Dell Networking Command Line Reference Guide for the MXL 10/40GbE Switch I/O Module 9.14.0.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your product. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Copyright © 2018 Dell Inc. or its subsidiaries. All rights reserved. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries.
Contents 1 About this Guide...........................................................................................................................................44 Objectives......................................................................................................................................................................... 44 Audience........................................................................................................................................................
banner exec.......................................................................................................................................................................77 banner login.......................................................................................................................................................................78 banner motd..........................................................................................................................................
show processes cpu.......................................................................................................................................................106 show processes ipc flow-control..................................................................................................................................109 show processes memory................................................................................................................................................
resequence prefix-list ipv4.............................................................................................................................................147 show config..................................................................................................................................................................... 147 Common IP ACL Commands........................................................................................................................................
show config......................................................................................................................................................................191 show ip prefix-list detail................................................................................................................................................. 192 show ip prefix-list summary................................................................................................................................
permit icmp.....................................................................................................................................................................249 permit...............................................................................................................................................................................251 deny udp (for IPv6 ACLs)...........................................................................................................................
bgp bestpath router-id ignore...................................................................................................................................... 288 bgp client-to-client reflection....................................................................................................................................... 288 bgp cluster-id...............................................................................................................................................................
neighbor password......................................................................................................................................................... 313 neighbor peer-group (assigning peers)........................................................................................................................314 neighbor peer-group (creating group).........................................................................................................................
timers bgp extended..................................................................................................................................................... 355 MBGP Commands.........................................................................................................................................................356 debug ip bgp dampening........................................................................................................................................
description...................................................................................................................................................................... 382 fcoe priority-bits.............................................................................................................................................................382 iscsi priority-bits....................................................................................................................................
14 Dynamic Host Configuration Protocol (DHCP)......................................................................................... 432 Commands to Configure the System to be a DHCP Server.................................................................................... 433 clear ip dhcp................................................................................................................................................................... 433 debug ip dhcp server...............................
ip dhcp source-address-validation...............................................................................................................................450 ip dhcp snooping vlan.................................................................................................................................................... 451 ipv6 dhcp snooping vlan................................................................................................................................................
feature fip-snooping...................................................................................................................................................... 480 fip-snooping enable....................................................................................................................................................... 480 fip-snooping fc-map...............................................................................................................................................
ip igmp snooping enable............................................................................................................................................... 508 ip igmp snooping fast-leave..........................................................................................................................................508 ip igmp snooping flood..................................................................................................................................................
show interfaces stack-unit........................................................................................................................................... 550 show interfaces status...................................................................................................................................................551 show interfaces switchport..........................................................................................................................................
ip helper-address hop-count disable............................................................................................................................587 ip host............................................................................................................................................................................. 588 ip icmp source-interface............................................................................................................................................
show cam-acl-egress.................................................................................................................................................... 626 26 IPv6 Basics.............................................................................................................................................. 627 clear ipv6 fib...................................................................................................................................................................
bgp log-neighbor-changes........................................................................................................................................... 658 bgp non-deterministic-med..........................................................................................................................................658 bgp recursive-bgp-next-hop........................................................................................................................................
neighbor send-community............................................................................................................................................684 neighbor shutdown........................................................................................................................................................685 neighbor soft-reconfiguration inbound.......................................................................................................................
distance bgp.....................................................................................................................................................................711 neighbor activate............................................................................................................................................................ 712 neighbor advertisement-interval..........................................................................................................................
debug isis......................................................................................................................................................................... 741 debug isis adj-packets.................................................................................................................................................... 741 debug isis local-updates.................................................................................................................................
passive-interface............................................................................................................................................................765 redistribute......................................................................................................................................................................766 redistribute bgp.........................................................................................................................................
name................................................................................................................................................................................ 797 show config.................................................................................................................................................................... 798 show vlan..........................................................................................................................................
ip msdp default-peer..................................................................................................................................................... 825 ip msdp log-adjacency-changes.................................................................................................................................. 825 ip msdp mesh-group......................................................................................................................................................
37 Neighbor Discovery Protocol (NDP)........................................................................................................ 853 clear ipv6 neighbors...................................................................................................................................................... 853 ipv6 neighbor..................................................................................................................................................................
graceful-restart helper-reject....................................................................................................................................... 884 graceful-restart mode................................................................................................................................................... 885 graceful-restart role....................................................................................................................................................
timers throttle lsa all...................................................................................................................................................... 922 timers throttle lsa arrival............................................................................................................................................... 922 OSPFv3 Commands................................................................................................................................................
41 PIM-Sparse Mode (PIM-SM)...................................................................................................................959 IPv4 PIM-Sparse Mode Commands........................................................................................................................... 960 clear ip pim rp-mapping................................................................................................................................................ 960 clear ip pim tib.....................
show ipv6 pim tib...........................................................................................................................................................986 42 Port Monitoring....................................................................................................................................... 988 Description......................................................................................................................................................................
service-class bandwidth-percentage.........................................................................................................................1020 strict-priority unicast.................................................................................................................................................... 1021 Policy-Based QoS Commands.....................................................................................................................................
show qos dscp-color-map........................................................................................................................................... 1051 46 Routing Information Protocol (RIP)........................................................................................................1052 auto-summary.............................................................................................................................................................. 1052 clear ip rip..........
bridge-priority............................................................................................................................................................... 1079 debug spanning-tree rstp............................................................................................................................................ 1079 description.......................................................................................................................................................
RADIUS Commands..................................................................................................................................................... 1109 aaa radius auth-method......................................................................................................................................... 1109 client..........................................................................................................................................................................
ip ssh server.............................................................................................................................................................1135 ip ssh server dns enable......................................................................................................................................... 1137 show accounting.....................................................................................................................................................
51 Service Provider Bridging........................................................................................................................ 1166 debug protocol-tunnel.................................................................................................................................................. 1166 protocol-tunnel..............................................................................................................................................................
logging monitor..............................................................................................................................................................1195 logging on.......................................................................................................................................................................1195 logging source-interface................................................................................................................................
show spanning-tree 0...................................................................................................................................................1221 spanning-tree 0.............................................................................................................................................................1224 56 SupportAssist.........................................................................................................................................
ntp broadcast client..................................................................................................................................................... 1255 ntp disable..................................................................................................................................................................... 1255 ntp master .......................................................................................................................................
show interface management port config.................................................................................................................. 1278 syntax help.....................................................................................................................................................................1278 60 Uplink Failure Detection (UFD)...............................................................................................................1280 clear ufd-disable........
show vlt role..................................................................................................................................................................1305 show vlt statistics........................................................................................................................................................ 1306 system-mac.................................................................................................................................................
fka-adv-period........................................................................................................................................................ 1337 interface vlan (NPIV proxy gateway)...................................................................................................................1338 keepalive..................................................................................................................................................................
1 About this Guide This guide provides information about the Dell Networking Operating System (OS) command line interface (CLI). This guide also includes information about the protocols and features found in the Dell OS and on the Dell Networking systems supported by the Dell OS.
[X] Keywords and parameters within brackets are optional. x|y Keywords and parameters separated by a bar require you to choose one option. x||y Keywords and parameters separated by a double bar allows you to choose any or all of the options. Information Icons This book uses the following information symbols: NOTE: The Note icon signals important operational information. CAUTION: The Caution icon signals information about situations that could result in equipment damage or loss of data.
2 CLI Basics This chapter describes the command line interface (CLI) structure and command modes. The Dell operating software commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols.
User "admin" on line vty1 ( 123.12.1.123 ) User "Irene" on line vty3 ( 123.12.1.321 ) Dell#conf When another user enters CONFIGURATION mode, the Dell Networking OS sends a message similar to the following: % Warning: User "admin" on line vty2 "172.16.1.210" is in configuration In this case, the user is “admin” on vty2. Navigating the CLI The Dell Networking Operating System (OS) displays a command line interface (CLI) prompt comprised of the host name and CLI mode.
To obtain a list of available options: Type a keyword and then type a space and a ?. To obtain a list of partial keywords using a partial keyword: Type a partial keyword and then type a ?. Example The following is an example of typing ip ? at the prompt: Dell(conf)#ip ? igmp Internet Group Management Protocol route Establish static routes telnet Specify telnet options When entering commands, you can take advantage of the following timesaving features: • The commands are not case-sensitive.
Using the Keyword no Command To disable, delete or return to default values, use the no form of the commands. For most commands, if you type the keyword no in front of the command, you disable that command or delete it from the running configuration. In this guide, the no form of the command is described in the Syntax portion of the command description.
Filtering the Command Output Multiple Times You can filter a single command output multiple times. To filter a command output multiple times, place the save option as the last filter. For example: Dell# command | grep regular-expression | except regular-expression | grep otherregular-expression | find regular-expression | no-more | save. Command Modes To navigate and launch various CLI modes, use specific commands. Navigation to these modes is described in the following sections.
2 Enter the interface command and then enter an interface type and interface number that is available on the switch. The prompt changes to include the designated interface and slot/port number.
MAC ACCESS LIST Mode To enter MAC ACCESS LIST mode and configure either standard or extended access control lists (ACLs), use the mac access-list standard or mac access-list extended command. To enter MAC ACCESS LIST mode: 1 Verify that you are logged in to CONFIGURATION mode. 2 Use the mac access-list standard or mac access-list extended command. Include a name for the ACL. The prompt changes to include (conf-std-macl) or (conf-ext-macl). You can return to CONFIGURATION mode by using the exit command.
