL) Enter one of the following: • • Command Modes Command History flash: (internal Flash) or any sub-directory usbflash: (internal Flash) or any sub-directory EXEC Privilege Version 9.0.2.0 Introduced on the S6000 Version 7.6.1.0 Introduced on the S-Series copy s S6000 Syntax Parameters Copy one file to another location.
For example, when using SCP, you can enter copy running-config scp: The running-config is the source, and the target is specified in the ensuing prompts. FTOS prompts you to enter any required information, as needed for the named destination—remote destination, destination filename, user ID and password, etc.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000 Version 7.6.1.0 Introduced on S-Series dir s S6000 Syntax Parameters Display the files in a file system. The default is the current directory. dir [filename | directory name:] filename | directory name: (OPTIONAL) Enter one of the following: • • Command Modes Command History For a file or directory on the internal Flash, enter flash:// followed by the filename or directory name.
Related Commands copy Copy the current configuration to either the startup-configuration file or the terminal. show file Display contents of a text file in the local file system. show file-systems Display information about the file systems on the system. format flash (S6000) z S6000 Syntax Parameters Default Command Modes Command History Usage Information Erase all existing files and reformat the file system in the internal flash memory or the USB drive.
www.dell.com | support.dell.com Caution: If you elect to format the flash, all files, including the startup configuration file will be lost. If you do decide to format the specified flash, consider saving the running config as the startup config (use the write memory command or copy run start) Related Commands copy Copy the current configuration to either the startup-configuration file or the terminal. show file Display contents of a text file in the local file system.
Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000 Version 8.3.12.0 Introduced on S4810.
www.dell.com | support.dell.com Parameters filesystem Enter one of the following: • • • flash: for the internal Flash slot0: for the external Flash (Z9000 only) usbflash: for the usbflash (S6000, Z9000) Command Modes EXEC Privilege Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.
63938560 63938560 - 51646464 18092032 - dosFs2.0 dosFs1.0 - MMC MMC network network network rw rw rw rw rw flash: slot0: ftp: tftp: scp: FTOS# Table 3-1. show file-systems Command Output Fields Field Description size (b) Lists the size in bytes of the storage location. If the location is remote, no size is listed. Free(b) Lists the available size in bytes of the storage location. If the location is remote, no size is listed. Feature Displays the formatted DOS version of the device.
www.dell.com | support.dell.com Command History Usage Information Example (S6000) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Note: A filepath that contains a dot ( . ) is not supported.
Parameters entity (OPTIONAL) Enter one of the keywords listed below to display that entity’s current (non-default) configuration.
www.dell.com | support.dell.com • • • • • • • • • configured (OPTIONAL) Enter the keyword configuration to display stack-unit interfaces with non-default configurations only. status (OPTIONAL) Enter the keyword status to display the checksum for the running configuration and the start-up configuration. Command Modes EXEC Privilege Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.4.1.
show startup-config s S6000 Syntax Command Modes Command History Display the startup configuration. show startup-config EXEC Privilege Version 9.0.2.0 Introduced on S6000 Version 7.6.1.0 Introduced on S-Series Version 7.4.1.0 Expanded to include last configuration change and start-up last updated (date and time) and who made the change.
www.dell.com | support.dell.com 1 48-port E/FE/GE with POE (SB) 48 GigabitEthernet/IEEE 802.3 interface(s) 4 Ten GigabitEthernet/IEEE 802.3 interface(s) FTOS# Example (S4810) FTOS# FTOS#show version Dell NetworkingReal Time Operating System Software Dell NetworkingOperating System Version: 1.0 Dell NetworkingApplication Software Version: Z9K-ICC-PRIM-SYNC-8-3-11-173 Copyright (c) 1999-2012 by Dell Inc. All Rights Reserved. Build Time: Mon Jul 16 22:19:01 PDT 2012 Build Path: /local/local/build/build15/8.
Table 3-2. show version Command Fields Lines beginning with Description Dell Network... Name of the operating system Dell Operating... OS version number Dell Application... Software version Copyright (c)... Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell uptime is... Amount of time the system has been up System image... Image file name System Type: S6000 Control Processor:...
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information A Enter this keyword to upgrade the bootflash partition A B Enter this keyword to upgrade the bootflash partition B none EXEC Privilege Version 9.0.2.0 Introduced on the S6000 Version 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module You must reload FTOS after executing this command.
Usage Information Example (upgrade system) You must reload FTOS after executing this command. Use the command upgrade system stack-unit to copy FTOS from the management unit to one or more stack members.
| File Management www.dell.com | support.dell.
4 Control and Monitoring Overview This chapter contains the following commands to configure and monitor the system, including Telnet, FTP, and TFTP as they apply to the following Dell Networking platforms: s S-Series, z Z-Series, S6000 . Note: Beginning in release 9.0.2.0, the end command was deprecated for the S6000, Z9000. It was replaced by the enable optic-info-update interval command to update information on temperature and power monitoring in the SNMP MIB.
www.dell.com | support.dell.com ftp-server username ssh-peer-stack-unit hostname telnet ip ftp password telnet-peer-stack-unit ip ftp source-interface terminal length ip ftp username traceroute ip telnet server enable undebug all ip telnet source-interface virtual-ip line write banner exec s z S6000 Syntax Configure a message that is displayed when a user enters the EXEC mode. banner exec c line c To delete a banner, enter no banner exec.
Press RETURN to get started. 4d21h6m: %RPM0-P:CP %SEC-5-LOGIN_SUCCESS: Login successful for user console online This is the banner FTOS> Related Commands banner login Sets a banner for login connections to the system. banner motd Sets a Message of the Day banner. exec-banner Enable the display of a text string when the user enters the EXEC mode. line Enable and configure console and virtual terminal lines to the system.
www.dell.com | support.dell.com Usage Information Related Commands A login banner message is displayed only in EXEC Privilege mode after entering the enable command followed by the password. These banners are not displayed to users in EXEC mode. banner exec Sets a banner to be displayed when you enter EXEC Privilege mode. banner motd Sets a Message of the Day banner.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on Z9000. Version 7.8.1.0 Introduced support on S-Series. A MOTD banner message is displayed only in EXEC Privilege mode after entering the enable command followed by the password. These banners are not displayed to users in EXEC (non-privilege) mode. Related Commands banner exec Sets a banner to be displayed when you enter the EXEC Privilege mode.
www.dell.com | support.dell.com clear line s z S6000 Syntax Parameters Command Modes Command History Reset a terminal line. clear line {line-number | aux 0 | console 0 | vty number} line-number Enter a number for one of the 12 terminal lines on the system. Range: 0 to 11. aux 0 Enter the keywords aux 0 to reset the Auxiliary port. console 0 Enter the keyword console 0 to reset the Console port. vty number Enter the keyword vty followed by a number to clear the virutal Terminal line.
Defaults Command Modes Command History Usage Information Disabled EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on Z9000. Version 7.8.1.0 Introduced support on S-Series. This command enables (and disables) the collection of CPU traffic statistics from the time this command is executed (not from system boot). However, excessive traffic received by a CPU will automatically trigger (turn on) the collection of CPU traffic statics.
www.dell.com | support.dell.com Defaults Command Modes Command History 1 EXEC Privilege Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. Version 8.3.7.0 Introduced on S4810. Version 7.6.1.0 Introduced on S-Series. do s z S6000 Syntax Parameters Allows the execution of most EXEC-level commands from all CONFIGURATION levels without returning to the EXEC level. do command command Enter an EXEC-level command.
enable s z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Enter the EXEC Privilege mode or any other privilege level configured. After entering this command, you may need to enter a password. enable [level] level (OPTIONAL) Enter a number for a privilege level of FTOS. Range: 0 to 15. Default: 15 15 EXEC Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on the Z9000 Version 7.6.1.
www.dell.com | support.dell.com Usage Information Version 8.3.11.1 Introduced on the Z9000 to replace the enable xfp-power-updates command. Version 8.3.10.0 Replacement command for S4810. Replaces the enable xfp-power-updates command. The default interval for the polling is 300 seconds (5 minutes). Use this command to enable the polling and to configure the polling frequency.
Related Commands banner exec Configure a banner to display when entering the EXEC mode. line Enable and configure console and virtual terminal lines to the system. exec-timeout s z S6000 Syntax Set a time interval the system will wait for input on a line before disconnecting the session. exec-timeout minutes [seconds] To return to default settings, enter no exec-timeout.
www.dell.com | support.dell.com Command History Related Commands Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. end Return to the EXEC Privilege command mode. ftp-server enable s z S6000 Syntax Enable FTP server functions on the system. ftp-server enable To disable FTP server on the system, enter no ftp-server enable. Defaults Command Modes Command History Disabled. CONFIGURATION Version 9.0.2.0 Introduced on S6000.
Syntax ftp-server topdir directory To return to the default settings, enter no ftp-server topdir. Parameters Defaults Command Modes Command History Usage Information directory Enter the directory path. The internal flash is the default directory. CONFIGURATION Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series.
www.dell.com | support.dell.com hostname s z S6000 Syntax Set the host name of the system. hostname name To delete a hostname assigned, enter no hostname. Parameters Defaults Command Modes Command History Usage Information name Enter a text string, up to 32 characters long. FTOS CONFIGURATION Version 8.3.12.0 Changed default from “FTOS” to “FTOS” Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series.
The password configured by the ip ftp password command is used when you use the ftp: parameter in the copy command. Related Commands copy Copy files. ip ftp username Set the user name for FTP sessions. ip ftp source-interface s z S6000 Syntax Specify an interface’s IP address as the source IP address for FTP connections. ip ftp source-interface interface To delete an interface, use the no ip ftp source-interface interface command.
www.dell.com | support.dell.com Syntax ip ftp username username To return to anonymous FTP connections, use the no ip ftp username [username] command. Parameters Defaults Command Modes Command History Usage Information Related Commands username Enter a text string as the user name up to 40 characters long. No user name is configured. CONFIGURATION Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series.
Parameters Defaults Command Modes Command History Related Commands interface Enter the following keywords and slot/port or number information: • For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For Loopback interfaces, enter the keyword loopback followed by a number from zero (0) to 16383.
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. You cannot delete a terminal connection. access-class Restrict incoming connections to a particular IP address in an IP access control list (ACL). password Specify a password for users on terminal lines. show memory (S-Series) Display the stack-unit(s) status.
ipv6-address (OPTIONAL) Enter the IPv6 address, in the x:x:x:x::x format, to which you are testing connectivity. Note: The :: notation specifies successive hexadecimal fields of zeros count Enter the number of echo packets to be sent. number: 1- 2147483647 Continuous: transmit echo request continuously Default: 5 datagram size Enter the ICMP datagram size. Range: 100 - 15360 bytes Default: 100 timeout Enter the interval to wait for an echo reply before timing out.
www.dell.com | support.dell.com Defaults Command Modes sweep-interval Enter the incremental value for sweep size. 1-15308 seconds interface (IPv4 only) Enter the outgoing interface for multicast packets. • Enter the IP address in A.B.C.D format • For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
FTOS# The following table provides descriptions for the status response symbols displayed in output. Table 1 ping command Status Response Symbols and Descriptions Symbol Description ! Each exclamation point indicates receipt of a reply .
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information * Enter the asterisk character * to send a message to all tty lines. line Send a message to a specific line. Range: 0 to 11 console Enter the keyword console to send a message to the Primary terminal line. vty Enter the keyword vty to send a message to the Virtual terminal. No default behavior or values EXEC Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000.
Command Modes Command History Usage Information CONFIGURATION Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. If you do not specify parameters and enter service timestamps, it appears as service timestamps debug uptime in the running-configuration. Use the show running-config command to view the current options set for the service timestamps command.
www.dell.com | support.dell.com Command History Usage Information H Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. Reload the system to reset the command-tree counters.
Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. Traffic statistics are sorted on a per-interface basis; the interface receiving the most traffic is displayed first. All CPU and port information is displayed unless a specific port or CPU is specified. Traffic information is displayed for router ports only; not for management interfaces.
www.dell.com | support.dell.com Parameters Command Modes all Enter the keyword all to view all components. fan Enter the keyword fan to view information on the fans. The output of this command is chassis dependent. stack-unit unit-id Enter the keyword stack-unit followed by the unit-id to display information on a specific stack member. Unit ID range: S4810: 0-11 pem Enter the keyword pem to view only information on power entry modules. EXEC EXEC Privilege Command History Version 9.0.2.
Example (show environment fan) FTOS#s6000#show environment fan -- Fan Status -Unit Bay TrayStatus Fan0 Speed Fan1 Speed ----------------------------------------------------------------------------------0 0 up up 10134 up 10031 0 1 up up 10031 up 10134 0 2 up up 10031 up 10031 Speed in RPM * FTOS# Example (show environment pem) FTOS#s6000#show environment pem Example (show environment stack-unit) FTOS#show environment stack-unit 0 -- Power Supplies -Unit Bay Status Type FanStatus FanSpeed(rpm) --------
www.dell.com | support.dell.com Usage Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. If there are no fiber ports in the unit, then just the header under show inventory media will be displayed. If there are fiber ports but no optics inserted, then the output will display “ Media not present or accessible”. Example 1 (show inventory for S6000) FTOS# -s6000#show inventory System Type : S6000 System Mode : 1.
* 0 Z9000-01-40GE-AC Z8FX113100314 7520052401 E MY-08R4VK-75412-1BA-0474 A00 ABC1234 0 Z9000-PWR-AC N/A N/A N/A N/A N/A N/A 0 Z9000-FAN Z5FX112500170 7520051702 A MY-08R4VK-75412-1BA-0474 A00 ABC1234 0 Z9000-FAN Z5FX113300293 7520051702 A N/A N/A N/A 0 Z9000-FAN Z5FX113300160 7520051702 A MY-08R4VK-75412-1BA-0474 A00 ABC1234 0 Z9000-FAN Z5FX113300136 7520051702 A MY-08R4VK-75412-1BA-0474 A00 ABC1234 * - Management Unit Related Commands show interfaces interface configuration.
www.dell.com | support.dell.com show processes cpu (S-Series) s z S6000 Syntax Display CPU usage information based on processes running in an S-Series. show processes cpu [management-unit 1-99 [details] | stack-unit id | summary | ipc | memory [stack-unit id]] Parameters Command Modes management-unit1-99 [details] (OPTIONAL) Display processes running in the control processor. The 1-99 variable sets the number of tasks to display in order of the highest CPU usage in the past five (5) seconds.
CPU utilization for five seconds: 1%/0%; one minute: 10%; five minutes: 2% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 272 20 2 10000 0.00% 0.00% 0.00% 0 topoDPC 271 0 0 0 0.00% 0.00% 0.00% 0 bcmNHOP 270 0 0 0 0.00% 0.00% 0.00% 0 bcmDISC 269 0 0 0 0.00% 0.00% 0.00% 0 bcmATP-RX 268 0 0 0 0.00% 0.00% 0.00% 0 bcmATP-TX 267 30 3 10000 0.00% 0.00% 0.00% 0 bcmSTACK 266 380 38 10000 0.00% 0.00% 0.08% 0 bcmRX 265 30 3 10000 0.00% 0.00% 0.00% 0 bcmLINK.0 264 0 0 0 0.00% 0.00% 0.
www.dell.com | support.dell.com 86 arpm 83 ospf 80 dsm 74 74 30 3 10000 0.00% 0.00% 0.00% 0 40 4 10000 0.00% 0.00% 0.00% 0 100 10 10000 0.00% 0.00% 60 6 10000 0.00% 0.00% 0.00% 0 0.00% 0 rtm 70 30 3 10000 0.00% 0.00% 0.00% 0 rip 68 120 ipm1 64 70 acl 63 30 bcmLINK.1 62 290 bcmCNTR.1 61 50 bcmRX 60 40 bcmLINK.0 59 0 bcmXGS3AsyncTX 58 0 bcmTX 57 340 bcmCNTR.
Example 4 FTOS#show processes memory Memory Statistics On Unit 0 Processor (bytes) ========================================== start Total : 160231424, MaxUsed : 130596864 [09/19/2007 03:11:17] CurrentUsed: 130596864, CurrentFree: 29634560 SharedUsed : 14261872, SharedFree : 6709672 PID Process ResSize Size Allocs Frees Max Current 124 KernLrnAgMv 140410880 0 0 0 0 0 117 frrp 5677056 217088 87650 0 87650 87650 116 xstp 7585792 1536000 551812 49692 518684 502120 109 span 5709824 221184 55386 0 55386 55386 10
www.dell.com | support.dell.
show interfaces stack-unit Display information on all interfaces on a specific S-Series stack member. show processes memory (S-Series) Display CPU usage information based on processes running in an S-Series show processes ipc flow-control s z S6000 Syntax Parameters Display the Single Window Protocol Queue (SWPQ) statistics. show processes ipc flow-control [cp | rp1 | rp2 | lp linecard-number] cp (OPTIONAL) Enter the keyword cp to view the Control Processor’s SWPQ statistics.
www.dell.com | support.dell.com DHCP0 ACL0 0 6 25 25 DHCP0 IPMGR0 0 25 25 DHCP0 IFMGR0 0 25 25 1 0 0 6 0 0 0 0 0 0 0 0 0 0 !--------------------------output truncated ---------------------------------! Table 4-1 list the definitions of the fields. Table 4-1.
Q Statistics on CP Processor TxProcess RxProcess Max Retra 10 100 25 25 25 100 25 25 25 25 20 20 25 25 90 Len Mark Out ies Sent 0 0 0 0 0 Msg Ack Aval Rcvd Retra DIFFSERV0 0 0 0 0 0 0 10 ACL0 IGMP0 0 0 0 0 0 0 10 ACL0 PIM0 0 0 0 0 0 0 10 LACP0 IFMGR0 0 0 0 0 0 0 25 RTM0 ARPMGR0 0 0 0 MACMGR0 ACL0 0 0 0 ARPMGR0 MRTM0 0 0 DHCP0 ACL0 0 1 0 0 0 0 0 0 0 0 0 136 0 0 0 10 25 0 1 100 1 25 DHCP0 IFMGR0 0 0 0 0 0 0 25 L
www.dell.com | support.dell.com SWP-2-NOMORETIMEOUT • In the display output in Figure , a retry (Retries) value of zero indicates that the SWP mechanism reached the maximum number of retransmissions without an acknowledgment. show processes memory (S-Series) s z S6000 Syntax Parameters Command Modes Display memory usage information based on processes running in the S-Series system.
dsagt MacAgent Example 6504 269778 0 0 6504 269778 6504 269778 FTOS#show processes management-unit Total : CurrentUsed: SharedUsed : 151937024, MaxUsed : 98848768, CurrentFree: 13007848, SharedFree : PID Process Current 337 KernLrnAgMv 0 331 vrrp 50572 323 frrp 369238 322 xstp 38328 321 pim 62168 314 igmp 2024 313 mrtm 72758 308 l2mgr 354242 301 l2pm 253478 298 arpm ResSize Size 117927936 0 111800320 [2/25/2008 4:18:53] 53088256 7963696 Allocs Frees 0 Max 0 0 5189632 249856 50572 52060
www.dell.com | support.dell.com Table 4-2. Descriptions of show processes memory output Field Description ResSize Actual resident size of the process in memory Size Process test, stack, and data size Allocs Total dynamic memory allocated Frees Total dynamic memory freed Max Maximum dynamic memory allocated Current Current dynamic memory in use show software ifm s z S6000 Syntax Display interface management (IFM) data.
Command Mode EXEC EXEC Privilege Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series.
www.dell.com | support.dell.com Command History Usage Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. version 9.0.2.0 Modified output: brief parameter no longer displays the current reload mode. To display the reload mode, use the command show reload-type. Modified show system stack-unit command output to support Piece Part ID (PPID). Version 7.8.1.0 Modified output: Boot Flash field will display code level for boot code 2.8.
FTOS# Example FTOS#show system -- Unit 0 -Unit Type : Status : Next Boot : Required Type : Current Type : Master priority : Hardware Rev : Num Ports : Up Time : FTOS Version : Jumbo Capable : POE Capable : Boot Flash : BIOS version : Memory Size : Temperature : Voltage : Serial Number : Part Number : Vendor Id : Date Code : Country Code : Piece Part ID : Version : Service Tag : Auto Reboot : Burned In MAC : No Of MACs : stack-unit 0 Management Unit online online Z9000 - 32-port TE/FG (ZB) Z9000 - 32-port
www.dell.com | support.dell.com show tech-support (S-Series and Z-Series) s z S6000 Syntax Parameters Display a collection of data from other show commands, necessary for Dell Networking technical support to perform troubleshooting on S-Series switches. show tech-support [stack-unit unit-id | page] stack-unit (OPTIONAL) Enter the keyword stack-unit to view CPU memory usage for the stack member designated by unit-id.
1 2 3 drwdrwx d--4 -rw5 -rw6 -rw7 -rw8 -rw- 16384 Jan 01 1980 00:00:00 +00:00 . 1536 Jul 13 1996 02:38:06 +00:00 .. 512 Nov 20 2007 15:46:44 +00:00 ADMIN_DIR 7124 Jul 13 1996 02:33:04 +00:00 startup-config 3303 Feb 14 2008 22:01:16 +00:00 startup-config.oldChassis 6561 May 17 1996 04:10:54 +00:00 startup-config.bak 6539 May 29 1996 10:35:42 +00:00 test.
www.dell.com | support.dell.com Usage Information Without the page or stack-unit option, the command output is continuous, use Ctrl-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command. The save entry should always be the last option.
EXEC Privilege Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. telnet s z S6000 Syntax Connect through Telnet to a server. telnet {host | ip-address | ipv6-address prefix-length} [source-interface] Parameters Defaults Command Modes host Enter the name of a server. ip-address Enter the IPv4 address in dotted decimal format of the server.
www.dell.com | support.dell.com telnet-peer-stack-unit sz Open a Telnet connection to the peer stack unit. Syntax telnet-peer-stack-unit Defaults Command Modes Not configured. EXEC EXEC Privilege Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. terminal length s z S6000 Syntax Configure the number of lines displayed on the terminal screen.
Parameters Defaults Command Modes host Enter the name of device. ip-address Enter the IP address of the device in dotted decimal format. ipv6-address Enter the IPv6 address, in the x:x:x:x::x format, to which you are testing connectivity. Note: The :: notation specifies successive hexadecimal fields of zeros Timeout = 5 seconds; Probe count = 3; 30 hops max; 40 byte packet size; UDP port = 33434 EXEC EXEC Privilege Command History Usage Information Version 9.0.2.0 Introduced on S6000.
www.dell.com | support.dell.com Type Ctrl-C to abort. ---------------------------------------------------------------------------------------packets ---------------------------------------------------------------------------------------Hops Hostname Probe1 Probe2 Probe3 1 3ffe:501:ffff:100:201:e8ff:fe00:4c8b 000.000 ms 000.000 ms 000.000 ms FTOS# Tracing the route to 3ffe:501:ffff:100:201:e8ff:fe00:4c8b, 64 hops max, 60 byte Related Commands ping Test connectivity to a device.
Command Modes Usage Information Command History Related Commands CONFIGURATION IPv4 and IPv6 virtual addresses can be configured at the same time, but only one address of each type. Each time this command is issued, it will replace the previously configured address of the same IPv4 or IPv6 family. The "no virtual-ip" command now takes an address/ prefix-length argument, so that only the specified address is removed.
| Control and Monitoring www.dell.com | support.dell.
5 802.1X The 802.
www.dell.com | support.dell.com Important Points to Remember FTOS limits network access for certain users by using VLAN assignments. 802.1X with VLAN assignment has these characteristics when configured on the switch and the RADIUS server. and S6000 802.1X is supported on s S-Series (S25/S50), 802.1X is not supported on the LAG or the channel members of a LAG. If no VLAN is supplied by the RADIUS server or if 802.
Defaults Disabled Command Modes Command History EXEC Privilege Version 9.0.2.0 Introduced on S6000 Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.0 Introduced on S-Series dot1x auth-fail-vlan Configure an authentication failure VLAN for users and devices that fail 802.1X authentication. s S6000 dot1x auth-fail-vlan vlan-id [max-attempts number] Syntax To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlan-id [max-attempts number] command.
www.dell.com | support.dell.com dot1x guest-vlan Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. show dot1x interface Display the 802.1X configuration of an interface. dot1x auth-server s S6000 Syntax Defaults Command Modes Command History Configure the authentication server to RADIUS. dot1x auth-server radius No default behavior or values CONFIGURATION Version 9.0.2.0 Introduced on S6000 Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.
To disable MAB-only authentication on a port, enter the no dot1x auth-type mab-only command. Related Commands dot1x mac-auth-bypass Enable MAC authentication bypass. dot1x authentication (Configuration) s S6000 Syntax Enable dot1x globally; dot1x must be enabled both globally and at the interface level. dot1x authentication To disable dot1x on an globally, use the no dot1x authentication command. Defaults Command Modes Command History Related Commands Disabled CONFIGURATION Version 9.0.2.
www.dell.com | support.dell.com dot1x guest-vlan Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. s S6000 dot1x guest-vlan vlan-id Syntax To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command. Parameters Defaults Command Modes Command History Usage Information vlan-id Enter the VLAN Identifier. Range: 1 to 4094 Not configured CONFIGURATION (conf-if-interface-slot/port) Version 9.0.2.0 Introduced on S6000 Version 8.3.12.
dot1x host-mode s S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Enable single-host or multi-host authentication. dot1x host-mode {single-host | multi-host | multi-auth} single-host Enable single-host authentication. multi-host Enable multi-host authentication. multi-auth Enable multi-supplicant authentication. single-host INTERFACE Version 9.0.2.0 Introduced on S6000 Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.
www.dell.com | support.dell.com dot1x max-eap-req s S6000 Syntax Configure the maximum number of times an EAP (Extensive Authentication Protocol) request is transmitted before the session times out. dot1x max-eap-req number To return to the default, use the no dot1x max-eap-req command. Parameters Defaults Command Modes Command History number Enter the number of times an EAP request is transmitted before a session time-out. Range: 1 to 10 Default: 2 2 INTERFACE Version 9.0.2.
dot1x port-control Enable port control on an interface. s S6000 Syntax Parameters Defaults Command Modes Command History Usage Information dot1x port-control {force-authorized | auto | force-unauthorized} force-authorized Enter the keyword force-authorized to forcibly authorize a port. auto Enter the keyword auto to authorize a port based on the 802.1X operation result. force-unauthorized Enter the keyword force-unauthorized to forcibly de-authorize a port.
www.dell.com | support.dell.com dot1x reauthentication s S6000 Syntax Enable periodic re-authentication of the client. dot1x reauthentication [interval seconds] To disable periodic re-authentication, use the no dot1x reauthentication command. Parameters Defaults Command Modes Command History (Optional) Enter the keyword interval followed by the interval time, in seconds, after which re-authentication will be initiated.
dot1x server-timeout s S6000 Syntax Configure the amount of time after which exchanges with the server time out. dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters Defaults Command Modes Command History Usage Information seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant. Default: 30 30 seconds INTERFACE Version 9.0.2.0 Introduced on S6000 Version 8.3.12.0 Introduced on the S4810. Version 8.4.
www.dell.com | support.dell.com Parameters seconds Defaults 30 seconds Command Modes Command History Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant. Default: 30 INTERFACE Version 9.0.2.0 Introduced on S6000 Version 8.3.12.0 Introduced on the S4810. Version 8.4.1.0 Introduced on S-Series dot1x tx-period s S6000 Syntax Configure the intervals at which EAPOL PDUs are transmitted by the Authenticator PAE.
Parameters Defaults Command Modes interface Enter one of the following keywords and slot/port or number information: • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. • For a Ten Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information. mac-address (Optional) MAC address of an 802.
www.dell.com | support.dell.com show dot1x interface s S6000 Syntax Parameters Defaults Command Modes Display the 802.1X configuration of an interface. show dot1x interface interface [mac-address mac-address] interface Enter one of the following keywords and slot/port or number information: • For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Auth Type: 2 30 seconds 30 seconds 3600 seconds 2 SINGLE_HOST Auth PAE State: Backend State: Initialize Initialize FTOS# Example (show dot1x interface mac-address) FTOS#show dot1x interface gig 2/21 mac-address 00:00:01:00:07:00 802.
www.dell.com | support.dell.
6 Access Control Lists (ACL) Overview Access Control Lists (ACLs) are supported on platforms s z The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters Defaults Command Modes text Enter a text string up to 80 characters long. Not enabled. CONFIGURATION-STANDARD-ACCESS-LIST CONFIGURATION-EXTENDED-ACCESS-LIST CONFIGURATION-MAC ACCESS LIST-STANDARD CONFIGURATION-MAC ACCESS LIST-EXTENDED Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Introduced on S-Series. remark s z S6000 Syntax Enter a description for an ACL entry.
Example Figure 6-1. Command Example: remark FTOS(config-std-nacl)#remark 10 Deny rest of the traffic FTOS(config-std-nacl)#remark 5 Permit traffic from XYZ Inc. FTOS(config-std-nacl)#show config ! ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.0/24 remark 10 Deny rest of the traffic seq 10 Deny any FTOS(config-std-nacl)# Related Commands show config Display the current ACL configuration.
www.dell.com | support.dell.com The following commands allow you to clear, display, and assign IP ACL configurations. • • • • • access-class clear counters ip access-group ip access-group ip control-plane egress-filter show ip accounting access-list Note: See also Commands Common to all ACL Types. access-class s z S6000 Syntax Apply a standard ACL to a terminal line. access-class access-list-name To remove an ACL, use the no access-class access-list-name command.
ip access-group s z S6000 Syntax Assign an IP access list (IP ACL) to an interface. ip access-group access-list-name {in | out} [implicit-permit] [vlan vlan-id] To delete an IP access-group configuration, use the no ip access-group access-list-name {in | out} [implicit-permit] [vlan vlan-id] command. Parameters Defaults Command Modes Command History Usage Information access-list-name Enter the name of a configured access list, up to 140 characters.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on the Z9000. show ip accounting access-list s z S6000 Syntax Parameters Display the IP access-lists created on the switch and the sequence of filters. show ip accounting {access-list access-list-name | cam_count} interface interface access-list-name Enter the name of the ACL to be displayed. cam_count List the count of the CAM rules for this ACL.
Table 6-1. show ip accounting access-lists Command Example Field Field Description “seq 5...” Displays the filter. If the keywords count or byte were configured in the filter, the number of packets or bytes processed by the filter is displayed at the end of the line. “order 4” Displays the QoS order of priority for the ACL entry. Standard IP ACL Commands When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an implicit permit.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order of priority for the ACL entry.
Usage Information Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Added support for S-Series Version 6.5.1.0 Expanded to include the optional QoS order priority for the ACL entry. FTOS supports one ingress and one egress IP ACL per interface. Prior to 7.8.1.0, names are up to 16 characters long. The number of entries allowed per ACL is hardware-dependent.
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION-STANDARD-ACCESS-LIST Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Add DSCP value for ACL matching. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 7.6.1.0 Added support for S-Series Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry.
Usage Information Related Commands Version7.6.1.0 Support added for S-Series Version 7.4.1.0 Introduced When all sequence numbers have been exhausted, this feature permits re-assigning new sequence number to entries of an existing access-list. resequence prefix-list ipv4 Resequence a prefix list resequence prefix-list ipv4 s z S6000 Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing prefix list.
www.dell.com | support.dell.com seq s z S6000 Syntax Assign a sequence number to a deny or permit filter in an IP access list while creating the filter. seq sequence-number {deny | permit} {source [mask] | any | host ip-address}} [count [byte] ] [dscp value] [order] [fragments] To delete a filter, use the no seq sequence-number command. Parameters Defaults Command Modes 122 | Enter a number from 0 to 4294967290.
The order option works across ACL groups that have been applied on an interface via QoS policy framework. The order option takes precedence over the seq sequence-number. If sequence-number is not configured, then rules with the same order value are ordered according to their configuration order. If the sequence-number is configured, then the sequence-number is used as a tie breaker for rules with the same order.
www.dell.com | support.dell.com deny s z S6000 Syntax deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} [count [byte]] [dscp value] [order] [fragments] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} command.
The S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented.. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related Commands deny tcp Assign a filter to deny TCP packets. deny udp Assign a filter to deny UDP packets. ip access-list extended Create an extended ACL.
www.dell.com | support.dell.com Usage Information Version 8.3.1.0 Added dscp keyword. Version 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. Version 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. The order option is relevant in the context of the Policy QoS feature only. See the “Quality of Service” chapter of the FTOS Configuration Guide for more information.
port port Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535. The following list includes some common TCP port numbers: • • • • Defaults Command Modes Command History Usage Information 23 = Telnet 20 and 21 = FTP 25 = SMTP 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
www.dell.com | support.dell.
Defaults Command Modes Command History Usage Information destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter.
www.dell.com | support.dell.com But an ACL rule with TCP port lt 1023 takes only one entry in the CAM: Rule# Data 1 Mask From 0000000000000000 1111110000000000 0 To #Covered 1023 1024 Total Ports: 1024 Related Commands deny Assign a deny filter for IP traffic. deny tcp Assign a deny filter for TCP traffic. ip access-list extended s z S6000 Syntax Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols.
permit s z S6000 Syntax Configure a filter to pass IP packets meeting the filter criteria.
www.dell.com | support.dell.com The S-Series cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related Commands ip access-list extended Create an extended ACL. permit tcp Assign a permit filter for TCP packets. permit udp Assign a permit filter for UDP packets.
Defaults Command Modes Command History Usage Information port port Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535. The following list includes some common TCP port numbers: 23 = Telnet 20 and 21 = FTP 25 = SMTP 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
www.dell.com | support.dell.
Defaults Command Modes Command History Usage Information destination Enter the IP address of the network or host to which the packets are sent. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
www.dell.com | support.dell.com 1 0000000000000000 1111110000000000 0 1023 1024 Total Ports: 1024 Related Commands ip access-list extended Configure an extended ACL. permit Assign a permit filter for IP packets. permit tcp Assign a permit filter for TCP packets. resequence access-list s z S6000 Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing access-list.
resequence prefix-list ipv4 s z S6000 Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing prefix list. resequence prefix-list ipv4 {prefix-list-name StartingSeqNum Step-to-increment} prefix-list-name Enter the name of configured prefix list, up to 140 characters long. StartingSeqNum Enter the starting sequence number to resequence. Range: 0 – 65535 Step-to-Increment Enter the step to increment the sequence number.
www.dell.com | support.dell.com ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list will permit all IP protocols. tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
Usage Information The order option is relevant in the context of the Policy QoS feature only. The following applies: The seq sequence-number is applicable only in an ACL group. The order option works across ACL groups that have been applied on an interface via QoS policy framework. The order option takes precedence over the seq sequence-number. If sequence-number is not configured, then rules with the same order value are ordered according to their configuration order.
www.dell.com | support.dell.com mac access-group s z S6000 Syntax Apply a MAC ACL to traffic entering or exiting an interface. mac access-group access-list-name {in [vlan vlan-range] | out} To delete a MAC access-group, use the no mac access-group mac-list-name command. Parameters Defaults Command Modes Command History Usage Information access-list-name Enter the name of a configured MAC access list, up to 140 characters. vlan vlan-range (OPTIONAL) Enter the keyword vlan followed a range of VLANs.
Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters. interface interface Enter the keyword interface followed by the one of the following keywords and slot/port or number information: • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Standard MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. s platforms (except the S4810 system) support Ingress MAC ACLs only. S6000 and Z9000 support both Ingress and Egress MAC ACLs. The The following commands configure standard MAC ACLs: • • • • deny mac access-list standard permit seq Note: See also Commands Common to all ACL Types and Common MAC Access List Commands.
Related Commands permit Configure a MAC address filter to pass packets. seq Configure a MAC address filter with a specified sequence number. mac access-list standard s z S6000 Syntax Name a new or existing MAC access control list (MAC ACL) and enter the MAC ACCESS LIST mode to configure a standard MAC ACL. See Commands Common to all ACL Types and Common MAC Access List Commands.
www.dell.com | support.dell.com permit s z S6000 Syntax Configure a filter to forward packets from a specific source MAC address. permit {any | mac-source-address [mac-source-address-mask]} [count [byte]] To remove this filter, you have two choices: Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no permit {any | mac-source-address mac-source-address-mask} command.
Defaults Command Modes permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. any Enter the keyword any to filter all packets. mac-source-address Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-source-address-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match).
www.dell.com | support.dell.com deny s z S6000 Syntax Configure a filter to drop packets that match the filter criteria.
Related Commands permit Configure a filter to forward based on MAC addresses. seq Configure a filter with specific sequence numbers. mac access-list extended s z S6000 Syntax Name a new or existing extended MAC access control list (extended MAC ACL). mac access-list extended access-list-name [cpu-qos] To delete a MAC access list, use the no mac access-list extended access-list-name command.
www.dell.com | support.dell.com permit s z S6000 Syntax Configure a filter to pass packets matching the criteria specified.
Related Commands deny Configure a filter to drop traffic based on the MAC address. seq Configure a filter with specific sequence numbers. seq s z S6000 Syntax Configure a filter with a specific sequence number. seq sequence-number {deny | permit} {any | host mac-address | mac-source-address mac-source-address-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] To delete a filter, use the no seq sequence-number command.
www.dell.com | support.dell.com Version 8.3.11.1 Introduced on the Z9000. Version 9.0.2.0 Support added for S-Series Note: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. Related Commands deny Configure a filter to drop traffic. permit Configure a filter to forward traffic.
deny s z S6000 Syntax Configure a filter to drop packets meeting the criteria specified. deny ip-prefix [ge min-prefix-length] [le max-prefix-length] To delete a drop filter, use the no deny ip-prefix command. Parameters Defaults ip-prefix Specify an IP prefix in the network/length format. For example, 35.0.0.0/ 8 means match the first 8 bits of address 35.0.0.0. ge min-prefix-length (OPTIONAL) Enter the keyword ge followed by the minimum prefix length, which is a number from zero (0) to 32.
www.dell.com | support.dell.com Usage Information Prefix lists redistribute OSPF and RIP routes meeting specific criteria. For related RIP commands, see Chapter 36, Router Information Protocol (RIP). For related OSPF commands supported on all three platforms, see Chapter 29, Open Shortest Path First (OSPFv2). Prior to 7.8.1.0, names are up to 16 characters long. Related Commands show ip route list Display IP routes in an IP prefix list.
Parameters Defaults sequence-number Enter a number. Range: 1 to 4294967294. deny Enter the keyword deny to configure a filter to drop packets meeting this condition. permit Enter the keyword permit to configure a filter to forward packets meeting this condition. any (OPTIONAL) Enter the keyword any to match any packets. ip-prefix /nn (OPTIONAL) Specify an IP prefix in the network/length format. For example, 35.0.0.0/8 means match the first 8 bits of address 35.0.0.0.
www.dell.com | support.dell.com FTOS(conf-nprefixl)# show ip prefix-list detail s z S6000 Syntax Parameters Command Modes Display details of the configured prefix lists. show ip prefix-list detail [prefix-name] prefix-name (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.
Example Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Figure 6-11.
www.dell.com | support.dell.com • test cam-usage cam-acl s S6000 Syntax Parameters Command Modes Command History Usage Information Allocate space for IPv6 ACLs. cam-acl {default | l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10} default Use the default CAM profile settings, and set the CAM as follows.
Parameters Command Modes Command History Usage Information default Use the default CAM profile settings, and set the CAM as follows. L2 ACL(l2acl): 1 L3 ACL (ipv4acl): 1 IPv6 L3 ACL (ipv6acl): 2 l2acl 1-4 ipv4acl 1- 4 ipv6acl 0-4 Allocate space to support IPv6 ACLs. You must enter all of the profiles and a range for each. Enter the CAM profile name followed by the amount to be allotted. The total space allocated must equal 4. The ipv6acl range must be a factor of 2. CONFIGURATION Version 9.0.2.
www.dell.com | support.dell.com deny s S6000 Syntax Configure a filter that drops IPv6 packets that match the filter criteria. deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} To remove this filter, you have two choices: • • Parameters Use the no seq sequence-number command syntax if you know the filter’s sequence number or Use the no deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command. ip-protocol-number Enter an IPv6 protocol number.
destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zero. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. Defaults Not configured Command Modes ACCESS-LIST Command History Version 9.0.2.
www.dell.com | support.dell.com port port Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535. The following list includes some common TCP port numbers: • • • • destination address 23 = Telnet 20 and 21 = FTP 25 = SMTP 169 = SNMP Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format.
Total Ports: 1024 Related Commands deny Assign a filter to deny IP traffic. deny udp Assign a filter to deny UDP traffic. deny udp s S6000 Syntax Configure a filter to drop UDP packets meeting the filter criteria.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (gt, lt, range) may require more than one entry. The range of ports is configured in the CAM based on bitmask boundaries; the space required depends on exactly what ports are included in the range.
Command History Usage Information Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. You can assign an IPv6 access group to a physical, LAG, or VLAN interface context. Figure 6-13.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. permit s S6000 Syntax Select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP to configure a filter that match the filter criteria.
any Enter the keyword any to specify that all routes are subject to the filter. host ipv6-address Enter the keyword host followed by the IPv6 address of the host in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. Range: /0 to /128 The :: notation specifies successive hexadecimal fields of zero.
www.dell.com | support.dell.com operator (OPTIONAL) Enter one of the following logical operand: • • • • • eq = equal to neq = not equal to gt = greater than lt = less than range = inclusive range of ports (you must specify two port for the port parameter.) port port Enter the application layer port number. Enter two port numbers if using the range logical operand. Range: 0 to 65535.
8 0001111101000000 1111111111111111 8000 8000 1 Total Ports: 4001 But an ACL rule with TCP port lt 1023 takes only one entry in the CAM: Rule# 1 Data Mask From 0000000000000000 1111110000000000 0 To #Covered 1023 1024 Total Ports: 1024 Related Commands permit Assign a permit filter for IPv6 packets. permit udp Assign a permit filter for UDP packets. permit udp s S6000 Syntax Configure a filter to pass UDP packets meeting the filter criteria.
www.dell.com | support.dell.com count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. Defaults Not configured. Command Modes ACCESS-LIST Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Usage Information Most ACL rules require one entry in the CAM.
Command Modes ACCESS-LIST Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Example Figure 6-14.
www.dell.com | support.dell.com Usage Information Related Commands When all sequence numbers have been exhausted, this feature permits re-assigning new sequence number to entries of an existing access-list. resequence prefix-list ipv6 Resequence a prefix list resequence prefix-list ipv6 s S6000 Syntax Parameters Defaults Command Modes Re-assign sequence numbers to entries of an existing prefix list.
permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. ipv6-protocol-number Enter an IPv6 protocol number. Range: 0 to 255 icmp Enter the keyword icmp to configure an Internet Control Message Protocol version 6 filter. ipv6 Enter the keyword ipv6 to configure any Internet Protocol version 6 filter. tcp Enter the keyword tcp to configure a Transmission Control protocol filter. udp Enter the keyword udp to configure a User Datagram Protocol filter.
www.dell.com | support.dell.com Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. deny Configure a filter to drop packets. permit Configure a filter to forward packets. show cam-acl s S6000 Syntax Command Modes Show space allocated for IPv6 ACLs. show cam-acl EXEC EXEC Privilege Command History Related Commands Examples Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810.
L2Acl Ipv4Acl Ipv6Acl Ipv4Qos L2Qos : : : : : 2 2 4 2 3 FTOS#show cam-acl show cam-acl-egress s S6000 Syntax Command Modes Show information on FP groups allocated for egress ACLs. show cam-acl-egress EXEC EXEC Privilege Command History Related Commands Examples Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. cam-acl Configure CAM profiles to support IPv6 ACLs Figure 6-17.
www.dell.com | support.dell.com ! ipv6 access-list Acl1 seq 5 permit ipv6 1111::2222/127 host 3333::1111 log count bytes seq 10 permit icmp host 3333:: any mobile-advertisement log seq 15 deny tcp any any rst seq 20 permit udp any any gt 100 count FTOS(conf-ipv6-acl)# show ipv6 accounting access-list s S6000 Syntax Parameters View the IPv6 access-lists created on the sequence of filters.
show running-config acl s S6000 Syntax Command Modes Display the ACL running configuration. show running-config acl EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Figure 6-20.
www.dell.com | support.dell.com QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single (or the first of several) interfaces. It is most useful when a policy is applied across multiple interfaces; it can reduce the impact to CAM usage across subsequent interfaces. Route Map Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit.
Parameters Defaults sequence-number (OPTIONAL) Enter the route map sequence number. Range: 1 - 65535 Default: no sequence number Not Configured Command Modes ROUTE-MAP Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Support added for S-Series Version 7.4.1.0 Introduced Usage Information The continue feature allows movement from one route-map entry to a specific route-map entry (the sequence number).
www.dell.com | support.dell.com description s z S6000 Syntax Add a description to this route map. description {description} To remove the description, use the no description {description} command. Parameters Defaults description Enter a description to identify the route map (80 characters maximum). No default behavior or values Command Modes ROUTE-MAP Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.
match community s z S6000 Syntax Configure a filter to match routes that have a certain COMMUNITY attribute in their BGP path. match community community-list-name [exact] To delete a community match filter, use the no match community command. Parameters Defaults community-list-name Enter the name of a configured community list. exact (OPTIONAL) Enter the keywords exact to process only those routes with this community list name. Not configured. Command Modes ROUTE-MAP Command History Version 9.0.
www.dell.com | support.dell.com Command History Related Commands Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Support added for S-Series match ip address Redistribute routes that match an IP address. match ip next-hop Redistribute routes that match the next-hop IP address. match ip route-source Redistribute routes that match routes advertised by other routers. match metric Redistribute routes that match a specific metric.
Parameters Defaults prefix-list prefix-list-name Enter the keywords prefix-list followed by the name of configured prefix list. Not configured. Command Modes ROUTE-MAP Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.
www.dell.com | support.dell.com match route-type Redistribute routes that match a route type. match tag Redistribute routes that match a specific tag. match metric s z S6000 Syntax Configure a filter to match on a specified value. match metric metric-value To delete a value, use the no match metric [metric-value] command. Parameters Defaults metric-value Enter a value to match. Range: zero (0) to 4294967295. Not configured. Command Modes ROUTE-MAP Command History Version 9.0.2.
Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Support added for S-Series match route-type s z S6000 Syntax Configure a filter to match routes based on the how the route is defined. match route-type {external [type-1 | type-2] | internal | level-1 | level-2 | local} To delete a match, use the no match route-type {local | internal | external [type-1 | type-2] | level-1 | level-2} command.
www.dell.com | support.dell.com Parameters tag-value Enter a value as the tag on which to match. Range: zero (0) to 4294967295. Defaults Not configured Command Modes ROUTE-MAP Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Support added for S-Series Related Commands match interface Redistribute routes that match the next-hop interface. match ip address Redistribute routes that match an IP address.
Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series \ Example Figure 6-21. Command Example: route-map FTOS(conf)#route-map dempsey FTOS(config-route-map)# Usage Information Use caution when you delete route maps because if you do not specify a sequence number, all route maps with the same map-name are deleted when you use no route-map map-name command. Prior to 7.8.1.
www.dell.com | support.dell.com To return to the default, enter no set automatic-tag. Defaults Not configured. Command Modes ROUTE-MAP Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.6.1.0 Support added for S-Series Related Commands set level Specify the OSPF area for route redistribution. set metric Specify the metric value assigned to redistributed routes. set metric-type Specify the metric type assigned to redistributed routes.
Related Commands match community Redistribute routes that match the COMMUNITY attribute. set community Specify a COMMUNITY attribute. set community s z S6000 Syntax Allows you to assign a BGP COMMUNITY attribute. set community {community-number | local-as | no-advertise | no-export | none} [additive] To delete a BGP COMMUNITY attribute assignment, use the no set community {community-number | local-as | no-advertise | no-export | none} command.
www.dell.com | support.dell.com set level s z S6000 Syntax Configure a filter to specify the IS-IS level or OSPF area to which matched routes are redistributed. set level {backbone | level-1 | level-1-2 | level-2 | stub-area} To remove a set level condition, use the no set level {backbone | level-1 | level-1-2 | level-2 | stub-area} command. Parameters Defaults backbone Enter the keyword backbone to redistribute matched routes to the OSPF backbone area (area 0.0.0.0).
Usage Information Related Commands The set local-preference command changes the LOCAL_PREF attribute for routes meeting the route map criteria. To change the LOCAL_PREF for all routes, use the bgp default local-preference command. bgp default local-preference Change default LOCAL_PREF attribute for all routes. set metric s z S6000 Syntax Configure a filter to assign a new metric to redistributed routes. set metric [+ | -] metric-value To delete a setting, enter no set metric.
www.dell.com | support.dell.com Defaults Not configured. Command Modes ROUTE-MAP Command History Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 8.3.1.0 Implemented internal keyword Version 7.6.1.0 Support added for S-Series set automatic-tag Compute the tag value of the route. set level Specify the OSPF area for route redistribution. set metric Specify the metric value assigned to redistributed routes.
set origin s z S6000 Syntax Configure a filter to manipulate the BGP ORIGIN attribute. set origin {igp | egp | incomplete} To delete an ORIGIN attribute setting, enter no set origin. Parameters Defaults egp Enter the keyword egp to set routes originating from outside the local AS. igp Enter the keyword igp to set routes originating within the same AS. incomplete Enter the keyword incomplete to set routes with incomplete routing information. Not configured.
www.dell.com | support.dell.com set weight s z S6000 Syntax Configure a filter to add a non-RFC compliant attribute to the BGP route to assist with route selection. set weight weight To delete a weight specification, use the no set weight weight command. Parameters Defaults weight Enter a number as the weight to be used by the route meeting the route map specification. Routes with a higher weight are preferred when there are multiple routes to the same destination.
Parameters Command Modes map-name (OPTIONAL) Enter the name of a configured route map, up to 140 characters. EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000 Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are up to 16 characters long. Version 7.6.1.0 Support added for S-Series Figure 6-23.
| Access Control Lists (ACL) www.dell.com | support.dell.
7 Boot Command Line Interface (BCLI) Overview All commands in this chapter are in BOOT_USER mode. These commands are supported on the Dell Networking platform. To access BOOT_USER mode, first boot your Dell Networking platform.When you see the “Press ESC to stop auto-boot”, press ESC to log into BCLI.
www.dell.com | support.dell.com boot change S6000 Syntax Change the primary, secondary, or default FTOS boot configuration. boot change {primary | secondary | default} Parameters Defaults primary Enter the keyword primary to configure the boot parameters used in the first attempt to boot FTOS. secondary Enter the keyword secondary to configure boot parameters used if the primary operating system boot selection is not available.
To view the current boot configuration, use the show bootvar command. Related Commands boot zero Remove the primary, secondary, or default boot image configuration. show bootvar Display boot configuration information. boot message S6000 Syntax Parameters Use this command to enable/disable boot logs during reload. boot message on| off on Enter the keyword on to turn on boot logs during reload. off Enter the keyword off to suppress the boot logs during reload. Note: By default, watchdog is disabled.
www.dell.com | support.dell.com Usage Information This command reverses changes made with the boot change command.
BOOT_USER # default-gateway S6000 Syntax Parameters Defaults Assign an IP address as the default gateway for the system. [no] default-gateway ip-address ip-address Not configured. Command Modes BOOT_USER Command History Version 9.0.2.0 Usage Information Related Commands Enter the IP address of the gateway router in dotted decimal format (A.B.C.D). Introduced on the S6000. Use the show default-gateway command to view the current default gateway.
www.dell.com | support.dell.com ignore startup-config S6000 Syntax Defaults During a reload, do not load the startup-config file. ignore startup-config disabled Command Modes BOOT_USER Command History Version 9.0.2.0 Usage Information Introduced on the S6000. Use this command if you have authentication procedures in the startup-config other than the enable-password setting. interface management ethernet ip address s S6000 Syntax Assign an IP address to the Management Ethernet interface.
Command History Version 9.0.2.0 Introduced on the S6000. show bootvar S6000 Syntax Display boot configuration information. show bootvar Command Modes BOOT_USER Command History Version 9.0.2.0 Example Introduced on the S6000.
www.dell.com | support.dell.com Related Commands default-gateway Configure the IP address for the default gateway. interface management ethernet ip address Assign an IP address to the Management Ethernet interface. show interface management ethernet S6000 Syntax Display the IP address configured for the Management interface. show interface management ethernet Command Modes BOOT_USER Command History Version 9.0.2.0 Example Introduced on the S6000.
Example Serial console BOOT_USER # serial console 0 9600 BOOT_USER # BOOT_USER # show serial console baud rate S6000 Syntax Use the show serial console to show the values of the serial console baud rate. show serial console baudrate Command Modes BOOT_USER Command History Version 9.0.2.0 Example Introduced on the S6000.
www.dell.com | support.dell.com Erasing NVRAM sectors....Erasing NvRam of size 1024 KB ... DONE watchdog S6000 Syntax Parameters Enable the watchdog timer, when the enabled watchdog timer is set to 60 seconds. enable/disable/status/timeout/settimeout watchdog timer enable Enter the keyword enable to enable the watchdog. disable Enter the keyword disable to disable the watchdog. status Enter the keyword status to see the watchdog status.
8 Bidirectional Forwarding Detection (BFD) Overview Bidirectional Forwarding Detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The FTOS implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including VLAN interfaces and port-channels. BFD is supported on the following platforms z that appear under each of the command headings.
www.dell.com | support.dell.com multiplier value Enter this keyword to specify the number of packets that must be missed in order to declare a session down. Range: 3 to 50 Default: 3 role [active | passive] Enter the role that the local system assumes: • Active—The active system initiates the BFD session. Both systems can be active for the same session. • Passive—The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
Syntax Parameters Defaults Command Modes Command History Usage Information neighbor {ip-address | peer-group-name} bfd ip-address Enter the IP address of the BGP neighbor that you want to explicitly enable for BFD sessions in dotted decimal format (A.B.C.D). peer-group-name Enter the name of the peer group that you want to explicitly enable for BFD sessions. None ROUTER BGP Version 9.0.2.0 Introduced on the S6000 Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810.
www.dell.com | support.dell.com Command Modes Command History Usage Information ROUTER BGP Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on the Z9000. Version 8.3.8.0 Introduced on the S4810. When you explicitly disable a BGP neighbor for a BFD session with the neighbor bfd disable command: • • The neighbor does not inherit the global BFD disable values configured with the neighbor bfd command or configured for the peer group to which the neighbor belongs.
9 Border Gateway Protocol Overview BGP is supported as shown in the following table. FTOS version Platform support 9.0.0.0 Z9000 8.3.7.0 S4810 9.0.2.0 S6000 z S6000 For detailed information on configuring BGP, refer to the BGP chapter in the FTOS Configuration Guide.
www.dell.com | support.dell.com BGP IPv4 Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS). BGP version 4 (BGPv4) supports Classless Inter Domain Routing (CIDR) and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically send messages to update those routing tables. Note: FTOS Version 7.7.
• • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • • clear ip bgp clear ip bgp dampening clear ip bgp flap-statistics debug ip bgp debug ip bgp dampening debug ip bgp events debug ip bgp keepalives debug ip bgp notifications debug ip bgp soft-reconfiguration debug ip bgp updates default-metric description distance bgp max-paths neighbor activate neighbor add-path neighbor advertisement-interval neighbor advertisement-start neighbor allowas-in neighbor default-originat
www.dell.com | support.dell.
aggregate-address s z S6000 Syntax Summarize a range of prefixes to minimize the number of entries in the routing table. aggregate-address ip-address mask [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] Parameters Defaults Command Modes ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x).
www.dell.com | support.dell.com bgp add-path Z S6000 Syntax Allow the advertisement of multiple paths for the same address prefix without the new paths replacing any previous ones. bgp add-path [send | receive | both] path-count Parameters Defaults Command Modes send Enter this keyword to indicate that the system will send multiple paths to peers. receive Enter this keyword to indicate that the system will accept multiple paths from peers.
bgp asnotation s z S6000 Syntax Enables you to implement a method for AS Number representation in the CLI. bgp asnotation [asplain | asdot+ | asdot] To disable a dot or dot+ representation and return to ASPLAIN, enter no bgp asnotation. Defaults Command Modes Usage Information asplain ROUTER BGP You must enable bgp four-octet-as-support before enabling this feature. If you disable four-octect-support after using dot or dot+ format, the AS Numbers revert to asplain text.
www.dell.com | support.dell.com bgp bestpath as-path ignore s z S6000 Syntax Include prefixes received from different AS paths during multipath calculations. bgp bestpath as-path ignore To return to the default, enter no bgp bestpath as-path ignore. Defaults Command Modes Usage Information Command History Disabled (that is, the software considers the AS_PATH when choosing a route as best). ROUTER BGP If you enable this command, use the clear ip bgp * command to recompute the best path. Version 9.0.2.
Defaults Command Modes Usage Information Command History Disabled ROUTER BGP The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the clear ip bgp * command to recompute the best path. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.
www.dell.com | support.dell.com Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series bgp client-to-client reflection s z S6000 Syntax Enables you to enable route reflection between clients in a cluster. bgp client-to-client reflection To disable client-to-client reflection, enter no bgp client-to-client reflection. Defaults Command Modes Usage Information Related Commands Command History Enabled when a route reflector is configured.
Related Commands Command History bgp client-to-client reflection Enable route reflection between route reflector and clients. neighbor route-reflector-client Configure a route reflector and clients. show ip bgp cluster-list View paths with a cluster ID. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series bgp confederation identifier s z S6000 Syntax Configure an identifier for a BGP confederation.
www.dell.com | support.dell.com Syntax bgp confederation peers as-number [...as-number] To return to the default, enter no bgp confederation peers. Parameters as-number Enter the AS number. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.65535 (Dotted format) ...as-number (OPTIONAL) Enter up to 16 confederation numbers. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.1-65535.65535 (Dotted format) Defaults Not configured.
Defaults Command Modes reuse (OPTIONAL) Enter a number as the reuse value, which is compared to the flapping route’s Penalty value. If the Penalty value is less than the reuse value, the flapping route is once again advertised (or no longer suppressed). Range: 1 to 20000. Default: 750 suppress (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value.
www.dell.com | support.dell.com Defaults Command Modes Usage Information Related Commands Command History 100 ROUTER BGP The bgp default local-preference command setting is applied by all routers within the AS. To set the local preference for a specific route, use the set local-preference command in the ROUTE-MAP mode. set local-preference Assign a local preference value for a specific route. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.
To disable fast external fallover, enter no bgp fast-external-fallover. Defaults Command Modes Usage Information Command History Enabled. ROUTER BGP The bgp fast-external-fallover command appears in the show config command output. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series bgp four-octet-as-support s z S6000 Syntax Enable 4-byte support for the BGP process.
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information restart-time seconds Enter the keyword restart-time followed by the maximum number of seconds needed to restart and bring-up all the peers. Range: 1 to 3600 seconds Default: 120 seconds stale-path-time seconds Enter the keyword stale-path-time followed by the maximum number of seconds to wait before restarting a peer’s stale paths. Default: 360 seconds.
bgp non-deterministic-med s z S6000 Syntax Compare MEDs of paths from different Autonomous Systems. bgp non-deterministic-med To return to the default, enter no bgp non-deterministic-med. Defaults Command Modes Usage Information Disabled (that is, paths/routes for the same destination but from different ASs will not have their MEDs compared). ROUTER BGP In non-deterministic mode, paths are compared in the order in which they arrive.
www.dell.com | support.dell.com Version 7.8.1.0 Introduced support on S-Series Version 7.2.1.0 Introduced bgp regex-eval-optz-disable s z S6000 Syntax Disables the Regex Performance engine that optimizes complex regular expression with BGP. bgp regex-eval-optz-disable To re-enable optimization engine, use the no bgp regex-eval-optz-disable command.
bgp router-id s z S6000 Syntax Assign a user-given ID to a BGP router. bgp router-id ip-address To delete a user-assigned IP address, enter no bgp router-id. Parameters Defaults Command Modes Usage Information Command History ip-address Enter an IP address in dotted decimal format to reset only that BGP neighbor. The router ID is the highest IP address of the Loopback interface or, if no Loopback interfaces are configured, the highest IP address of a physical interface on the router.
www.dell.com | support.dell.com Version 7.2.1.0 Introduced capture bgp-pdu neighbor s z S6000 Syntax Enable capture of an IPv4 BGP neighbor packet. capture bgp-pdu neighbor ipv4-address direction {both | rx | tx} To disable capture of the IPv4 BGP neighbor packet, use the no capture bgp-pdu neighbor ipv4-address command. Parameters ipv4-address Enter the IPv4 address of the target BGP neighbor.
Version 7.8.1.0 Introduced support on S-Series Version 7.5.1.0 Introduced clear ip bgp s z S6000 Syntax Parameters Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. clear ip bgp * | as-number | ip-address [flap-statistics | soft [in | out]] * Enter an asterisk ( * ) to reset all BGP sessions. as-number Enter the AS number to reset all neighbors belonging to that AS. Range: 0-65535 (2-Byte) or 1-4294967295 (4-Byte) or 0.
www.dell.com | support.dell.com Version 6.5.1.0 Expanded to include the as-number option clear ip bgp peer-group s z S6000 Syntax Parameters Reset a peer-group’s BGP sessions. clear ip bgp peer-group peer-group-name peer-group-name Enter the peer group name to reset the BGP sessions within that peer group. Command Modes EXEC Privilege Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.
regexp regular-expression (OPTIONAL) Enter the keyword regexp followed by regular expressions. Use one or a combination of the following: • • • • • • • • • Command Modes Usage Information Related Commands Command History . = (period) any single character (including a white space) * = (asterisk) the sequences in a pattern (0 or more sequences) + = (plus) the sequences in a pattern (1 or more sequences) ? = (question mark) sequences in a pattern (either 0 or 1 sequences).
www.dell.com | support.dell.com Command Modes Usage Information events Enter the keyword events to view BGP protocol events. ipv4 Enter the ipv4 IP address to view the IPV4 route information. ipv6 Enter the ipv6 IP address to view the IPV6 route information. keepalives Enter the keyword keepalives to view BGP keepalives. notifications Enter the keyword notifications to view BGP notifications.
Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series debug ip bgp events s z S6000 Syntax Display information on local BGP state changes and other BGP events. debug ip bgp [ip-address | peer-group peer-group-name] events [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] events command.
www.dell.com | support.dell.com Command Modes Usage Information Command History EXEC Privilege Enter no debug ip bgp command to remove all configured debug commands for BGP. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series debug ip bgp notifications s z S6000 Syntax Enables you to view information about BGP notifications received from neighbors.
Defaults Command Modes Usage Information Command History Disabled EXEC Privilege This command turns on BGP soft-reconfiguration inbound debugging. If no neighbor is specified, debug is turned on for all neighbors. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 7.2.1.0 Introduced debug ip bgp updates s z S6000 Syntax Enables you to view information about BGP updates.
www.dell.com | support.dell.com To return to the default setting, enter no default-metric. Parameters Defaults Command Modes Usage Information Related Commands Command History number Enter a number as the metric to be assigned to routes from other protocols. Range: 1 to 4294967295. 0 ROUTER BGP The default-metric command in BGP sets the value of the BGP MULTI_EXIT_DISC (MED) attribute for redistributed routes only. bgp always-compare-med Enable comparison of all BGP MED attributes.
To return to default values, enter no distance bgp. Parameters Defaults Command Modes external-distance Enter a number to assign to routes learned from a neighbor external to the AS. Range: 1 to 255. Default: 20 internal-distance Enter a number to assign to routes learned from a router within the AS. Range: 1 to 255. Default: 200 local-distance Enter a number to assign to routes learned from networks listed in the network command. Range: 1 to 255.
www.dell.com | support.dell.com Command Modes Usage Information ROUTER BGP If you enable this command, use the clear ip bgp * command to recompute the best path. For optimal configuration, set the number variable to the highest possible value. Dell Networking recommends maintaining the default setting or the next highest value. Command History Version 8.3.8.0 Command syntax changed to max-path (was maximum-paths). Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000.
Defaults Command Modes Related Commands Command History send Enter this keyword to indicate that the system will send multiple paths to peers. receive Enter this keyword to indicate that the system will accept multiple paths from peers. both Enter this keyword to indicate that the system will send and accept multiple paths from peers. path-count Enter the number paths supported.
www.dell.com | support.dell.com Syntax neighbor {ip-address} advertisement-start seconds To return to the default value, use the no neighbor {ip-address} advertisement-start command. Parameters Defaults Command Modes Command History ip-address Enter the IP address of the neighbor in dotted decimal format. seconds Enter a number as the time interval, in seconds, before BGP route updates are sent. Range: 0 to 3600 seconds. none ROUTER BGP Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Syntax neighbor {ip-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ip-address | peer-group-name} default-originate command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the default route of all routers in that peer group. route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of a configured route map.
www.dell.com | support.dell.com Syntax neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ip-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to apply the distribute list filter to all routers in the peer group.
Usage Information Command History To prevent loops, the neighbor ebgp-multihop command will not install default routes of the multihop peer. Networks not directly connected are not considered valid for best path selection. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series neighbor fall-over s z S6000 Syntax Enable or disable fast fall-over for BGP neighbors.
www.dell.com | support.dell.com as-path-name Enter the name of an established AS-PATH access list (up to 140 characters). If the AS-PATH access list is not configured, the default is permit (allow routes). in Enter the keyword in to filter inbound BGP routes. out Enter the keyword out to filter outbound BGP routes. Defaults Not configured. Command Modes ROUTER BGP ROUTER BGP-address-family Command History Version 9.0.2.0 Introduced on the S6000. Version 9.0.1.0 Introduced on the Z9000.
Version 7.8.1.0 Introduced support on S-Series neighbor local-as s z S6000 Syntax Configure Internal BGP (IBGP) routers to accept external routes from neighbors with a local AS number in the AS number path neighbor {ip-address | peer-group-name} local-as as-number [no-prepend] To return to the default value, use the no neighbor {ip-address | peer-group-name} local-as command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format.
www.dell.com | support.dell.com threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the software sends a message. Range: 1 to 100 percent. Default: 75 warning-only (OPTIONAL) Enter the keyword warning-only to set the router to send a log message when the maximum value is reached. If this parameter is not set, the router stops peering when the maximum number of prefixes is reached.
neighbor password s z S6000 Syntax Enable Message Digest 5 (MD5) authentication on the TCP connection between two neighbors. neighbor {ip-address | peer-group-name} password [encryption-type] password To delete a password, use the no neighbor {ip-address | peer-group-name} password command. Parameters ip-address Enter the IP address of the router to be included in the peer group. peer-group-name Enter the name of a configured peer group.
www.dell.com | support.dell.com neighbor peer-group (assigning peers) s z S6000 Syntax Enables you to assign one peer to a existing peer group. neighbor ip-address peer-group peer-group-name To delete a peer from a peer group, use the no neighbor ip-address peer-group peer-group-name command. Parameters ip-address Enter the IP address of the router to be included in the peer group. peer-group-name Enter the name of a configured peer group. Defaults Not configured.
Syntax neighbor peer-group-name peer-group To delete a peer group, use the no neighbor peer-group-name peer-group command. Parameters peer-group-name Defaults Not configured. Command Modes ROUTER BGP Usage Information Related Commands Command History Enter a text string up to 16 characters long as the name of the peer group. When a peer group is created, it is disabled (shut mode). neighbor peer-group (assigning peers) Assign routers to a peer group.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series neighbor remote-as s z S6000 Syntax Create and specify the remote peer to the BGP neighbor. neighbor {ip-address | peer-group-name} remote-as number To delete a remote AS entry, use the no neighbor {ip-address | peer-group-name} remote-as number command.
peer-group-name Defaults Command Modes Usage Information Enter the name of the peer group to remove the private AS numbers Disabled (that is, private AS number are not removed). ROUTER BGP Applies to EBGP neighbors only. You must configure your system to accept 4-Byte formats before entering a 4-Byte AS Number. If the AS-PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor, the private AS numbers are not removed.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series neighbor route-reflector-client s z S6000 Syntax Configure a neighbor as a member of a route reflector cluster.
Defaults Command Modes Usage Information Command History Not configured and COMMUNITY attributes are not sent to neighbors. ROUTER BGP To configure a COMMUNITY attribute, use the set community command in the ROUTE-MAP mode. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series neighbor shutdown s z S6000 Syntax Disable a BGP neighbor or peer group.
www.dell.com | support.dell.com To disable, use the no neighbor {ip-address | peer-group-name} soft-reconfiguration inbound command. Parameters Defaults Command Modes Usage Information ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to disable or enable all routers within the peer group. Disabled ROUTER BGP This command enables soft-reconfiguration for the BGP neighbor specified.
Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series neighbor timers s z S6000 Syntax Set keepalive and hold time timers for a BGP neighbor or a peer group. neighbor {ip-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ip-address | peer-group-name} timers command. Parameters Defaults Command Modes Usage Information ip-address Enter the IP address of the peer router in dotted decimal format.
www.dell.com | support.dell.com To use the closest interface, use the no neighbor {ip-address | peer-group-name} update-source interface command. Parameters ip-address Enter the IP address of the peer router in dotted decimal format. peer-group-name Enter the name of the peer group to disable all routers within the peer group. interface Enter the keyword loopback followed by a number of the loopback interface. Range: 0 to 16383. Defaults Not configured.
Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series network s z S6000 Syntax Specify the networks for the BGP process and enter them in the BGP routing table. network ip-address mask [route-map map-name] To remove a network, use the no network ip-address mask [route-map map-name] command. Parameters ip-address Enter an IP address in dotted decimal format of the network.
www.dell.com | support.dell.com To remove a network, use the no network ip-address mask backdoor command. Parameters ip-address Enter an IP address in dotted decimal format of the network. mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). Defaults Not configured.
Usage Information With FTOS version 8.3.1.0 and later, the redistribute command can be used to advertise the IGP cost as the MED on redistributed routes. When the route-map is set with metric-type internal and applied outbound to an EBGP peer/peer-group, the advertised routes corresponding to those peer/peer-group will have IGP cost set as MED.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series Version 8.3.1.0 Introduced ability to substitute IGP cost for MED when a peer/peer-group outbound route-map is set as internal. router bgp s z S6000 Syntax Enter ROUTER BGP mode to configure and enable BGP. router bgp as-number To disable BGP, use the no router bgp as-number command.
Incoming packet capture enabled for BGP neighbor 20.20.20.
www.dell.com | support.dell.com Version 7.8.1.0 Introduced support on S-Series show ip bgp s z S6000 Syntax Parameters Command Modes View the current BGP IPv4 routing table for the system. show ip bgp [ipv4 unicast] [network [network-mask] [longer-prefixes]] ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network.
*> 5.0.0.0/10 *> 5.0.0.0/11 --More-- 63.114.8.33 63.114.8.33 0 0 0 0 18508 ? 18508 ? Table 9-1 defines the information displayed in Figure 9-6 Table 9-1. show ip bgp Command Example Fields Related Commands Command History Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table.
www.dell.com | support.dell.com *>I * I * I * I * I 10.19.75.5/32 * I *>I * I * I * I * I 10.30.1.0/24 * I *>I * I * I * I 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.1 192.68.16.
Command Modes local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers. no-advertise Enter the keywords no-advertise to view all routes containing the well-known community attribute of NO_ADVERTISE. All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers.
www.dell.com | support.dell.com The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output. Table 9-3. Command Example Fields: show ip bgp community Command History Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.
The show ip bgp community-list command without any parameters lists BGP routes matching the Community List and the output is the same as for the show ip bgp command output. Table 9-4. show ip bgp community-list Command Example Fields Command History Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series show ip bgp detail s z S6000 Syntax Defaults Command Modes Display BGP internal information for IPv4 Unicast address family. show ip bgp [ipv4 unicast] detail none EXEC EXEC Privilege Example Figure 9-11.
NdSpFlag 0x41a190b0 : AFRttP 0x41a0d200 : NdRTMMkrP 0x41a19d28 : NdRTMAFTblVer 0 : NdRibCtxAddr 1101110688 NdRibCtxAddrLen 255 : NdAFPrefix 0 : NdAfNLRIP 0 : NdAFNLRILen 0 : NdAFWPtrP 0 NdAFWLen 0 : NdAfNH : NdAFRedRttP 0x41a0d400 : NdRecCtxAdd 1101110868 NdRedCtxAddrLen 255 : NdAfRedMkrP 0x41a19e88 : AFAggRttP 0x41a0d600 : AfAggCtxAddr 1101111028 : AfAggrCtxAddrLen 255 AfNumAggrPfx 0 : AfNumAggrASSet 0 : AfNumSuppmap 0 : AfNumAggrValidPfx 0 : AfMPathRttP 0x41a0d700 MpathCtxAddr 1101111140 : MpathCtxAddrlen
www.dell.com | support.dell.com Syntax Parameters Command Modes show ip bgp [ipv4 unicast] filter-list as-path-name ipv4 unicast (OPTIONAL) Enter the ipv4 unicast keywords to view information only related to ipv4 unicast routes. as-path-name Enter the name of an AS-PATH. EXEC EXEC Privilege Example Figure 9-12. Command Example: show ip bgp filter-list FTOS#show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.
Table 9-6. Command Example fields: show ip bgp filter-list Command History Field Description Weight Displays the route’s weight Path Lists all the ASs the route passed through to reach the destination network. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.8.1.0 Introduced support on S-Series show ip bgp flap-statistics s z S6000 Syntax Parameters View flap statistics on BGP routes.
www.dell.com | support.dell.com BGP table version is 210851, local router ID is 63.114.8.2 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network FTOS> From Flaps Duration Reuse Path Table 9-7 defines the information displayed in Figure 9-13. Table 9-7.
7018 ? 7018 ? 3549 i 3549 i 3549 i 701 i 701 i * 63.114.8.33 * *> * * * * 63.114.8.33 4.0.0.0/8 6.0.0.0/20 63.114.8.34 *> * 63.114.8.33 63.114.8.33 9.2.0.0/16 * 0 18508 209 63.114.8.60 63.114.8.34 63.114.8.33 63.114.8.33 63.114.8.60 * * 0 18508 701 0 0 0 0 18508 209 18508 209 18508 701 18508 209 0 18508 1 i 1 i 1 i 1 i 209 0 18508 209 0 0 18508 ? 0 18508 209 63.114.8.60 0 18508 209 63.114.8.34 0 18508 209 --More-- Table 9-8.
www.dell.com | support.dell.com Command Modes detail (OPTIONAL) Enter the keyword detail to view neighbor-specific internal information for the IPv4 Unicast address family. flap-statistics (OPTIONAL) Enter the keyword flap-statistics to view flap statistics on the neighbor’s routes. routes (OPTIONAL) Enter the keywords routes to view only the neighbor’s feasible routes.
Hold time is 180, keepalive interval is 60 seconds Received 1404 messages, 0 in queue 3 opens, 1 notifications, 1394 updates 6 keepalives, 0 route refresh requests Sent 48 messages, 0 in queue 3 opens, 2 notifications, 0 updates 43 keepalives, 0 route refresh requests Minimum time between advertisement runs is 30 seconds Minimum time before advertisements start is 0 seconds Capabilities received from neighbor for IPv4 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities adverti
www.dell.com | support.dell.com Example 3 Figure 9-18. Command Example: show ip bgp neighbors received-routes FTOS#show ip bgp neighbors 100.10.10.2 received-routes BGP table version is 13, local router ID is 120.10.10.1 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r redistributed n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete Network D 70.70.21.0/24 D 70.70.22.0/24 D 70.70.23.
Table 9-9. Command Example fields: show ip bgp neighbors Related Commands Lines beginning with Description Received messages This line displays the number of BGP messages received, the number of notifications (error messages) and the number of messages waiting in a queue for processing. Sent messages The line displays the number of BGP messages sent, the number of notifications (error messages) and the number of messages waiting in a queue for processing.
www.dell.com | support.dell.com 63.114.8.33 63.114.8.34 63.114.8.35 63.114.8.60 FTOS> 63.114.8.33, 63.114.8.34, 63.114.8.35, 63.114.8.60, Gi Gi Gi Gi 12/22 12/22 12/22 12/22 240984 135152 1 135155 0 0 0 0 0 0 0 0 00:18:25 00:18:13 00:18:07 00:18:11 Table 9-10. Command Example fields: show ip bgp next-hop Command History Field Description Next-hop Displays the next-hop IP address. Via Displays the IP address and interface used to reach the next hop.
Total 16 Paths Address Hash Refcount Metric Path 0x1efe7e5c 15 10000 32 ? 0x1efe7e1c 71 10000 23 ? 0x1efe7ddc 127 10000 22 ? 0x1efe7d9c 183 10000 43 ? 0x1efe7d5c 239 10000 42 ? 0x1efe7c9c 283 6 {102 103} ? 0x1efe7b1c 287 336 20000 ? 0x1efe7d1c 295 10000 13 ? 0x1efe7c5c 339 6 {92 93} ? 0x1efe7cdc 351 10000 12 ? 0x1efe7c1c 395 6 {82 83} ? 0x1efe7bdc 451 6 {72 73} ? 0x1efe7b5c 491 78 0 ? 0x1efe7adc 883 2 120 i 0x1efe7e9c 983 10000 33 ? 0x1efe7b9c 1003 6 0 i FTOS# Table 9-11.
www.dell.com | support.dell.com 0x1ea3c1b4 0x1ea3c304 0x1ea3c10c 0x1ea3c144 0x1ea3c17c 0x1ea3c2cc 0x1ea3c09c 0x1ea3c0d4 0x1ea3c224 0x1ea3c294 0x1ea3c02c FTOS# 507 507 763 763 763 763 764 764 1019 1019 1021 1 1 1 1 1 1 1 1 1 1 4 13 33 {92 93} {102 103} 12 32 {72 73} {82 83} 43 23 Table 9-12. Command Example fields: show ip bgp paths community Command History Field Description Address Displays the internal address where the path attribute is stored.
0x1c6e2064 0x1f588ecc 0x1f57cc0c 13646:1154 13646:1164 13646:1234 13646:1244 0x1d65b2ac 0x1f5854ac 517:5104 0x1d77b49c 790:61 790:3358 0x1c6e210c 0x1f588bf4 0x1f004f64 --More-- 83 2 209:777 209:40832 85 570 209:209 209:40832 98 2 209:209 209:21226 286:3031 13646:1044 13646:1124 13646:1184 13646:1194 13646:1204 13646:1214 13646:1224 13646:1254 13646:1264 13646:3000 117 6 209:209 209:999 209:31272 119 18 209:209 209:21226 286:108 286:111 286:777 286:3033 119 120 122 123 2 209:209 209:21226 286:81 286:777 28
www.dell.com | support.dell.com Minimum time between advertisement runs is 30 seconds For address family: IPv4 Unicast BGP neighbor is pg1 Number of peers in this group 4 Update packing has 4_OCTECT_AS support enabled Add-path support enabled Peer-group members (* - outbound optimized): 1.1.1.5 1.1.1.6 10.10.10.2* 20.20.20.100 Example Figure 9-25.
Table 9-14. Command Example fields: show ip bgp peer-group Line beginning with Description Related Commands Command History Number of peers Displays the number of peers currently configured for this peer group. Peer-group members: Lists the IP addresses of the peers in the peer group. If the address is outbound optimized, a * is displayed next to the IP address. neighbor peer-group (assigning peers) Assign peer to a peer-group. neighbor peer-group (creating group) Create a peer group.
www.dell.com | support.dell.com Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>I 3.0.0.0/8 1.1.1.2 0 100 0 2914 1239 80 i *>I 4.0.0.0/8 1.1.1.2 0 100 0 2914 3356 i *>I 4.17.225.0/24 1.1.1.2 0 100 0 2914 11853 11853 11853 11853 11853 6496 *>I 4.17.226.0/23 1.1.1.2 0 100 0 2914 11853 11853 11853 11853 11853 6496 *>I 4.17.251.0/24 1.1.1.
Example Figure 9-27. Command Example: show ip bgp summary FTOS#show ip bgp summary BGP router identifier 120.10.10.
www.dell.com | support.dell.com Table 9-16. Command Example fields: show ip bgp summary Command History Field Description Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed.
Parameters Defaults Command Modes keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. Range: 1 to 65535 Default: 60 seconds holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead. Range: 3 to 65535 Default: 180 seconds No default values or behavior ROUTER BGP Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000.
www.dell.com | support.dell.com distance bgp s S6000 Syntax Define an administrative distance for routes. distance bgp external-distance internal-distance local-distance To return to default values, enter no distance bgp. Parameters Defaults Command Modes external-distance Enter a number to assign to routes learned from a neighbor external to the AS. Range: 1 to 255. Default: 20 internal-distance Enter a number to assign to routes learned from a router within the AS. Range: 1 to 255.
BGP Extended Communities (RFC 4360) BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute. It provides two major advantages over Standard Communities: • The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number communities. Communities are structured using a new “Type” field (1 or 2-octets), allowing you to provide granular control/filter routing information based on the type of extended communities.
www.dell.com | support.dell.com Related Commands Command History permit Configure to add (permit) rules show ip extcommunity-list Display the Extended Community list Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on Z9000 Version 7.8.1.0 Introduced support on S-Series deny regex s z S6000 Syntax This features enables you to specify an extended communities to reject (deny) using a regular expressions (regex).
Command Modes Command History CONFIGURATION (conf-ext-community-list) Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on Z9000 Version 7.8.1.0 Introduced support on S-Series ip extcommunity-list s z S6000 Syntax Use this feature to enter the Extended Community-list mode. ip extcommunity-list word To exit from this mode, use the exit command. Parameters Defaults Command Modes Usage Information Example word Enter a community list name (maximum 16 characters).
www.dell.com | support.dell.com Example Figure 9-30. Command Example: match extcommunity FTOS(config-route-map)#match extcommunity Freedombird FTOS(config-route-map)# Command History Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on Z9000 Version 7.8.1.0 Introduced support on S-Series permit s z S6000 Syntax Use this feature to add rules (permit) from the two types of extended communities, Route Origin (rt) or Site-of-Origin (soo).
Parameters Defaults Command Modes Usage Information Example Enter a regular expression. regex Not configured CONFIGURATION (conf-ext-community-list) Duplicate commands are silently accepted. Figure 9-31. Command Example: permit regexp FTOS(conf-ext-community-list)#permit regexp 123 FTOS(conf-ext-community-list)# Related Commands deny regex Command History Deny a community using a regular expression Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on Z9000 Version 7.8.1.
www.dell.com | support.dell.com • If rt with additive option comes after soo, then rt adds the communities set by soo Related Commands set extcommunity soo Set extended community site-of-origin in route-map. Command History Version 9.0.2.0 Introduced on the S6000. Version 9.0.0.0 Introduced on Z9000 Version 7.8.1.0 Introduced support on S-Series set extcommunity soo s z S6000 Syntax Use this feature to set extended community site-of-origin in Route Map.
Syntax Parameters Defaults Command Modes show ip bgp [ipv4 [multicast | unicast] | ipv6 unicast] extcommunity-list name multicast Enter the keyword multicast to display the multicast route information. unicast Enter the keyword unicast to display the unicast route information. ipv6 unicast Enter the keywords ipv6 unicast to display the IPv6 unicast route information. name (OPTIONALLY) Enter the name of the extcommunity-list.
www.dell.com | support.dell.com show ip extcommunity-list s z S6000 Syntax Parameters Defaults Command Modes Display the IP extended community list. show ip extcommunity-list [word] word Enter the name of the extended community list you want to view. Defaults. EXEC EXEC Privilege Example Figure 9-33.
Version 7.8.1.
www.dell.com | support.dell.com IPv6 BGP Commands IPv6 Border Gateway Protocol (IPv6 BGP) is supported on platforms zs S6000 This chapter includes the following commands: • • BGP IPv4 Commands MBGP Commands Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths.
Version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.0 Introduced on the S4810 IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). FTOS MBGP is implemented as per IETF RFC 1858.
| Border Gateway Protocol www.dell.com | support.dell.
10 Bare Metal Provisioning Overview Overview is supported on platforms: S6000 z Bare Metal Provisioning version 2.0 is supported on S6000, S4810 and Z9000 switches. In a data center network, Bare Metal Provisioning (BMP) automates the configuration and updating of switches, ensuring standard configurations across installed devices. You can configure auto-configuration on a single switch or on multiple switches.
www.dell.com | support.dell.com Syntax Parameters reload-type {normal-reload | jump-start [config-download {enable | disable}] [dhcp-timeout minutes]} normal-reload The switch reloads in normal mode using the FTOS image and startup configuration file stored in the local flash. jump-start The switch reloads in Jumpstart (BMP) mode as a DHCP client with all ports configured for Layer 3 traffic.
Use the reload-type command in BMP 2.0 to toggle between Normal and Jumpstart (BMP) auto-configuration modes. The reload settings for the auto-configuration mode that you configure are stored in memory and retained for future reboots and BMP software upgrades. You can enter the reload command at any time to reload the switch in the last configured mode: Normal reload or Jumpstart (BMP) mode.
www.dell.com | support.dell.com stop jump-start Stop the switch from reloading in Jumpstart (BMP) mode to prevent an infinite loop. z S6000 stop jump-start Syntax Defaults None Command Modes Command History Related Commands EXEC Privilege Version 9.0.2.0 version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.1 Introduced on the S4810. reload-type Usage Information 304 | Introduced on the S6000. Bare Metal Provisioning Configure the reload mode as Normal or jumpstart.
11 Content Addressable Memory (CAM) Overview Content Addressable Memory (CAM) commands are supported S6000 S-Series and Z-Series, as indicated by the symbols under each command heading: s z. Note: Not all CAM commands are supported on all platforms. Be sure to note the platform symbol when looking for a command. Warning: If you are using these features for the first time, contact Dell Networking Technical Assistance Center (TAC) for guidance.
www.dell.com | support.dell.com • • • • The CAM configuration is applied to entire system when you use CONFIGURATION mode commands. You must save the running-configuration to affect the change. When budgeting your CAM allocations for ACLs and QoS configurations, remember that ACL and QoS rules might consume more than one CAM entry depending on complexity. For example, TCP and UDP rules with port range options might require more than one CAM entry.
Ranges for the CAM profiles are 1-10, except for the ipv6acl profile which is 0-10. The ipv6acl allocation must be a factor of 2 (2, 4, 6, 8, 10). cam-acl-egress Allocate CAM for egress ACLs. z S6000 Syntax Parameters cam-acl-egress default | l2acl number ipv4acl number ipv6acl number default Reset egress CAM ACL entries to default settings. l2acl number ipv4acl number ipv6acl number Allocate space to each CAM region. The total space allocated must equal 4. The ipv6acl range must be a factor of 2.
www.dell.com | support.dell.com show cam-acl Display the details of the CAM profiles on the chassis and all stack-units. z S6000 Syntax Defaults show cam-acl None Command Modes EXEC Privilege Command History Version 9.0.2.0 Introduced on the S6000. version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.1 Introduced on the S4810. Usage Information Example The display reflects the settings implemented with the cam-acl command. Figure 11-1.
FTOS# test cam-usage z S6000 Syntax Parameters Verify that enough CAM space is available for the IPv6 ACLs you have created. test cam-usage service-policy input input policy name linecard {number | all} policy-map name Enter the name of the policy-map to verify. number Enter all to get information for all the linecards/stack-units, or enter the linecard/ stack-unit number to get information for a specific card.
www.dell.com | support.dell.com 310 Table 11-1. | Output Explanations: test cam-usage (S-Series) Term Explanation Stack-Unit Lists the stack unit or units that are checked. Entering all shows the status for all stacks. Portpipe Lists the portpipe (port-set) or port pipes (port-sets) that are checked. Entering all shows the status for linecards and port-pipes in the chassis.
12 Control Plane Policing (CoPP) Overview Chapter 12, Control Plane Policing (CoPP) is supported on the S6000 and z platforms. Commands • • • • • • • control-plane-cpuqos service-policy rate-limit-cpu-queues service-policy rate-limit-protocols show cpu-queue rate cp show ip protocol-queue-mapping show ipv6 protocol-queue-mapping show mac protocol-queue-mapping control-plane-cpuqos Enter control-plane mode and configure the switch to manage control-plane traffic.
www.dell.com | support.dell.com service-policy rate-limit-cpu-queues Apply a policy map for the system to rate limit control traffic on a per-queue basis. z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information service-policy rate-limit-cpu-queues policy-name policy-name Enter the service-policy name, in a string up to 32 characters. Not configured. CONTROL-PLANE-CPUQOS Version 9.0.2.0 Introduced on the S6000. version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.
Related Commands ip access-list extended Create an extended IP ACL mac access-list extended Create an extended MAC ACL. qos-policy-input Create a QoS input policy map. class-map Create a QoS class map. policy-map-input Create an input policy map. show cpu-queue rate cp View the packet rate for CPU queues z S6000 Syntax show cpu-queue rate cp Defaults Not configured. Command Modes EXEC Privilege Command History Sample Output Version 9.0.2.0 Introduced on the S6000. version 9.0.0.
www.dell.com | support.dell.
Command Modes Command History EXEC Privilege Version 9.0.2.0 Introduced on the S6000. version 9.0.0.0 Introduced on the Z9000. Version 8.3.10.1 Introduced on the S4810.
www.dell.com | support.dell.
13 Data Center Bridging (DCB) Overview Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including LAN, server, and storage traffic. The Dell Networking operating software (FTOS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the Data Center Bridging Exchange (DCBX) protocol.
www.dell.com | support.dell.com DCBX Commands • • • • • • • • advertise dcbx-appln-tlv advertise dcbx-tlv dcbx version dcbx port-role fcoe priority-bits iscsi priority-bits debug dcbx show interface dcbx detail advertise dcbx-appln-tlv S6000 Syntax On a DCBX port with a manual role, configure the application priority TLVs advertised on the interface to DCBX peers. advertise dcbx-appln-tlv {fcoe | iscsi} To remove the application priority TLVs, use the no advertise dcbx-appln-tlv {fcoe | iscsi} command.
Defaults Command Modes Command History Usage Information All PFC and ETS TLVs are advertised. PROTOCOL LLDP Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module You can configure the transmission of more than one TLV type at a time; for example: advertise dcbx-tlv ets-conf ets-reco. You can enable ETS recommend TLVs (ets-reco) only if ETS configuration TLVs (ets-conf) are enabled.
www.dell.com | support.dell.com By default, equal bandwidth is assigned to each priority group in the ETS output policy applied to an egress port if no bandwidth allocation is configured. The sum of configured bandwidth allocation to dot1p priority traffic in all ETS priority groups must be 100%. You must allocate at least 1% of the total bandwidth to each priority group and queue.
Parameters Defaults Command Modes Command History Usage Information pfc-queues Enter the pfc-queue range. To disable DCB, use the no dcb enable command. Range: 1 or 2. None CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module By default, iSCSI is disabled and flow control is not configured on any interfaces or if link-level flow control is enabled on one or more interfaces.
www.dell.com | support.dell.com dcb-output S6000 Syntax Create a DCB output policy to associate an ETS configuration with priority traffic. dcb-output policy-name To remove the ETS output policy from an interface, use the no dcb-policy output command. Parameters Defaults Command Modes policy-name Enter the DCB output policy name. Maximum: 32 alphanumeric characters. none CONFIGURATION Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.
• • Link-level flow control can be enabled on the interface. To delete the input policy, you must first disable link-level flow control. PFC is then automatically enabled on the interface because an interface is by default PFC-enabled. PFC still allows you to configure lossless queues on a port to ensure no-drop handling of lossless traffic.
www.dell.com | support.dell.com dcb-policy input stack-unit stack-ports all S6000 Syntax Apply the specified DCB input policy on all ports of the switch stack or a single stacked switch. dcb-policy input stack-unit {all | stack-unit-id} stack-ports all dcb-input-policy-name To remove all DCB input policies applied to the stacked ports and rest the PFC to its default settings, use the no dcb-policy input stack-unit all command.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module DCBX requires that you enable LLDP to advertise DCBX TLVs to peers. Configure DCBX operation at the INTERFACE level on a switch or globally on the switch. To verify the DCBX configuration on a port, use the show interface dcbx detail command. dcbx version Configure the DCBX version used on the interface. S6000 dcbx version {auto | cee | cin | ieee-v2.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History {all | auto-detect-timer | config-exchng | fail | mgmt | resource | sem | tlv} Enter the type of debugging, where: • • • • • • • • all: enables all DCBX debugging operations. auto-detect-timer: enables traces for DCBX auto-detect timers. config-exchng: enables traces for DCBX configuration exchanges. fail: enables traces for DCBX failures. mgmt: enables traces for DCBX management frames.
Defaults Command Modes Command History Usage Information 0x10 PROTOCOL LLDP Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module This command is available at the global level only. pfc mode on S6000 Syntax Enable the PFC configuration on the port so that the priorities are included in DCBX negotiation with peer PFC devices. pfc mode on To disable the PFC configuration, use the no pfc mode on command. Defaults Command Modes PFC mode is on.
www.dell.com | support.dell.com Defaults Command Modes Command History No lossless queues are configured. INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.0 Introduced on MXL 10/40GbE Switch IO Module Example Usage Information FTOS(conf-if-te-0/1)#pfc no-drop queues ? <0-7> Queue range The maximum number of lossless queues globally supported on the switch is two. Table 13-1 lists the dot1p priority-queue assignments. Table 13-1.
Usage Information You can enable any number of 802.1p priorities for PFC. Queues to which PFC priority traffic is mapped are lossless by default. Traffic may be interrupted due to an interface flap (going down and coming up) when you reconfigure the lossless queues for no-drop priorities in a PFC input policy and re-apply the policy to an interface. The maximum number of lossless queues supported on the switch is two.
www.dell.com | support.dell.
Table 13-2. show interface dcbx detail Command Example Fields (continued) Field Description Peer Operating version DCBX version that the peer uses to exchange DCB parameters. Local DCBX TLVs Transmitted Transmission status (enabled or disabled) of advertised DCB TLVs (see TLV code at the top of the show command output). Local DCBX Status: DCBX Operational Version DCBX version advertised in Control TLVs. Local DCBX Status: DCBX Max Version Supported Highest DCBX version supported in Control TLVs.
www.dell.com | support.dell.com Parameters 332 Command Mode Command History | port-type slot/ port ets Enter the port-type slot and port ETS information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. EXEC PRIVILEGE Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.
Example (ets summary) FTOS(conf-qos-policy-out-ets)#show interface te 0/3 ets de Interface TenGigabitEthernet 0/3 Max Supported TC Groups is 4 Number of Traffic Classes is 8 Admin mode is on Admin Parameters : -----------------Admin is enabled TC-grp Priority# Bandwidth TSA -----------------------------------------------0 1 0,1,2 100% ETS 2 3 0 % SP 3 4,5,6,7 0 % SP 4 5 6 7 Remote Parameters : ------------------Remote is disabled Local Parameters : -----------------Local is enabled TC-grp Priority# Bandwid
www.dell.com | support.dell.
Local Parameters : -----------------Local is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# Bandwidth TSA 0 13% ETS 1 13% ETS 2 13% ETS 3 13% ETS 4 12% ETS 5 12% ETS 6 12% ETS 7 12% ETS Oper status is init Conf TLV Tx Status is disabled Traffic Class TLV Tx Status is disabled 0 Input Conf TLV Pkts, 0 Output Conf TLV Pkts, 0 Error Conf TLV Pkts 0T LIVnput Traffic Class TLV Pkts, 0 Output Traffic Class TLV Pkts, 0 Erro
www.dell.com | support.dell.
Table 13-3 lists the show interface ets detail field descriptions. Table 13-3. show interfaces ets detail Command Example Fields Field Description Interface Interface type with stack-unit and port number. Max Supported TC Group Maximum number of priority groups supported. Number of Traffic Classes Number of 802.1p priorities currently configured. Admin mode ETS mode: on or off.
www.dell.com | support.dell.com Parameters Command Mode Command History port-type slot/ port pfc Enter the port-type slot and port PFC information. {summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.16.
Table 13-4 lists the show interface pfc summary field descriptions. Table 13-4. show interfaces pfc summary Command Example Fields Field Description Interface Interface type with stack-unit and port number. Admin mode is on Admin is enabled PFC admin mode is on or off with a list of the configured PFC priorities. When the PFC admin mode is on, PFC advertisements are enabled to be sent and received from peers; received PFC configuration will take effect.
www.dell.com | support.dell.com Table 13-4. show interfaces pfc summary Command Example Fields (continued) Field Description PFC TLV Statistics: Pause Number of PFC pause frames transmitted. Tx pkts PFC TLV Statistics: Pause Number of PFC pause frames received. Rx pkts show interface pfc statistics S6000 Syntax Parameters Command Mode Displays counters for the PFC frames received and transmitted (by dot1p priority class) on an interface.
14 Debugging and Diagnostics Overview The symbols s z S6000 under command headings indicate which Dell Networking — S6000-S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters ftp-server Enter the hostname or IP address of the FTP server where FTOS sends application core dumps. ip-address Enter the IP address of the target server in dotted decimal format. ipv6-address Enter an IPv6 address of the target server, in the x:x:x:x::x format. Note: The :: notation specifies successive hexadecimal fields of zeros. name Enter a username to access the target server. ftp-username Enter the user name to access the target ftp server.
logging coredump stack-unit s z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands Enable coredump on a stack. logging coredump stack-unit {0-5/all} 0-5 Enter the stack-unit id. Range: S4810 - 0 to 11 Z9000 - 0 S6000 - 0 to 5. all Enable coredump on all stack- unit. Enabled by default on customer builds. CONFIGURATION Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on Z9000. Version 8.3.10.1 Introduced on S4810.
www.dell.com | support.dell.com Defaults Command Modes Enter the number of packets to capture. The counter begins as soon as the command is enabled. Range: 10-150000 snap-length Enter the number of bytes per packet to capture. Use this option to reduce the size of the captured packets, to capture only the needed headers and avoid rest of the data portion of the packet. Range: 0-1200 write-to Enter the location to save the captured packets.
• • offline stack-unit online stack- unit diag stack-unit s z S6000 Syntax Parameters Defaults Command Modes Command History Run offline diagnostics on a stack unit. diag stack-unit number [alllevels | level0 | level1 | level2 | interactive | terminate] verbose no-reboot number Enter the stack-unit number. Unit ID range: S4810: 0-11 Z9000: 0-7 S6000: 0-5 alllevels Enter the keyword alllevels to run the complete set of offline diagnostic tests.
www.dell.com | support.dell.com offline stack-unit s z S6000 Syntax Place a stack unit in the offline state. offline stack-unit number Parameters Defaults Command Mode Command History Related Commands Usage Information number Enter the stack unit number. Unit ID range: S4810 range: 0-11 Z9000: 0-7 S6000: 0-5 None EXEC Privilege H Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on Z9000 Version 8.3.11.
Command History H Related Commands Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on Z9000 show environment (S-Series) View S-Series system component status (for example, temperature, voltage). Hardware Commands These commands display information from a hardware sub-component or ASIC.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands Usage Information cpu sata-interface statistics Enter the keywords cpu sata-interface statistics to clear the sata interface error counting statistics. stack-port S-Series only: Enter the keyword stack-port followed by the port number of the stacking port to clear the statistics of the particular stacking port. Range depends on platform. No default behavior or values EXEC Privilege Version 9.0.2.
Usage Information The unit numbers given are internal port numbers. For a cross reference of the internal and user port numbers, see the Z9000 Debugging and Diagnostics chapter in the FTOS Configuration Guide for the Z9000 System. hardware watchdog z S6000 Syntax Defaults Command Mode Command History Usage Information Set the watchdog timer to trigger a reboot and restart the system. hardware watchdog stack-unit {<0-5> | all} Enabled CONFIGURATION Version 9.0.2.0 Introduced on S6000 Version 8.3.11.
www.dell.com | support.dell.com show hardware layer3 z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. show hardware layer3 {eg-acl | in-acl | qos} stack-unit id port-set 0-0 eg-acl | in-acl | qos Enter either the keyword eg-acl, in-acl or qos to select between ACL or QoS data. stack-unit id Enter the keyword stack-unit to select a stack ID.
Defaults Command Modes fpga register Enter the keyword to display the register value of fpga resgister details in S4810, Z9000 and S6000. stack-port S-Series only: Enter the stack-port keyword and a stacking port number to select a stacking port for which to display statistics. Range depend on the platform.
www.dell.com | support.dell.
0x0061a04c ASFPORTSPEED.hg2 = 0x00000000 0x0061b04c ASFPORTSPEED.hg3 = 0x00000000 0x0061c04c ASFPORTSPEED.cpu0 = 0x00000000 0x00780000 AUX_ARB_CONTROL.ipipe0 = 0x0000001c 0x0e700102 BCAST_BLOCK_MASK.ge0 = 0x00000000 0x0e701102 BCAST_BLOCK_MASK.ge1 = 0x00000000 0x0e702102 BCAST_BLOCK_MASK.ge2 = 0x00000000 0x0e703102 BCAST_BLOCK_MASK.ge3 = 0x00000000 0x0e704102 BCAST_BLOCK_MASK.ge4 = 0x00000000 0x0e705102 BCAST_BLOCK_MASK.ge5 = 0x00000000 0x0e706102 BCAST_BLOCK_MASK.
www.dell.com | support.dell.
Parameters stack-unit id Enter the keyword stack-unit to select a stack member ID. Unit ID range: Z9000: 0 port-set 0-0 [counters] Enter the keyword port-set with a port-pipe number — 0 or 0. The S25 models of the S-Series have only port-pipe 0. (OPTIONAL) Enter the keyword counters to display hit counters for the selected ACL or QoS option. Defaults Command Modes Command History Example 1 No default behavior EXEC Privilege Version 9.0.2.0 Introduced on S6000 Version 8.3.11.
www.dell.com | support.dell.
15 Dynamic Host Configuration Protocol (DHCP) Overview Dynamic Host Configuration Protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on configuration policies determined by network administrators. • • Commands to Configure the System to be a DHCP Server Commands to Configure Secure DHCP The symbols s z under command headings indicate which Dell Networking platforms — 9.0.2.
www.dell.com | support.dell.com clear ip dhcp s z S6000 Syntax Parameters Command Mode Default Command History Usage Information Reset DHCP counters. clear ip dhcp [binding {address} | conflict | server statistics] binding Enter this keyword to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address. conflicts Enter this keyword to delete all of the log entries created for IP address conflicts.
Parameters Command Mode Default Command History address Enter the a list of routers that may be the default gateway for clients on the subnet. You may specify up to 8. List them in order of preference. DHCP None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series disable s z S6000 Disable DHCP Server. DHCP Server is disabled by default. Enable the system to be a DHCP server using the no form of the disable command.
www.dell.com | support.dell.com domain-name s z S6000 Syntax Parameters Command Mode Default Command History Assign a domain to clients based on address pool. domain-name name name Give a name to the group of addresses in a pool. DHCP None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.
Command History Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series host s z S6000 Syntax Parameters Command Mode Default Command History For manual (rather than automatic) configurations, assign a host to a single-address pool. host address address/mask Enter the host IP address and subnet mask. DHCP None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.
www.dell.com | support.dell.com netbios-name-server s z S6000 Syntax Parameters Command Mode Default Command History Specify the NetBIOS Windows Internet Naming Service (WINS) name servers, in order of preference, that are available to Microsoft Dynamic Host Configuration Protocol (DHCP) clients. netbios-name-server address [address2...address8] address Enter the address of the NETBIOS name server. You may enter up to 8, in order of preference. DHCP None Version 9.0.2.
Command Mode Default Command History DHCP None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series pool s z S6000 Syntax Parameters Command Mode Default Command History Create an address pool pool name name Enter the address pool’s identifying name DHCP None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.
www.dell.com | support.dell.com Parameters Command Mode Default Command History pool name Display the configuration for a DHCP pool. global Display the DHCP configuration for the entire system. EXEC Privilege None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series show ip dhcp conflict s z S6000 Syntax Parameters Command Mode Default Command History Display the address conflict log.