PROTOCOL GVRP Mode To enable and configure GARP VLAN Registration Protocol (GVRP), use PROTOCOL GVRP mode. For more information, refer to GARP VLAN Registration (GVRP). To enter PROTOCOL GVRP mode: 1 Verify that you are logged in to CONFIGURATION mode. 2 Enter the protocol gvrp command. The prompt changes to include (config-gvrp). You can return to CONFIGURATION mode by using the exit command. RAPID SPANNING TREE (RSTP) Mode To enable and configure RSTP, use RSTP mode.
To enter ROUTER RIP mode: 1 Verify that you are logged in to CONFIGURATION mode. 2 Enter the router rip command. The prompt changes to include (conf-router_rip). You can return to CONFIGURATION mode by using the exit command. SPANNING TREE Mode To enable and configure the Spanning Tree protocol, use SPANNING TREE mode. For more information, refer to Spanning Tree Protocol (STP). To enter SPANNING TREE mode: 1 Verify that you are logged in to CONFIGURATION mode.
3 File Management This chapter contains command line interface (CLI) commands needed to manage the configuration files as well as other file management commands. The commands in this chapter are supported by the Dell Networking Operating System (OS).
stack-unit Enter the stack-unit number for the master switch. stack-unit-number Enter the stack-unit number. The range is from 0 to 5. all Enter the keywordall to apply the configuration for all stack units. default Enter the keyword default to use the primary Dell Networking OS image. primary Enter the keyword primary to use the primary Dell Networking OS image. secondary Enter the keyword secondary to use the primary Dell Networking OS image.
• Command Modes Command History usbflash: (external Flash) or any sub-directory EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. copy Copy one file to another location. The Dell Networking Operating System (OS) supports IPv4 addressing for FTP, TFTP, and SCP (in the hostip field).
NOTE: Dell Networking OS imposes a length limit on the password you create for performing the secure copy operation. Your password can be no longer than 32 characters. When you use the copy running-config startup-config command to copy the running configuration (the startup configuration file amended by any configuration changes made since the system was started) to the startup configuration file, the Dell Networking OS creates a backup file on the internal flash of the startup configuration.
delete Delete a file from the flash. After deletion, files cannot be restored. Syntax Parameters delete flash: ([flash://]filepath) usbflash ([usbflash://]filepath) flash-url no-confirm Command Modes Command History Example Enter the following location and keywords: • For a file or directory on the internal Flash, enter flash:// then the filename or directory name. • For a file or directory on an external USB drive, enter usbflash:// then the filename or directory name.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must include the colon (:) when entering this command. CAUTION: This command deletes all files, including the startup configuration file. So, after executing this command, consider saving the running config as the startup config (use the write memory command or copy run start command). Related Commands copy — copies the current configuration to either the startup-configuration file or the terminal.
logging coredump Enable coredump. Syntax logging coredump stack-unit all Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The kernel coredump can be large and may take five to 30 minutes to upload.
NOTE: You must disable logging coredump before you designate a new server destination for your core dumps. Related Commands logging coredump – disables the kernel coredump pwd Display the current working directory. Syntax pwd Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#pwd flash: Dell# Related Commands cd – changes the directory.
Command Modes Command History Usage Information 0-5 Enter the stack member unit identifier to restore only the mentioned stack-unit. all Enter the keyword all to restore all units in the stack. bootvar Enter the keyword bootvar to reset boot line. clear-all Enter the keywords clear-all to reset the NvRAM, boot environment variables, and the system startup configuration. nvram Enter the keyword nvram to reset the NvRAM only. EXEC Privilege Version Description 9.9(0.
Each boot path variable (primary_boot, secondary_boot, and default_boot) is further split into the following three independent variables: • primary_server, primary_file, and primary_type • secondary_server, secondary_file, and secondary_type • default_server, default_file, and default_type NOTE: For information on the default values that these variables take, refer to the Restoring Factory Default Environment Variables section in the Dell Networking OS Configuration guide.
Power-cycling the unit(s). Dell# Example (NvRAM, single unit) Dell#restore factory-defaults stack-unit 1nvram ************************************************************** * Warning - Restoring factory defaults will delete the existing * * persistent settings (stacking, fanout, etc.) * * After restoration the unit(s) will be powercycled immediately.
show file Display contents of a text file in the local filesystem. Syntax show file url Parameters Command Modes Command History url Enter one of the following: • For a file on the internal Flash, enter flash:// then the filename. • For a file on the external Flash, enter usbflash:// then the filename. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Example Command Fields Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show file-systems Size(b) Free(b) 2143281152 2000936960 15848660992 831594496 Dell# Type USERFLASH USBFLASH network network network Flags rw rw rw rw rw Prefixes flash: usbflash: ftp: tftp: scp: Field Description size(b) Lists the size (in bytes) of the storage location. If the location is remote, no size is listed.
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Example NOTE: A filepath that contains a dot ( . ) is not supported.
ftp for the current FTP configuration fvrp for the current FVRP configuration host for the current host configuration hardwaremonitor for hardware-monitor action-on-error settings igmp for the current IGMP configuration interface for the current interface configuration line for the current line configuration load-balance for the current port-channel load-balance configuration logging for the current logging configuration mac for the current MAC ACL configuration mac-addresstable for the
Command Modes Command History configured (OPTIONAL) Enter the keyword configuration to display line card interfaces with non-default configurations only. status (OPTIONAL) Enter the keyword status to display the checksum for the running configuration and the start-up configuration. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show running-config Current Configuration ...
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show startup-config ! Version E8-3-16-29 ! Last configuration change at Thu Apr 26 19:19:02 2012 by default ! Startup-config last updated at Thu Apr 26 19:19:04 2012 by default ! boot system stack-unit 0 primary system: A: boot system stack-unit 0 secondary tftp://10.11.200.241/ dt-m1000e-5-c2 boot system gateway 10.11.209.
Command Fields Lines Beginning With Description Dell Force10 Network... Name of the operating system Dell Force10 Operating... OS version number Dell Force10 Application... Software version Copyright (c)... Copyright information Build Time... Software build’s date stamp Build Path... Location of the software build files loaded on the system Dell Force10 uptime is... Amount of time the system has been up System image...
flash: After entering the keyword flash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence. usbflash: After entering the keyword usbflash:, you can either follow it with the location of the source file in this form: //filepath or press Enter to launch a prompt sequence. A: Enter this keyword to upgrade the bootflash partition A. B: Enter this keyword to upgrade the bootflash partition B.
B: Defaults none Command Modes EXEC Privilege Command History Enter this keyword to upgrade the bootflash partition B. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Reset the card using the power-cycle option after restoring the FPGA command.
Usage Information Example You can enter this command in the following ways: • verify md5 flash://img-file • verify md5 flash://img-file • verify sha256 flash://img-file • verify sha256 flash://img-file Without Entering the Hash Value for Verification using SHA256 DellEMC# verify sha256 flash://FTOS-SE-9.5.0.0.bin SHA256 hash for FTOS-SE-9.5.0.0.
4 Control and Monitoring The Dell Networking OS supports the following control and monitoring commands. asset-tag Assign and store a unique asset-tag to the stack member. Syntax asset-tag stack-unit unit id Asset-tag ID To remove the asset tag, use no stack-unit unit-id Asset-tag ID command. Parameters stack-unit unit-id Enter the keywordsstack-unit then the unit-id to assign a tag to the specific member. The range is from 0 to 5.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You must save the configuration and reload the system to implement ASF. When you enter the command, the system sends a message stating that the new mode is enabled when the system reloads. banner exec Configure a message that is displayed when your enter EXEC mode.
exec-banner — Enables the display of a text string when you enter EXEC mode. line — enables and configures the console and virtual terminal lines to the system. banner login Set a banner to display when logging on to the system. Syntax banner login {acknowledgement | keyboard-interactive | c line c} Enter no banner login to delete the banner text. Enter no banner login keyboard-interactive to automatically go to the banner message prompt (does not require a carriage return).
[y/n]: y Login: admin Password: Related Commands banner motd — sets a Message of the Day banner. exec-banner — enables the display of a text string when you enter EXEC mode. banner motd Set a message of the day (MOTD) banner. Syntax Parameters banner motd c line c c Enter a delineator character to specify the limits of the text banner. The delineator is a percent character (%). line Enter a text string for your message of the day banner message ending the message with your delineator.
clear command history Clear the command history log. Syntax clear command history Command Modes EXEC Privilege Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show command-history — displays a buffered log of all the commands all users enter along with a time stamp. clear line Reset a terminal line.
debug cpu-traffic-stats Enable the collection of computer processor unit (CPU) traffic statistics. Syntax debug cpu-traffic-stats Defaults Disabled Command Modes EXEC Privilege Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command enables (and disables) the collection of CPU traffic statistics from the time this command is executed (not from system boot).
Command Modes Command History EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. do Allows the execution of most EXEC-level commands from all CONFIGURATION levels without returning to the EXEC level. Syntax do command Parameters Defaults command Enter an EXEC-level command. none Command Modes Command History Usage Information Example • CONFIGURATION • INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Defaults 15 Command Modes EXEC Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Users entering EXEC Privilege mode or any other configured privilege level can access configuration commands.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. end Return to EXEC Privilege mode from other command modes (for example, CONFIGURATION or ROUTER OSPF modes). Syntax end Command Modes Command History Related Commands • CONFIGURATION • SPANNING TREE • MULTIPLE SPANNING TREE • LINE • INTERFACE • VRRP • ACCESS-LIST • PREFIX-LIST • ROUTER OSPF • ROUTER RIP Version Description 9.9(0.
Related Commands banner exec — configures a banner to display when entering EXEC mode. line — enables and configures console and virtual terminal lines to the system. exec-timeout Set a time interval that the system waits for input on a line before disconnecting the session. Syntax exec-timeout minutes [seconds] To return to default settings, use the no exec-timeout command. Parameters minutes Enter the number of minutes of inactivity on the system before disconnecting the current session.
Command History Related Commands • ROUTER OSPF • ROUTER RIP Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. end — returns to EXEC Privilege mode. feature unique-name Set a unique host name for the system. Syntax feature unique-name Defaults None Command Modes CONFIGURATION Supported Modes Command History Usage Information • Standalone • VLT • Stacking • PMUX • STOMP Full Switch Version Description 9.10(0.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example morpheus% ftp 10.31.1.111 Connected to 10.31.1.111. 220 FTOS (1.0) FTP server ready Name (10.31.1.
ftp-server username Create a user name and associated password for incoming FTP server sessions. Syntax ftp-server username username password [encryption-type] password Parameters username Enter a text string up to 40 characters long as the user name. password password Enter the keyword password then a string up to 40 characters long as the password. Without specifying an encryption type, the password is unencrypted.
password Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information • 0 (zero) for an unecrypted (clear text) password • 7 (seven) for a hidden text password Enter a string up to 40 characters as the password. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The password is listed in the configuration file; you can view the password by entering the show runningconfig ftp command in EXEC mode.
ip ftp username Assign a user name for outgoing FTP connection requests. Syntax ip ftp username username Parameters username Enter a text string as the user name up to 40 characters long. Defaults No user name is configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Configure a password with the ip ftp password command.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For VLAN interface, enter the keyword vlan then a number from 1 to 4094. Defaults The IP address on the system that is closest to the Telnet address is used in the outgoing packets. Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.
Parameters console 0 Enter the keyword console 0 to configure the console port. The console option is <0-0>. vty number Enter the keyword vty then a number from 0 to 9 to configure a virtual terminal line for Telnet sessions. The system supports 10 Telnet sessions. end-number (OPTIONAL) Enter a number from 1 to 9 as the last virtual terminal line to configure. You can configure multiple lines at one time.
If the login concurrent-session clear-line enable command is configured, you are provided with an option to clear any of your existing sessions after a successful login authentication. When you reach the maximum concurrent session limit, you can still login by clearing any of your existing sessions.
no login statistics {enable | time-period days} Parameters enable Enables user login statistics. By default, the system displays the login statistics for the last 30 days. time-period days Sets the number of days for which the system stores the user login statistics. The range is from 1 to 30. Defaults Not configured Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
The preceding message shows that the user had previously logged in to the system using the console line. It also displays the number of unsuccessful login attempts since the last login and the number of unsuccessful login attempts during a custom time period. Related Commands login concurrent-session — Configures the limit of concurrent sessions for all users on console and virtual terminal lines.
• For a Port Channel interface, enter the keywords port-channel then a number: The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. tos (IPv4 only) Enter the type of service required. The range is from 0 to 255. The default is 0.
Commands. For information on the ICMP message codes that return from a ping command, refer to Internet Control Message Protocol (ICMP) Message Types. Example (IPv4) Dell#ping 172.31.1.255 Type Ctrl-C to abort. Sending 5, 100-byte ICMP Echos to 172.31.1.255, timeout is 2 seconds: Reply to request 1 from 172.31.1.208 0 ms Reply to request 1 from 172.31.1.216 0 ms Reply to request 1 from 172.31.1.205 16 ms :: Reply to request 5 from 172.31.1.209 0 ms Reply to request 5 from 172.31.1.
Command Modes Command History Usage Information EXEC Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Messages can contain an unlimited number of lines; however, each line is limited to 255 characters. To move to the next line, use . To send the message use CTR-Z; to abort a message, use CTR-C. service timestamps To debug and log messages, add time stamps. This command adds either the uptime or the current time and date.
Command Modes Command History Example • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell# show alarms -- Minor Alarms -Alarm Type Duration --------------------------------------No minor alarms -- Major Alarms -Alarm Type Duration ---------------------------------------No major alarms Dell# show command-history Display a buffered log of all commands all users enter along with a time stamp.
[4/20 10:27:56]: CMD-(CLI):[show interfaces tengigabitethernet 0/3]by default from console [4/20 10:55:8]: CMD-(CLI):[show lldp neighbors]by default from console [4/20 15:17:6]: CMD-(CLI):[show cam-acl]by default from console [4/20 16:34:59]: CMD-(CLI):[show running-config interface tengigabitethernet 0/1 55]by default from console [4/20 16:38:14]: CMD-(CLI):[show vlan]by default from console [5/4 9:11:52]: CMD-(TEL0):[show version]by admin from vty0 (10.11.68.
show debugging View a list of all enabled debugging processes. Syntax show debugging Command Modes EXEC Privilege Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
* Management Unit -- Thermal Sensor Readings (deg C) -Unit Sensor0 Sensor1 Sensor2 Sensor3 Sensor4 Sensor5 Sensor6 Sensor7 Sensor8 Sensor9 ------------------------------------------------------0 50 52 53 53 54 48 57 57 53 56 Dell# Example (stack-unit) Dell#show environment stack-unit 0 -- Unit Environment Status -Unit Status Temp Voltage -----------------------------------0* online 49C ok * Management Unit Example (thermalsensor) Dell#show environment thermal-sensor -- Thermal Sensor Readings (deg C) -Unit
* - Management Unit Software Protocol Configured -------------------------------------------------------------SNMP LLDP Dell# Example (media) Dell#show inventory media Slot Port Type Media Serial Number F10Qualid ---------------------------------------------------------0 33 QSFP 40GBASE-CR4-1M APF11490011J2Q Yes 0 37 QSFP 40GBASE-SR4 MLJ004V No 0 41 QSFP 40GBASE-SR4 MLJ003P No 0 42 QSFP 40GBASE-SR4 MLJ003P No 0 43 QSFP 40GBASE-SR4 MLJ003P No 0 44 QSFP 40GBASE-SR4 MLJ003P No 0 45 QSFP 40GBASE-SR4 MLJ004Y No
user login-id Defaults None Command Modes CONFIGURATION Command History Usage Information (Optional)Displays the login statistics of a specific user in the last 30 days or the custom defined time period. When you use it with the unsuccessful-attempts keyword, the system displays the number of failed login attempts by a specific user in the last 30 days or the custom defined time period Version Description 9.10(0.0) Introduced the successful-attempts keyword. 9.9(0.0) Introduced on the FN IOM.
User: admin1 Last login time: 12:49:19 UTC Tue Mar 22 2016 Last login location: Line vty0 ( 10.16.127.145 ) Unsuccessful login attempt(s) since the last successful login: 0 Unsuccessful login attempt(s) in last 30 day(s): 3 Successful login attempt(s) in last 30 day(s): 2 ----------------------------------------------------------------------------------------------------------------------------------User: admin2 Last login time: 12:49:27 UTC Tue Mar 22 2016 Last login location: Line vty0 ( 10.16.127.
show memory View current memory usage on the MXL switch. Syntax show memory [stack-unit 0–5] Parameters Command Modes Command History stack-unit 0–5 • EXEC • EXEC Privilege (OPTIONAL) Enter the keywords stack-unit then the stack unit ID of the stack member to display memory information on the designated stack member. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
memory Command Modes Command History Example (summary) • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword memory to display memory statistics. Refer to Example (memory). Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
0x763eb000 90800 ipc 0x77ee9000 5 tme 0x77eec000 0 ttraceIpFlow 0x77eee000 20 linkscan_user_threa 0x77ff6000 0 isrTask 0x7811a000 0 tDDB 0x7811c000 22980 GC 0x7811e000 0 bshell_reaper_threa 0x78365000 10 tSysLog 0x78367000 1106980 tTimerTask 0x78369000 13131160 tExcTask 0x7836b000 30 tLogTask 0x785bb000 147650 tUsrRoot Example (memory) 9080 10000 0.00% 0.00% 0.00% 0 0 5 1 0000 0.00% 0.00% 0.00% 0 0 0 0.00% 0.00% 0.00% 0 2 10000 0.00% 0.00% 0.00% 0 0 0 0.00% 0.00% 0.00% 0 0 0 0.00% 0.00% 0.
fcoecntrl dhclient f10appioserv ndpm f10appioserv vrrp f10appioserv frrp f10appioserv xstp f10appioserv pim f10appioserv Dell# Related Commands 262144 548864 225280 618496 225280 335872 225280 180224 225280 2740224 225280 1007616 225280 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 7917568 1310720 208896 7512064 208896 8048640 208896 7512064 208896 9801728 208896 7757824 208896 show hardware layer2 acl — displays Layer 2 ACL data for the selected stack member and stack member portpipe.