Commands to Configure Secure DHCP DHCP as defined by RFC 2131 provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks.
www.dell.com | support.dell.com Default Command History Related Commands Disabled Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series arp inspection Enable Dynamic ARP Inspection on a VLAN. clear ip dhcp snooping s z S6000 Syntax Command Modes Default Command History Related Commands Clear the DHCP binding table. clear ip dhcp snooping binding EXEC Privilege None Version 9.0.2.0 Introduced on then S6000. Version 8.3.
Related Commands ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. ip dhcp snooping database s z S6000 Syntax Parameters Command Modes Default Command History Delay writing the binding table for a specified time. ip dhcp snooping database write-delay minutes minutes Range: 5-21600 CONFIGURATION None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.
www.dell.com | support.dell.com Default Command History Related Commands None Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series show ip dhcp snooping Display the contents of the DHCP binding table. ip dhcp snooping database renew s z S6000 Syntax Command Modes Renew the binding table. ip dhcp snooping database renew EXEC EXEC Privilege Default Command History None Version 9.0.2.0 Introduced on then S6000. Version 8.
Command Modes Default Command History Usage Information INTERFACE Disabled Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series You must allocate at least one FP block to ipmacacl before you can enable IP+MAC Source Address Validation. 1 Use the command cam-acl l2acl from CONFIGURATION mode 2 Save the running-config to the startup-config 3 Reload the system.
www.dell.com | support.dell.com Default Command History Related Commands Disabled Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series ip dhcp relay information-agent remote-id Manually re-set the remote-id for Option 82. ip dhcp relay information-agent remote-id z S6000 Syntax Parameters Command Modes Default Command History Usage Information Related Commands Manually re-set the remote-id for Option 82.
Command History Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series show ip dhcp snooping s z S6000 Syntax Parameters Command Modes Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard. show ip dhcp snooping [binding | source-address-validation] binding Display the binding table. source-address-validation Display the interfaces configured with IP Source Guard.
www.dell.com | support.dell.
16 Equal Cost Multi-Path Overview The characters that appear below command headings indicate support for the associated Dell Networking platform as indicated by the characters that appear under .
www.dell.com | support.dell.com Parameters ecmp-group ID Enter the identifier number for the ECMP group. Range: 2 to 64. interface Enter the following keywords and slot/port to add the interface to the ECMP group. • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
Parameters algorithm-number Enter the algorithm number. Range: 0 to 47 EtherScale range: 0 to 15; 16 to 47 will be considered as 15.
www.dell.com | support.dell.com lag hash algorithm value TeraScale and ExaScale Only: Enter the keyword lag followed by the LAG hash algorithm value. Range: 0 to 47 nh-ecmp hash algorithm value (OPTIONAL) Enter the keyword nh-ecmp followed by the ECMP hash algorithm value. linecard number (OPTIONAL) TeraScale and ExaScale Only: Enter the keyword linecard followed by the linecard slot number.
Message 1 FTOS(conf)#hash-algorithm linecard 5 ip-sa-mask ff ip-da-mask ff Message 2 % Error: This command is not supported in the current microcode configuration. In addition, the linecard number ip-sa-mask value ip-da-mask value option has the following behavior to maintain bi-directionality: • • When hashing is done on both IPSA and IPDA, the ip-sa-mask and ip-da-mask values must be equal.
www.dell.com | support.dell.com Related Commands load-balance hg Change the traffic balancing method. ip ecmp-group Enable and specify the maximum number of ecmp that the L3 CAM hold for a route, By default, when maximum paths are not configured, the CAM can hold a maximum of 16 ecmp per route. z S6000 Syntax ip ecmp-group {maximum-paths | {number} {path-fallback} To negate a command, use the no command.
Command History Usage Information Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. The switch must be restarted after this command is used. link-bundle-monitor enable Provides a mechanism to enable monitoring of traffic distribution on an ECMP link bundle. z S6000 Syntax link-bundle-monitor enable To exit from ecmp group mode, use the exit command. Command Modes ECMP-GROUP PORT-CHANNEL INTERFACE Command History Version 9.0.2.0 Introduced on then S6000.
| Equal Cost Multi-Path www.dell.com | support.dell.
17 Force10 Resilient Ring Protocol (FRRP) Overview Force10 Resilient Ring Protocol (FRRP) is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the Spanning Tree Protocol. The Resilient Ring Protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode.
www.dell.com | support.dell.com clear frrp s z S6000 Syntax Clear the FRRP statistics counters. clear frrp [ring-id] Parameters Defaults Command Modes ring-id No default values or behavior EXEC Command History Example (Optional) Enter the ring identification number. Range: 1 to 255 Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series Figure 17-1.
Parameters Defaults Command Modes Command History Usage Information event Enter the keyword event to display debug information related to ring protocol transitions. packet Enter the keyword packet to display brief debug information related to control packets. detail Enter the keyword detail to display detailed debug information related to the entire ring protocol packets. ring-id (Optional) Enter the ring identification number.
www.dell.com | support.dell.com disable s z S6000 Syntax Disable the Resilient Ring Protocol. disable To enable the Resilient Ring Protocol, use the no disable command. Defaults Command Modes Command History Disabled CONFIGURATION (conf-frrp) Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series interface s z S6000 Syntax Parameters Configure the primary, secondary, and control-vlan interfaces.
Defaults Command Modes Command History Usage Information Related Commands No default values or behavior CONFIGURATION (conf-frrp) Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series This command causes the Ring Manager to take ownership of these two ports after the configuration is validated by the IFM.
www.dell.com | support.dell.com Command Modes CONFIGURATION (conf-frrp) Command History Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series protocol frrp s z S6000 Syntax Enter the Resilient Ring Protocol and designate a ring identification. protocol frrp {ring-id} To exit the ring protocol, use the no protocol frrp {ring-id} command.
Example 1 Figure 17-2. show frrp summary Command Example FTOS#show frrp summary Ring-ID State Mode Ctrl_Vlan Member_Vlans ----------------------------------------------------------------2 UP Master 2 11-20, 25,27-30 31 UP Transit 31 40-41 50 Down Transit 50 32 FTOS# Example 2 Figure 17-3.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information 388 Enter the keyword dead-interval followed by the time, in milliseconds, to set the dead interval of the control packets. Range: 50 to 6000ms Default: 1500ms Note: The configured dead interval should be at least three times the hello interval dead-interval milliseconds | Default as shown CONFIGURATION (conf-frrp) Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.
18 GARP VLAN Registration (GVRP) Overview The symbols s z under command headings indicate which Dell Networking — S6000 S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Important Points to Remember • • • • • • • • • • • • • GVRP is supported on Layer 2 ports only. All VLAN ports added by GVRP are tagged. GVRP is supported on untagged ports belonging to a default VLAN, and tagged ports. GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is turned on. GVRP requires end stations with dynamic access NICs.
Command Modes Command History Related Commands EXEC Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series show gvrp statistics Display the GVRP statistics debug gvrp s z S6000 Syntax Enable debugging on GVRP. debug gvrp {config | e vents | pdu} To disable debugging, use the no debug gvrp {config | events | pdu} command. Parameters config Enter the keyword config to enable debugging on the GVRP configuration.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands Enabled CONFIGURATION-GVRP Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series gvrp enable Enable GVRP on physical interfaces and LAGs. protocol gvrp Access GVRP protocol garp timers s z S6000 Syntax Set the intervals (in milliseconds) for sending GARP messages.
Leave Timer—Leave announces the willingness to de-register with other participants. Together with the Join, Leave messages help GARP participants complete attribute reregistration and de-registration. Leave Timer starts upon receipt of a leave message sent for de-registering some attribute information. If a join message is not received before the leave time expires, the GARP application entity removes the attribute information as requested.
www.dell.com | support.dell.com Command Modes CONFIGURATION-INTERFACE Command History Usage Information Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series The fixed registration prevents an interface, configured via the command line to belong to a VLAN (static configuration), from being un-configured when it receives a Leave message. Therefore, the registration mode on that interface is fixed.
Related Commands Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series gvrp enable Enable GVRP on physical interfaces and LAGs. protocol gvrp Access GVRP protocol. show garp timers s z S6000 Syntax Defaults Command Modes Display the GARP timer settings for sending GARP messages. show garp timers No default values or behavior EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000.
www.dell.com | support.dell.com Parameters brief (OPTIONAL) Enter the keyword brief to display a brief summary of the GVRP configuration. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
show gvrp statistics s z S6000 Syntax Display the GVRP configuration statistics. show gvrp statistics {interface interface | summary} Parameters interface interface Enter the keyword interface followed by one of the interface keywords and slot/port or number information: • • • • summary Defaults Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
www.dell.com | support.dell.com • • 398 The attribute that was being parsed had an invalid GARP event. The attribute that was being parsed had an invalid VLAN ID. The valid range is 1 - 4095. A failed registration can occur for the following reasons: • • Related Commands | Join requests were received on a port that was blocked from learning dynamic VLANs (GVRP Blocking state). An entry for a new GVRP VLAN could not be created in the GVRP database.
19 Internet Group Management Protocol (IGMP) Overview This chapter contains the following sections: • • IGMP Commands IGMP Snooping Commands The symbols s z under command headings indicate which Dell Networking platforms — S6000 , or Z-Series, respectively — support the command.. IGMP Commands FTOS supports IGMPv1/v2/v3 and is compliant with RFC-3376. Important Points to Remember • • • FTOS supports PIM-SM and PIM-SSM include and exclude modes. IGMPv2 is the default version of IGMP on interfaces.
www.dell.com | support.dell.com • • • • • • • ip igmp query-max-resp-time ip igmp ssm-map ip igmp static-group ip igmp version show ip igmp groups show ip igmp interface show ip igmp ssm-map clear ip igmp groups z S6000 Syntax Parameters Clear entries from the group cache table. clear ip igmp groups [group-address | interface] group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format.
Parameters group-address (OPTIONAL) Enter the IP multicast group address in dotted decimal format. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword gigabitethernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tengigabitethernet followed by the slot/port information.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History number Enter the number of IGMP groups permitted to join in a second. Range: 1 to 10000 No default values or behavior CONFIGURATION (conf-if-interface-slot/port) Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. ip igmp immediate-leave z S6000 Syntax Enable IGMP immediate leave.
Parameters Defaults Command Modes Command History milliseconds Enter the number of milliseconds as the interval. Default: 1000 milliseconds Range: 100 to 65535 1000 milliseconds INTERFACE Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. ip igmp querier-timeout z S6000 Syntax Change the interval that must pass before a multicast router decides that there is no longer another multicast router that should be the querier.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 9.0.2.0 Introduced on S-Series in Interface VLAN mode only to enable that system to act as an IGMP Proxy Querier. ip igmp query-max-resp-time z S6000 Syntax Set the maximum query response time advertised in general queries. ip igmp query-max-resp-time seconds To return to the default values, enter no ip igmp query-max-resp-time.
Usage Information Mapping applies to both v1 and v2 IGMP joins; any updates to the ACL are reflected in the IGMP groups. You may not use extended access lists with this command. When a static SSM map is configured and the router cannot find any matching access lists, the router continues to accept (*,G) groups. Related Commands ip access-list standard Create a standard access list to filter based on IP address. ip igmp static-group z S6000 Syntax Configure an IGMP static group.
www.dell.com | support.dell.com ip igmp version z S6000 Syntax Parameters Defaults Command Modes Command History Manually set the version of the router to IGMPv2 or IGMPv3. ip igmp version {2 | 3} 2 Enter the number 2 to set the IGMP version number to IGMPv2. 3 Enter the number 3 to set the IGMP version number to IGMPv3. 2 (that is IGMPv2) INTERFACE Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000.
Usage Information This command displays the IGMP database including configured entries for either all groups on all interfaces, or all groups on specific interfaces, or specific groups on specific interfaces. Note: The S4810 supports up to 95 interfaces. Example Figure 19-1. show ip igmp groups Command Example FTOS#show ip igmp groups IGMP Connected Group Membership Group Address Interface 224.0.1.40 GigabitEthernet 13/6 FTOS# Table 19-1. Uptime 09:45:23 Expires 00:02:08 Last Reporter 10.87.7.
www.dell.com | support.dell.com Usage Information IGMP commands accept only non-VLAN interfaces—specifying VLAN will not yield a results. Note: The S4810 supports up to 95 interfaces. Example Figure 19-2.
IGMP Snooping Commands FTOS supports IGMP Snooping version 2 and 3 on all Dell Networking systems: • • • • • • • ip igmp snooping enable ip igmp snooping fast-leave ip igmp snooping flood ip igmp snooping last-member-query-interval ip igmp snooping mrouter ip igmp snooping querier show ip igmp snooping mrouter Important Points to Remember for IGMP Snooping • • • • • • • • • • FTOS supports version 1, version 2, and version 3 hosts.
www.dell.com | support.dell.com ip igmp snooping enable z S6000 Syntax Enable IGMP snooping on all or a single VLAN. This is the master on/off switch to enable IGMP snooping. ip igmp snooping enable To disable IGMP snooping, enter no ip igmp snooping enable command. Defaults Command Modes Disabled CONFIGURATION INTERFACE VLAN Command History Usage Information Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. You must enter this command to enable IGMP snooping.
ip igmp snooping flood z S6000 This command controls the flooding behavior of unregistered multicast data packets. On the S-Series, when flooding is enabled (the default), unregistered multicast data traffic is flooded to all ports in a VLAN. When flooding is disabled, unregistered multicast data traffic is forwarded to only multicast router ports, both static and dynamic, in a VLAN. If there is no multicast router port in a VLAN, then unregistered multicast data traffic is dropped.
www.dell.com | support.dell.com Parameters interface interface Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Usage Information For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
show ip igmp snooping mrouter z S6000 Syntax Parameters Command Modes Display multicast router interfaces. show ip igmp snooping mrouter [vlan number] vlan number Enter the keyword vlan followed by the vlan number. Range: 1-4094 EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Figure 19-3.
www.dell.com | support.dell.
20 \ Interfaces Overview This chapter defines interface commands and is divided into the following sections: • • Basic Interface Commands Port Channel Commands The commands in this chapter are supported by FTOS on all Dell Networking platforms, as indicated by the characters that appear under each of the command headings: s S-Series, S6000 . or Z Z-Series.
www.dell.com | support.dell.
Command History Example Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series Version 6.5.1.0 Updated definition of the learning-limit option for clarity. Figure 20-1. clear counters Command Example FTOS#clear counters Clear counters on all interfaces [confirm] Related Commands mac learning-limit Allow aging of MACs even though a learning-limit is configured or disallow station move on learnt MACs.
www.dell.com | support.dell.com dampening s z S6000 Syntax Configure dampening on an interface. dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] To disable dampening, use the no dampening [[[[half-life] [reuse-threshold]] [suppress-threshold]] [max-suppress-time]] command syntax. Parameters half-life Enter the number of seconds after which the penalty is decreased. The penalty is decreased by half after the half-life period expires.
Related Commands clear dampening Clear the dampening counters on all the interfaces or just the specified interface. show interfaces dampening Display interface dampening information. description s z S6000 Syntax Assign a descriptive text string to the interface. description desc_text To delete a description, enter no description. Parameters Defaults Command Modes Command History Usage Information Related Commands desc_text Enter a text string up to 240 characters long.
www.dell.com | support.dell.com Usage Information Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S4810 This command applies only to the Management interface. When manually configuring the management port speed the user must consider and match the remote device. It is highly recommended to use Auto-Negotiation for management ports. Related Commands interface ManagementEthernet Configure the Management port on the system (either the Primary or Standby RPM).
Command History Usage Information Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S4810 The globally assigned 48-bit Multicast address 01-80-C2-00-00-01 is used to send and receive pause frames. To allow full duplex flow control, stations implementing the pause operation instruct the MAC to enable reception of frames with a destination address equal to this multi-cast address.
www.dell.com | support.dell.com The table below displays how FTOS negotiates the flow control values between two Dell Networking chassis connected back-to-back using 1G copper ports. Table 20-1.
Parameters interface Enter one of the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Example For 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S-Series Figure 20-4. interface loopback Command Example FTOS(conf)#interface loopback 1655 FTOS(conf-if-lo-1655)# Related Commands interface Configure a physical interface. interface null Configure a Null interface. interface port-channel Configure a port channel. interface vlan Configure a VLAN.
interface null s z S6000 Syntax Parameters Defaults Command Modes Command History Example Configure a Null interface on the switch. interface null number number Enter zero (0) as the Null interface number. Not configured; number = 0 CONFIGURATION Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S4810 Figure 20-6.
www.dell.com | support.dell.com Parameters interface, interface,... Enter the keyword interface range and one of the interfaces — slot/port, port-channel or VLAN number. Select the range of interfaces for bulk configuration. You can enter up to six comma separated ranges—spaces are not required between the commas. Comma-separated ranges can include VLANs, port-channels and physical interfaces. Slot/Port information must contain a space before and after the dash.
FTOS(conf-if-range-gi-2/1-23# Only VLAN and port-channel interfaces created using the interface vlan and interface port-channel commands can be used in the interface range command. Use the show running-config command to display the VLAN and port-channel interfaces. VLAN or port-channel interfaces that are not displayed in the show running-config command can not be used with the bulk configuration feature of the interface range command.
www.dell.com | support.dell.com interface range macro (define) s z S6000 Syntax Parameters Defines a macro for an interface range and then saves the macro in the running configuration. define interface range macro name interface, interface,... name Enter up to 16 characters for the macro name. interface , interface ,... Enter the interface keyword (see below) and one of the interfaces slot/port, port-channel or VLAN numbers. Select the range of interfaces for bulk configuration.
interface range macro name s z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Example Run the interface-range macro to automatically configure the pre-defined range of interfaces. interface range macro name name Enter the name of an existing macro. This command has no default behavior or value CONFIGURATION Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.
www.dell.com | support.dell.com Usage Information For more information on VLANs and the commands to configure them, refer to Virtual LAN (VLAN) Commands. FTP, TFTP, and SNMP operations are not supported on a VLAN. MAC ACLs are not supported in VLANs. IP ACLs are supported. See Chapter 6, Access Control Lists (ACL). Related Commands interface Configure a physical interface. interface loopback Configure a loopback interface. interface null Configure a null interface.
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Command Modes For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the management port, enter the keyword managementethernet followed by the slot (0-1) and the port (0).
www.dell.com | support.dell.
Table 20-2. monitor Command Menu Options Key Description T Increase the screen refresh rate. t Decrease the screen refresh rate. q Return to the CLI prompt. mtu s z S6000 Syntax Set the maximum Link MTU (frame size) for an Ethernet interface. mtu value To return to the default MTU value, enter no mtu. Parameters Defaults Command Modes Command History value Enter a maximum frame size in bytes. Z-Series Range: 594-12000 Default: 1554 1554 INTERFACE Version 9.0.2.0 Introduced on then S6000.
www.dell.com | support.dell.com negotiation auto sz Enable auto-negotiation on an interface. Syntax negotiation auto To disable auto-negotiation, enter no negotiation auto. Defaults Command Modes Enabled. INTERFACE Command History Usage Information Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810.
You can display master/slave settings with the show interfaces command. Figure 20-19. Display Auto-negotiation Master/Slave Setting (partial) FTOS#show interfaces configured GigabitEthernet 13/18 is up, line protocol is up Hardware is FTOSEth, address is 00:01:e8:05:f7:fc Current address is 00:01:e8:05:f7:fc Interface index is 474791997 Internet address is 1.1.1.
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S4810 Figure 20-20.
rate-interval s z S6000 Syntax Configure the traffic sampling interval on the selected interface. rate-interval seconds Parameters Defaults Command Modes seconds 299 seconds INTERFACE Command History Usage Information Enter the number of seconds for which to collect traffic data. Range: 30 to 299 seconds Note: Since polling occurs every 15 seconds, the number of seconds designated here will round to the multiple of 15 seconds lower than the entered value.
www.dell.com | support.dell.com show config (from INTERFACE RANGE mode) s z S6000 Syntax Command Modes Command History Example Display the bulk configured interfaces (interface range). show config CONFIGURATION INTERFACE (conf-if-range) Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S4810 Figure 20-24.
Command Modes EXEC EXEC Privilege Command History Usage Version 9.0.2.0 Introduced on then S6000. Version 8.3.11.1 Introduced on the Z9000. Version 8.2.1.0 Introduced on the S4810 Version 6.4.1.0 Changed organization of display output Use this show interfaces command for details on a specific interface. Use the show interfaces linecard command for details on all interfaces on the designated stack-unit.
www.dell.com | support.dell.com Table 20-5. Lines in show interfaces Command Example (EtherScale) Line Description TenGigabitEthernet 2/0... Displays the interface’s type, slot/port, and administrative and line protocol status. Hardware is... Displays the interface’s hardware information and its assigned MAC address. Interface index... Displays the interface index number used by SNMP to identify the interface. Internet address... States whether an IP address is assigned to the interface.
Table 20-5.
www.dell.com | support.dell.com Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Time since last interface status change: 00:12:14 FTOS# Table 20-6. Fields in show interfaces Command Example (TeraScale) Line Description TenGigabitEthernet 0/0... Interface type, slot/port and administrative and line protocol status. Hardware is... Interface hardware information, assigned MAC address, and current address. Pluggable media present...
Table 20-6.
www.dell.com | support.dell.com FTOS# Usage Information Related Commands On the S-Series, the interface counter “over 1023-byte pkts” does not increment for packets in the range 9216< x < 1023. show interfaces configured Display any interface with a non-default configuration. show interfaces stack-unit Display information on all interfaces on a specific stack-unit. strict-priority queue Display information of either rate limiting or rate policing on the interface.
0 Multicasts, 1 Broadcasts, 0 Unicasts 0 Vlans, 0 throttles, 0 discarded, 0 collisions Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Time since last interface status change: 00:04:59 FTOS# Related Commands show interfaces Display information on a specific physical interface or virtual interface. show interfaces dampening s z S6000 Syntax Parameters Display interface dampening information.
www.dell.com | support.dell.com show interfaces description s z S6000 Syntax Parameters Display the descriptions configured on the interface. show interfaces [interface] description interface Enter one of the following keywords and slot/port or number information: • • • • • • • • • Command Modes For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Table 20-7. show interfaces description Command Example Fields Field Description Interface Displays type of interface and associated slot and port number. OK? Indicates if the hardware is functioning properly. Status States whether the interface is enabled (up) or disabled (administratively down). Protocol States whether IP is enabled (up) or disabled (down) on the interface. Description Displays the description (if any) manually configured for the interface.
www.dell.com | support.dell.com 0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output Statistics: 0 packets, 0 bytes, 0 underruns 0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 collisions Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.
Port Gi 0/0 Gi 0/1 Gi 0/2 Gi 0/3 Gi 0/4 Gi 0/5 Gi 0/6 Gi 0/7 Gi 0/8 Gi 0/9 Gi 0/10 Gi 0/11 Gi 0/12 Gi 0/13 Gi 0/14 Gi 0/15 FTOS# Related Commands Description FTOSPort show interfaces Status Speed Duplex Vlan Up 1000 Mbit Auto -Down Auto Auto 1 Down Auto Auto 1 Down Auto Auto -Up 1000 Mbit Auto 30-130 Down Auto Auto -Down Auto Auto -Up 1000 Mbit Auto 1502,1504,1506-1508,1602 Down Auto Auto -Down Auto Auto -Down Auto Auto -Down Auto Auto -Down Auto Auto -Down Auto Auto -Down Auto Auto -Down Auto Auto --
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. Figure 20-33. show interfaces switchport Command Example FTOS#show interfaces switchport Name: GigabitEthernet 13/0 802.1QTagged: Hybrid Vlan membership: Vlan 2, Vlan 20 Native VlanId: 20 Name: GigabitEthernet 13/1 802.1QTagged: True Vlan membership: Vlan 2 Name: GigabitEthernet 13/2 802.
Parameters Command Modes tengigabitethernet For a 10G interface, enter the keyword tengigabitethernet followed by the slot/port information. fortyGigE For a 40G interface, enter the keyword fortyGigE followed by the slot/port information. EXEC EXEC Privilege Command History Usage Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Version 7.7.1.0 Removed three fields in output: Vendor Name, Vendor OUI, Vendor PN Version 9.0.2.
www.dell.com | support.dell.com SFP 1 Bias Low Alarm threshold = 1.000mA SFP 1 TX Power Low Alarm threshold = 0.067mW SFP 1 RX Power Low Alarm threshold = 0.010mW =================================== SFP 1 Temp High Warning threshold = 90.000C SFP 1 Voltage High Warning threshold = 3.700V SFP 1 Bias High Warning threshold = 14.000mA SFP 1 TX Power High Warning threshold = 0.631mW SFP 1 RX Power High Warning threshold = 0.794mW SFP 1 Temp Low Warning threshold = -20.
Table 20-9. Diagnostic Data in show interfaces transceiver (continued) Line Description Bias Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. TX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. RX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Temp High Warning threshold Factory-defined setting. Value can differ between SFP and SFP+.
www.dell.com | support.dell.com Table 20-9. Diagnostic Data in show interfaces transceiver (continued) 454 | Interfaces Line Description RS state This is the reserved digital state of the pin AS(1) per SFF-8079 and RS(1) per SFF-8431. Tx Disable state If the admin status of the port is down then this flag will be set to true. Temperature High Alarm Flag This can be either true/False and it depends on the Current Temperature value displayed above.
Related Commands interface Configure a physical interface on the switch. show ip interface Displays Layer 3 information about the interfaces. show interfaces Display information on a specific physical interface or virtual interface. show inventory (S-Series and Z-Series) Display the S-Series switch type, components (including media), FTOS version including hardware identification numbers and configured protocols.
www.dell.com | support.dell.com Disabling a VLAN or a port channel causes different behavior. When a VLAN is disabled, the Layer 3 functions within that VLAN are disabled. Layer 2 traffic continues to flow. Entering the shutdown command on a port channel disables all traffic on the port channel and the individual interfaces within the port channel. To enable a port channel, you must enter no shutdown on the port channel interface and at least one interface within that port channel.
stack-unit portmode s z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Split a single 40G port into 4-10G ports on the Z9000 or S4810. stack-unit stack-unit port number portmode quad stack-unit Enter the stack member unit identifier of the stack member to reset. S4810 range: 0 - 11 Z9000 range: 0 -7 S6000 range: 0-5 number Enter the port number of the 40G port to be split. S4810 range: Enter one of the following port numbers - 48, 52, 56, or 60.
www.dell.com | support.dell.com Parameters Defaults Command Modes Use this option to configure a redundant Layer 2 link without using Spanning Tree. This keyword configures a backup port so that if the primary port fails the backup port changes to the up state. If the primary later comes up, it becomes the backup. gigabit Enter this keyword if the backup port is a 1G port. tengigabit Enter this keyword if the backup port is a 10G port.
• • • • • • interface port-channel minimum-links port-channel failover-group show config show interfaces port-channel show port-channel-flow Note: The FTOS implementation of LAG or Port Channel requires that you configure a LAG on both switches manually. For information on FTOS Link Aggregation Control Protocol (LACP) for dynamic LAGs, refer to Chapter 22, Link Aggregation Control Protocol (LACP). For more information on configuring and using Port Channels, refer to the FTOS Configuration Guide.
The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members. Example: If the members have a link MTU of 2100 and an IP MTU 2000, the Port Channel’s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU. www.dell.com | support.dell.com • When an interface is removed from a Port Channel with the no channel-member command syntax, the interface reverts to its configuration prior to joining the Port Channel.
interface port-channel s z S6000 Syntax Create a Port Channel interface, which is a link aggregation group containing up to eight physical interfaces on S-Series. interface port-channel channel-number To delete a Port Channel, use the no interface port-channel channel-number command. Parameters Defaults Command Modes Command History Example channel-number Enter a number as the interface number. S-Series Range: 1-128 Not configured. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.
www.dell.com | support.dell.com minimum-links s z S6000 Syntax Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up” status for the LAG to be also in “oper up” status. minimum-links number Parameters Defaults Command Modes Command History Usage Information number Enter the number of links in a LAG that must be in “oper up” status. Maximum supported number is 8. Range: 1 to 8 Default: 1 1 INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
show config s z S6000 Syntax Command Modes Example Display the current configuration of the selected LAG. show config INTERFACE PORTCHANNEL Figure 20-37. show config Command Sample Output for a Selected LAG FTOS(conf-if-po-1)#show config ! interface Port-channel 1 no ip address shutdown FTOS(conf-if-po-1)# Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810.
www.dell.com | support.dell.
Figure 20-39. show interfaces port-channel brief Command Example FTOS#sh int por 1 br LAG Mode 1 L2 Status up Uptime 00:00:08 Ports Gi 3/0 Gi 3/1 Gi 3/2 (Up) * (Down) (Up) FTOS# Table 20-12. show interfaces port-channel brief Command Example Fields Field Description LAG Lists the port channel number. Mode Lists the mode: • • Status L3 - for Layer 3 L2 - for Layer 2 Displays the status of the port channel.
www.dell.com | support.dell.com source-ip address Enter the keyword source-ip followed by the IP source address in IP address format. destination-ip address Enter the keyword destination-ip followed by the IP destination address in IP address format. protocol number | tcp | udp Fnter the keyword protocol followed by one of the protocol type keywords: tcp, udp or protocol number source-port number Enter the keyword source-port followed by the source port number.
21 IPv4 Routing Overview The symbols s z under command headings indicate which Dell Networking platforms — S-Series S6000 or Z-Series, respectively — support the command. Commands IPv4-related commands are described in this chapter.
www.dell.com | support.dell.com • • • • • • • • • • • • • • • • • • ip unreachables load-balance load-balance hg management route show arp show arp retries show hosts show ip cam stack-unit show ip fib stack-unit show ip flow show ip interface show ip management-route show ip protocols show ip route show ip route list show ip route summary show ip traffic show tcp statistics arp z S6000 Syntax Use Address Resolution Protocol (ARP) to associate an IP address with a MAC address in the switch.
Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 You cannot use Class D or Class E IP addresses or zero IP address (0.0.0.0) when creating a static ARP. Zero MAC addresses (00:00:00:00:00:00) are also invalid. clear arp-cache Clear dynamic ARP entries from the ARP table. show arp Display ARP table. arp backoff-time Set the an exponential timer for resending unresolved ARPs.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 In FTOS versions prior to 8.3.1.0, if a gratuitous ARP is received some time after an ARP request is sent, only RP2 installs the ARP information. For example: 1 At time t=0 FTOS sends an ARP request for IP A.B.C.D 2 At time t=1 FTOS receives an ARP request for IP A.B.C.D 3 At time t=2 FTOS installs an ARP entry for A.B.C.D only on RP2.
Command Modes Command History Related Commands INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 show interfaces Displays the ARP timeout value for all available interfaces. clear arp-cache z S6000 Syntax Parameters Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries from CAM. clear arp-cache [vrf name | interface | ip ip-address] [no-refresh] vrf name Clear only the ARP cache entries tied to the VRF process.
www.dell.com | support.dell.com Parameters Command Modes Command History name Enter the name of the host to delete. Enter * to delete all host table entries. EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Related Commands ip route Assign an IP route to the switch. show ip route View the routing table. show ip route summary View a summary of the routing table. clear tcp statistics z S6000 Syntax Parameters Command Modes Command History Clear TCP counters. clear tcp statistics [all | cp | rp1 | rp2] all Enter the keyword all to clear all TCP statistics maintained on all switch processors. cp (OPTIONAL) Enter the cp to clear only statistics from the Control Processor.
www.dell.com | support.dell.com Command History Defaults Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. No default behavior or values Use the count option to stop packets from flooding the user terminal when debugging is turned on. debug ip dhcp z S6000 Syntax Enable debug information for DHCP relay transactions and display the information on the console.
Related Commands ip helper-address Specify the destination broadcast or host address for DHCP server request. ip helper-address hop-count disable Disable hop-count increment for DHCP relay agent. debug ip icmp z S6000 Syntax View information on the Internal Control Message Protocol (ICMP). debug ip icmp [interface] [count value] To disable debugging, use the no debug ip icmp command.
www.dell.com | support.dell.com debug ip packet z S6000 Syntax View a log of IP packets sent and received. debug ip packet [access-group name] [count value] [interface] To disable debugging, use the no debug ip packet [access-group name] [count value] [interface] command. Parameters access-group name Enter the keyword access-group followed by the access list name (maximum 16 characters) to limit the debug output based on the defined rules in the ACL.
multicast proto=2 IP: s=0.0.0.0, d=30.30.30.30, len 100, unroutable ICMP type=8, code=0 IP: s=0.0.0.0, d=30.30.30.30, len 100, unroutable ICMP type=8, code=0 Table 21-1. debug ip packet Command Example Fields Usage Information Field Description s= Lists the source address of the packet and the name of the interface (in parentheses) that received the packet.
www.dell.com | support.dell.com %Error: port operator RANGE not supported in access-list debug %Error: port operator NEQ not supported in access-list debug FTOS#00:10:45: %RPM0-P:CP %IPMGR-3-DEBUG_IP_PACKET_ACL_AMBIGUOUS_EXP: Ambiguous rules not supported in access-list debug, access-list debugging is turned off FTOS# ip address z S6000 Syntax Assign a primary and secondary IP address to the interface.
ip domain-list z S6000 Syntax Configure names to complete unqualified host names. ip domain-list name To remove the name, use the no ip domain-list name command. Parameters Defaults Command Modes name Disabled. CONFIGURATION Command History Usage Information Enter a domain name to be used to complete unqualified names (that is, incomplete domain names that cannot be resolved). Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com FTOS does not support sending DNS queries over a VLAN. DNS queries are sent out all other interfaces, including the Management port. To view current bindings, use the show hosts command. Related Commands ip name-server Specify a DNS server. show hosts View current bindings. ip domain-name z S6000 Syntax Configure one domain name for the switch. ip domain-name name To remove the domain name, enter no ip domain-name.
Parameters Defaults Command Modes Command History Usage Information ip-address Enter an IP address in dotted decimal format (A.B.C.D). ipv6-address Enter the IPv6 address in the x:x:x:x::x format Note: The notation specifies successive hexadecimal fields of zeros. default-vrf (Optional) Enter default-vrf for the DHCP server VRF is using. Not configured. INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.11.
www.dell.com | support.dell.com ip host z S6000 Syntax Assign a name and IP address to be used by the host-to-IP address mapping table. ip host name ip-address To remove an IP host, use the no ip host name [ip-address] command. Parameters Defaults Command Modes Command History name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Not configured. CONFIGURATION Version 9.0.2.0 Introduced on the S6000.