Field Description Cur Len Current number of messages enqueued High Mark Highest number of packets in the queue at any time #of to / Timeout Timeout count #of Retr /Retries Number of retransmissions #msg Sent/Msg Sent/ Number of messages sent #msg Ackd/Ack Rcvd Number of messages acknowledged Retr /Available Retra Number of retries left Total/ Max Retra Number of retries allowed Important Points: Example • The SWP provides flow control-based reliable communication between the sending and
Command Modes Command History Usage Information all Enter the keyword all for detailed memory usage on all stack members. summary Enter the keyword summary for a brief summary of memory availability and usage on all stack members. • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
fcoecntrl dhclient f10appioserv ndpm f10appioserv vrrp Example (management-unit) 262144 548864 225280 618496 225280 335872 0 0 0 0 0 0 0 0 0 0 7917568 1310720 208896 7512064 208896 Dell#show processes memory management-unit Total:2147483648, MaxUsed:378470400 [05/23/2012 09:49:39] CurrentUsed:378470400, CurrentFree:1769013248 SharedUsed:18533952, SharedFree:2437592 PID Process ResSize Size 472 ospf 8716288 573440 529 fcoecntrl 7917568 262144 225 dhclient 1310720 548864 360 ndpm 7512064 618496 160 vrrp
Example — System DellEMC# show reset-reason Cause: Reboot by Software upgrade Module. reboot due to the upgrade command Reset Time: 8/9/2017 1:39 PM. Example — System reboot for unknown reasons DellEMC# show reset-reason Cause: N/A Reload Time: N/A Example — System reboot due to power loss or pressing the power button off and on. The example shows the reason for the last reboot as N/A for warm reset. Example — System reboot due to watchdog timeout DellEMC#show reset-reason Cause: N/A.
Parameters Defaults Command History 114 Enter the keyword clients to display IFM client information. summary (OPTIONAL) Enter the keyword summary to display brief information about IFM clients. ifagt number Enter the keyword ifagt then the number of an interface agent to display software pipe and IPC statistics.
show system Display the current status of all stack members or a specific member. Syntax Parameters Command Modes Command History Example (brief) show system [brief | stack-unit unit-id] brief (OPTIONAL) Enter the keyword brief to view an abbreviated list of system information. stack-unit unit-id (OPTIONAL) Enter the keyword stack-unit then the stack member ID for information on that stack member. The range is 0 to 5. • EXEC • EXEC Privilege Version Description 9.9(0.
Mfg By : DELL Mfg Date : 2012-01-05 Serial Number : DELL123456 Part Number : 0NVH81X01 Piece Part ID : N/A PPID Revision : N/A Service Tag : N/A Expr Svc Code : N/A Chassis Svce Tag: RTWB200 Fabric Id : C2 Asset tag : test PSOC FW Rev : 0xb ICT Test Date : 0-0-0 ICT Test Info : 0x0 Max Power Req : 31488 Fabric Type : 0x3 Fabric Maj Ver : 0x1 Fabric Min Ver : 0x0 SW Manageability: 0x4 HW Manageability: 0x1 Max Boot Time : 6 minutes Link Tuning : unsupported Auto Reboot : enabled Burned In MAC : 00:01:e8:43:d
Command History Usage Information Version Description 9.14(0.0) Updated to display the show revision and show os-version command outputs. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Without the page or stack-unit option, the command output is continuous. Use Ctrl-z to interrupt the command output. The save option works with other filtering commands. This allows you to save specific information of a show command.
Dell# Dell#dir Directory of flash: Directory of flash: 1 drwx 4096 2 drwx 2048 3 drwx 4096 4 drwx 4096 5 d--4096 6 -rwx 10303 7 -rwx 7366 8 -rwx 4 9 -rwx 12829 10 drwx 4096 11 -rwx 7689 Jan May Jan Jan Jan Mar Apr Feb Feb Mar Feb 01 16 24 24 24 15 20 19 18 08 21 1980 2012 2012 2012 2012 2012 2012 2012 2012 2012 2012 01:00:00 10:49:01 19:38:32 19:38:32 19:38:34 18:37:20 10:57:02 07:05:02 02:24:14 22:58:54 04:45:40 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 +01:00 . ..
CPLD IMAGE INFORMATION : --------------------------------------------------------------------Card CPLD Name Version Stack-unit 0 IOM SYSTEM CPLD 6 ----------------------------------- show revision -------------------------------- Stack unit 0 IOM SYSTEM CPLD -- : 6 ------------------------------------ show clock ------------------------------22:41:49.
ARP statistics: Rcvd: 43988 requests, 24518 replies, 10 wrong interface Sent: 42 requests, 6 replies (0 proxy) Related Commands show version — Displays the Dell Networking OS version. show system — Displays the current switch status. show environment — Displays the system component status. show processes memory — Displays memory usage based on running processes. telnet Connect through Telnet to a server. The Telnet client and server in the Dell Networking Operating System (OS) support IPv4 connections.
terminal xml Enable XML mode in Telnet and SSH client sessions. Syntax terminal xml To exit XML mode, use the terminal no xml command. Defaults Command Modes Command History Usage Information Disabled • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command enables the XML input mode where you can either cut and paste XML requests or enter the XML requests line-by-line.
Example (IPv4) Dell#traceroute www.force10networks.com Translating "www.force10networks.com"...domain server (10.11.0.1) [OK] Type Ctrl-C to abort. ----------------------------------------------Tracing the route to www.force10networks.com (10.11.84.18), 30 hops max, 40 byte packets ----------------------------------------------TTL Hostname Probe1 Probe2 Probe3 1 10.11.199.190 001.000 ms 001.000 ms 002.000 ms 2 gwegress-sjc-02.force10networks.com (10.11.30.126) 005.000 ms 001.000 ms 001.000 ms 3 fw-sjc-01.
Example Dell#virtual-ip 10.11.197.99/16 write Copy the current configuration to either the startup-configuration file or the terminal. Syntax Parameters Command Modes Command History Usage Information write {memory | terminal} memory Enter the keyword memory to copy the current running configuration to the startup configuration file. This command is similar to the copy running-config startupconfig command. terminal Enter the keyword terminal to copy the current running configuration to the terminal.
5 802.1X An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. The Dell Networking operating software supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
• dot1x port-control • dot1x quiet-period • dot1x reauthentication • dot1x reauth-max • dot1x server-timeout • dot1x supplicant-timeout • dot1x tx-period • mac • show dot1x cos-mapping interface • show dot1x interface • show dot1x profile debug dot1x Display 802.1X debugging information. Syntax Parameters debug dot1x [all | auth-pae-fsm | backend-fsm | eapol-pdu] [interface interface] all Enable all 802.1X debug messages. auth-pae-fsm Enable authentication PAE FSM debug messages.
Defaults 3 attempts Command Modes CONFIGURATION (conf-if-interface-slot/port) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If the host responds to 802.1X with an incorrect login/password, the login fails. The switch attempts to authenticate again until the maximum attempts configured is reached.
Usage Information The prerequisites for enabling MAB-only authentication on a port are: • Enable 802.1X authentication globally on the switch and on the port (the dot1x authentication command). • Enable MAC authentication bypass on the port (the dot1x mac-auth-bypass command). In MAB-only authentication mode, a port authenticates using the host MAC address even though 802.1xauthentication is enabled. If the MAB-only authentication fails, the host is placed in the guest VLAN (if configured).
dot1x critical-vlan Configure critical-VLAN for users or devices when authentication server is not reachable. Syntax [no] dot1x critical-vlan vlan-id Parameters vlan-id Defaults Not Configured. Command Modes INTERFACE Enter the VLAN identifier. The VLAN-ID range is from 1 to 4094. INTERFACE (BATCH MODE) Command History Usage Information This guide is platform-specific. For command information about other platforms, refer to the relevant Dell EMC Networking OS Command Line Reference Guide.
Max-EAP-Req: Host Mode: Auth PAE State: Backend State: 2 SINGLE_HOST Authenticated Idle dot1x profile Configure a dot1x profile to define a list of trusted supplicant MAC addresses. Syntax Parameters [no] dot1x profile profile-name profile-name Defaults None Command Modes CONFIGURATION Enter a dot1x profile-name. The profile name length is limited to 32 characters. CONFIGURATION TERMINAL BATCH Error Strings NONE Command History This guide is platform-specific.
Parameters profile profile-name Defaults Disabled. Command Modes INTERFACE Enter the keyword profile and the profile-name to configure the static MAB profile name. The profile name length is limited to 32 characters. INTERFACE (BATCH MODE) Command History Usage Information This guide is platform-specific. For command information about other platforms, refer to the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.0) Introduced on the S3148. 9.10(0.
dot1x guest-vlan Configure a guest VLAN for limited access users or for devices that are not 802.1X capable. Syntax dot1x guest-vlan vlan-id To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command. Parameters vlan-id Enter the VLAN Identifier. The range is from 1 to 4094. Defaults Not configured. Command Modes CONFIGURATION (conf-if-interface-slot/port) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Defaults single-host Command Modes INTERFACE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • Single-host mode authenticates only one host per authenticator port and drops all other traffic on the port. • Multi-host mode authenticates the first host to respond to an Identity Request and then permits all other traffic on the port.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x max-supplicants Restrict the number of supplicants that can be authenticated and permitted to access the network through the port. This configuration is only takes effect in Multi-Auth mode. Syntax Parameters dot1x max-supplicants number number Enter the number of supplicants that can be authenticated on a single port in Multi-Auth mode. The range is from 1 to 128. The default is 128.
dot1x quiet-period Set the number of seconds that the authenticator remains quiet after a failed authentication with a client. Syntax dot1x quiet-period seconds To disable quiet time, use the no dot1x quiet-time command. Parameters seconds Defaults 60 seconds Command Modes INTERFACE Command History Enter the number of seconds. The range is from 1 to 65535. The default is 60. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameters number Defaults 2 Command Modes INTERFACE Command History Enter the permitted number of reauthentications. The range is from 1 to 10. The default is 2. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x server-timeout Configure the amount of time after which exchanges with the server time-out. Syntax dot1x server-timeout seconds To return to the default, use the no dot1x server-timeout command.
dot1x supplicant-timeout Configure the amount of time after which exchanges with the supplicant time-out. Syntax dot1x supplicant-timeout seconds To return to the default, use the no dot1x supplicant-timeout command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Enter a time-out value in seconds. The range is from 1 to 300, where 300 is implementation dependant. The default is 30. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Parameters mac-address1 macaddress2… macaddress6 Enter the keyword mac and type the 48– bit MAC addresses using the H.H.H format. A maximum of 6 MAC addresses are allowed. Defaults None Command Modes DOT1X PROFILE CONFIG (conf-dot1x-profile) CONFIGURATION TERMINAL BATCH Command History Usage Information This guide is platform-specific. For command information about other platforms, refer to the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.
mac-address Defaults (Optional) MAC address of an 802.1X-authenticated supplicant. none Command Modes Command History Usage Information • EXEC • EXEC privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To display CoS mapping information only for the specified supplicant, enter a supplicant’s MAC address using the mac-address option.
show dot1x interface Display the 802.1X configuration of an interface. Syntax Parameters show dot1x interface interface [mac-address mac-address] interface mac-address Defaults Command Modes Command History Enter one of the following keywords and slot/port or number information: • For a Ten-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40–Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information.
Dell#show dot1x interface tengigabitethernet 0/32 802.
show dot1x profile Display all the dot1x profiles or the details of a specific profile configured in the system. Syntax Parameters show dot1x profile profile-name profile-name Specify a static dot1x profile-name. The maximum character limit for a profile name is 32 characters. Defaults None Command Modes EXEC Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell EMC Networking OS Command Line Reference Guide.
6 Access Control Lists (ACL) Access control lists (ACLs) are supported by the Dell Networking Operating System (OS).
• permit icmp • permit tcp • permit udp • seq • Common MAC Access List Commands • clear counters mac access-group • mac access-group • show mac access-lists • show mac accounting access-list • Standard MAC ACL Commands • deny • mac access-list standard • permit • seq • Extended MAC ACL Commands • deny • mac access-list extended • permit • seq • IP Prefix List Commands • clear ip prefix-list • deny • ip prefix-list • permit • seq • show config • show ip pr
• seq • deny tcp • deny udp • deny arp (for Extended MAC ACLs) • deny icmp • deny ether-type (for Extended MAC ACLs) • deny • deny • permit (for Standard IP ACLs) • permit arp • permit ether-type (for Extended MAC ACLs) • permit icmp • permit udp • permit (for Extended IP ACLs) • permit • seq • permit tcp • seq arp • seq ether-type • seq • seq • permit udp • permit tcp • permit icmp • permit • deny udp (for IPv6 ACLs) • deny tcp (for IPv6 ACLs) • deny i
Command History • CONFIGURATION-MAC ACCESS LIST-STANDARD • CONFIGURATION-MAC ACCESS LIST-EXTENDED Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. remark Enter a description for an ACL entry. Syntax Parameters remark [remark-number] [description] remark-number Enter the remark number. The range is from 0 to 4294967290. NOTE: You can use the same sequence number for the remark and an ACL rule.
Example DellEMC(config-std-nacl)# remark 10 Deny rest of the traffic DellEMC(config-std-nacl)# remark 5 Permit traffic from XYZ Inc. DellEMC(config-std-nacl)# show config ! ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.
Usage Information When you have exhausted all the sequence numbers, this feature permits re-assigning a new sequence number to entries of an existing access-list. Related Commands resequence prefix-list ipv4 — resequences a prefix list. resequence prefix-list ipv4 Re-assign sequence numbers to entries of an existing prefix list.
Example Dell(config-std-nacl)#show conf ! ip access-list standard test remark 5 Permit traffic from XYZ Inc. seq 5 permit 1.1.1.0/24 count remark 10 Deny traffic from ABC seq 10 deny 2.1.1.0/24 count Dell(config-std-nacl)# Common IP ACL Commands The following commands are available within both IP ACL modes (Standard and Extended) and do not have mode-specific options. When an ACL is created without a rule and then is applied to an interface, ACL behavior reflects an implicit permit.
Similarly, if you have configured either IPv4 or IPv6 specific filtering on a terminal line, you cannot apply generic IP ACLs on top of this configuration. Before applying the generic ACL configuration, you must first undo the existing configuration using the no access-class access-list-name [ipv4 | ipv6] command. clear counters ip access-group Erase all counters maintained for access lists.
NOTE: If outbound(egress) IP ACL is applied on switch port, filter will be applied only for routed traffic egressing out of that port. Related Commands ip access-list standard — configures a standard ACL. ip access-list extended — configures an extended ACL. show ip access-lists Display all of the IP ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/mismatches against each ACL entry displayed.
interface interface Command Modes Command History Usage Information • EXEC • EXEC Privilege Enter the keyword interface then the one of the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny {source [mask] | any | host ip-address} command. source Enter the IP address of the network or host from which the packets were sent. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address.
can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction.
permit (for Standard IP ACLs) To permit packets from a specific source IP address to leave the switch, configure a filter. Syntax permit {source [mask]| any | host ip-address} [no-drop] [count [byte]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no permit {source [mask] | any | host ip-address} command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. When the configured maximum threshold is exceeded, generation of logs is stopped.
dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a filter to drop packets. permit — configures a filter to forward packets. seq — assigns a sequence number to a deny or permit filter in an IP access list while creating the filter.
monitor OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. fragments Enter the keyword fragments to use ACLs to control packet fragments. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
ip access-list extended — creates an extended ACL. deny icmp To drop all or specific internet control message protocol (ICMP) messages, configure a filter. Syntax deny icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} [dscp] [count [byte]] [order] [fragments][threshold-in-msgs] [count]] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command, if you know the filter’s sequence number.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide. When the configured maximum threshold is exceeded, generation of logs is stopped.
operator port port • fin: finish (no more data from the user) • psh: push function • rst: reset the connection • syn: synchronize sequence numbers • urg: urgent field (OPTIONAL) Enter one of the following logical operand: • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only.
Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands deny — assigns a filter to deny IP traffic. deny udp — assigns a filter to deny UDP traffic. deny udp To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter.
byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lowerorder numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
8 0001111101000000 1111111111111111 8000 8000 1 Total Ports: 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands deny — assigns a filter to deny IP traffic. deny tcp — assigns a filter to deny TCP traffic. ip access-list extended Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny {source mask | any | host ip-address} {destination mask | any | host ip-address} command. source Enter the IP address in dotted decimal format of the network from which the packet was sent. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval. If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
permit tcp To pass TCP packets meeting the filter criteria, configure a filter. Syntax permit tcp {source mask | any | host ip-address} [bit] [operator port [port]] {destination mask | any | host ip-address} [bit] [dscp] [operator port [port]] [count [byte]] [order] [fragments][log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval. If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs.
• Parameters Use the no permit udp {source mask | any | host ip-address} {destination mask | any | host ip-address command. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter.
Usage Information The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the “Quality of Service” chapter of the Dell Operating System Configuration Guide. You can configure either count (packets) or count (bytes). However, for an ACL with multiple rules, you can configure some ACLs with count (packets) and others as count (bytes) at any given time. Most ACL rules require one entry in the CAM.
seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter. Syntax seq sequence-number {deny | permit} {ip-protocol-number | icmp | ip | tcp | udp} {source mask | any | host ip-address} {destination mask | any | host ipaddress} [operator port [port]] [count [byte]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] Parameters sequence-number Enter a number from 0 to 4294967290. The range is from 1 to 65534.
count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority).
count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval. If ACL logging is stopped because the configured threshold is exceeded, it is re-enabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs.
mac access-group Apply a MAC ACL to traffic entering or exiting an interface. Enter into the Interface mode and apply the MAC ACL in the following manner. Syntax mac access-group access-list-name {in [vlan vlan-range] | out} To delete a MAC access-group, use the no mac access-group mac-list-name command. Parameters access-list-name Enter the name of a configured MAC access list, up to 140 characters. vlan vlan-range (OPTIONAL) Enter the keyword vlan and then enter a range of VLANs.
show mac access-lists Display all of the Layer 2 ACLs configured in the system, whether or not they are applied to an interface, and the count of matches/ mismatches against each ACL entry displayed. Syntax show mac access-lists [access-list-name] [interface interface] [in | out] Parameters access-list-name Enter the name of a configured MAC ACL, up to 140 characters.
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The ACL hit counters in this command increment the counters for each matching rule, not just the first matching rule.
log (OPTIONAL) Enter the keywordlog to enable the triggering of ACL log messages. threshold-in-msgs count (OPTIONAL) Enter thethreshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated. with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated.
mac access-list standard To configure a standard MAC ACL, name a new or existing MAC access control list (MAC ACL) and enter MAC ACCESS LIST mode. Syntax Parameters mac access-list standard mac-list-name mac-list-name Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Enter a text string as the name of the standard MAC access list (140 character maximum). Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated.
seq To a deny or permit filter in a MAC access list while creating the filter, assign a sequence number. Syntax seq sequence-number {deny | permit} {any | mac-source-address [mac-sourceaddress-mask]} [count [byte]] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, use the no seq sequence-number command. Parameters sequence-number Enter a number from 0 to 65535. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.
Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
mac-sourceaddress-mask Specify which bits in the MAC address must match. The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. mac-destinationaddress Enter the destination MAC address and mask in nn:nn:nn:nn:nn:nn format. mac-destinationaddress-mask Specify which bits in the MAC address must match.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The number of entries allowed per ACL is hardware-dependent. For detailed specifications on entries allowed per ACL, refer to your line card documentation.
mac-destinationaddress Enter the destination MAC address and mask in nn:nn:nn:nn:nn:nn format. mac-destinationaddress-mask Specify which bits in the MAC address must be matched. The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. mac-sourceaddress-mask Specify which bits in the MAC address must be matched. mac-destinationaddress Enter the destination MAC address and mask in nn:nn:nn:nn:nn:nn format. mac-destinationaddress-mask Specify which bits in the MAC address must be matched.