Parameters Defaults Command Modes Enter the IP address, in dotted decimal format, of the name server to be used. ip-address2 ... ip-address6 (OPTIONAL) Enter up five more IP addresses, in dotted decimal format, of name servers to be used. Separate the IP addresses with a space. No name servers are configured. CONFIGURATION Command History Usage Information ip-address Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Enter the mask in slash prefix formation (/x) of the destination device’s IP address. ip-address Enter the IP address in dotted decimal format of the forwarding router. interface Enter the following keywords and slot/port or number information: • • • • • • • Defaults Command Modes Command History Usage Information | IPv4 Routing For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
ip source-route z S6000 Syntax Enable FTOS to forward IP packets with source route information in the header. ip source-route To drop packets with source route information, enter no ip route-source. Defaults Command Modes Command History Enabled. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 ip unreachables z S6000 Syntax Enable the generation of Internet Control Message Protocol (ICMP) unreachable messages.
www.dell.com | support.dell.com Parameters ip-selection {dest-ip | source-ip} Enter the keywords to distribute IP traffic based on the following criteria: • • mac {dest-mac | source-dest-mac | source-mac} Enter the keywords to distribute MAC traffic based on the following criteria: • • • tcp-udp enable Command Modes CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Parameters Defaults Command Modes Command History {ip-selection| ipv6-selection [source-ip | source-ipv6 | source-port-id | source-module-id | dest-ip | dest-ipv6 | dest-port-id | dest-module-id | protocol | vlan | L4-source-port | L4-dest-port ] To use IPv4 key fields in hash computation, enter the keyword ip-selection followed by one of the parameters. To use IPv6 key fields in hash computation, enter the keyword ipv6-selection followed by one of the parameters.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information Related Commands ip-address mask Enter an IP address (dotted decimal format) and mask (/prefix format) of the destination subnet. ipv6-address prefix-length Enter an IPv6 address (x:x:x:x::x format) and mask (/prefix format) of the destination subnet. Enter the IPv6 address in the x:x:x:x::x format followed by the prefix length in the /x format.
interface interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For the Management interface, enter the keyword managementethernet followed by the slot/port information.
www.dell.com | support.dell.com ------------------------------------------------------------------------------ ----200 CP Internet CP Internet 5.5.5.10 - 00:01:e8:44:99:55 - Internet 10.1.2.4 1 00:01:e8:d5:9e:e2 Ma 0/0 - Internet 10.10.10.4 1 00:01:e8:d5:9e:e2 Ma 0/0 - CP CP CP CP CP 5.5.5.1 - 00:01:e8:43:96:5e - Vl 10 pv Vl 10 Internet 10.16.127.53 1 00:01:e8:d5:9e:e2 Ma 0/0 - Internet 10.16.134.254 20 00:01:e8:d5:9e:e2 Ma 0/0 - Internet 133.33.33.
Table 21-3. show arp summary Command Example Fields Related Commands Row Heading Description Total Entries Lists the total number of ARP entries in the ARP table. Static Entries Lists the total number of configured or static ARP entries. Dynamic Entries Lists the total number of learned or dynamic ARP entries. CPU Lists which CPU the entries are stored on. ip local-proxy-arp Enable/disable Layer 3 communication in secondary VLANs.
www.dell.com | support.dell.com Name servers are not set Host Flags -----------ks (perm, 4200-1 (perm, 1230-3 (perm, ZZr (perm, Z10-3 (perm, FTOS# OK) OK) OK) OK) OK) TTL ---- Type ---IP IP IP IP IP Address ------2.2.2.2 192.68.69.2 192.68.99.2 192.71.18.2 192.71.23.1 Table 21-4. show hosts Command Example Fields Field Description Default domain... Displays the domain name (if configured). Name/address lookup... States if DNS is enabled on the system.
ip-address mask [longer-prefix] (OPTIONAL) Enter the IP address and mask of a route to CAM entries for that route only. Enter the keyword longer-prefixes to view routes with a common prefix. summary Command Modes (OPTIONAL) Enter the keyword summary to view a table listing route prefixes and the total number routes which can be entered in to CAM. EXEC EXEC Privilege Command History Example Version 8.3.11.1 Introduced on the Z9000. Version 9.0.2.0 Introduced on the S6000. Figure 21-10.
www.dell.com | support.dell.com Command Mode longer-prefixes (OPTIONAL) Enter the keyword longer-prefixes to view all routes with a common prefix. summary (OPTIONAL) Enter the keyword summary to view the total number of prefixes in the FIB. EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 7.7.1.0 Modified: Added support for up to seven stack members. Figure 21-11.
Parameters vrf instance Show only the L3 flow as they apply to that VRF process. interface interface Enter the keyword interface followed by of the following interface keywords. • • • • • Command Modes Command History Usage Information For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Parameter interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • • • • For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword Loopback followed by a number from 0 to 16383. For the Management interface, enter the keyword ManagementEthernet followed by zero (0). For the Null interface, enter the keyword null followed by zero (0).
Table 21-7. show ip interface Command Example Items (continued) Lines Description Inbound access... Displays the name of the any configured incoming access list. If none is configured, the phrase “not set” is displayed. Proxy ARP... States whether proxy ARP is enabled on the interface. Split horizon... States whether split horizon for RIP is enabled on the interface. Poison Reverse... States whether poison for RIP is enabled on the interface ICMP redirects... States if ICMP redirects are sent.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Figure 21-14. show ip management route Command Example FTOS#show ip management-route Destination ----------10.1.2.0/24 172.16.1.0/24 Gateway ------ManagementEthernet 0/0 10.1.2.4 State ----Connected Active FTOS# show ipv6 management-route Display the IPv6 static routes configured for the management interface.
Command Modes EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Version 9.0.2.0 Regular evaluation optimization enabled/disabled added to display output Figure 21-15. show ip protocols Command Example FTOS#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.
www.dell.com | support.dell.com Command Modes all (OPTIONAL) Enter the keyword all to view both active and non-active routes. static (OPTIONAL) Enter the keyword static to view only routes configured by the ip route command. summary (OPTIONAL) Enter the keyword summary. See show ip route summary. EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on the Z9000. Figure 21-16.
Table 21-9.
www.dell.com | support.dell.com Related Commands Example ip prefix-list Enter the CONFIGURATION-IP PREFIX-LIST mode and configure a prefix list. show ip prefix-list summary Display a summary of the configured prefix lists. Figure 21-18.
Table 21-10. show ip route summary Column Headings Related Commands Column Heading Description Route Source Identifies how the route is configured in FTOS. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route will become the best route.
www.dell.com | support.dell.
Usage Information The F10 Monitoring MIB provides access to the statistics described below. Table 21-12. F10 Monitoring MIB Command Display Object OIDs IP statistics: Bcast: Received Sent f10BcastPktRecv f10BcastPktSent 1.3.6.1.4.1.6027.3.3.5.1.1 1.3.6.1.4.1.6027.3.3.5.1.2 f10McastPktRecv f10McastPktSent 1.3.6.1.4.1.6027.3.3.5.1.3 1.3.6.1.4.1.6027.3.3.5.1.4 f10ArpReqRecv f10ArpReplyRecv 1.3.6.1.4.1.6027.3.3.5.2.1 1.3.6.1.4.1.6027.3.3.5.2.3 f10ArpReqSent f10ArpReplySent f10ArpProxySent 1.3.6.1.4.
www.dell.com | support.dell.
Table 21-13. show tcp statistics cp Command Example Fields (continued) Field Description 20 Total rxmt... Displays the number of times the switch tried to resend data and the number of connections dropped during the TCP retransmit timeout period. 0 Keepalive .... Lists the number of keepalive packets in timeout, the number keepalive probes and the number of TCP connections dropped during keepalive.
| IPv4 Routing www.dell.com | support.dell.
22 Link Aggregation Control Protocol (LACP) Overview This chapter contains commands for Dell Networking implementation of Link Aggregation Control Protocol (LACP) for the creation of dynamic link aggregation groups (LAGs — called port-channels in FTOS parlance). For static LAG commands, the section Port Channel Commands in the Interfaces chapter), based on the standards specified in the IEEE 802.
www.dell.com | support.dell.com Defaults Command Modes Without a Port Channel specified, the command clears all Port Channel counters. EXEC EXEC Privilege Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. show lacp Display the lacp configuration debug lacp z S6000 Syntax Debug LACP (configuration, events etc.
Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. Version 8.5.1.0 Added support for 4-port 40G stack-units on ExaScale. show lacp Display the lacp configuration l lacp port-priority z S6000 Syntax Configure the port priority to influence which ports will be put in standby mode when there is a hardware limitation that prevents all compatible ports from aggregating.
www.dell.com | support.dell.com Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. port-channel mode z S6000 Syntax Parameters Configure the LACP port channel mode. port-channel number mode [active] [passive] [off] number Enter the keyword port-channel followed by a number: S-Series Range: 1 to 128 active Enter the keyword active to set the mode to the active state.* passive Enter the keyword passive to set the mode to the passive state.
Command Modes Command History Related Commands INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. show lacp Display the LACP information. show interfaces port-channel Display information on configured Port Channel groups. show lacp z S6000 Syntax Parameters Command Modes Display the LACP matrix.
www.dell.com | support.dell.com 514 Example (show lacp sys-id) FTOS#show lacp 1 sys-id Actor System ID: Priority 32768, Address 0001.e800.a12b Partner System ID: Priority 32768, Address 0001.e801.
23 Intermediate System to Intermediate System (IS-IS) Overview Intermediate System to Intermediate System Protocol (IS-IS) for IPv4 and IPv6 is supported on the S-Series platform, as indicated by the character under each command heading, on the S4810 (indicated by , S6000 and Z9000 (indicated by the z character). IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic.
www.dell.com | support.dell.
• • • • • • • • • show config show isis database show isis graceful-restart detail show isis hostname show isis interface show isis neighbors show isis protocol show isis traffic spf-interval adjacency-check z S6000 Syntax Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router. adjacency-check To disable adjacency check, use the no adjacency-check command.
www.dell.com | support.dell.com Defaults Command Modes level2-into-level1 Enter the keyword level2-into-level1 to advertise Level 2 inter-area routes into Level 1 LSPs. Described in RFC 2966. prefix-list-name Enter the name of a configured IP prefix list. Routes meeting the criteria of the IP Prefix list are leaked. level1-into-level2 ( Level 1 to Level 2 leaking enabled.) ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command History Usage Information Version 9.0.
Related Commands domain-password Allows you to set the authentication password for a routing domain. isis password Allows you to configure an authentication password for an interface. clear config S6000 Syntax Clear IS-IS configurations that display under the router isis heading of the show running-config command output. clear config Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.7.0 Introduced on the S4810.
www.dell.com | support.dell.com Parameters Defaults name Enter an alphanumeric string to identify the name-to-NSAP mapping. nsap Enter a specific NSAP address that will be associated with the name parameter. Not configured. Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.7.0 Introduced on the S4810.
Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Parameters interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • Command Modes Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel interface, enter port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale.
Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.7.0 Introduced on the S4810. default-information originate S6000 Syntax Generate a default route into an IS-IS routing domain and controls the distribution of default information. default-information originate [always] [metric metric] [route-map map-name] To disable the generation of a default route into the specified IS-IS routing domain, enter the no default-information originate [always] [metric metric] [route-map map-name] command.
www.dell.com | support.dell.com description S6000 Syntax Enter a description of the IS-IS routing protocol description {description} To remove the description, use the no description {description} command. Parameters Defaults description Enter a description to identify the IS-IS protocol (80 characters maximum). No default behavior or values Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.7.0 Introduced on the S4810.
distribute-list in S6000 Syntax Filter network prefixes received in updates. distribute-list prefix-list-name in [interface] To return to the default values, enter the no distribute-list prefix-list-name in [interface] command. Parameters prefix-list-name Specify the prefix list to filter prefixes in routing updates.
www.dell.com | support.dell.com Defaults Command Modes Not configured. ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. You can assign a name to a routing process so a prefix list will be applied to only the routes derived from the specified routing process. distribute-list in Filters networks received in updates.
Parameters Defaults hmac-md5 (OPTIONAL) Enter the keyword hmac-md5 to encrypt the password using MD5. encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES. password Enter an alphanumeric string up to 16 characters long. If you do not specify an encryption type or hmac-md5 keywords, the password is processed as plain text which provides limited security. No default password. Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.
www.dell.com | support.dell.com graceful-restart interval S6000 Syntax Set the Graceful Restart grace period, the time during which all Graceful Restart attempts are prevented. graceful-restart interval minutes To return to the default, use the no graceful-restart interval command. Parameters Defaults minutes Range: 1-20 minutes Default: 5 minutes 5 minutes Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810.
graceful-restart t2 S6000 Syntax Configure thewait time for the Graceful Restart timer T2 that a restarting router uses as the wait time for each database to synchronize. graceful-restart t2 {level-1 | level-2} seconds To return to the default, use the no graceful-restart t2command. Parameters Defaults level-1, level-2 Enter the keyword level-1 or level-2 to identify the database instance type to which the wait interval applies.
www.dell.com | support.dell.com Be sure to set the t3 timer to adjacency on the restarting router when implementing this command. The restarting router gets the remaining time value from its peer and adjusts its T3 value accordingly only when you have configured graceful-restart t3 adjacency. Related Commands graceful-restart restart-wait Enable the Graceful Restart maximum wait time before a restarting peer comes up.
Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. IS-IS hellos are padded to the full maximum transmission unit (MTU) size. Padding IS-IS Hellos (IIHS) to the full MTU provides early error detection of large frame transmission problems or mismatched MTUs on adjacent interfaces. isis hello padding Turn ON or OFF hello padding on an interface basis.
www.dell.com | support.dell.com Usage Information IS-IS normally purges LSPs with an incorrect data link checksum, causing the LSP source to regenerate the message. A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption. This could cause disruption to your system operation. ip router isis S6000 Syntax Configure IS-IS routing processes on an interface and attach an area tag name to the routing process.
Usage Information Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. You must configure a network entity title (the net command) to specify the area address and the router system ID. You must enable routing on one or more interfaces to establish adjacencies and establish dynamic routing. Only one IS-IS routing process can be configured to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time.
www.dell.com | support.dell.com isis csnp-interval S6000 Syntax Configure the IS-IS complete sequence number PDU (CSNP) interval on an interface. isis csnp-interval seconds [level-1 | level-2] To return to the default values, enter the no isis csnp-interval [seconds] [level-1 | level-2] command. Parameters Defaults Command Modes Command History Usage Information seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system.
Command Modes Command History Usage Information Related Commands INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Hello packets are held for a length of three times the value of the hello interval. Use a high hello interval seconds to conserve bandwidth and CPU usage. Use a low hello interval seconds for faster convergence (but uses more bandwidth and CPU resources).
www.dell.com | support.dell.com Syntax isis hello padding To return to the default, use the no isis hello padding. Defaults Command Modes Command History Usage Information Related Commands Padding of hello PDUs is enabled (ON). INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Hello PDUs are “padded” only when both the global and interface padding options are ON. Turning either one OFF will disable padding for the corresponding interface(s).
isis metric S6000 Syntax Assign a metric to an interface. isis metric default-metric [level-1 | level-2] To return to the default values, enter no isis metric [default-metric] [level-1 | level-2]. Parameters Defaults Command Modes Command History Usage Information default-metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations. You can configure this metric for Level 1 or Level 2 routing.
www.dell.com | support.dell.com isis password S6000 Syntax Configure an authentication password for an interface. isis password [hmac-md5] password [level-1 | level-2] To delete a password, enter the no isis password [password] [level-1 | level-2] command. Parameters Defaults Command Modes Command History Usage Information encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES. hmac-md5 (OPTIONAL) Enter the keyword hmac-md5 to encrypt the password using MD5.
Defaults Command Modes Command History Usage Information level-1 (OPTIONAL) Specify the priority for Level 1. This is the default. level-2 (OPTIONAL) Specify the priority for Level 2. value = 64; level-1 (if not otherwise specified) INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. You can configure priorities independently for Level 1 and Level 2. Priorities determine which router on a LAN will be the designated router.
www.dell.com | support.dell.com log-adjacency-changes S6000 Syntax Generate a log messages for adjacency state changes. log-adjacency-changes To disable this function, enter no log-adjacency-changes. Defaults Adjacency changes are not logged. Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Usage Information This command enables you to monitor adjacency state changes, which is useful when you monitor large networks.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. LSP throttling slows down the frequency at which LSPs are generated during network instability. Even though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of LSP generations until the topology regains its stability.
www.dell.com | support.dell.com Parameters Defaults seconds The LSP refresh interval, in seconds. This value has to be less than the seconds value specified with the max-lsp-lifetime command. Range: 1 to 65535 seconds. Default: 900 900 seconds Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810.
max-lsp-lifetime S6000 Syntax Set the maximum time that link-state packets (LSPs) exist without being refreshed. max-lsp-lifetime seconds To restore the default time, enter no max-lsp-lifetime. Parameters Defaults seconds The maximum lifetime of LSP in seconds. This value must be greater than the lsp-refresh-interval. The higher the value the longer the LSPs are kept. Range: 1 to 65535 Default: 1200 1200 seconds Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on the S6000.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. metric-style S6000 Syntax Configure a router to generate and accept old-style, new-style, or both styles of type, length, and values (TLV). metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] To return to the default values, enter the no metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] command.
Defaults Command Mode Command History Disabled CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. net S6000 Syntax Use this mandatory command to configure an IS-IS network entity title (NET) for a routing process. If a NET is not configured, the IS-IS process will not start. net network-entity-title To remove a net, enter no net network-entity-title.
www.dell.com | support.dell.com Command Modes Usage Information Command History ROUTER ISIS Although the passive interface will neither send nor receive routing updates, the network on that interface will still be included in IS-IS updates sent via other interfaces. Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. redistribute S6000 Syntax Redistribute routes from one routing domain to another routing domain.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. To redistribute a default route (0.0.0.0/0), configure the default-information originate command. Changing or disabling a keyword in this command will not affect the state of the other command keywords. When an LSP with an internal metric is received, the FTOS considers the route cost taking into consideration the advertised cost to reach the destination.
www.dell.com | support.dell.com metric-type {external| internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain. The two options are: • • route-map map-name external internal map-name is an identifier for a configured route map. The route map should filter imported routes from the source routing protocol to the current routing protocol. If you do not specify a map-name, all routes are redistributed.
Parameters process-id Enter a number that corresponds to the OSPF process ID to be redistributed. Range: 1 to 65355 metric metric-value (OPTIONAL) The value used for the redistributed route. You should use a metric value that is consistent with the destination protocol. Range: 0 to 16777215 Default: 0. metric-type {external | internal} (OPTIONAL) The external link type associated with the default route advertised into a routing domain.
www.dell.com | support.dell.com Parameters Defaults tag (OPTIONAL) This is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router. Not configured. Command Modes ROUTER ISIS Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810.
show config S6000 Syntax Command Modes Display the changes you made to the IS-IS configuration. Default values are not shown. show config ROUTER ISIS (for IPv4) CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command History Examples Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S4810. Figure 23-2. Command Example: show config (router-isis mode) FTOS(conf-router_isis)#show config ! router isis clns host ISIS 49.0000.0001.F100.E120.0013.
www.dell.com | support.dell.com Command Modes summary (OPTIONAL) Summary of link-state database information displays when specified. lspid (OPTIONAL) Display only the specified LSP. EXEC EXEC privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. Figure 23-4. Command Example: show isis database FTOS#show isis database IS-IS Level-1 Link State Database LSPID LSP Seq Num ISIS.
Metric: 20 Hostname: FTOS# Table 23-2. Command History IPv6 1033::/64 ISIS Command Example Fields Field Description IS-IS Level-1/Level-2 Link State Database Displays the IS-IS link state database for Level 1 or Level 2. LSPID Displays the LSP identifier. The first six octets are the System ID of the originating router. The next octet is the pseudonode ID. If this byte is not zero, then the LSP describes system links.
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.8.0 Introduced for the S4810 Figure 23-5.
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • • Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loopback interface, enter the keyword loopback followed by a number from zero (0) to 16383. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale.
www.dell.com | support.dell.com detail (OPTIONAL) Displays detailed information about neighbors. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • • • • Command Modes For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale.
show isis protocol S6000 Syntax Command Modes Display IS-IS routing information. show isis protocol EXEC EXEC privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.8.0 Introduced for the S4810 Figure 23-9. Command Example: show isis protocol FTOS#show isis protocol IS-IS Router: System Id: F100.E120.0013 IS-Type: level-1-2 Manual area address(es): 49.0000.0001 Routing for area address(es): 49.0000.
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.8.0 Introduced for the S4810 Figure 23-10.
To restore default values, use the no spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command. Parameters Defaults Command Modes level-l (OPTIONAL) Enter the keyword level-1 to apply the configuration to Level-1 SPF calculations. level-2 (OPTIONAL) Enter the keyword level-2 to apply the configuration to Level-2 SPF calculations. interval seconds Enter the maximum number of seconds between SPF calculations.
| www.dell.com | support.dell.
24 Layer 2 Overview This chapter describes commands to configure Layer 2 features. It contains the following sections: • • MAC Addressing Commands Virtual LAN (VLAN) Commands Some MAC addressing commands are supported only on the S-Series, some on all three Dell Networking, and some on two Dell Networking. The symbols s z under command headings indicate which Dell Networking — S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com clear mac-address-table z S6000 Syntax Parameters Clear the MAC address table of all MAC address learned dynamically. clear mac-address-table {dynamic | sticky} {address mac-address | all | interface interface | vlan vlan-id} dynamic Enter the keyword dynamic to specify dynamically-learned MAC addresses. sticky Enter the keyword sticky to specify sticky MAC addresses. address mac-address Enter the keyword address followed by a MAC address in nn:nn:nn:nn:nn:nn format.
Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 mac learning-limit Set the MAC address learning limits for a selected interface. show mac-address-table aging-time Display the MAC aging time. mac-address-table static z S6000 Syntax Associate specific MAC or hardware addresses to an interface and VLANs.
www.dell.com | support.dell.com mac-address-table station-move refresh-arp s z S6000 Syntax Defaults Command Modes Command History Usage Information Ensure that ARP refreshes the egress interface when a station move occurs due to a topology change. [no] mac-address-table station-move refresh-arp No default values or behavior CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series.
MAC Learning Limit violation logs and actions are not available on a per-VLAN basis. With the keyword no-station-move option, MAC addresses learned through this feature on the selected interface will persist on a per-VLAN basis, even if received on another interface. Enabling or disabling this option has no effect on already learned MAC addresses. Once the MAC address learning limit is reached, the MAC addresses do not age out unless you add the dynamic option.
www.dell.com | support.dell.com Related Commands show mac learning-limit Display details of the mac learning-limit mac learning-limit mac-address-sticky z S6000 Syntax Maintain the dynamically-learnt mac addresses as sticky MAC addresses on the selected port. mac learning-limit mac-address-sticky Use the ‘no’ form of this command to convert the sticky MAC addresses to dynamic MAC addresses. Parameters Defaults mac-address-sticky Configures the dynamic MAC addresses as sticky on an interface.
Defaults Command Modes Command History Usage Information Related Commands shutdown-offending Enter the keyword shutdown-offending to shut down the offending interface and generate a syslog message. shutdown-original Enter the keyword shutdown-original to shut down the original interface and generate a syslog message. No default behavior or values INTERFACE (conf-if-interface-slot/port) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Parameters stack-unit unit_number (REQUIRED) Enter the keyword linecard followed by a stack member number to select the linecard for which to gather information. S-Series Range: 0 to 1 port-set port-pipe (REQUIRED) Enter the keyword port-set followed by a Port-Pipe number to select the Port-Pipe for which to gather information.
Parameters dynamic (OPTIONAL) Enter the keyword dynamic to display only those MAC addresses learned dynamically by the switch. Optionally, you can also add one of these combinations: address/mac-address, interface/ interface, or vlan vlan-id. static (OPTIONAL) Enter the keyword static to display only those MAC address specifically configured on the switch. Optionally, you can also add one of these combinations: address/mac-address, interface/interface, or vlan vlan-id.
www.dell.com | support.dell.com Table 24-1. show mac-address-table Information Column Heading Description VlanId Displays the VLAN ID number. Mac Address Displays the MAC address in nn:nn:nn:nn:nn:nn format. Type Lists whether the MAC address was manually configured (Static) or learned (Dynamic), or associated with a specific port (Sticky). An (N) indicates that the specified MAC address has been learnt by a neighbor and is synced to the node.
Command Modes EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 24-1. show mac-address-table aging-time Command Example FTOS#show mac-address-table aging-time Mac-address-table aging time : 1800 FTOS# Related Commands show mac-address-table Display the current MAC address configuration. show mac learning-limit Z Syntax Parameters Display MAC address learning limits set for various interfaces.
www.dell.com | support.dell.com Virtual LAN (VLAN) Commands The following commands configure and monitor Virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP, ACLs and SNMP are not supported on a VLAN.
default vlan-id z S6000 Syntax Specify a VLAN as the Default VLAN. default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id syntax. Parameters Defaults Command Modes Command History Usage Information vlan-id Enter the VLAN ID number of the VLAN to become the new Default VLAN. Range: 1 to 4094. Default: 1 The Default VLAN is VLAN 1. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com name z S6000 Syntax Assign a name to the VLAN. name vlan-name To remove the name from the VLAN, enter no name. Parameters Defaults Command Modes vlan-name Not configured. INTERFACE VLAN Command History Usage Information Enter up to 32 characters as the name of the VLAN. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Parameters brief (OPTIONAL) Enter the keyword brief to display the following information: • • • • • Command Modes VLAN ID VLAN name (left blank if none is configured.) Spanning Tree Group ID MAC address aging time IP address id vlan-id (OPTIONAL) Enter the keyword id followed by a number from 1 to 4094. Only information on the VLAN specified is displayed. name vlan-name (OPTIONAL) Enter the keyword name followed by the name configured for the VLAN. Only information on the VLAN named is displayed.
www.dell.com | support.dell.com Table 24-3. show vlan Information Column Heading Description (Column 1 — no heading) asterisk symbol (*) = Default VLAN G = GVRP VLAN P = primary VLAN C = community VLAN I = isolated VLAN NUM Displays existing VLAN IDs. Status Displays the word Inactive for inactive VLANs and the word Active for active VLANs.
Figure 24-6. Using VLAN Name FTOSconf)#interface vlan 222 FTOS(conf-if-vl-222)#name test FTOS(conf-if-vl-222)#do show vlan name test Codes: Q: U x G - * - Default VLAN, G - GVRP VLANs Untagged, T - Tagged Dot1x untagged, X - Dot1x tagged GVRP tagged, M - Vlan-stack NUM Status Description 222 Inactive FTOS(conf-if-vl-222)# FTOS# Related Commands Q Ports U Gi 1/22 vlan-stack compatible Enable the Stackable VLAN feature on the selected VLAN. interface vlan Configure a VLAN.
www.dell.com | support.dell.com Related Commands interface vlan Configure a VLAN. untagged Specify which interfaces in a VLAN are untagged. track ip z S6000 Syntax Track the Layer 3 operational state of a Layer 3 VLAN, using a subset of the VLAN member interfaces. track ip interface To remove the tracking feature from the VLAN, use the no track ip interface command.
Parameters interface Enter the following keywords and slot/port or number information: • • • • Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Port Channel interface types, enter the keyword port-channel followed by a number from 1 to 255 for TeraScale. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Far-End Failure Detection (FEFD) FTOS supports Far-End Failure Detection (FEFD) on the Ethernet interfaces of the following platforms as indicated by the characters that appear under each of the command headings: S6000 S6000 ,S4810 , Z-Series z The FEFD feature detects and reports far-end link failures. • • • FEFD is not supported on the Management interface. During an RPM failover, FEFD is operationally disabled for approximately 8-10 seconds. By default, FEFD is disabled.
Related Commands Command History fefd Enable Far-End Failure Detection on an interface. fefd reset Enable FEFD globally on the system. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. fefd z S6000 Syntax Parameters Enable Far-End Failure Detection on an interface, set the FEFD interval, or select the FEFD mode.
www.dell.com | support.dell.com fefd-global z S6000 Syntax Enable FEFD globally on the system. fefd-global [interval seconds] [mode {normal | aggressive}] To disable FEFD globally, use the no fefd-global [mode {normal | aggressive}] command syntax. Parameters Defaults Command Modes Related Commands interval seconds Enter the keyword interval followed by a number as the time between FEFD control packets.
fefd reset z S6000 Syntax Parameters Reset all interfaces or a single interface that was in “error-disabled” mode. fefd reset [interface] interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • Defaults Not configured. Command Modes EXEC Privilege Related Commands Command History For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Example FTOS#sh fefd FEFD is globally 'ON', interval is 10 seconds, mode is 'Aggressive'. INTERFACE MODE Gi 5/0 Gi 5/1 Gi 5/2 Gi 5/3 Gi 5/4 Gi 5/5 Gi 5/6 Gi 5/7 Gi 5/8 Gi 5/9 Gi 5/10 Gi 5/11 FTOS# Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive Aggressive NA Aggressive Table 24-4. Description Interface Displays the interfaces type and number.
25 Link Layer Detection Protocol (LLDP) Overview Link Layer Detection Protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The FTOS implementation of LLDP is based on IEEE standard 801.1ab.
www.dell.com | support.dell.com See the Link Layer Discovery Protocol chapter of the FTOS Configuration Guide for details on implementing LLDP/LLDP-MED. advertise dot1-tlv s z S6000 Syntax Advertise dot1 TLVs (Type, Length, Value). advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} To remove advertised dot1-tlv, use the no advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} command.
Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. advertise management s z S6000 Syntax Advertise management TLVs (Type, Length, Value). advertise management -tlv {system-capabilities | system-description | system-name} To remove advertised management TLVs, use the no advertise management -tlv {system-capabilities | system-description | system-name} command.
www.dell.com | support.dell.com Command Modes Command History EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. clear lldp neighbors s z S6000 Syntax Parameters Clear LLDP neighbor information for all interfaces or a specific interface.
Parameters interface Enter the following keywords and slot/port or number information: • • • • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword gigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword tenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Related Commands protocol lldp (Configuration) Enable LLDP globally. debug lldp interface Debug LLDP show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration hello s z S6000 Syntax Configure the rate at which the LLDP control packets are sent to its peer. hello seconds To revert to the default, use the no hello seconds command.
Related Commands protocol lldp (Configuration) Enable LLDP globally. show lldp neighbors Display the LLDP neighbors multiplier s z S6000 Syntax Set the number of consecutive misses before LLDP declares the interface dead. multiplier integer To return to the default, use the no multiplier integer command. Parameters Defaults Command Modes Command History integer Enter the number of consecutive misses before the LLDP declares the interface dead.
www.dell.com | support.dell.com Defaults LLDP is not enabled on the interface. Command Modes INTERFACE (conf-if-interface-lldp) Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
show lldp statistics s z S6000 Syntax Defaults Command Modes Command History Example Display the LLDP statistical information. show lldp statistics No default values or behavior EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Figure 25-2.
www.dell.com | support.dell.
Parameters Defaults Command Modes Command History Related Commands vlan-id Enter the VLAN ID. Range: 1 to 4094 layer2_priority Enter the Layer 2 priority. Range: 0 to 7 DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 protocol lldp (Configuration) Enable LLDP globally.
www.dell.com | support.dell.com Command History Related Commands \ Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. debug lldp interface Debug LLDP show lldp neighbors Display the LLDP neighbors show running-config lldp Display the LLDP running configuration advertise med location-identification z S6000 Syntax Configure the system to advertise a location identifier.
Syntax advertise med power-via-mdi To return to the default, use the no advertise med power-via-mdi command. Defaults Command Modes Command History Usage Information Related Commands unconfigured CONFIGURATION (conf-lldp) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Advertise the Extended Power via MDI on all ports that are connected to an 802.3af powered, LLDP-MED endpoint device.
www.dell.com | support.dell.com show lldp neighbors Display the LLDP neighbors show lldp neighbors Display the LLDP running configuration advertise med streaming-video s z S6000 Syntax Configure the system to advertise streaming video services for broadcast or multicast-based video. This does not include video applications that rely on TCP buffering.
Parameters Defaults Command Modes Command History Related Commands vlan-id Enter the VLAN ID. Range: 1 to 4094 layer2_priority Enter the Layer 2 priority. Range: 0 to 7 DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority. Range: 0 to 7 unconfigured CONFIGURATION (conf-lldp) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series.
www.dell.com | support.dell.com Related Commands Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. debug lldp interface Debug LLDP show lldp neighbors Display the LLDP neighbors show lldp neighbors Display the LLDP running configuration advertise med voice s z S6000 Syntax Configure the system to advertise a dedicated IP telephony handset or other appliances supporting interactive voice services.
To return to the default, use the no advertise med voice-signaling {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command. Parameters Defaults Command Modes Command History Related Commands vlan-id Enter the VLAN ID. Range: 1 to 4094 layer2_priority Enter the Layer 2 priority. Range: 0 to 7 DSCP_value Enter the DSCP value. Range: 0 to 63 priority-tagged number Enter the keyword priority-tagged followed the Layer 2 priority.
www.dell.com | support.dell.
26 Multicast Source Discovery Protocol (MSDP) Overview MSDP (Multicast Source Discovery Protocol) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections. FTOS supports MSDP commands on the S6000 , S4810 systems, as indicated by the Z characters that appears below each command heading.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History peer address Enter the peer address in a dotted decimal format (A.B.C.D.) Not configured EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series.
Defaults Command Modes Command History Without any options, this command clears the entire source-active cache. EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. debug ip msdp z S6000 Syntax Turn on MSDP debugging. debug ip msdp {event peer address | packet peer address | pim} To turn debugging off, use the no debug ip msdp {event peer address | packet peer address | pim} command.
www.dell.com | support.dell.com Command Modes Command History Related Commands CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. show ip msdp sa-cache rejected-sa Description. ip msdp default-peer z S6000 Syntax Define a default peer from which to accept all Source-Active (SA) messages.
Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. ip msdp mesh-group z S6000 Syntax Configure a peer to be a member of a mesh group. ip msdp mesh-group {name} {peer address} To remove the peer from a mesh group, use the no ip msdp mesh-group {name} {peer address} command.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • Defaults Command Modes Command History For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/ port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Loopback interface, enter the keyword loopback followed by a number from 0 to 16383.
Defaults Command Modes Command History Usage Information As above CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. The connect-source option is used to supply a source IP address for the TCP connection. When an interface is specified using the connect-source option, the primary configured address on the interface is used.
www.dell.com | support.dell.com Syntax ip msdp sa-filter {in | out} peer-address list [access-list name] Remove this configuration using the command no ip msdp sa-filter {in | out} peer address list [access-list name] Parameters Defaults Command Modes Command History in Enter the keyword in to enable incoming SA filtering. out Enter the keyword out to enable outgoing SA filtering. peer-address Enter the peer address of the MSDP peer in a dotted decimal format (A.B.C.D.