Parameters prefix-name (OPTIONAL) Enter the name of the configured prefix list to clear only counters for that prefix list, up to 140 characters long. Defaults Clears “hit” counters for all prefix lists unless a prefix list is specified. Command Modes EXEC Privilege Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip prefix-list — configures a prefix list.
Parameters Command Modes Command History prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Prefix lists redistribute OSPF and RIP routes meeting specific criteria. Related Commands show ip route list — displays IP routes in an IP prefix list.
seq To a deny or permit filter in a prefix list while configuring the filter, assign a sequence number. Syntax Parameters seq sequence-number {deny | permit} {any} | [ip-prefix /nn {ge min-prefixlength} {le max-prefix-length}] | [bitmask number] sequence-number Enter a number. The range is from 1 to 4294967294. deny Enter the keyword deny to configure a filter to drop packets meeting this condition.. permit Enter the keyword permit to configure a filter to forward packets meeting this condition.
Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-nprefixl)#show config ! ip prefix-list snickers Dell(conf-nprefixl)# show ip prefix-list detail Display details of the configured prefix lists. Syntax show ip prefix-list detail [prefix-name] Parameters Command Modes Command History Example prefix-name • EXEC • EXEC Privilege (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. Version Description 9.9(0.
Example Dell#show ip prefix-list summary Ip Prefix-list with the last deletion/insertion: PL_OSPF_to_RIP ip prefix-list PL_OSPF_to_RIP: count: 3, range entries: 1, sequences: 5 - 25 Route Map Commands When you create an access-list without any rule and then applied to an interface, the ACL behavior reflects implicit permit. To configure route maps and their redistribution criteria, use the following commands. continue To a route-map entry with a higher sequence number, configure a route-map.
Related Commands • If a set action occurs in the first route map entry and then the same set action occurs with a different value in a subsequent route map entry, the last set of actions overrides the previous set of actions with the same set command. • If set community additive and set as-path prepend are configure, the communities and AS numbers are prepended.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. match ip address — redistributes routes that match an IP address. match ip next-hop — redistributes routes that match the next-hop IP address. match ip route-source — redistributes routes that match routes advertised by other routers. match metric — redistributes routes that match a specific metric.
Parameters access-list-name Enter the name of a configured IP access list, up to 140 characters. prefix-list prefix-listname Enter the keywords prefix-list and then enter the name of configured prefix list, up 10 140 characters. Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
match route-type — redistributes routes that match a route type. match tag — redistributes routes that match a specific tag. match metric To match on a specified value, configure a filter. Syntax Parameters match metric metric-value metric-value Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Enter a value to match. The range is from zero (0) to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address. match ip next-hop — redistributes routes that match the next-hop IP address. match ip route-source — redistributes routes that match routes advertised by other routers. match metric — redistributes routes that match a specific metric.
Defaults permit (OPTIONAL) Enter the keyword permit to set the route map default as permit. If you do not specify a keyword, the default is permit. deny (OPTIONAL) Enter the keyword deny to set the route map default as deny. sequence-number (OPTIONAL) Enter a number to identify the route map for editing and sequencing with other route maps. You are prompted for a sequence number if there are multiple instances of the route map. The range is from 1 to 65535. Not configured.
set metric To assign a new metric to redistributed routes, configure a filter. Syntax set metric [+ | -] metric-value To delete a setting, use the no set metric command. Parameters + (OPTIONAL) Enter + to add a metric-value to the redistributed routes. - (OPTIONAL) Enter - to subtract a metric-value from the redistributed routes. metric-value Enter a number as the new metric value. The range is from zero (0) to 4294967295. Defaults Not configured.
Related Commands set automatic-tag — computes the tag value of the route. set metric — specifies the metric value assigned to redistributed routes. set tag — specifies the tag assigned to redistributed routes. set tag To specify a tag for redistributed routes, configure a filter. Syntax Parameters set tag tag-value tag-value Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Enter a number as the tag. The range is from zero (0) to 4294967295.
show route-map Display the current route map configurations. Syntax show route-map [map-name] Parameters Command Modes Command History map-name • EXEC • EXEC Privilege (OPTIONAL) Enter the name of a configured route map, up to 140 characters. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
deny (for Extended IP ACLs) Configure a filter that drops IP packets meeting the filter criteria. Syntax deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} [count [byte]] [dscp value] [order] [monitor] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255).
for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a filter to drop packets. permit — configures a filter to forward packets.
port port Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: Defaults • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt, or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range. When the configured maximum threshold is exceeded, generation of logs is stopped.
deny udp To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter. Syntax deny udp {source mask | any | host ip-address} [operator port [port]] {destination mask | any | host ip-address} [dscp] [operator port [port]] [count [byte]] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: Parameters 210 • Use the no seq sequence-number command if you know the filter’s sequence number.
ACL logs are terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which the ACL logs are generated is five minutes. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.
Related Commands deny — assigns a filter to deny IP traffic. deny tcp — assigns a filter to deny TCP traffic. deny arp (for Extended MAC ACLs) Configure an egress filter that drops ARP packets on egress ACL supported line cards. (For more information, refer to your line card documentation).
order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255). threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to the Port Monitoring. When you use the log option, the CP processor logs details the packets that match. Depending on how many packets match the log entry and at what rate, the CP may become busy as it has to log these packets’ details. You cannot include IP, TCP or UDP (Layer 3) filters in an ACL configured with ARP or Ether-type (Layer 2) filters.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module. 9.3(0.
Parameters protocol-typenumber Enter a number from 600 to FFFF as the specific Ethernet type traffic to drop. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match. The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
Usage Information Version Description 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
of ACL logs is terminated. with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The threshold range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
[ethertype-operator] [count [byte]][log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters Defaults • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny {any | host mac-address | mac-source-address mac-sourceaddress-mask}{any | host mac-address | mac-destination-address macdestination-address-mask}command. command.
You can configure either count (packets) or count (bytes). However, for an ACL with multiple rules, you can configure some ACLs with count (packets) and others as count (bytes) at any given time. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lowerorder numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
ip access-list standard — creates a standard ACL. permit arp Configure a filter that forwards ARP packets meeting this criteria. This command is supported only on 12-port GE line cards with SFP optics; refer to your line card documentation for specifications.
log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
You cannot include IP, TCP, or UDP filters in an ACL configured with ARP filters. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
permit udp To pass UDP packets meeting the filter criteria, configure a filter. Syntax permit udp {source mask | any | host ip-address} [operator port [port]] {destination mask | any | host ip-address} [dscp] [operator port [port]] [count [byte]] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: Parameters 228 • Use the no seq sequence-number command if you know the filter’s sequence number.
Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flow-based monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only.
Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM. Dell# Data Mask From To 1 0000000000000000 1111110000000000 0 #Covered 1023 1024 Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit tcp — assigns a permit filter for TCP packets. permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter.
interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no permit {any | mac-source-address mac-source-address-mask} command. any Enter the keyword any to forward all packets received with a MAC address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match.
the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port.
Command Modes Command History Usage Information CONFIGURATION-MAC ACCESS LIST-STANDARD Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When the configured maximum threshold is exceeded, generation of logs is stopped.
mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address.
of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The threshold range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
vlan vlan-id Enter the keyword vlan followed by the VLAN ID to filter traffic associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094 for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic specify VLAN 1. ip-address Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP. opcode codenumber Enter the keyword opcode and then enter the number of the ARP opcode. The range is 1 to 16.
Usage Information The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number.
Parameters sequence-number Enter a number from 0 to 4294967290. deny Enter the keyword deny to drop all traffic meeting the filter criteria.. permit Enter the keyword permit to forward all traffic meeting the filter criteria. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
Command Modes Command History Usage Information CONFIGURATION-EXTENDED-ACCESS-LIST Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.0 Added the monitor option. 6.5.
This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). NOTE: When ACL logging and byte counters are configured simultaneously, byte counters may display an incorrect value. Configure packet counters with logging instead. seq Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number.
ipv6-protocolnumber Enter a number from 0 to 255 to filter based on the protocol identified in the IP protocol header. icmp Enter the keyword icmp to configure an ICMP access list filter. ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list permits all IP protocols. tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter.
of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which the ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
Related Commands deny — Configures a filter to drop packets. permit — Configures a filter to forward packets. permit udp Configure a filter to pass UDP packets meeting the filter criteria.
interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no permit tcp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} command. source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128.
of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no permit icmp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} command. source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128.
Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
threshold-in-msgs (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
• port Defaults range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP count (OPTIONAL) Enter the keyword count to count the packets that filter the processes.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
• Defaults 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. bit (OPTIONAL) Enter the keyword bit to count the bits that filter the processes. count (OPTIONAL) Enter the keyword count to count the packets that filter the processes. byte (OPTIONAL) Enter the keyword byte to count the bytes that filter the processes. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
Related Commands deny – assigns a filter to deny IP traffic. deny udp – assigns a filter to deny UDP traffic. deny icmp (for Extended IPv6 ACLs) Configure a filter to drop all or specific ICMP messages.
Usage Information Version Description 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated. with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The time interval range is from 1 to 10 minutes.
7 Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM) This section describes the access control list (ACL) virtual local area network (VLAN) group, and content addressable memory (CAM) enhancements. member vlan Add VLAN members to an ACL VLAN group. Syntax Parameters member vlan {VLAN-range} VLAN-range Enter the member VLANs using comma-separated VLAN IDs, a range of VLAN IDs, a single VLAN ID, or a combination.
ip access-group Apply an egress IP ACL to the ACL VLAN group. Syntax ip access-group {group name} out implicit-permit Parameters group-name Enter the name of the ACL VLAN group where you want the egress IP ACLs applied, up to 140 characters. out Enter the keyword out to apply the ACL to outgoing traffic.
Usage Information When an ACL-VLAN-Group name or the Access List Group Name contains more than 30 characters, the name is truncated in the show acl-vlan-group command output. Examples The following sample illustrates the output of the show acl-vlan-group command. NOTE: Some group names and some access list names are truncated.
Usage Information After CAM configuration for ACL VLAN groups is performed, you must reboot the system to enable the settings to be stored in nonvolatile storage. During the initialization of CAM, the chassis manager reads the NVRAM and allocates the dynamic VCAP regions. The following table describes the output fields of this show command: Example Field Description Chassis Vlan Cam ACL Details about the CAM blocks allocated for ACLs for various VLAN operations at a system-wide, global level.
Command Modes Command History Usage Information CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. The VLAN ContentAware Processor (VCAP) application is a pre-ingress CAP that modifies the VLAN settings before packets are forwarded. To support the ACL CAM optimization functionality, the CAM carving feature is enhanced. A total of four VACP groups are present, of which two are for fixed groups and the other two are for dynamic groups.
Field Description CAM-Region Type of area in the CAM block that is used for ACL VLAN groups Total CAM space Total amount of space in the CAM block Used CAM Amount of CAM space that is currently in use Available CAM Amount of CAM space that is free and remaining to be allocated for ACLs Example: Dell#show cam-usage Stackunit|Portpipe|CAM Partition |Total CAM|Used CAM|AvailableCAM ========|========|================|=========|========|======== 0 | 0 | IN-L3 ACL | 512 | 1 | 511 | | IN-L3 ECMP GRP | 1
Examples Version Description 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. The following sample output shows the line-by-line style display when using the show running-config aclvlan-group option.
show acl-vlan-group detail Display all the ACL VLAN Groups or display a specific ACL VLAN Group by name. To display the names in their entirety, the output displays in a line-by-line format. Syntax show acl-vlan-group detail Parameters detail Display information in a line-by-line format to display the names in their entirety. Without the detail option, the output is displayed in a table style and information may be truncated.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. Enter a description for each ACL VLAN group that you create for effective and streamlined administrative and logging purposes.
8 Bidirectional Forwarding Detection (BFD) Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The Dell Networking Operating System (OS) implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces and port-channels.
• Active — The active system initiates the BFD session. Both systems can be active for the same session. • Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is active. Defaults See Parameters. Command Modes ROUTER OSPF ROUTER OSPFv3 ROUTER BGP ROUTER ISIS Command History This guide is platform-specific.
Usage Information Version Description 8.4.1.3 Introduced BFD for BGP on the E-Series. 8.2.1.0 Introduced BFD for OSPF and ISIS on the E-Series. 7.6.1.0 Introduced BFD for OSPF on the C-Series. 7.5.1.0 Introduced BFD for ISIS on the E-Series. 7.4.1.0 Introduced BFD for OSPF on the E-Series.
Defaults BFD is disabled by default. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd enable (Interface) Enable BFD on an interface. Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4 role passive Dell(conf-if-gi-0/3)# bfd protocol-liveness Enable the BFD protocol liveness feature. Syntax bfd protocol-liveness Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
role [active | passive] Enter the role that the local system assumes: • Active — The active system initiates the BFD session. Both systems can be active for the same session. • Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is Active. Defaults See Parameters Command Modes CONFIGURATION Command History Version Description 9.11(0.0) Introduced the prefix-list keyword. 9.9(0.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.2) Introduced support for enabling BFD on non-default VRFs for OSPFv2. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.8(2.0) Introduced on the S3100 series. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.2.0.
The default is Active. Defaults See Parameters Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. isis bfd all-neighbors Enable BFD on all IS-IS neighbors discovered on an interface.
Usage Information This command provides the flexibility to fine-tune the timer values based on individual interface needs when ISIS BFD is configured in CONFIGURATION mode. Any timer values specified with this command overrides timers set using the bfd all-neighbors command. Using the no form of this command does not disable BFD if BFD is configured in CONFIGURATION mode. To disable BFD on a specific interface while BFD is configured in CONFIGURATION mode, use the keyword disable.
Parameters ip-address Enter the IP address of the BGP neighbor that you want to explicitly disable for BFD sessions in dotted decimal format (A.B.C.D). peer-group-name Enter the name of the peer group that you want to explicitly disable for BFD sessions. Defaults none Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
• Command History Example EXEC Privilege This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(2.1P1) Introduced the vrf keyword on all the remaining Dell EMC Networking OS platforms. 9.10(0.2) Introduced the vrf keyword on the S3048–ON, S4048–ON, S4048T-ON, S6010–ON, Z9100–ON, and S6100–ON. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
9 Border Gateway Protocol IPv4 (BGPv4) For detailed information about configuring BGP, refer to the BGP chapter in the Dell Networking OS Configuration Guide.
• capture bgp-pdu neighbor • capture bgp-pdu max-buffer-size • clear ip bgp • clear ip bgp dampening • clear ip bgp flap-statistics • clear ip bgp peer-group • debug ip bgp • debug ip bgp dampening • debug ip bgp events • debug ip bgp keepalives • debug ip bgp notifications • debug ip bgp soft-reconfiguration • debug ip bgp updates • default-metric • description • max-paths • neighbor activate • neighbor add-path • neighbor advertisement-interval • neighbor advertiseme
• shutdown all • shutdown address-family-ipv4–multicast • shutdown address-family-ipv4–unicast • shutdown address-family-ipv6–unicast • show capture bgp-pdu neighbor • show config • show ip bgp • show ip bgp cluster-list • show ip bgp community • show ip bgp community-list • show ip bgp dampened-paths • show ip bgp detail • show ip bgp extcommunity-list • show ip bgp filter-list • show ip bgp flap-statistics • show ip bgp inconsistent-as • show ip bgp neighbors • show ip b
BGPv4 Commands Border gateway protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing (CIDR) and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically send messages to update those routing tables. NOTE: Dell Networking OS Version 7.7.
AS_SET includes AS_PATH and community information from the routes included in the aggregated route. Defaults attribute-map mapname (OPTIONAL) Enter the keywords attribute-map then the name of a configured route map to modify attributes of the aggregate, excluding AS_PATH and NEXT_HOP attributes. summary-only (OPTIONAL) Enter the keyword summary-only to advertise only the aggregate address. Specific routes are not advertised.
Defaults Command Modes Command History Related Commands both Enter the keyword both to indicate that the system sends and accepts multiple paths from peers. path-count Enter the number paths supported. The range is from 2 to 64. Disabled • ROUTER BGP • ROUTER BGP-address-family Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before enabling this feature, enable the enable bgp four-octet-as-supportcommand. If you disable the four-octect-support command after using dot or dot+ format, the AS numbers revert to asplain text. When you apply an asnotation, it is reflected in the running-configuration.
Usage Information If you enable this command, use the clear ip bgp * command to recompute the best path. bgp bestpath as-path multipath-relax Include prefixes received from different AS paths during multipath calculation. Syntax bgp bestpath as-path multipath-relax To return to the default BGP routing process, use the no bgp bestpath as-path multipath-relax command. Defaults Disabled Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.
Defaults Disabled Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The MED is a 4-byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295. This command causes a missing MED to be treated as 0. During path selection, paths with a lower MED are preferred over paths with a higher MED.
neighbor route-reflector-client — configures a route reflector and clients. bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Defaults Not configured.
Command Modes Command History Usage Information ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To accept 4-byte formats before entering a 4-byte AS number, configure your system. All the routers in the Confederation must be 4 byte or 2 byte identified routers. You cannot mix them. The autonomous systems configured in this command are visible to the EBGP neighbors.
bgp four-octet-as-support — enables 4-byte support for the BGP process. bgp dampening Enable BGP route dampening and configure the dampening parameters. Syntax bgp dampening [half-life reuse suppress max-suppress-time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life reuse suppress maxsuppress-time] [route-map map-name] command. Parameters half-life (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
bgp default local-preference Change the default local preference value for routes exchanged between internal BGP peers. Syntax bgp default local-preference value To return to the default value, use the no bgp default local-preference command. Parameters value Defaults 100 Command Modes ROUTER BGP Command History Enter a number to assign to routes as the degree of preference for those routes.
show ip protocols — views information on routing protocols. bgp fast-external-failover Enable the fast external failover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. Syntax bgp fast-external-failover To disable fast external failover, use the no bgp fast-external-failover command. Defaults Enabled Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
bgp graceful-restart To support graceful restart as a receiver only, enable graceful restart on a BGP neighbor, a BGP node, or designate a local router. Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, use the no bgp graceful-restart command. Parameters restart-time seconds Enter the keyword restart-time then the maximum number of seconds to restart and bring-up all the peers. The range is from 1 to 3600 seconds.
Usage Information In Non-Deterministic mode, paths are compared in the order in which they arrive. This method can lead to the system choosing different best paths from a set of paths, depending on the order in which they are received from the neighbors because MED may or may not get compared between adjacent paths. In Deterministic mode (no bgp non-deterministic-med), the system compares MED between adjacent paths within an AS group because all paths in the AS group are from the same AS.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is a knob to disable BGP next-hop resolution using BGP learned routes. During the next-hop resolution, only the first route that the next-hop resolves through is verified for the route’s protocol source and is checked if the route is learned from BGP or not.