Related Commands ip msdp peer Configure the MSDP peer clear ip msdp peer Clear the MSDP peer. show ip msdp Display the MSDP information ip msdp shutdown z S6000 Syntax Parameters Defaults Command Modes Command History Administratively shut down a configured MSDP peer. ip msdp shutdown {peer address} peer address Enter the peer address in a dotted decimal format (A.B.C.D.) Not configured CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.
www.dell.com | support.dell.com Parameters Defaults Command Modes peer peer address Enter the keyword peer followed by the peer address in a dotted decimal format (A.B.C.D.) sa-cache Enter the keyword sa-cache to display the Source-Active cache. summary Enter the keyword summary to display a MSDP peer summary. Not configured EXEC EXEC Privilege Command History Example 1 Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810.
Defaults Command Modes No default values or behavior EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. Figure 26-4.
www.dell.com | support.dell.
27 Multiple Spanning Tree Protocol (MSTP) Overview Multiple Spanning Tree Protocol (MSTP), as implemented by FTOS, conforms to IEEE 802.1s. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug Bridge Protocol Data Units. (OPTIONAL) Enter the interface keyword along with the type slot/port of the interface you want displayed. Type slot/port options are the following: • • • For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information.
Related Commands Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. protocol spanning-tree mstp Enter Multiple SPANNING TREE mode on the switch. disable s z S6000 Syntax Globally disable Multiple Spanning Tree Protocol on the switch. disable To enable Multiple Spanning Tree Protocol, enter no disable. Defaults Command Modes Command History Related Commands Multiple Spanning Tree Protocol is disabled MULTIPLE SPANNING TREE Version 9.0.2.0 Introduced on the S6000.
www.dell.com | support.dell.com Related Commands max-age Change the wait time before MSTP refreshes protocol configuration information. hello-time Change the time interval between BPDUs. hello-time s z S6000 Syntax Set the time interval between generation of Multiple Spanning Tree Bridge Protocol Data Units (BPDUs). hello-time seconds To return to the default value, enter no hello-time.
Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Version 6.5.1.0 Introduced forward-delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. hello-time Change the time interval between BPDUs. max-hops s z S6000 Syntax Configure the maximum hop count.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information msti instance Enter the Multiple Spanning Tree Protocol Instance Range: zero (0) to 63 vlan range Enter the keyword vlan followed by the identifier range value. Range: 1 to 4094 bridge-priority priority Enter the keyword bridge-priority followed by a value in increments of 4096 as the bridge priority.
protocol spanning-tree mstp s z S6000 Syntax Enter the MULTIPLE SPANNING TREE mode to enable and configure the Multiple Spanning Tree group. protocol spanning-tree mstp To disable the Multiple Spanning Tree group, enter no protocol spanning-tree mstp command. Defaults Command Modes Command History Example Not configured. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Figure 27-2.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Version 6.5.1.0 Introduced For two MSTP switches to be within the same MST region, the switches must share the same revision number. Related Commands msti Map the VLAN(s) to an MST instance name Assign the region name to the MST region.
Example Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Figure 27-4. show spanning-tree mst configuration Command Example FTOS#show spanning-tree mst configuration MST region name: CustomerSvc Revision: 2 MSTI VID 10 101-105 FTOS# Usage Information You must enable Multiple Spanning Tree Protocol prior to using this command. show spanning-tree msti s z S6000 Syntax Parameters Command Modes View the Multiple Spanning Tree instance.
www.dell.com | support.dell.com Port path cost 0, Port priority 128, Port Identifier 128.88 Designated root has priority 16384, address 0001.e800.0a:5c Designated bridge has priority 16384, address 0001.e800.0a:5c Designated port id is 128.88, designated path cost Number of transitions to forwarding state 4 BPDU (Mrecords): sent 19, received 1103 The port is not in the portfast mode Port 89 (GigabitEthernet 2/7) is alternate Discarding Port path cost 0, Port priority 128, Port Identifier 128.
Usage Information You must enable Multiple Spanning Tree Protocol prior to using this command. spanning-tree s z S6000 Syntax Enable Multiple Spanning Tree Protocol on the interface. spanning-tree To disable the Multiple Spanning Tree Protocol on the interface, use no spanning-tree Parameters Defaults Command Modes Command History spanning-tree Enter the keyword spanning-tree to enable the MSTP on the interface. Default: Enable Enable INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.
www.dell.com | support.dell.com Defaults Command Modes Command History cost = depends on the interface type; priority = 128 INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. spanning-tree mstp edge-port s z S6000 Syntax Parameters Configures the interface as an Multiple Spanning Tree edge port and optionally a Bridge Protocol Data Unit (BPDU) guard.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Version 6.5.1.0 Introduced By default FTOS implements an optimized flush mechanism for MSTP. This helps in flushing the MAC addresses only when necessary (and less often) allowing for faster convergence during topology changes.
www.dell.com | support.dell.
28 Multicast Overview This chapter contains the following sections: • IPv4 Multicast Commands The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Related Commands show ip pim tib Show the PIM Tree Information Base. ip mroute s z S6000 Syntax Assign a static mroute. ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance] To delete a specific static mroute, use the command ip mroute destination mask {ip-address | null 0| {{bgp| ospf} process-id | isis | rip | static} {ip-address | tag | null 0}} [distance].
ip multicast-routing s z S6000 Syntax Enable IP multicast forwarding. ip multicast-routing To disable multicast forwarding, enter no ip multicast-routing. Defaults Command Modes Command History Usage Information Related Commands Disabled CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. You must enter this command to enable multicast After you enable multicast, you can enable IGMP and PIM on an interface.
www.dell.com | support.dell.com show ip mroute s z S6000 Syntax Parameters Command Modes View the Multicast Routing Table. show ip mroute [static | group-address [source-address] | active [rate] | count | summary] static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address [source-address] (OPTIONAL) Enter the multicast group-address to view only routes associated with that group. Enter the source-address to view routes with that group-address and source-address.
Table 28-1. show ip mroute Command Example Fields Field Description (S,G) Displays the forwarding entry in the multicast route table. uptime Displays the amount of time the entry has been in the multicast forwarding table. Incoming interface Displays the reverse path forwarding (RPF) information towards the source for (S,G) entries and the RP for (*,G) entries.
| Multicast www.dell.com | support.dell.
29 Open Shortest Path First (OSPFv2) Overview The S6000 platform supports Open Shortest Path First (OSPFv2) only. Up to 3 OSPF instances can be run simultaneously on the S6000. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
www.dell.com | support.dell.
area default-cost z S6000 Syntax Set the metric for the summary default route generated by the area border router (ABR) into the stub area. Use this command on the border routers at the edge of a stub area. area area-id default-cost cost To return default values, use the no area area-id default-cost command. Parameters Defaults Command Modes Command History Usage Information Related Commands area-id Specify the OSPF area in dotted decimal format (A.B.C.D.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. area range z S6000 Syntax Summarize routes matching an address/mask at an area border router (ABR). area area-id range ip-address mask [not-advertise] To disable route summarization, use the no area area-id range ip-address mask command.
Parameters Defaults Command Modes Command History Usage Information Related Commands area-id Specify the stub area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-summary (OPTIONAL) Enter the keyword no-summary to prevent the ABR from sending summary Link State Advertisements (LSAs) into the stub area. Disabled ROUTER OSPF Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF.
www.dell.com | support.dell.com auto-cost z S6000 Syntax Specify how the OSPF interface cost is calculated based on the reference bandwidth method. auto-cost [reference-bandwidth ref-bw] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [reference-bandwidth] command. Parameters Defaults Command Modes ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. Range: 1 to 4294967 Default: 100 megabits per second. 100 megabits per second.
clear ip ospf statistics z S6000 Syntax Parameters Clear the packet statistics in interfaces and neighbors. clear ip ospf process-id statistics [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to clear statistics for a specific process. If no Process ID is entered, all OSPF processes are cleared.
www.dell.com | support.dell.com Command Modes Command History Example packet (OPTIONAL) Enter the keyword packet to debug only OSPF packet information. spf (OPTIONAL) Enter the keyword spf to display the Shortest Path First information. databasetimer rate-limit (OPTIONAL) Enter the keyword database-timer rate-limit to display the LSA throttling timer information. Applies to the S4810 only. EXEC Privilege Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.
Table 29-1. Output Descriptions for debug ip ospf process-id packet Field Description netmask: Displays the destination IP address mask.
www.dell.com | support.dell.com Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. redistribute Redistribute routes from other routing protocols into OSPF. default-metric z S6000 Syntax Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. default-metric number To return to the default values, enter no default-metric [number].
Related Commands show ip ospf asbr Display VLAN configuration. distance z S6000 Syntax Define an administrative distance for particular routes to a specific IP address. distance weight [ip-address mask access-list-name] To delete the settings, use the no distance weight [ip-address mask access-list-name] command. Parameters Defaults Command Modes Command History weight Specify an administrative distance.
www.dell.com | support.dell.com Defaults Command Modes Command History Usage Information inter-area dist2 (OPTIONAL) Enter the keyword inter-area followed by a number to specify a distance metric for routes between areas. Range: 1 to 255 Default: 110 intra-area dist1 (OPTIONAL) Enter the keyword intra-area followed by a number to specify a distance metric for all routes within an area. Range: 1 to 255 Default: 110 external dist3 = 110; inter-area dist2 = 110; intra-area dist1 = 110.
Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. distribute-list out z S6000 Syntax Apply a filter to restrict certain routes destined for the local routing table after the SPF calculation. distribute-list prefix-list-name out [bgp | connected | isis | rip | static] To remove a filter, use the no distribute-list prefix-list-name out [bgp | connected | isis | rip | static] command. Parameters prefix-list-name Enter the name of a configured prefix list.
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION Version 8.3.11.1 Introduced on Z9000 fast-convergence s z S6000 Syntax This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route computation so that convergence takes less time. fast-convergence {number} To cancel fast-convergence, enter no fast convergence. Parameters Defaults Command Modes Command History Usage Information number Enter the convergence level desired.
Usage Information In OSPF, flooding is the most resource-consuming task. The flooding algorithm, described in RFC-2328, requires that OSPF flood LSAs (Link State Advertisements) on all interfaces, as governed by LSA’s flooding scope (see Section 13 of the RFC). When multiple direct links connect two routers, the RFC-2328 flooding algorithm generates significant redundant information across all links.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. graceful-restart mode s z S6000 Syntax Enable the graceful restart mode. graceful-restart mode [planned-only | unplanned-only] To disable graceful restart mode, enter no graceful-restart mode.
ip ospf auth-change-wait-time z S6000 Syntax OSPF provides a grace period while OSPF changes its interface authentication type. During the grace period, OSPF sends out packets with new and old authentication scheme till the grace period expires. ip ospf auth-change-wait-time seconds To return to the default, enter no ip ospf auth-change-wait-time. Parameters Defaults Command Modes Command History seconds Enter seconds Range: 0 to 300 zero (0) seconds INTERFACE Version 9.0.2.0 Introduced on the S6000.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information cost Enter a number as the cost. Range: 1 to 65535. The default cost is based on the reference bandwidth. INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 If this command is not configured, cost is based on the auto-cost command. When you configure OSPF over multiple vendors, use the ip ospf cost command to ensure that all routers use the same cost.
Syntax ip ospf hello-interval seconds To return to the default value, enter no ip ospf hello-interval. Parameters Defaults Command Modes Command History Usage Information Related Commands seconds Enter a the number of second as the delay between hello packets. Range: 1 to 65535 Default: 10 seconds. 10 seconds INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 The time interval between hello packets must be the same for routers in a network.
www.dell.com | support.dell.com After the reply is received and the new key is authenticated, you must delete the old key. Dell Networking recommends keeping only one key per interface. Note: The MD5 secret is stored as plain text in the configuration file with service password encryption. ip ospf mtu-ignore z S6000 Syntax Disable OSPF MTU mismatch detection upon receipt of database description (DBD) packets. ip ospf mtu-ignore To return to the default, enter no ip ospf mtu-ignore.
Syntax ip ospf priority number To return to the default setting, enter no ip ospf priority. Parameters Defaults Command Modes Command History Usage Information number Enter a number as the priority. Range: 0 to 255 Default: 1 1 INTERFACE Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Setting a priority of 0 makes the router ineligible for election as a Designated Router or Backup Designated Router.
www.dell.com | support.dell.com Syntax ip ospf transmit-delay seconds To return to the default value, enter no ip ospf transmit-delay. Parameters Defaults Command Modes seconds Enter the number of seconds as the transmission time. This value should be greater than the transmission and propagation delays for the interface. Range: 1 to 3600 Default: 1 second 1 second INTERFACE Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.
Command Modes Command History ROUTER OSPF Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 9.0.0.0 Range for parameter was increased from 16 to 32. Version 7.8.1.0 Introduced support for Multi-Process OSPF. mib-binding z S6000 Syntax Enable this OSPF process ID to manage the SNMP traps and process SNMP queries. mib-binding To mib-binding on this OSPF process, enter no mib-binding. Defaults Command Modes Command History Usage Information None.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. To enable OSPF on an interface, the network area command must include, in its range of addresses, the primary IP address of an interface. Note: An interface can be attached only to a single OSPF area.
The default keyword sets all interfaces as passive. You can then configure individual interfaces, where adjacencies are desired, using the no passive-interface interface command. The no form of this command is inserted into the configuration for individual interfaces when the no passive-interface interface command is issued while passive-interface default is configured.
www.dell.com | support.dell.com metric-type type-value (OPTIONAL) Enter the keyword metric-type followed by one of the following: • • Defaults Command Modes Command History Usage Information Related Commands 1 = OSPF External type 1 2 = OSPF External type 2 route-map map-name (OPTIONAL) Enter the keyword route-map followed by the name of the route map. tag tag-value (OPTIONAL) Enter the keyword tag followed by a number. Range: 0 to 4294967295 Not configured. ROUTER OSPF Version 9.0.2.
Command Modes Command History ROUTER OSPF Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 7.8.1.3 Introduced Route Map for BGP Redistribution to OSPF Version 7.4.1.0 Modified to include the default keyword. redistribute isis z S6000 Syntax Redistribute IS-IS routing information throughout the OSPF instance.
www.dell.com | support.dell.com Usage Information IS-IS is not supported on S-Series platforms. router-id z S6000 Syntax Use this command to configure a fixed router ID. router-id ip-address To remove the fixed router ID, use the no router-id ip-address command. Parameters Defaults Command Modes Command History Example ip-address Enter the router ID in the IP address format This command has no default behavior or values. ROUTER OSPF Version 9.0.2.0 Introduced on S6000. Version 8.3.11.
Parameters Defaults Command Modes Enter a number for the OSPF instance. Range: 1 to 65535 vrf name (Optional) Enter the VRF process identifier to tie the OSPF instance to the VRF. All network commands under this OSPF instance are subsequently tied to the VRF instance. Not configured. CONFIGURATION Command History Example process-id Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Figure 29-3.
www.dell.com | support.dell.com Parameters Command Modes process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. vrf name Show only the OSPF information tied to the VRF process. EXEC EXEC Privilege Command History Usage Information Example Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Version 8.3.8.
show ip ospf asbr s z S6000 Syntax Parameters Defaults Command Modes Display all ASBR routers visible to OSPF. show ip ospf process-id asbr process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. No default values or behavior EXEC EXEC Privilege Command History Usage Information Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF.
www.dell.com | support.dell.com Command Modes EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Figure 29-7. Command Example: show ip ospf process-id database FTOS>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Age Seq# Checksum 11.1.2.1 11.1.2.1 673 0x80000005 0x707e 13.1.1.1 13.1.1.
show ip ospf database asbr-summary z S6000 Syntax Parameters Display information about AS Boundary LSAs. show ip ospf process-id database asbr-summary [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
www.dell.com | support.dell.com Table 29-4. Command Output Descriptions: show ip ospf database asbr-summary Item Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: • • • Related Commands TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service.
Example Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Figure 29-9. Command Example: show ip ospf database external FTOS#show ip ospf 1 database external OSPF Router with ID (20.20.20.5) (Process ID 1) Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.
www.dell.com | support.dell.com Table 29-5. external Related Commands Command Example Descriptions: show ip ospf process-id database Item Description LS Seq Number Identifies the link state sequence number. This number enables you to identify old or duplicate LSAs. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. Metrics Type Displays the external type.
FTOS#show ip ospf 1 data network OSPF Router with ID (20.20.20.5) (Process ID 1) Network (Area 0.0.0.0) LS age: 1372 Options: (No TOS-capability, DC, E) LS type: Network Link State ID: 202.10.10.2 Advertising Router: 20.20.20.8 LS Seq Number: 0x80000006 Checksum: 0xa35 Length: 36 Network Mask: /24 Attached Router: 20.20.20.8 Attached Router: 20.20.20.9 Attached Router: 20.20.20.7 Network (Area 0.0.0.1) LS age: 252 Options: (TOS-capability, No DC, E) LS type: Network Link State ID: 192.10.10.
www.dell.com | support.dell.com Related Commands show ip ospf database Displays OSPF database information. show ip ospf database nssa-external z S6000 Syntax Parameters Display NSSA-External (type 7) LSA information. show ip ospf database nssa-external [link-state-id] [adv-router ip-address] link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Command History Example Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. Figure 29-11. (Partial) Command Example: show ip ospf process-id database opaque-area FTOS>show ip ospf 1 database opaque-area OSPF Router with ID (3.3.3.3) (Process ID 1) Type-10 Opaque Link Area (Area 0) LS age: 1133 Options: (No TOS-capability, No DC, E) LS type: Type-10 Opaque Link Area Link State ID: 1.0.0.1 Advertising Router: 10.16.1.
www.dell.com | support.dell.com Related Commands show ip ospf database Displays OSPF database information. show ip ospf database opaque-as z S6000 Syntax Parameters Display the opaque-as (type 11) LSA information. show ip ospf process-id database opaque-as [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
EXEC Privilege Command History Related Commands Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. show ip ospf database Displays OSPF database information. show ip ospf database router z S6000 Syntax Parameters Display the router (type 1) LSA information. show ip ospf process-id database router [link-state-id] [adv-router ip-address] process-id Enter the OSPF Process ID to show a specific process.
www.dell.com | support.dell.com Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.129.1 (Link Data) Router Interface address: 192.68.129.1 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.130.1 (Link Data) Router Interface address: 192.68.130.1 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.142.
Table 29-8. router Related Commands Command Example Descriptions: show ip ospf process-id database Item Description Number of Links Displays the number of active links to the type of router (Area Border Router or AS Boundary Router) listed in the previous line. Link connected to: Identifies the type of network to which the router is connected. (Link ID) Identifies the link type and address. (Link Data) Identifies the router interface address.
www.dell.com | support.dell.com LS type: Summary Network Link State ID: 192.68.16.0 Advertising Router: 192.168.17.1 LS Seq Number: 0x80000054 Checksum: 0xb5a2 Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 9 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.32.0 Advertising Router: 1.1.1.
Related Commands show ip ospf database Displays OSPF database information. show ip ospf interface z S6000 Syntax Parameters Display the OSPF interfaces configured. If OSPF is not enabled on the switch, no output is generated. show ip ospf process-id interface [interface] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process.
www.dell.com | support.dell.com Backup Designated Router (ID) 192.168.253.3, Interface address 192.168.0.2 Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5 Hello due in 00:00:08 Neighbor Count is 3, Adjacent neighbor count is 2 Adjacent with neighbor 192.168.253.5 (Designated Router) Adjacent with neighbor 192.168.253.3 (Backup Designated Router) 680 Loopback 0 is up, line protocol is up Internet Address 192.168.253.2/32, Area 0.0.0.1 Process ID 1, Router ID 192.168.253.
show ip ospf neighbor z S6000 Syntax Parameters Command Modes Command History Example Display the OSPF neighbors connected to the local router. show ip ospf process-id neighbor process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. EXEC Privilege Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced process-id option, in support of Multi-Process OSPF. Figure 29-15.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced process-id option, in support of Multi-Process OSPF. This command is useful in isolating routing problems between OSPF and RTM. For example, if a route is missing from the RTM/FIB but is visible from the display output of this command, then likely the problem is with downloading the route to the RTM.
Command Modes EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced process-id option, in support of Multi-Process OSPF. Figure 29-17.
www.dell.com | support.dell.com Table 29-12. global Command Example Descriptions: show ip ospf statistics process-id Row Heading Description LSR-Q The queue, for transmission or reception, for the link state request packets. Other-Q The queue, for transmission or reception, for the link state acknowledgement, database description, and update packets. Table 29-13.
Interface GigabitEthernet 0/8 Hello-Timer 9, Wait-Timer 0, Grace-Timer 0 Error packets (Only for RX) Intf-Down Wrong-Len Auth-Error Version SeqNo-Err 0 0 0 0 0 Non-Dr Invld-Nbr MD5-Error AreaMisMatch Unkown-Pkt 0 0 0 0 0 Self-Org Nbr-State Cksum-Err Conf-Issue 0 0 0 0 Neighbor ID 9.1.1.
www.dell.com | support.dell.com show ip ospf topology z S6000 Syntax Parameters Defaults Command Modes Display routers in directly connected areas. show ip ospf process-id topology process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. No default values or behavior EXEC EXEC Privilege Command History Usage Information Example Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.
Command History Usage Information Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.8.1.0 Introduced support for Multi-Process OSPF. The command area range summarizes routes for the different areas. With "not-advertise" parameter configured, this command can be used to filter out some external routes. For example, you want to redistribute static routes to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.0. Then you can configure summary-address 1.
www.dell.com | support.dell.com To return to the default, enter no timers throttle lsa. Parameters Defaults Command Modes Command History Usage Information start-interval Set the minimum interval between initial sending and resending the same LSA. Range: 0-600,000 milliseconds hold-interval Set the next interval to send the same LSA. This is the time between sending the same LSA after the start-interval has been attempted.
30 PIM-Sparse Mode (PIM-SM) Overview This chapter contains the following sections: • IPv4 PIM-Sparse Mode Commands The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com clear ip pim rp-mapping s z S6000 Syntax Parameters Command Modes Command History Used by the bootstrap router (BSR) to remove all or particular Rendezvous Point (RP) Advertisement. clear ip pim rp-mapping rp-address rp-address (OPTIONAL) Enter the RP address in dotted decimal format (A.B.C.D) EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810.
register (OPTIONAL) Enter the keyword register to view PIM register address in dotted decimal format (A.B.C.D). state (OPTIONAL) Enter the keyword state to view PIM state changes. timer [assert | hello | joinprune | register] (OPTIONAL) Enter the keyword timer to view PIM timers. Enter one of the optional parameters: • • • • Defaults Command Modes Command History assert: to view the assertion timer. hello: to view the PIM neighbor keepalive timer.
www.dell.com | support.dell.com ip pim bsr-candidate s z S6000 Syntax Configure the PIM router to join the Bootstrap election process. ip pim bsr-candidate interface [hash-mask-length] [priority] To return to the default value, enter no ip pim bsr-candidate. Parameters interface Enter the following keywords and slot/port or number information: • • • • • Defaults Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. The router with the largest value assigned to an interface becomes the Designated Router. If two interfaces contain the same DR priority value, the interface with the largest interface IP address becomes the Designated Router.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information access-list Enter the name of a standard access list. Maximum 139 characters. Defaults. CONFIGURATION. Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. Do not enter this command before creating the access-list. ip pim query-interval s z S6000 Syntax Change the frequency of PIM Router-Query messages.
ip pim register-filter s z S6000 Syntax Use this feature to prevent a PIM source DR from sending register packets to an RP for the specified multicast source and group. ip pim register-filter access-list To return to the default, use the no ip pim register-filter access-list command. Parameters Defaults Command Modes Command History Usage Information access-list Enter the name of an extended access list. Maximum 16 characters. Not configured CONFIGURATION Version 9.0.2.0 Introduced on the S6000.
www.dell.com | support.dell.com Usage Information This address is used by first-hop routers to send Register packets on behalf of source multicast hosts. The RP addresses are stored in the order in which they are entered. RP addresses learned via BSR take priority over static RP addresses. Without the override option, RPs advertised by the BSR updates take precedence over the statically configured RPs.
ip pim sparse-mode s z S6000 Syntax Enable PIM sparse mode and IGMP on the interface. ip pim sparse-mode To disable PIM sparse mode and IGMP, enter no ip pim sparse-mode. Defaults Command Modes Command History Usage Information Related Commands Disabled. INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. The interface must be enabled (no shutdown command) and not have the switchport command configured.
www.dell.com | support.dell.com show ip pim bsr-router s z S6000 Syntax Command Modes View information on the Bootstrap router. show ip pim bsr-router EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. Version 7.8.1.0 Introduced on S-Series Figure 30-2.
Table 30-1. show ip pim interface Command Example Fields Field Description Address Lists the IP addresses of the interfaces participating in PIM. Interface List the interface type, with either slot/port information or ID (VLAN or Port Channel), of the interfaces participating in PIM. Ver/Mode Displays the PIM version number and mode for each interface participating in PIM. • • v2 = PIM version 2 S = PIM Sparse mode Nbr Count Displays the number of PIM neighbors discovered over this interface.
www.dell.com | support.dell.com Table 30-2. show ip pim neighbor Command Example Fields Field Description Uptime/expires Displays the amount of time the neighbor has been up followed by the amount of time until the neighbor is removed from the multicast routing table (that is, until the neighbor hold time expires). Ver Displays the PIM version number. • DR prio/Mode v2 = PIM version 2 Displays the Designated Router priority and the mode.
RP: 165.87.20.3, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:03:03 FTOS# Example 3 Figure 30-7. show ip pim rp group-address Command Example 3 FTOS#sh ip pim rp 229.1.2.1 Group RP 229.1.2.1 165.87.20.4 FTOS# show ip pim tib s z S6000 Syntax Parameters Command Modes View the PIM tree information base (TIB). show ip pim tib [group-address [source-address]] group-address (OPTIONAL) Enter the group address in dotted decimal format (A.B.C.
www.dell.com | support.dell.com Incoming interface: TenGigabitEthernet 4/23, RPF neighbor 10.211.1.2 Outgoing interface list: TenGigabitEthernet 8/0 (*, 226.1.1.4), uptime 00:18:08, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: TenGigabitEthernet 4/23, RPF neighbor 10.211.1.2 Outgoing interface list: TenGigabitEthernet 8/0 FTOS# Table 30-3. show ip pim tib Command Example Fields Field Description (S, G) Displays the entry in the multicast PIM database.
31 PIM-Source Specific Mode (PIM-SSM) Overview This chapter contains the following sections • IPv4 PIM-Source Specific Mode Commands The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com FTOS recommended best-practices are to configure the standard ACL, and then apply the ACL to the SSM range. Once the SSM range is applied, the changes are applied internally without requiring clearing of the TIB. When ACL rules change, the ACL and PIM modules apply the new rules automatically. When SSM range is configured, FTOS supports SSM for configured group range as well as default SSM range.
32 Port Monitoring Overview The Port Monitoring feature enables you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com description z S6000 Syntax Enter a description of this monitoring session description {description} To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description regarding this session(80 characters maximum). No default behavior or values MONITOR SESSION (conf-mon-sess-session-ID) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Related Commands show monitor session Display the monitor session show running-config monitor session Display the running configuration of a monitor session show config s z S6000 Syntax Defaults Command Modes Command History Display the current monitor session configuration. show config No default values or behavior MONITOR SESSION (conf-mon-sess-session-ID) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.
www.dell.com | support.dell.com FTOS# Related Commands monitor session Create a session for monitoring. show running-config monitor session s S6000 Syntax Display the running configuration of all monitor sessions or a specific session. show running-config monitor session {session-ID} To display the running configuration for all monitor sessions, use just the show running-config monitor session command. Parameters Defaults Command Modes session-ID (OPTIONAL) Enter a session identification number.
To disable a monitor source, use the no source interface destination interface direction {rx | tx | both} command. Parameters interface Enter the one of the following keywords and slot/port information: • • • destination For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
| Port Monitoring www.dell.com | support.dell.
33 Private VLAN (PVLAN) Overview The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command. Commands • • • • • • • ip local-proxy-arp private-vlan mode private-vlan mapping secondary-vlan show interfaces private-vlan show vlan private-vlan show vlan private-vlan mapping switchport mode private-vlan See also the following commands. The command output is augmented in FTOS 7.8.1.
www.dell.com | support.dell.com A community VLAN is a secondary VLAN of the primary VLAN: • • Ports in a community VLAN can talk to each other. Also, all ports in a community VLAN can talk to all promiscuous ports in the primary VLAN and vice-versa. Devices on a community VLAN can communicate with each other via member ports, while devices in an isolated VLAN cannot. Isolated VLAN: An isolated VLAN is a secondary VLAN of the primary VLAN: • • Ports in an isolated VLAN cannot talk to each other.
Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. private-vlan mode Set the mode of the selected VLAN to community, isolated, or primary. private-vlan mapping secondary-vlan Map secondary VLANs to the selected primary VLAN. show arp Display the ARP table. show interfaces private-vlan Display type and status of PVLAN interfaces.
www.dell.com | support.dell.com Related Commands private-vlan mapping secondary-vlan Set the mode of the selected VLAN to primary and then associate secondary VLANs to it. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan Display PVLANs and/or interfaces that are part of a PVLAN. show vlan private-vlan mapping Display primary-secondary VLAN mapping. switchport mode private-vlan Set the PVLAN mode of the selected port.
Syntax Parameters Defaults Command Modes show interfaces private-vlan [interface interface] interface interface (OPTIONAL) Enter the keyword interface, followed by the ID of the specific interface for which to display PVLAN status. none EXEC EXEC Privilege Command History Usage Information Examples Version 9.0.2.0 Introduced on the S6000. Version 8.3.7.0 Introduced on the S-Series. This command has two types of display — a list of all PVLAN interfaces or for a specific interface.
www.dell.com | support.dell.com show vlan private-vlan s S6000 Syntax Parameters Defaults Command Modes Display PVLANs and/or interfaces that are part of a PVLAN. show vlan private-vlan [community | interface | isolated | primary | primary_vlan | interface interface] community (OPTIONAL) Enter the keyword community to display VLANs configured as community VLANs, along with their interfaces.
Primary Secondary Type Active ------- --------- --------- -----10 primary Yes 100 isolated Yes 200 isolated Yes Ports -----------------------Gi 2/1,3 Gi 2/2,4-6 Gi 3/2,4-6 FTOS# show vlan private-vlan community Primary Secondary Type Active Ports ------- --------- --------- ------ -----------------------10 primary Yes Gi 2/1,3 101 community Yes Gi 2/7-10 20 primary Yes Po 10, 12-13 Gi 3/1 201 community No 202 community Yes Gi 3/11-12 FTOS# show vlan private-vlan interface Gi 2/1 Primary Secondary Type Ac
www.dell.com | support.dell.com Related Commands private-vlan mode Set the mode of the selected VLAN to either community or isolated. show interfaces private-vlan Display type and status of PVLAN interfaces. show vlan private-vlan mapping Display primary-secondary VLAN mapping. switchport mode private-vlan Set the PVLAN mode of the selected port. show vlan private-vlan mapping s S6000 Syntax Defaults Command Modes Display primary-secondary VLAN mapping.
Parameters Defaults Command Modes Command History Usage Information Example host Enter host to configure the selected port or port channel as an isolated interface in a PVLAN, as described above. promiscuous Enter promiscuous to configure the selected port or port channel as an promiscuous interface, as described above. trunk Enter trunk to configure the selected port or port channel as a trunk port in a PVLAN, as described above. disabled INTERFACE Version 9.0.2.0 Introduced on the S6000.
| Private VLAN (PVLAN) www.dell.com | support.dell.
34 Per-VLAN Spanning Tree Plus (PVST+) Overview The FTOS implementation of PVST+ (Per-VLAN Spanning Tree plus) is based on the IEEE 802.1w standard Spanning Tree Protocol, but it creates a separate spanning tree for each VLAN configured. PVST+ (Per-VLAN Spanning Tree plus) is supported by FTOS on all Dell Networking systems. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands PVST+ is disabled CONFIGURATION (conf-pvst) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000. protocol spanning-tree pvst Enter PVST+ mode. description z S6000 Syntax Enter a description of the PVST+ description {description} To remove the description, use the no description {description} command.
VLAN 5 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32773, Address 0001.e832.73f7 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32773 (priority 32768 sys-id-ext 5), Address 0001.e832.73f7 We are the root of Vlan 5 Configured hello time 2, max age 20, forward delay 15 Interface Name ---------Gi 0/10 Gi 0/12 PortID -------128.140 128.
www.dell.com | support.dell.com Related Commands disable Disable PVST+. show spanning-tree pvst Display the PVST+ configuration. show spanning-tree pvst z S6000 Syntax Parameters View the Per-VLAN Spanning Tree configuration. show spanning-tree pvst [vlan vlan-id] [brief] [Interface] vlan vlan-id (OPTIONAL) Enter the keyword vlan followed by the VLAN ID. Range: 1 to 4094 brief (OPTIONAL) Enter the keyword brief to view a synopsis of the PVST+ configuration information.
Example 2 Interface Name ---------Gi 1/0 Gi 1/1 Gi 1/16 Gi 1/17 PortID -------128.130 128.131 128.146 128.147 Interface Name ---------Gi 1/0 Gi 1/1 Gi 1/16 Gi 1/17 Role -----Root Altr Desg Desg Figure 34-3. Prio ---128 128 128 128 Cost -----20000 20000 20000 20000 PortID -------128.130 128.131 128.146 128.147 Prio ---128 128 128 128 Sts --FWD BLK FWD FWD Designated Bridge ID PortID -------------------- -------4096 0001.e801.6aa8 128.426 4096 0001.e801.6aa8 128.427 16384 0001.e805.e306 128.
www.dell.com | support.dell.com FTOS#show spanning-tree pvst vlan 2 interface gigabitethernet 1/0 GigabitEthernet 1/0 of VLAN 2 is LBK_INC discarding Loopback BPDU Edge port:no (default) port guard :none (default) Link type: point-to-point (auto) bpdu filter:disable (default) Bpdu guard :disable (default) Bpdus sent 152, received 27562 (LBK_INC) Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID --------- -------- ---- ------- --- ------- -------------------- -------Gi 1/0 128.
Defaults Command Modes Command History Usage Information cost number (OPTIONAL) Enter the keyword cost followed by the port cost value.
www.dell.com | support.dell.com Related Commands show spanning-tree pvst View PVST+ configuration spanning-tree pvst err-disable z S6000 Syntax Defaults Command Modes Command History Usage Information Place ports in an err-disabled state if they receive a PVST+ BPDU when they are members an untagged VLAN. spanning-tree pvst err-disable cause invalid-pvst-bpdu Enabled; ports are placed in err-disabled state if they receive a PVST+ BPDU when they are members of an untagged VLAN. INTERFACE Version 9.0.
vlan bridge-priority z S6000 Syntax Set the PVST+ bridge-priority for a VLAN or a set of VLANs. vlan vlan-range bridge-priority value To return to the default value, enter no vlan bridge-priority command. Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). Range: 1 to 4094 bridge-priority value Enter the keyword bridge-priority followed by the bridge priority value in increments of 4096.
www.dell.com | support.dell.com Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000. vlan bridge-priority Set the bridge-priority value vlan hello-time Change the time interval between BPDUs vlan max-age Change the time interval before PVST+ refreshes show spanning-tree pvst Display the PVST+ configuration vlan hello-time z S6000 Syntax Set the time interval between generation of PVST+ Bridge Protocol Data Units (BPDUs).
Parameters Defaults Command Modes Command History Related Commands vlan vlan-range Enter the keyword vlan followed by the VLAN number(s). Range: 1 to 4094 max-age seconds Enter the keyword max-age followed by the time interval, in seconds, that FTOS waits before refreshing configuration information. Range: 6 to 40 seconds Default: 20 seconds 20 seconds CONFIGURATION (conf-pvst) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000.
www.dell.com | support.dell.
35 Quality of Service (QoS) Overview FTOS commands for Quality of Service (QoS) include traffic conditioning and congestion control. QoS commands are not universally supported on all Dell Networking Products. This chapter contains the following sections: • • • Global Configuration Commands Per-Port QoS Commands Policy-Based QoS Commands The symbols s z under command headings indicate which Dell Networking - S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Command History Version 9.0.2.0 Introduced on S6000 show qos dot1p-queue-mapping S6000 Syntax Command Modes View the qos dot1-queue-mapping value. show qos dot1p-queue-mapping EXEC EXEC Privilege Command History Example 1 Version 9.0.2.0 Figure 35-1.
www.dell.com | support.dell.com Per-Port QoS Commands Per-port QoS (“port-based QoS”) allows users to defined QoS configuration on a per-physical-port basis. The commands include: • • • • dot1p-priority rate police rate shape service-class dynamic dot1p dot1p-priority s z S6000 Syntax Assign a value to the IEEE 802.1p bits on the traffic received by this interface. dot1p-priority priority-value To delete the IEEE 802.1p configuration on the interface, enter no dot1p-priority.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. The dot1p-priority command changes the priority of incoming traffic on the interface. The system places traffic marked with a priority in the correct queue and processes that traffic according to its queue. When you set the priority for a Port Channel, the physical interfaces assigned to the Port Channel are configured with the same value.
www.dell.com | support.dell.com On one interface, you can configure the rate police command for a VLAN or you can configure the rate police command for an interface. For each physical interface, you can configure three rate police commands specifying different VLANS. rate shape z S6000 Syntax Parameters Defaults Shape the traffic output on the selected interface. rate shape [kbps] rate [burst-KB] kbps Enter this keyword to specify the rate limit in Kilobits per second (Kbps).
Defaults Command Modes All dot1p traffic is mapped to Queue 0 unless service-class dynamic dot1p is enabled. If enabled, following dot1p to queue mapping is observed: Table 35-1. Default dot1p to Queue Mapping dot1p S6000 Queue ID S4810 Queue ID S-Series Queue ID 0 2 0 1 1 0 0 0 2 1 0 0 3 3 1 1 4 4 2 2 5 5 3 2 6 6 3 3 7 7 3 3 INTERFACE CONFIGURATION (S-Series only) Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Policy-Based QoS Commands 740 | Policy-based traffic classification is handled with class maps. These maps classify unicast traffic into one of four classes in S-Series or eight classes in case of S6000. FTOS enables you to match multiple class maps and specify multiple match criteria. Policy-based QoS is not supported on logical interfaces, such as port-channels, VLANS, or loopbacks.
bandwidth-percentage z S6000 Syntax Assign a percentage of bandwidth to class/queue. bandwidth-percentage percentage To remove the bandwidth percentage, use the no bandwidth-percentage command. Parameters Defaults Command Modes Command History Usage Information Related Commands percentage Enter the percentage assignment of bandwidth to class/queue. Range: 1 to 100% No default behavior or values CONFIGURATION (conf-qos-policy-out) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000. Version 8.3.8.0 Class-map names can be 32 characters. layer2 available on S-Series. Packets arriving at the input interface are checked against the match criteria, configured using this command, to determine if the packet belongs to that class.
match ip access-group s z S6000 Syntax Configure match criteria for a class map, based on the access control list (ACL). match ip access-group access-group-name [set-ip-dscp value] To remove ACL match criteria from a class map, enter no match ip access-group access-group-name [set-ip-dscp value] command.
www.dell.com | support.dell.com Related Commands policy-map-input Create an input policy map. policy-map-output Create an output policy map. qos-policy-input Create an input QOS-policy on the router. qos-policy-output Create an output QOS-policy on the router. wred-profile Create a WRED profile. match ip dscp s z S6000 Syntax Use a DSCP (Differentiated Services Code Point) value as a match criteria.
match ip precedence s z S6000 Syntax Use IP precedence values as a match criteria. match ip precedence ip-precedence-list [set-ip-dscp value] To remove IP precedence as a match criteria, enter no match ip precedence ip-precedence-list [set-ip-dscp value] command. Parameters Defaults Command Modes Command History Usage Information ip-precedence-list Enter the IP precedence value(s) as the match criteria.
www.dell.com | support.dell.com Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000. Version 7.5.1.0 Added support for DSCP Marking option You must enter the class-map command in order to access this command. Once the class map is identified, you can configure the match criteria. class-map Identify the class map.
Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000. You must first enter the class-map command in order to access this command. You can match against only one VLAN ID. class-map Create/access a class map. policy-aggregate s z S6000 Syntax Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface.
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000. Version 9.0.2.0 Policy name character limit increased from 16 to 32. Version 7.4.1.0 Expanded to add support for Layer 2 Input policy map is used to classify incoming traffic to different flows using class-map, QoS policy, or simply using incoming packets DSCP.
qos-policy-input s z S6000 Syntax Create a QoS input policy on the router. qos-policy-input qos-policy-name cpu-qos|layer2 To remove an existing input QoS policy from the router, use no qos-policy-input qos-policy-name cpu-qos|layer2 command. Parameters Defaults Command Modes Command History Usage Information Related Commands qos-policy-name Enter your input QoS policy name in character format (32 character maximum).
www.dell.com | support.dell.com Usage Information Use this command to specify the name of the output QoS policy. Once output policy is specified, rate-shape, scheduler strict, bandwidth-percentage, and WRED can be defined. This command enables the qos-policy-output configuration mode—(conf-qos-policy-out). When rate-shape in QoS policy is applied both on queue level and aggregate mode, the queue-based shaping occurs first followed by the aggregate rate shaping.
Syntax Parameters Defaults Command Modes Command History Related Commands rate-shape [kbps] rate [burst-KB] kbps Enter this keyword to specify the rate limit in Kilobits per second (Kbps). On S-Series make the following value a multiple of 64. The default granularity is Megabits per second (Mbps). Range: 0 to 40000. rate Enter the outgoing rate. Range: 0 to 10000 burst-KB (OPTIONAL) Enter a number as the burst size in KB. Range: 0 to 40000 Default: 100 Burst size is 100 KB.
www.dell.com | support.dell.com Usage Information A single policy-map can be attached to one or more interfaces to specify the service-policy for those interfaces. A policy map attached to an interface can be modified. Note: The service-policy commands are not allowed on a port channel. The service-policy input policy-map-name command and the service-class dynamic dot1p command are not allowed simultaneously on an interface. Related Commands policy-map-input Create an input policy map.
Parameters queue-id Enter the value used to identify a queue. Range: 0 to 7 for S6000 (eight queues per interface), and S-Series (four queues per interface; four queues are reserved for control traffic.) class-map class-map-name (OPTIONAL) Enter the keyword class-map followed by the class map name assigned to the queue in character format (16 character maximum).
www.dell.com | support.dell.com show qos class-map z S6000 Syntax Parameters Defaults Command Modes View the current class map information. show qos class-map [class-name] class-name (Optional) Enter the name of a configured class map. No default behavior or values EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000. Figure 35-2.
Parameters summary interface To view a policy map interface summary, enter the keyword summary and optionally one of the following keywords and slot/port or number information: For a Fast Ethernet interface, enter the keyword FastEthernet followed by the slot/port information. For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Ten Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com show qos policy-map-input z S6000 Syntax Parameters Defaults Command Modes View the input QoS policy map details. show qos policy-map-input [policy-map-name] [class class-map-name] [qos-policy-input qos-policy-name] policy-map-name Enter the policy map name. class class-map-name Enter the keyword class followed by the class map name. qos-policy-input qos-policy-name Enter the keyword qos-policy-input followed by the QoS policy name.
FTOS#show qos policy-map-output Policy-map-output PolicyMapOutput Aggregate Qos-policy-name AggPolicyOut Queue# Qos-policy-name 0 qosPolicyOutput FTOS# show qos qos-policy-input z S6000 Syntax Parameters Defaults Command Modes View the input QoS policy details. show qos qos-policy-input [qos-policy-name] qos-policy-name Enter the QoS policy name. No default behavior or values EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000.
www.dell.com | support.dell.com Example Figure 35-8. show qos qos-policy-output (S4810) FTOS#show qos qos-policy-output Qos-policy-output Customer1 Wred green Customer Wred Ecn show qos statistics s z S6000 Syntax Parameters View QoS statistics.
show qos wred-profile s z S6000 Syntax Parameters Defaults Command Modes View the WRED profile details. show qos wred-profile wred-profile-name wred-profile-name Enter the WRED profile name to view the profile details. No default behavior or values EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S4810. Figure 35-10.
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 35-11.
An input policy map with both Trust and Class-map configuration, the Class-map rules are ignored and only the Trust rule is programmed in the CAM. In such an instance, the Estimated CAM output column will contain the size of the CAM space required for the Trust rule and not the Class-map rule. threshold s z S6000 Syntax Specify the minimum and maximum threshold values for the configured WRED profiles.
www.dell.com | support.dell.com Table 35-3. Pre-defined WRED Profile Name Minimum Threshold Maximum Threshold Maximum Drop Rate wred_drop 0 0 100 wred_teng_y 594 5941 100 wred_teng_g 594 5941 50 wred_fortyg_y 594 5941 50 wred_fortyg_g 594 5941 25 Table 35-4.
Table 35-5.
www.dell.com | support.dell.com Related Commands wred-profile Create a WRED profile and name that profile trust Define the dynamic classification to trust DSCP wred ecn z S6000 Syntax Use Explicit Congestion Notification (ECN) to indicate network congestion, rather than dropping packets. wred ecn Use the no wred ecn command to stop marking packets. Defaults Command Modes Command History Usage Information No default behavior or values CONFIGURATION (conf-qos-policy-out) Version 9.0.2.
To remove an existing WRED profile, use the no wred-profile command. Parameters Defaults wred-profile-name Enter your WRED profile name in character format (16 character maximum). Or use one of the pre-defined WRED profile names. You can configure up to 26 WRED profiles plus the 5 pre-defined profiles, for a total of 31 WRED profiles. Pre-defined Profiles: wred_drop, wred-ge_y, wred_ge_g, wred_teng_y, wred_teng_g The five pre-defined WRED profiles.
| Quality of Service (QoS) www.dell.com | support.dell.
36 Router Information Protocol (RIP) Overview Router Information Protocol (RIP) is a Distance Vector routing protocol. FTOS supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command. Note: The S-Series platform supports RIP with FTOS version 9.0.2.0 and later. The FTOS implementation of RIP is based on IETF RFCs 2453 and RFC 1058.
www.dell.com | support.dell.com • • • • • • router rip show config show ip rip database show running-config rip timers basic version auto-summary z S6000 Syntax Restore the default behavior of automatic summarization of subnet routes into network routes. This command applies only to RIP version 2. auto-summary To send sub-prefix routing information, enter no auto-summary. Default Enabled. Command Modes ROUTER RIP Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Parameters interface (OPTIONAL) Enter the interface type and ID as one of the following: • • • • • Command Modes Command History For a Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale, 1-128 S-Series. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Usage Information The default route must be present in the switch routing table for the default-information originate command to take effect. default-metric z S6000 Syntax Change the default metric for routes. Use this command with the redistribute command to ensure that all redistributed routes use the same metric value. default-metric number To return the default metric to the original values, enter no default-metric. Parameters Default number Specify a number.
distance z S6000 Syntax Assign a weight (for prioritization) to all routes in the RIP routing table or to a specific route. Lower weights (“administrative distance”) are preferred. distance weight [ip-address mask [prefix-name]] To return to the default values, use the no distance weight [ip-address mask] command. Parameters Defaults weight Enter a number from 1 to 255 for the weight (for prioritization). The default is 120. ip-address (OPTIONAL) Enter the IP address, in dotted decimal format (A.B.C.
www.dell.com | support.dell.com Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 ip prefix-list Enter the PREFIX-LIST mode and configure a prefix list. distribute-list out z S6000 Syntax Configure a filter for outgoing routing updates. distribute-list prefix-list-name out [interface | bgp | connected | isis | ospf | static] To delete the filter, use the no distribute-list prefix-list-name out command.
Defaults Command Modes Command History Related Commands Disabled. INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 ip split-horizon Set RIP routing updates to exclude routing prefixes. ip rip receive version z S6000 Syntax Set the interface to receive specific versions of RIP. The RIP version you set on the interface overrides the version command in the ROUTER RIP mode. ip rip receive version [1] [2] To return to the default, enter no ip rip receive version.
www.dell.com | support.dell.com Defaults Command Modes RIPv1. INTERFACE Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 To enable the interface to send both version of RIP packets, enter ip rip send version 1 2. ip rip receive version Sets the RIP version for the interface to receive traffic. version Sets the RIP version to be used for the switch software.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 RIP supports a maximum of 16 ECMP paths. neighbor z S6000 Syntax Define a neighbor router with which to exchange RIP information. neighbor ip-address To delete a neighbor setting, use the no neighbor ip-address command. Parameters Defaults ip-address Enter the IP address, in dotted decimal format, of a router with which to exchange information. Not configured.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 You can enable an unlimited number of RIP networks. RIP operates over interfaces configured with any address specified by the network command. offset-list z S6000 Syntax Specify a number to add to the incoming or outgoing route metrics learned via RIP.
Syntax output-delay delay To return to the switch software defaults for interpacket delay, enter no output-delay. Parameters Default delay Specify a number of milliseconds as the delay interval. Range: 8 to 50 Not configured. Command Modes ROUTER RIP Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Usage Information This command is intended for low-speed interfaces.
www.dell.com | support.dell.com redistribute z S6000 Syntax Redistribute information from other routing instances. redistribute {connected | static} To disable redistribution, use the no redistribute {connected | static} command. Parameters Defaults connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed. static Enter the keyword static to specify that information from static routes is redistributed. Not configured.
Command Modes ROUTER RIP Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 router rip z S6000 Syntax Enter the ROUTER RIP mode to configure and enable RIP. router rip To disable RIP, enter no router rip. Defaults Command Modes Command History Usage Information Example Disabled. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 To enable RIP, you must assign a network address using the network command.
www.dell.com | support.dell.com show config z S6000 Display the changes you made to the RIP configuration. Default values are not shown. Syntax show config Command Modes ROUTER RIP Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Example Figure 36-2. show config Command Example in ROUTER RIP Mode FTOS(conf-router_rip)#show config ! router rip network 172.31.0.
208.250.42.0/24 [50/2] via 1.1.120.2, 00:00:55, Port-channel 20 [50/2] via 1.1.130.2, 00:00:12, Port-channel 30 [50/2] via 1.1.10.2, 00:00:18, Vlan 10 208.250.42.0/24 auto-summary Table 36-1. Fields in show ip rip database Command Output Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database. 100.10.10.0/24 directly connected Lists the route(s) directly connected. 150.100.0.
www.dell.com | support.dell.com Parameters Defaults Enter the number of seconds to specify the rate at which RIP routing updates are sent. Range: zero (0) to 4294967295. Default: 30 seconds. invalid Enter the number of seconds to specify the time interval before routing updates are declared invalid or expired. The invalid value should be at least three times the update timer value. Range: zero (0) to 4294967295. Default: 180 seconds.
version z S6000 Syntax Specify either RIP version 1 or RIP version 2. version {1 | 2} To return to the default version setting, enter no version. Parameters Default 1 Enter the keyword 1 to specify RIP version 1. 2 Enter the keyword 2 to specify RIP version 2. The FTOS sends RIPv1 and receives RIPv1 and RIPv2. Command Modes ROUTER RIP Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.
37 Remote Monitoring (RMON) Overview FTOS RMON is implemented on all Dell Networking switching platforms. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command. FTOS RMON is based on IEEE standards, providing both 32-bit and 64-bit monitoring, and long-term statistics collection.
www.dell.com | support.dell.com • • • • • • show rmon alarms show rmon events show rmon hc-alarm show rmon history show rmon log show rmon statistics rmon alarm z S6000 Syntax Set an alarm on any MIB object. rmon alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon alarm number command.
rmon collection history z S6000 Syntax Enable the RMON MIB history group of statistics collection on an interface. rmon collection history {controlEntry integer} [owner name] [buckets number] [interval seconds] To remove a specified RMON history group of statistics collection, use the no rmon collection history {controlEntry integer} command. Parameters Defaults Command Modes Command History controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value.
www.dell.com | support.dell.com Command Modes Command History CONFIGURATION INTERFACE (config-if) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 rmon event z S6000 Syntax Add an event in the RMON event table. rmon event number [log] [trap community] [description string] [ownername] To disable RMON on an interface, use the no rmon event number [log] [trap community] [description string] command.
Parameters Defaults Command Modes Command History number Enter the alarm integer number from 1 to 65535. The value must be unique in the RMON Alarm Table. variable The MIB object to monitor. The variable must be in the SNMP OID format, for example, 1.3.6.1.2.1.1.3 The object type must be a 64 bit integer. interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON Alarm table.
www.dell.com | support.dell.com show rmon z S6000 Syntax Defaults Command Modes Command History Example Display the RMON running status including the memory usage. show rmon No default behavior EXEC Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 37-1. show rmon Command Example FTOS# show rmon RMON status total memory used 218840 bytes.
rising threshold: 1, RMON event index: 1 falling threshold: 501, RMON event index: 501 alarm owner: 1 alarm status: OK FTOS# Example 2 Figure 37-3. show rmon alarms brief Command Example FTOS#show rmon alarm br index SNMP OID --------------------------------------------------------------------1 1.3.6.1.2.1.1.3 2 1.3.6.1.2.1.1.3 3 1.3.6.1.2.1.1.3 4 1.3.6.1.2.1.1.3 5 1.3.6.1.2.1.1.3 6 1.3.6.1.2.1.1.3 7 1.3.6.1.2.1.1.3 8 1.3.6.1.2.1.1.3 9 1.3.6.1.2.1.1.3 10 1.3.6.1.2.1.1.3 11 1.3.6.1.2.1.1.3 12 1.3.6.1.2.
www.dell.com | support.dell.com event last time sent: none event owner: 1 event status: OK FTOS# Example 2 Figure 37-5.
4 5 FTOS# Example 2 Figure 37-7. 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon hc-alarm index Command Example FTOS#show rmon hc-alarm 1 RMON high-capacity alarm entry 1 object: 1.3.6.1.2.1.1.3 sample interval: 5 sample type: absolute value. value: 185638 alarm type: rising or falling alarm. alarm rising threshold value: positive. rising threshold: 1001, RMON event index: 1 alarm falling threshold value: positive. falling threshold: 999, RMON event index: 6 alarm sampling failed 0 times.
www.dell.com | support.dell.com 6003 6004 9001 9002 9003 9004 FTOS# 101236775 101236775 134529054 134529054 134791198 134791198 TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet TenGigabitEthernet 2/1 2/1 3/0 3/0 3/1 3/1 show rmon log z S6000 Syntax Parameters Defaults Command Modes Command History Example 1 Display the contents of RMON Log Table. show rmon log [index] [brief] index (OPTIONAL) Enter the log index number to display just that entry.
Parameters Defaults Command Modes Command History Example 1 index (OPTIONAL) Enter the index number to display just that entry. Range: 1 to 65535 brief (OPTIONAL) Enter the keyword brief to display the RMON Ethernet Statistics table in an easy-to-read format. No default behavior EXEC Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 37-12. show rmon statistics index Command Example FTOS#show rmon statistics 6001 RMON statistics entry 6001 interface: ifIndex.
www.dell.com | support.dell.
38 Rapid Spanning Tree Protocol (RSTP) Overview The FTOS implementation of RSTP (Rapid Spanning Tree Protocol) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged LAN that is comprised of LANs interconnected by bridges. RSTP is supported by FTOS on all Dell Networking systems. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands priority-value Enter a number as the bridge priority value in increments of 4096. Range: 0 to 61440. Default: 32768 32768 CONFIGURATION RSTP (conf-rstp) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 protocol spanning-tree rstp Enter the Rapid Spanning Tree mode debug spanning-tree rstp z S6000 Syntax Enable debugging of RSTP and view information on the protocol.
FTOS#debug spanning-tree rstp bpdu gigabitethernet 2/0 ?in Receive (in) out Transmit (out) description z S6000 Syntax Enter a description of the Rapid Spanning Tree description {description} To remove the description, use the no description {description} command. Parameters Defaults Command Modes Command History Related Commands description Enter a description to identify the Rapid Spanning Tree (80 characters maximum). No default behavior or values SPANNING TREE (The prompt is “config-rstp”.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Related Commands seconds Enter the number of seconds that FTOS waits before transitioning RSTP to the forwarding state. Range: 4 to 30 Default: 15 seconds 15 seconds CONFIGURATION RSTP (conf-rstp) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 hello-time Change the time interval between BPDUs. max-age Change the wait time before RSTP refreshes protocol configuration information.
max-age z S6000 Syntax Set the time interval for the RSTP bridge to maintain configuration information before refreshing that information. max-age seconds To return to the default values, enter no max-age. Parameters Defaults Command Modes Command History Related Commands max-age Enter a number of seconds the FTOS waits before refreshing configuration information. Range: 6 to 40 seconds Default: 20 seconds 20 seconds CONFIGURATION RSTP (conf-rstp) Version 9.0.2.0 Introduced on the S6000. Version 8.
www.dell.com | support.dell.com show config z S6000 Syntax Command Modes Command History Example View the current configuration for the mode. Only non-default values are displayed. show config CONFIGURATION RSTP (conf-rstp) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 38-3.
Gi 4/0 Gi 4/1 Gi 4/8 Gi 4/9 FTOS# Example 2 Figure 38-5. Desg Desg Root Altr 128.418 128.419 128.426 128.427 128 128 128 128 20000 20000 20000 20000 FWD FWD FWD BLK 20000 20000 20000 20000 P2P P2P P2P P2P Yes Yes No No show spanning-tree rstp with EDS and LBK FTOS#show spanning-tree rstp br Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e801.6aa8 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 0001.e801.
www.dell.com | support.dell.com Parameters cost Port cost (OPTIONAL) Enter the keyword cost followed by the port cost value.
switchport spanning-tree rstp edge-port no shutdown FTOS# tc-flush-standard z S6000 Syntax Enable the MAC address flushing upon receiving every topology change notification. tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Command Modes Command History Usage Information Disabled CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 By default FTOS implements an optimized flush mechanism for RSTP.
www.dell.com | support.dell.
39 Security Overview Except for the Trace List feature, most of the commands in this chapter are available on all Dell Networking. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com aaa accounting z S6000 Syntax Enable AAA Accounting and create a record for monitoring the accounting function. aaa accounting {system | exec | commands level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} To disable AAA Accounting, use the no aaa accounting {system | exec | command level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} command.
aaa accounting suppress z S6000 Syntax Prevent the generation of accounting records of users with user name value of NULL. aaa accounting suppress null-username To permit accounting records to users with user name value of NULL, use the no aaa accounting suppress null-username command Defaults Command Modes Command History Usage Information Accounting records are recorded for all users. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Syntax Defaults Command Modes show accounting No default configuration or behavior EXEC Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 39-2.
authorization z S6000 Syntax Parameters Apply an authorization method list to terminal lines. authorization {exec | commands level} method-list exec Enter this keyword to apply an EXEC level authorization method list. commands level Enter this keyword to apply an EXEC and CONFIGURATION level authorization method list. method-list Enter a method list that you defined using the command aaa authorization exec or aaa authorization commands.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 aaa authorization config-commands z Syntax Set parameters that restrict (or permit) a user’s access to EXEC level commands. aaa authorization config-commands Disable authorization checking for CONFIGURATION level commands using the command no aaa authorization config-commands.
privilege level (CONFIGURATION mode) z S6000 Syntax Change the access or privilege level of one or more commands. privilege mode {level level command | reset command} To delete access to a level and command, use the no privilege mode level level command command.
www.dell.com | support.dell.com privilege level (LINE mode) z S6000 Syntax Change the access level for users on the terminal lines. privilege level level To delete access to a terminal line, use the no privilege level level command. Parameters Defaults Command Modes level level Enter the keyword level followed by a number for the access level. Range: 0 to 15. Level 1 is the EXEC mode and Level 15 allows access to all CLI modes. level = 15 LINE Command History Version 9.0.2.
aaa authentication enable z S6000 Syntax Configure AAA Authentication method lists for user access to the EXEC Privilege mode (the “Enable” access). aaa authentication enable {default | method-list-name} method [... method2] To return to the default setting, use the no aaa authentication enable {default | method-list-name} method [... method2] command.
www.dell.com | support.dell.com aaa authentication login z S6000 Syntax Configure AAA Authentication method lists for user access to the EXEC mode (Enable log-in). aaa authentication login {method-list-name | default} method [... method4] To return to the default setting, use the no aaa authentication login {method-list-name | default} command. Parameters method-list-name Enter a text string (up to 16 characters long) as the name of a user-configured method list that can be applied to different lines.
After configuring the aaa authentication login command, configure the login authentication command to enable the authentication scheme on terminal lines. Connections to the SSH server will work with the following login mechanisms: local, radius and tacacs. Related Commands login authentication Apply an authentication method list to designated terminal lines. password Create a password. radius-server host Specify a RADIUS server host. tacacs-server host Specify a TACACS+ server host.
www.dell.com | support.dell.com Parameters level level (OPTIONAL) Enter the keyword level followed by a number as the level of access. Range: 1 to 15 encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type. Enter a 7 followed by a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Force10 router. Use this parameter only with a password that you copied from the show running-config file of another Dell Force10 router.
enable restricted z S6000 Syntax Allows Dell Networking technical support to access restricted commands. enable restricted [encryption-type] password To disallow access to restricted commands, enter no enable restricted. Parameters encryption-type (OPTIONAL) Enter the number 7 as the encryption type. Enter 7 followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Force10 router.
www.dell.com | support.dell.com Usage Information Use this command to define a password for a level and use the privilege level (CONFIGURATION mode) command to control access to command modes. Passwords must meet the following criteria: • • Start with a letter, not a number. Passwords can have a regular expression as the password. To create a password with a regular expression in it, you must use CNTL + v prior to entering regular expression.
To delete a password, use the no password password command. Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the password entered. The options are: • • password Defaults Command Modes Command History Usage Information Related Commands 0 is the default and means the password is not encrypted and stored as clear text. 7 means that the password is encrypted and hidden. Enter a text string up to 32 characters long.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands character-restriction (OPTIONAL) Enter the keyword character-restriction to indicate a character restriction for the password. upper number (OPTIONAL) Enter the keyword upper followed the upper number. Range: 0 - 31 lower number (OPTIONAL) Enter the keyword lower followed the lower number. Range: 0 - 31 numeric number (OPTIONAL) Enter the keyword numeric followed the numeric number.
show privilege z S6000 Syntax Command Modes View your access level. show privilege EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 39-3. show privilege Command Output FTOS#show privilege Current privilege level is 15 FTOS# Related Commands privilege level (CONFIGURATION mode) Assign access control to different command modes.
www.dell.com | support.dell.com Related Commands username Enable a user. timeout login response z S6000 Syntax Specify how long the software will wait for login input (for example, user name and password) before timing out. timeout login response seconds To return to the default values, enter no timeout login response. Parameters Defaults Command Modes Command History Usage Information seconds Enter a number of seconds the software will wait before logging you out. Range: 1 to 300.
encryption-type Enter an encryption type for the password that you will enter. • • • Defaults Command Modes password Enter a string up to 32 characters long. privilege level Enter the keyword privilege followed by a number from zero (0) to 15. secret Enter the keyword secret followed by the encryption type. The default encryption type for the password option is 0. The default encryption type for the secret option is 5.
www.dell.com | support.dell.com debug radius z S6000 Syntax View RADIUS transactions to assist with troubleshooting. debug radius To disable debugging of RADIUS, enter no debug radius. Defaults Command Modes Command History Disabled. EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 ip radius source-interface z S6000 Syntax Specify an interface’s IP address as the source IP address for RADIUS connections.
radius-server deadtime z S6000 Syntax Configure a time interval during which non-responsive RADIUS servers to authentication requests are skipped. radius-server deadtime seconds To disable this function or return to the default value, enter no radius-server deadtime. Parameters Defaults Command Modes Command History seconds Enter a number of seconds during which non-responsive RADIUS servers are skipped. Range: 0 to 2147483647 seconds. Default: 0 seconds. 0 seconds CONFIGURATION Version 9.0.2.
www.dell.com | support.dell.com timeout seconds (OPTIONAL) Enter the keyword timeout followed by the seconds the time interval the switch waits for a reply from the RADIUS server. This parameter overwrites the radius-server timeout command. Range: 0 to 1000 Default: 5 seconds key [encryption-type] key (OPTIONAL) Enter the keyword key followed by an optional encryption-type and a string up to 42 characters long as the authentication key.
Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered. The options are: • • key Defaults Command Modes Command History Usage Information 0 is the default and means the key is not encrypted and stored as clear text. 7 means that the key is encrypted and hidden. Enter a string that is the key to be exchanged between the switch and RADIUS servers. It can be up to 42 characters long. Not configured. CONFIGURATION Version 9.0.2.
www.dell.com | support.dell.com radius-server timeout s z S6000 Syntax Configure the amount of time the RADIUS client (the switch) waits for a RADIUS host server to reply to a request. radius-server timeout seconds To return to the default value, enter no radius-server timeout. Parameters Defaults Command Modes seconds Enter the number of seconds between an unsuccessful attempt and the FTOS times out. Range: zero (0) to 1000 seconds. Default: 5 seconds.
Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Introduced on the S-Series. ip tacacs source-interface s z S6000 Syntax Specify an interface’s IP address as the source IP address for TACACS+ connections. ip tacacs source-interface interface To delete a source interface, enter no ip tacacs source-interface.
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information hostname Enter the name of the TACACS+ server host. ip-address Enter the IP address, in dotted decimal format, of the TACACS+ server host. ipv6-address Enter the IPv6 address in the x:x:x:x::x format of the RADIUS server host. Note: The :: notation specifies successive hexadecimal fields of zeros.
Parameters encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered. The options are: • • key Defaults Command Modes Enter a text string, up to 42 characters long, as the clear text password. Leading spaces are ignored. Not configured. CONFIGURATION Command History Usage Information 0 is the default and means the key is not encrypted and stored as clear text. 7 means that the key is encrypted and hidden. Version 9.0.2.0 Introduced on S6000 Version 8.3.11.
www.dell.com | support.dell.com Important Points to Remember FTOS limits network access for certain users by using VLAN assignments. 802.1X with VLAN assignment has these characteristics when configured on the switch and the RADIUS server. • • • • • • • • • • 802.1X is supported on S-Series. 802.1X is not supported on the LAG or the channel members of a LAG. If no VLAN is supplied by the RADIUS server or if 802.
Syntax dot1x authentication To disable dot1x on an interface, use the no dot1x authentication command. Defaults Command Modes Command History Related Commands Disabled INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. dot1x authentication (Configuration) Enable dot1x globally dot1x auth-fail-vlan s z S6000 Syntax Configure a authentication failure VLAN for users and devices that fail 802.1X authentication.
www.dell.com | support.dell.com dot1x guest-vlan Configure a guest VLAN for non-dot1x devices show dot1x interface Display the 802.1X information on an interface dot1x auth-server s z S6000 Syntax Defaults Command Modes Command History Configure the authentication server to RADIUS. dot1x auth-server radius No default behavior or values CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series.
If the host fails authentication for the designated amount of times, the authenticator places the port in authentication failed VLAN (dot1x auth-fail-vlan). Note: Layer 3 portion of guest VLAN and authentication fail VLANs can be created regardless if the VLAN is assigned to an interface or not. Once an interface is assigned a guest VLAN (which has an IP address), then routing through the guest VLAN is the same as any other traffic. However, interface may join/leave a VLAN dynamically.
www.dell.com | support.dell.com Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. interface range Configure a range of interfaces dot1x port-control s z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Enable port control on an interface.
Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. dot1x reauthentication s z S6000 Syntax Enable periodic re-authentication of the client. dot1x reauthentication [interval seconds] To disable periodic re-authentication, use the no dot1x reauthentication command.
www.dell.com | support.dell.com Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. dot1x server-timeout s z S6000 Syntax Configure the amount of time after which exchanges with the server time out. dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command. Parameters Defaults Command Modes Command History seconds Enter a time-out value in seconds. Range: 1 to 300, where 300 is implementation dependant.
dot1x tx-period s z S6000 Syntax Configure the intervals at which EAPOL PDUs are transmitted by the Authenticator PAE. dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters Defaults Command Modes Command History seconds Enter the interval time, in seconds, that EAPOL PDUs are transmitted. Range: 1 to 65535 Default: 30 30 seconds INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.
www.dell.com | support.dell.com 802.
crypto key generate s z S6000 Syntax Parameters Defaults Command Modes Command History Example Generate keys for the SSH server. crypto key generate {rsa | rsa1} rsa Enter the keyword rsa followed by the key size to generate a SSHv2 RSA host keys. Range: 1024 to 2048 Default: 1024 rsa1 Enter the keyword rsa1 followed by the key size to generate a SSHv1 RSA host keys. Range: 1024 to 2048 Default: 1024 Key size 1024 CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com debug ip ssh s z S6000 Syntax Enables collecting SSH debug information. debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters Defaults Command Modes Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server. Disabled on both client and server EXEC Command History Usage Information client Version 9.0.
ip ssh authentication-retries s z S6000 Syntax Configure the maximum number of attempts that should be used to authenticate a user. ip ssh authentication-retries 1-10 Parameters Defaults Command Modes Command History Usage Information 1-10 Enter the number of maximum retries to authenticate a user. Range: 1 to 10 Default: 3 3 CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series.
www.dell.com | support.dell.com ip ssh hostbased-authentication s z S6000 Syntax Enable hostbased-authentication for the SSHv2 server. ip ssh hostbased-authentication enable To disable hostbased-authentication for SSHv2 server, use the no ip ssh hostbased-authentication enable command. Parameters Defaults Command Modes enable Disable by default CONFIGURATION Command History Usage Information Enter the keyword enable to enable hostbased-authentication for SSHv2 server. Version 9.0.2.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. The server-generated key is used for SSHv1 key-exchange. ip ssh password-authentication s z S6000 Syntax Enable password authentication for the SSH server. ip ssh password-authentication enable To disable password-authentication, use the no ip ssh password-authentication enable.
www.dell.com | support.dell.com FTOS(conf)# Usage Information This command specifies the file to be used for the host-based authentication. The file creates/ overwrites the file flash://ADMIN_DIR/ssh/knownhosts and deletes the user specified file. Even though this is a global configuration command, it will not appear in the running configuration since this command needs to be run just once. The file contains the OpenSSH compatible public keys of the host for which host-based authentication is allowed.
ip ssh rsa-authentication (Config) s z S6000 Syntax Enable RSA authentication for the SSHv2 server. ip ssh rsa-authentication enable To disable RSA authentication, use the no ip ssh rsa-authentication enable command. Parameters Defaults Command Modes Command History Usage Information Related Commands enable Enter the keyword enable to enable RSA authentication for the SSHv2 server. RSA authentication is disabled by default CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Usage Information If you want to log in without being prompted for a password, log in through RSA authentication. To do that, you must first add the SSHv2 RSA public keys to the list of authorized keys. This command adds the specified RSA keys to the following file: flash://ADMIN_DIR/ssh/authorized-keys-username (where username is the user associated with this terminal).
show crypto s z S6000 Syntax Display the public part of the SSH host-keys. show crypto key mypubkey {rsa | rsa1} Parameters Defaults Command Modes Enter the keyword key to display the host public key. mypubkey Enter the keyword mypubkey to display the host public key. rsa Enter the keyword rsa to display the host SSHv2 RSA public key. rsa1 Enter the keyword rsa1 to display the host SSHv1 RSA public key. No default behavior or values EXEC Command History Example Key Version 9.0.2.
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Figure 39-11. show ip ssh Command Example FTOS#show ip ssh SSH server : SSH server version : Password Authentication : Hostbased Authentication : RSA Authentication Vty Encryption 0 3DES 1 3DES 2 3DES FTOS# Related Commands enabled. v1 and v2. enabled. disabled. : disabled. Remote IP 172.16.1.162 172.16.1.162 172.16.1.
show ip ssh rsa-authentication s z S6000 Syntax Parameters Defaults Command Modes Command History Example Display the authorized-keys for the RSA authentication. show ip ssh rsa-authentication {my-authorized-keys} my-authorized-keys Display the RSA authorized keys. No default behavior or values EXEC Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Figure 39-13.
www.dell.com | support.dell.com Defaults Command Modes (OPTIONAL) Enter the keyword -p followed by the port number. Range: 1 to 65536 Default: 22 -v {1 | 2} (OPTIONAL) Enter the keyword -v followed by the SSH version 1 or 2. Default: The version from the protocol negotiation As above. EXEC Privilege Command History Example -p port-number Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on the S-Series. Version 7.9.1.
Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 show ip dhcp snooping Display the contents of the DHCP binding table. ip dhcp relay z S6000 Syntax Parameters Command Modes Default Command History Enable Option 82. ip dhcp relay information-option [trust-downstream] trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. CONFIGURATION Disabled Version 9.0.2.0 Introduced on the S6000.
www.dell.com | support.dell.com Parameters Command Modes Default Command History minutes Range: 5-21600 CONFIGURATION None Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 ip dhcp snooping binding z S6000 Syntax Parameters Create a static entry in the DHCP binding table.
ip dhcp snooping database renew z S6000 Syntax Command Modes Renew the binding table. ip dhcp snooping database renew EXEC EXEC Privilege Default Command History None Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 ip dhcp snooping trust z S6000 Syntax Command Modes Default Command History Configure an interface as trusted. [no] ip dhcp snooping trust INTERFACE Untrusted Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Parameters Command Modes Default Command History Usage Information Related Commands name Enter the name of a VLAN on which to enable DHCP Snooping. CONFIGURATION Disabled Version 9.0.2.0 Introduced on S6000 When enabled the system begins creating entries in the binding table for the specified VLAN(s). Note that learning only happens if there is a trusted port in the VLAN. ip dhcp snooping trust Configure an interface as trusted.
40 Service Provider Bridging Overview Service Provider Bridging is composed of VLAN Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the FTOS Configuration Guide Service Provider Bridging chapter. This chapter includes CLI information for FTOS Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. L2PT is available in FTOS for the S6000 , S-Series s, and Z-Series z.
www.dell.com | support.dell.com debug protocol-tunnel z S6000 Syntax Enable debugging to ensure incoming packets are received and rewritten to a new MAC address. debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] To disable debugging, use the no debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] command.
Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.4.1.0 Introduced Figure 40-1. Protocol-tunneling Command Example FTOS#conf FTOS(conf)#interface vlan 2 FTOS(conf-if-vl-2)#vlan-stack compatible FTOS(conf-if-vl-2)#member Gi1/2-3 FTOS(conf-if-vl-2)#protocol-tunnel stp FTOS(conf-if-vl-2)# Usage Information Related Commands Note: When VLAN-Stacking is enabled, no protocol packets are tunneled.
www.dell.com | support.dell.com Command Modes Command History Usage Information CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 FTOS must have the default CAM profile with the default microcode before you enable L2PT. protocol-tunnel rate-limit z S6000 Syntax Enable traffic rate limiting per box. protocol-tunnel rate-limit rate To reset the rate limit to the default, use the no protocol-tunnel rate-limit rate command.
Command Modes Command History Example EXEC Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.4.1.0 Introduced Figure 40-3. show protocol-tunnel Command Example FTOS#show protocol-tunnel System Rate-Limit: 1000 Frames/second Interface Vlan Protocol(s) Gi1/2 2 STP, PVST Gi1/3 3 STP, PVST Po35 4 STP, PVST FTOS# Example Figure 40-4.
| Service Provider Bridging www.dell.com | support.dell.
41 sFlow Overview sFlow commands are supported on the Dell Networking. The symbols s z under command headings indicate which Dell Networking — S6000 S-Series or Z-Series, respectively — support the command. FTOS sFlow monitoring system includes an sFlow Agent and an sFlow Collector. The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector.
www.dell.com | support.dell.com Commands The sFlow commands are: • • • • • • • • • • sflow collector sflow enable (Global) sflow enable (Interface) sflow extended-switch enable sflow polling-interval (Global) sflow polling-interval (Interface) sflow sample-rate (Global) sflow sample-rate (Interface) show sflow show sflow linecard sflow collector s z S6000 Syntax Specify a collector(s) to which sFlow datagrams are forwarded.
Command History Usage Information Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduced on S-Series Version 6.5.1.0 Expanded the no form of the command to mirror the syntax used to configure You can specify up to 2 sFlow collectors. If 2 collectors are specified, the samples are sent to both. In sFlow the agent address is a single invariant IPv4 or IPv6 addressed used to identify the agent to the collector.
www.dell.com | support.dell.com Command Modes Command History Usage Information INTERFACE Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduces on S-Series Stacking When sFlow is enable on an interface, flow sampling is done on any traffic going out of the interface. Note: Once a physical port is a member of a LAG, it will inherit the sFlow configuration from the LAG port.
Parameters Defaults Command Modes Command History Usage Information Related Commands interval value Enter the interval value in seconds. Range: 15 to 86400 seconds Default: 20 seconds 20 seconds CONFIGURATION Version 9.0.2.0 Introduced on S6000 Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduces on S-Series Stacking The polling interval for an interface is the maximum number of seconds between successive samples of counters to be sent to the collector.
www.dell.com | support.dell.com sflow sample-rate (Global) s z S6000 Syntax Change the global default sampling rate. sflow sample-rate value To return to the default sampling rate, enter the no sflow sample-rate. Parameters Defaults Command Modes Command History Usage Information Related Commands value Enter the sampling rate value. Range: S-Series, Z9000: 256 to 8388608 packets Enter values in powers of 2 only, for example 4096, 8192, 16384 etc.
Usage Information Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.7.1.0 Introduces on S-Series Stacking This command changes the sampling rate for an Interface. By default, the sampling rate of an interface is set to the same value as the current global default sampling rate. If the value entered is not a correct power of 2, the command generates an error message with the previous and next power-of-2 value. Select one of these two number and re-enter the command.
www.dell.com | support.dell.com Gi 3/40: configured rate 16384, actual rate 16384, sub-sampling rate 1 FTOS# Usage Information The dropEvent counter (sFlow samples dropped due to sub-sampling) shown in the figure above will always display a value of zero. show sflow linecard s z S6000 Syntax Parameters Command Modes Display the sFlow information on a stack-unit.
42 Simple Network Management Protocol and Syslog Overview This chapter contains commands to configure and monitor SNMP v1/v2/v3 and Syslog. Both features are supported on the Dell Networking systems. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Important Points to Remember • • • • • • Typically, 5-second timeout and 3-second retry values on an SNMP server are sufficient for both LAN and WAN applications.
show snmp engineID s z S6000 Syntax Command Modes Display the identification of the local SNMP engine and all remote engines that are configured on the router. show snmp engineID EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Figure 42-2.
www.dell.com | support.dell.com Related Commands snmp-server group Configure an SNMP server group show snmp user s z S6000 Syntax Command Modes Display the information configured on each SNMP user name. show snmp user EXEC EXEC Privilege Example Figure 42-4. show snmp user Command Example FTOS#show snmp user User name: v1v2creadu Engine ID: 0000178B02000001E80214A8 storage-type: nonvolatile active Authentication Protocol: None Privacy Protocol: None FTOS# Command History Version 9.0.2.
!------command run on server connected to switch: --------------! > snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i alias | more IF-MIB::ifAlias.134530304 = STRING: This is a port connected to Router2. This is a port connected to Router2. This is a port connected to Router2. This is a port connected to Router2. This is a port connected to Router2. IF-MIB::ifAlias.134792448 = STRING: FTOS#config snmp-server community s z S6000 Syntax Configure a new community string access for SNMPv1, v2, and v3.
www.dell.com | support.dell.com If a community string is configured without a security-name (for example, snmp-server community public ro), the community is mapped to a default security-name/group: • • v1v2creadu / v1v2creadg — maps to a community with ro permissions v1v2cwriteu/ v1v2cwriteg — maps to a community with rw permissions This command is indexed by the community-name parameter. If the snmp-server community command is not configured, you cannot query SNMP data.
snmp-server enable traps s z S6000 Syntax Enable and configure SNMP traps. snmp-server enable traps [notification-type] [notification-option] To disable traps, use the no snmp-server enable traps [notification-type] [notification-option] command.
www.dell.com | support.dell.com Related Commands snmp-server community Enable SNMP and set the community string. snmp-server engineID s z S6000 Syntax Configure name for both the local and remote SNMP engines on the router.
snmp-server group s z S6000 Syntax Configure a new SNMP group or a table that maps SNMP users to SNMP views.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series The following example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview. Note: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP; TCP, ICMP rules are not valid for SNMP.
version 1 | 2c | 3 (OPTIONAL) Enter the keyword version to specify the security model followed by the security model version number 1, 2c, or 3. • • • Version 1 is the least secure version version 3 is the most secure of the security modes. Version 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. Default: Version 1 auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption.
www.dell.com | support.dell.com Usage Information Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series; Added support for STP and xSTP notification types. In order to configure the router to send SNMP notifications, you must enter at least one snmp-server host command. If you enter the command with no keywords, all trap types are enabled for the host. If you do not enter an snmp-server host command, no notifications are sent.
Command Modes CONFIGURATION Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series snmp-server packetsize s z S6000 Syntax Set the largest SNMP packet size permitted when the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command.
www.dell.com | support.dell.com Usage Information Related Commands Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series For this snmp-server trap-source command to be enabled, you must configure an IP address on the interface and enable the interface configured as an SNMP trap source. snmp-server community Set the community string. snmp-server user s z S6000 Syntax Configure a new user to an SNMP group.
(OPTIONAL) Enter the keyword md5 or sha to designate the authentication level. md5 | sha md5 — Message Digest Algorithm sha — Secure Hash Algorithm Defaults Command Modes Command History Usage Information auth-password (OPTIONAL) Enter a text string (up to 20 characters long) password that will enable the agent to receive packets from the host.
www.dell.com | support.dell.com The following command configures a remote user named n3user with a v3 security model and a security level of authNOPriv. FTOS#conf FTOS(conf)# snmp-server user n3user ngroup remote 172.31.1.3 udp-port 5009 3 auth md5 authpasswd Note: The number of configurable users is limited to 16. Related Commands Display the information configured on each SNMP user name. show snmp user snmp-server view s z S6000 Syntax Configure an SNMPv3 view.
snmp trap link-status s z S6000 Syntax Enable the interface to send SNMP link traps, which indicate whether the interface is up or down. snmp trap link-status To disable sending link trap messages, enter no snmp trap link-status. Defaults Command Modes Enabled. INTERFACE Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.
www.dell.com | support.dell.com clear logging s z S6000 Syntax Defaults Command Modes Command History Related Commands Clear the messages in the logging buffer. clear logging None. EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series show logging Display logging settings and system messages in the internal buffer.
Related Commands logging console Set the logging console parameters. default logging monitor s z S6000 Syntax Defaults Command Modes Command History Related Commands Return to the default settings for messages logged to the terminal. default logging monitor level = 7 or debugging CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series logging monitor Set the logging monitor parameters.
www.dell.com | support.dell.com Parameters Defaults Command Modes Usage Information Command History Related Commands ip-address Enter the IP address in dotted decimal format. ipv6-address Enter the IPv6 address in the x:x:x:x::x format Note: The :: notation specifies successive hexadecimal fields of zeros. hostname Enter the name of a host already configured and recognized by the switch. Disabled CONFIGURATION Multiple logging servers of both IPv4 and/or IPv6 can be configured. Version 9.0.2.
logging buffered s z S6000 Syntax Enable logging and specify which messages are logged to an internal buffer. By default, all messages are logged to the internal buffer. logging buffered [level] [size] To return to the default values, enter default logging buffered. To disable logging stored to an internal buffer, enter no logging buffered.
www.dell.com | support.dell.com Command Modes Command History Related Commands CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series clear logging Clear logging buffer. default logging console Returns the logging console parameters to the default setting. show logging Display logging settings and system messages in the internal buffer.
Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series logging Enable logging to a Syslog server. logging on Enables logging. logging history s z S6000 Syntax Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured). logging history level To return to the default values, enter no logging history.
www.dell.com | support.dell.com Command Modes Command History Usage Information Related Commands CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series When the number of messages reaches the limit you set with the logging history size command, older messages are deleted as newer ones are added to the table. show logging history Display information logged to the history buffer.
Command History Usage Information Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series When you enter no logging on, messages are logged only to the console. logging Enable logging to Syslog server. logging buffered Set the logging buffered parameters. logging console Set the logging console parameters. logging monitor Set the logging parameters for the terminal connections.
www.dell.com | support.dell.com Related Commands logging Enable the logging to another device. logging synchronous S6000 Syntax Synchronize unsolicited messages and FTOS output. logging synchronous [level level | all] [limit number-of-buffers] To disable message synchronization, use the no logging synchronous [level level | all] [limit number-of-buffers] command. Parameters Defaults Command Modes Enter the keyword all to ensure that all levels are printed asynchronously.
Parameters level Defaults Command Modes Command History Related Commands Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 6. 6 or informational CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series logging Enable the logging to another device. logging on Enables logging.
www.dell.com | support.dell.com Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:25:38: %RPM1:RP1 1.1.10.2 (Hold time expired) Oct 8 09:25:38: %RPM1:RP1 Oct 8 09:26:25: %RPM1:RP1 closed. Neighbor recycled Oct 8 09:26:25: %RPM1:RP1 closed.
terminal monitor s z S6000 Syntax Configure the FTOS to display messages on the monitor/terminal. terminal monitor To return to default settings, enter terminal no monitor. Defaults Command Modes Disabled. EXEC EXEC Privilege Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series logging monitor Set the logging parameters on the monitor/terminal.
www.dell.com | support.dell.
43 Storm Control Overview The FTOS Storm Control feature allows users to limit or suppress traffic during a traffic storm (Broadcast/Unknown Unicast Rate Limiting, or Multicast on the S-Series). The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com • • When broadcast storm control is enabled on an interface or globally on ingress, and DSCP marking for a DSCP value 1 is configured for the data traffic, the traffic will go to queue 1 instead of queue 0. Similarly, if unicast storm control is enabled on an interface or globally on ingress, and DSCP marking for a DSCP value 2 is configured for the data traffic, the traffic will go to queue 2 instead of queue 0.
Parameters interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration. • • • Defaults Command Modes For Fast Ethernet, enter the keyword Fastethernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Command History Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 storm-control broadcast (Configuration) z S6000 Syntax Configure the percentage of broadcast traffic allowed in or out of the network.
Parameters Defaults Command Modes Command History percentage decimal_value in Enter the percentage of broadcast traffic allowed in to the network. Optionally, you can designate a decimal value percentage, for example, 55.5%. Percentage: 0 to 100 0% blocks all related traffic 100% allows all traffic into the interface Decimal Range: .1 to .9 wred-profile name (Optionally) Enter the keyword wred-profile followed by the profile name to designate a wred-profile.
www.dell.com | support.dell.com storm-control multicast (Interface) z S6000 Syntax Configure the percentage of multicast traffic allowed on an S-Series interface (ingress only) network only. storm-control multicast packets_per_second in To disable multicast storm control on the interface, use the no storm-control multicast packets_per_second in command.
Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Unknown Unicast Storm-Control is valid for Layer 2 and Layer 2/Layer 3 interfaces. storm-control unknown-unicast (Interface) z S6000 Syntax Configure percentage of unknown-unicast traffic allowed on an interface (ingress only).
| Storm Control www.dell.com | support.dell.
44 Spanning Tree Protocol (STP) Overview The commands in this chapter configure and monitor the IEEE 802.1d Spanning Tree protocol (STP) and are supported on all Dell Networking switch/routing platforms. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series or Z-Series, respectively — support the command.
www.dell.com | support.dell.com Defaults Command Modes Command History primary Enter the keyword primary to designate the bridge as the root bridge. secondary Enter the keyword secondary to designate the bridge as a secondary root bridge. priority-value = 32768 SPANNING TREE (The prompt is “config-stp”.) Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
Command Modes Command History Usage Information Related Commands general (OPTIONAL) Enter the keyword general to debug general STP operations. root (OPTIONAL) Enter the keyword root to debug STP root transactions. EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 When you enable debug spanning-tree bpdu for multiple interfaces, the software only sends information on BPDUs for the last interface specified.
www.dell.com | support.dell.com Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 protocol spanning-tree Enter SPANNING TREE mode. forward-delay z S6000 Syntax The amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. forward-delay seconds To return to the default setting, enter no forward-delay.
Command History Related Commands Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 forward-delay Change the wait time before STP transitions to the Forwarding state. max-age Change the wait time before STP refreshes protocol configuration information. max-age z S6000 Syntax Set the time interval for the Spanning Tree bridge to maintain configuration information before refreshing that information. max-age seconds To return to the default values, enter no max-age.
www.dell.com | support.dell.com Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 44-1. protocol spanning-tree Command Example FTOS(conf)#protocol spanning-tree 0 FTOS(config-stp)# Usage Information STP is not enabled when you enter the SPANNING TREE mode. To enable STP globally on the switch, enter no disable from the SPANNING TREE mode. Related Commands Disable Spanning Tree group 0. To enable Spanning Tree group 0, enter no disable.
Command Modes Command History Example root (OPTIONAL) Enter the keyword root to display configuration information on the Spanning Tree group root. summary (OPTIONAL) Enter the keyword summary to only the number of ports in the Spanning Tree group and their state. EXEC Privilege Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Figure 44-3.
www.dell.com | support.dell.com Table 44-1. show spanning-tree Command Example Information Field Description “Bridge Identifier.” Lists the bridge priority and the MAC address for this STP bridge. “Configured hello...” Displays the settings for hello time, max age, and forward delay. “We are...” States whether this bridge is the root bridge for the STG. “Current root...” Lists the bridge priority and MAC address for the root bridge. “Topology flag.
spanning-tree z S6000 Syntax Configure Spanning Tree group id, cost, priority, and Portfast for an interface. spanning-tree stp-id [cost cost] [portfast [bpduguard]] [priority priority] To disable Spanning Tree group on an interface, use the no spanning-tree stp-id [cost cost] [portfast [bpduguard] [shutdown-on-violation]] [priority priority] command. Parameters stp-id Enter the Spanning Tree Protocol group ID. Range: 0 cost cost (OPTIONAL) Enter the keyword cost followed by a number as the cost.
www.dell.com | support.dell.
45 System Time and Date Overview The commands in this chapter configure time values on the system, either using FTOS, or the hardware, or using the Network Time Protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For details, see the “Network Time Protocol” section of the Management chapter in the FTOS Configuration Guide. The commands in this chapter are generally supported on all Dell Networking.
www.dell.com | support.dell.com calendar set s z S6000 Syntax Parameters Set the time and date for the switch hardware clock. calendar set time month day year time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format, for example, 17:15:00 is 5:15 pm. month Enter the name of one of the 12 months in English. You can enter the name of a day to change the order of the display to time day month year. day Enter the number of the day. Range: 1 to 31.
clock read-calendar s z S6000 Syntax Set the software clock on the switch from the information set in hardware clock (calendar). clock read-calendar Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series In the switch, the hardware clock is separate from the software and is called the calendar. This hardware clock runs continuously.
www.dell.com | support.dell.com Usage Information You can change the order of the month and day parameters to enter the time and date as time day month year. You cannot delete the software clock. The software clock runs only when the software is up. The clock restarts, based on the hardware clock, when the switch reboots. Dell Force10 recommends that you use an outside time source, such as NTP, to ensure accurate time on the switch.
Defaults Command Modes Command History Related Commands Not configured. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series calendar set Set the hardware clock. clock summer-time recurring Set a date (and time zone) on which to convert the switch to daylight savings time each year. show clock Display the current clock settings.
www.dell.com | support.dell.com Defaults Command Modes Command History Related Commands end-time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format, example, 17:15:00 is 5:15 pm. offset (OPTIONAL) Enter the number of minutes to add during the summer-time period. Range: 1 to 1440. Default: 60 minutes. Not configured. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.2 Introduced on Z9000 Version 8.3.11.1 Introduced on S4810 Version 7.6.1.
Usage Information Coordinated Universal Time (UTC) is the time standard based on the International Atomic Time standard, commonly known as Greenwich Mean time. When determining system time, you must include the differentiator between UTC and your local timezone. For example, San Jose, CA is the Pacific Timezone with a UTC offset of -8. clock update-calendar s z S6000 Syntax Set the switch hardware clock based on the software clock. clock update-calendar Defaults Not configured.
www.dell.com | support.dell.com Command History Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series ntp authenticate s z S6000 Syntax Enable authentication of NTP traffic between the switch and the NTP time serving hosts. ntp authenticate To disable NTP authentication, enter no ntp authentication. Defaults Command Modes Command History Usage Information Related Commands 928 Version 9.0.2.0 | Not enabled. CONFIGURATION Version 9.0.2.
ntp authentication-key s z S6000 Syntax Parameters Defaults Command Modes Command History Usage Information Specify a key for authenticating the NTP server. ntp authentication-key number md5 [0 | 7] key number Specify a number for the authentication key. Range: 1 to 4294967295. This number must be the same as the number parameter configured in the ntp trusted-key command. md5 Specify that the authentication key will be encrypted using MD5 encryption algorithm.
www.dell.com | support.dell.com Command Modes Command History INTERFACE Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series ntp disable s z S6000 Syntax Prevent an interface from receiving NTP packets. ntp disable To re-enable NTP on an interface, enter no ntp disable. Default Command Modes Command History Disabled (that is, if an NTP host is configured, all interfaces receive NTP packets) INTERFACE Version 9.0.2.
Syntax ntp server address [key keyid] [prefer] [version number] To delete an NTP server configuration, use the no ntp server ip-address command. Parameters Defaults Command Modes Command History Usage Information address Enter the IP address or name of the NTP server. Enter either an IPv4 address in dotted decimal format, an IPv6 address in X:X:X:X::X format, or a domain name. key keyid (OPTIONAL) Enter the keyword key and a number as the NTP peer key.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • Defaults Command Modes Command History For an 100/1000 Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For Loop back interfaces, enter the keyword loop back followed by a number from zero (0) to 16383.
ntp update-calendar s z S6000 Syntax Configure the FTOS to update the calendar (the hardware clock) with the NTP-derived time. ntp update-calendar [minutes] To return to default setting, enter no ntp update-calendar. Parameters Defaults Command Modes Command History minutes (OPTIONAL) Enter the number of minutes between updates from NTP to the hardware clock. Range: 1 to 1440. Default: 60 minutes. Not enabled. CONFIGURATION Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.
www.dell.com | support.dell.com Parameters Command Modes detail (OPTIONAL) Enter the keyword detail to view the source information of the clock. EXEC EXEC Privilege Command History Example Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Figure 45-4. show clock Command Example FTOS#show clock 11:05:56.949 UTC Thu Oct 25 2001 FTOS# Example Figure 45-5. show clock detail Command Example FTOS#show clock detail 12:18:10.
Table 45-1. show ntp associations Command Fields Field Description (none) One or more of the following symbols could be displayed: • • • • • Related Commands * means synchronized to this peer # means almost synchronized to this peer + means the peer was selected for possible synchronization - means the peer is a candidate for selection ~ means the peer is statically configured remote Displays the remote IP address of the NTP peer.
www.dell.com | support.dell.com show ntp status s z S6000 Syntax Command Modes Display the current NTP status. show ntp status EXEC EXEC Privilege Command History Example Version 9.0.0.0 Added support for IPv6 Version 9.0.2.0 Introduced on the S6000. Version 8.3.11.1 Introduced on Z9000 Version 7.6.1.0 Support added for S-Series Figure 45-7. show ntp status Command Example FTOS#sh ntp sta Clock is synchronized, stratum 2, reference is 100.10.10.10 frequency is -32.000 ppm, stability is 15.
46 VLAN Stacking Overview With the VLAN-Stacking feature (also called Stackable VLANs and QinQ), available on all Dell Networking that are supported by this version of FTOS, you can “stack” VLANs into one tunnel and switch them through the network transparently. The symbols s z under command headings indicate which Dell Networking — S6000 , S-Series, or Z-Series, respectively — support the command.
www.dell.com | support.dell.com • • • • • Layer 3 protocols are not supported on a Stackable VLAN network. Assigning an IP address to a Stackable VLAN is supported when all the members are only Stackable VLAN trunk ports. IP addresses on a Stackable VLAN-enabled VLAN is not supported if the VLAN contains Stackable VLAN access ports. This facility is provided for SNMP management over a Stackable VLAN enabled VLAN containing only Stackable VLAN trunk interfaces.
Command Mode Command History Usage Information Related Commands INTERFACE Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000 Version 8.3.7.0 Introduced on S4810. You must first enable DEI for this configuration to take effect.
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • Defaults Command Mode Command History Usage Information Related Commands For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a Port Channel, enter the keyword port-channel followed by a number from 1 to 32 for EtherScale, 1 to 255 for TeraScale and ExaScale; 1 to 128 for S-Series.
show interface dei-mark S6000 Syntax Parameters Command Mode Command History Display the dei mark configuration. show interface dei-mark [interface slot/port | linecard number port-set number] interface slot/port Enter the interface type followed by the stack-unit slot and port number. linecard number port-set number Enter linecard followed by the stack-unit slot number, then enter port-set followed by the port-pipe number. EXEC Privilege Version 9.0.2.0 Example Introduced on S6000.
www.dell.com | support.dell.com Usage Information Warning: The following message is displayed to confirm the command: All non-default configurations on the related member ports ports () will be removed. Do you want to continue (y/n)? If “y” is entered, all non-default configurations on any member ports of the current stack group will be removed when the unit is rebooted.
Usage Information You must remove the members prior to disabling the Stackable VLAN feature. To view the Stackable VLANs, use the show vlan command in the EXEC Privilege mode. Stackable VLANs contain members, designated by the M in the Q column of the command output. Figure 46-1.
www.dell.com | support.dell.com Syntax Parameters Defaults Command Modes Command History Usage Information Related Commands vlan-stack protocol-type number number Enter the hexadecimal number as the Stackable VLAN tag. On the S-Series: You may specify both bytes of the 2-byte S-Tag TPID. S-Series Range: 0 to FFFF Default: 9100 0x9100 CONFIGURATION Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. Version 8.3.7.0 Introduced on S4810.
Starting with FTOS 9.0.2.0 for S-Series, a VLAN-Stack trunk port is also allowed to be configured as a tagged port and as an untagged port for single-tagged VLANs. When the VLAN-Stack trunk port is also a member of an untagged VLAN, the port should be in hybrid mode. See portmode hybrid. In Example 1 below.a VLAN-Stack trunk port is configured and then also made part of a single-tagged VLAN. In Example 2 below, the Tag Protocol Identifier (TPID) is set to 8848.
www.dell.com | support.dell.
47 Virtual Router Redundancy Protocol (VRRP) Overview Virtual Router Redundancy Protocol (VRRP) is supported by FTOS on all Dell Networking, as indicated by the characters that appear under each of the command .
www.dell.com | support.dell.com Parameters Defaults Command Modes Command History Usage Information seconds Enter a number of seconds. Range: 1 to 255. Default: 1 second. 1 second. INTERFACE-VRRP Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. Dell Networking recommends that you keep the default setting for this command. If you do change the time interval between VRRP advertisements on one router, you must change it on all routers.
Parameters Command Modes Command History vrrp-id (OPTIONAL) Enter the number of the VRRP group ID. Range: 1 to 255 EXEC Privilege Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. debug vrrp z S6000 Syntax Allows you to enable debugging of VRRP. debug vrrp interface [vrrp-id] {all | bfd | packets | state | timer} To disable debugging, use the no debug vrrp interface [vrrp-id] {all | database | interface | packets | state | timer} command.
www.dell.com | support.dell.com description z S6000 Syntax Configure a short text string describing the VRRP group. description text To delete a VRRP group description, enter no description. Parameters Defaults Command Modes Command History text Enter a text string up to 80 characters long. Not enabled. VRRP Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. disable z S6000 Syntax Disable a VRRP group. disable To re-enable a disabled VRRP group, enter no disable.
Parameters Defaults Command Modes Command History Usage Information Related Commands seconds Enter a number of seconds. Range: 0 to 65535 Default: zero (0) seconds. zero (0) seconds VRRP Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. If a switch is a MASTER and you change the hold timer, you must disable and re-enable VRRP for the new hold timer value to take effect. disable Disable a VRRP group.
www.dell.com | support.dell.com Command History Usage Information Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. To guarantee that a VRRP group becomes MASTER, configure the VRRP group’s virtual address with same IP address as the interface’s primary IP address and change the priority of the VRRP group to 255. If you set the priority to 255 and the virtual-address is not equal to the interface’s primary IP address, an error message appears.
Parameters vrrp-id (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. Range: 1 to 255. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • • • • brief Command Modes For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information.
www.dell.com | support.dell.com Table 47-1. Command Example Descriptions: show vrrp brief Item Description State Displays the operational state of the interface by using one of the following: • • • NA/IF (the interface is not available). MASTER (the interface associated with the MASTER router). BACKUP (the interface associated with the BACKUP router). Master addr Displays the IP address of the MASTER router.
Table 47-2. Command Example Description: show vrrp Line Beginning with Description GigabitEthernet 12/3... Displays the Interface, the VRRP group ID, and the network address. If the interface is no sending VRRP packets, 0.0.0.0 appears as the network address. State: master... Displays the interface’s state: • Na/If (not available), • master (MASTER virtual router) • backup (BACKUP virtual router) the interface’s priority and the IP address of the MASTER. Hold Down:...
www.dell.com | support.dell.com Parameters interface Enter the following keywords and slot/port or number information: • • • • • • priority-cost Defaults Command Modes Command History Usage Information For a 1-Gigabit Ethernet interface, enter the keyword GigabitEthernet followed by the slot/port information. For a 40-Gigabit Ethernet interface, enter the keyword FortyGigabitEthernet followed by the slot/port information.
Usage Information Version 8.3.11.1 Introduced on Z9000. Version 7.4.1.0 Introduced support for telnetting to the VRRP group IP address assigned using this command The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. A system message appears after you enter or delete the virtual-address command.
www.dell.com | support.dell.com vrrp delay reload z S6000 Syntax Set the delay time for VRRP initialization after a system reboot. vrrp delay reload seconds Parameters Defaults Command Modes seconds 0 INTERFACE Command History Usage Information Enter the number of seconds for the delay. Range: 0-900 (0 indicates no delay) Version 9.0.2.0 Introduced on S6000. Version 8.3.11.1 Introduced on Z9000. Version 8.3.8.
Related Commands virtual-address Assign up to 12 virtual IP addresses per VRRP group.
www.dell.com | support.dell.
A ICMP Message Types This chapter lists and describes the possible ICMP Message Type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table A-1.
www.dell.com | support.dell.com Table A-1.
B SNMP Traps This chapter lists the traps sent by FTOS. Each trap is listed by the fields Message ID, Trap Type, and Trap Option, and the next is the message(s) associated with the trap. Table B-1. SNMP Traps and Error Messages Message ID Trap Type Trap Option COLD_START SNMP COLDSTART %SNMP-5-SNMP_COLD_START: SNMP COLD_START trap sent.
www.dell.com | support.dell.com Table B-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option CHM_CARD_DOWN ENVMON NONE %CHMGR-1-CARD_SHUTDOWN: %sLine card %d down - %s %CHMGR-2-CARD_DOWN: %sLine card %d down - %s CHM_CARD_UP ENVMON NONE %CHMGR-5-LINECARDUP: %sLine card %d is up CHM_CARD_MISMATCH ENVMON NONE %CHMGR-3-CARD_MISMATCH: Mismatch: line card %d is type %s - type %s required.
Table B-1.
www.dell.com | support.dell.com Table B-1. SNMP Traps and Error Messages (continued) Message ID Trap Type Trap Option %CHMGR-5-CPU_THRESHOLD_CLR: Cpu %s usage drops below threshold. Cpu5SecUsage (%d) CHM_MEM_THRESHOLD ENVMON NONE %CHMGR-5-MEM_THRESHOLD: Memory %s usage above threshold. MemUsage (%d) CHM_MEM_THRESHOLD_CLR ENVMON NONE %CHMGR-5-MEM_THRESHOLD_CLR: Memory %s usage drops below threshold.