For Address Family IPv4 Unicast BGP table version is 0, main routing table version 0 Distance: external 20 internal 200 local 200 Dell(conf-router_bgp)# Related Commands show ip protocols — views information on all routing protocols enabled and active. bgp router-id Assign a user-given ID to a BGP router. Syntax bgp router-id ip-address To delete a user-assigned IP address, use the no bgp router-id command.
indeed negotiated (after executing the clear ip bgp soft in command), BGP sends a route-refresh request to the neighbor and receives all of the peer’s updates. Related Commands clear ip bgp — activates inbound policies without resetting the BGP TCP session. capture bgp-pdu neighbor Enable capture of an IPv4 BGP neighbor packet.
show capture bgp-pdu neighbor — displays BGP packet capture information for an IPv6 address. clear ip bgp Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax Parameters clear ip bgp * | as-number | ip-address [flap-statistics | soft [in | out]] * Enter an asterisk ( * ) to reset all BGP sessions. as-number Enter the AS number to reset all neighbors belonging to that AS.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. After you enter this command, the software deletes the history routes and returns the suppressed routes to the Active state. clear ip bgp flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap.
undebug all — disables all debugging operations. clear ip bgp peer-group Reset a peer-group’s BGP sessions. Syntax Parameters Command Modes Command History clear ip bgp peer-group peer-group-name peer-group-name Enter the peer group name to reset the BGP sessions within that peer group. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
debug ip bgp keepalives — views information about BGP keepalives. debug ip bgp notifications — views information about BGP notifications. debug ip bgp updates — views information about BGP updates. show debugging — views enabled debugging operations. debug ip bgp dampening View information on routes being dampened. Syntax debug ip bgp dampening [in | out] To disable debugging, use the no debug ip bgp dampening command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. debug ip bgp keepalives Display information about BGP keepalive messages.
out Command Modes Command History Usage Information (OPTIONAL) Enter the keyword out to view BGP notifications sent to neighbors EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To remove all configured debug commands for BGP, enter the no debug ip bgp command. debug ip bgp soft-reconfiguration Enable soft-reconfiguration debug.
Command Modes Command History Usage Information prefix-list prefix-listname (OPTIONAL) Enter the keyword prefix-list then the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes). ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group to disable or enable all routers within the peer group. EXEC Privilege Version Description 9.9(0.
To remove the description, use the no description {description} command. Parameters description Defaults none Command Modes ROUTER BGP Command History Related Commands Enter a description to identify the BGP protocol (80 characters maximum). Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. router bgp — enters ROUTER mode on the switch. max-paths Configure the maximum number of parallel routes (multipath support) BGP supports.
peer-group-name (OPTIONAL) Enter the name of the peer group. activate Enter the keyword activate to enable the neighbor/peer group in the new AFI/SAFI. Defaults Disabled Command Modes CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To return to the default value, use the no neighbor {ip-address | peer-group-name} advertisement-interval command. Parameters Defaults Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. seconds Enter a number as the time interval, in seconds, between BGP advertisements. The range is from 0 to 600 seconds.
To return to the default value, use the no neighbor {ip-address | peer-group-name} allowas-in command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. number Enter a number of times to allow this neighbor ID to use the AS path. The range is from 1 to 10. Defaults Not configured.
neighbor description Assign a character string describing the neighbor or group of neighbors (peer group). Syntax neighbor {ip-address | peer-group-name} description text To delete a description, use the no neighbor {ip-address | peer-group-name} description command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. text Enter a continuous text string up to 80 characters. Defaults Not configured.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Other BGP filtering commands include: neighbor filter-list, ip as-path access-list, and neighbor route-map. Related Commands neighbor route-map — assigns a route map to a neighbor or peer group. neighbor ebgp-multihop Attempt and accept BGP connections to external peers on networks that are not directly connected.
Command Modes Command History ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable failover, BGP keeps track of IP or IPv6 ability to reach the peer remote address and the peer local address. Whenever either address becomes unreachable (for example, no active route exists in the routing table for the peer IP or IPv6 destination/local address), BGP brings down the session with the peer.
Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. The range is from 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the software sends a message. The range is from 1 to 100 percent. The default is 75.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Configure the same password on both BGP peers or a connection does not occur. When you configure MD5 authentication between two BGP peers, each segment of the TCP connection between them is verified and the MD5 digest is checked on every segment sent on the TCP connection.
• neighbor route-map • neighbor route-reflector-client • neighbor shutdown A neighbor may keep its configuration after it was added to a peer group if the neighbor’s configuration is more specific than the peer group’s, and the neighbor’s configuration does not affect outgoing updates. A peer group must exist before you add a peer to it. If the peer group is disabled (shutdown) the peers within the group are also disabled (shutdown). Related Commands clear ip bgp — resets BGP sessions.
To delete a passive peer-group, use the no neighbor peer-group-name peer-group passive command. Parameters peer-group-name Enter a text string up to 16 characters long as the name of the peer group. limit (Optional) Enter the keyword limit to constrain the numbers of sessions for this peergroup. The range is from 2 to 256. The default is 256. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Usage Information To accept 4-byte formats before entering a 4 byte AS Number, configure your system. If the number parameter is the same as the AS number used in the router bgp command, the remote AS entry in the neighbor is considered an internal BGP peer entry. This command creates a peer and the newly created peer is disabled (Shutdown). Related Commands router bgp — enters ROUTER BGP mode and configures routes in an AS. bgp four-octet-as-support — enables 4-byte support for the BGP process.
To remove the route map, use the no neighbor {ip-address | peer-group-name} route-map map-name {in | out} command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. map-name Enter the name of an established route map. If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. A route reflector reflects routes to the neighbors assigned to the cluster. Neighbors in the cluster do not need not to be fully meshed. By default, when you use no route reflector, the internal BGP (IBGP) speakers in the network must be fully meshed.
neighbor soft-reconfiguration inbound Enable soft-reconfiguration for BGP. Syntax neighbor {ip-address | peer-group-name} soft-reconfiguration inbound To disable, use the no neighbor {ip-address | peer-group-name} soft-reconfiguration inbound command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group to disable or enable all routers within the peer group.
• Command Modes Command History Usage Information holdtime = 180 seconds ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Timer values configured with the neighbor timers command override the timer values configured with any other command.
For the new idle holdtime to take effect, you need to shutdown the respective peer manually using neighbor shutdown command and enable the peer again. neighbor update-source Enable the software to use Loopback interfaces for TCP connections for BGP sessions. Syntax neighbor {ip-address | peer-group-name} update-source interface To use the closest interface, use the no neighbor {ip-address | peer-group-name} updatesource interface command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. In the system best path selection process, the path with the highest weight value is preferred. NOTE: In the system best-path selection process, the path with the highest weight value is preferred.
network backdoor Specify this IGP route as the preferred route. Syntax network ip-address mask backdoor To remove a network, use the no network ip-address mask backdoor command. Parameters ip-address Enter an IP address in dotted decimal format of the network. mask Enter the mask of the IP address in the slash prefix length format (for example, /24). The mask appears in command outputs in dotted decimal format (A.B.C.D). Defaults Not configured.
If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. With the Dell Networking OS version 8.3.1.0 and later, you can use the redistribute command to advertise the IGP cost as the MED on redistributed routes.
Usage Information With the Dell Networking OS version 8.3.1.0 and later, you can use the redistribute command to advertise the IGP cost as the MED on redistributed routes. When you set the route-map with metric-type internal and apply outbound to an EBGP peer/peer-group, the advertised routes corresponding to those peer/peer-groups have the IGP cost set as MED.
Usage Information You can use this command to disable all the configured BGP neighbors. This command is global for all VRFs. shutdown address-family-ipv4–multicast Disables all the BGP neighbors corresponding to the multicast IPv4 address families. Syntax shutdown address-family-ipv4–unicast Use the no shutdown address-family-ipv4–unicast command to enable all the configured BGP neighbors corresponding to the multicast IPv4 address families.
shutdown address-family-ipv6–unicast Disables all the BGP neighbors corresponding to the unicast IPv6 address families. Syntax shutdown address-family-ipv6–unicast Use the no shutdown address-family-ipv6–unicast command to enable all the configured BGP neighbors corresponding to the unicast IPv6 address families. Command Modes ROUTER BGP CONFIGURATION Command History Usage Information Version Description 9.11.0.0 Introduced on the S-Series, Z-Series, MXL, and IOM.
Outgoing packet capture enabled for BGP neighbor 20.20.20.2 Available buffer size 40958758, 27 packet(s) captured using 562 bytes PDU[1] : len 41, captured 00:34:52 ago ffffffff ffffffff ffffffff ffffffff 00290104 000100b4 14141401 0c020a01 04000100 01020080 00000000 PDU[2] : len 19, captured 00:34:51 ago ffffffff ffffffff ffffffff ffffffff 00130400 PDU[3] : len 19, captured 00:34:50 ago ffffffff ffffffff ffffffff ffffffff 00130400 [. . .
Command Modes 330 ipv4 multicast (OPTIONAL) Enter the keywords ipv4 multicast to view information only related to ipv4 multicast routes. ipv6 unicast (OPTIONAL) Enter the keywords ipv6 unicast to view information only related to ipv6 unicast routes. network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network. network-mask (OPTIONAL) Enter the network mask (in slash prefix format) of the BGP network address.
Command History Usage Information Version Description 9.14(0.0) Introduced the [all {received-routes}] option for IPv4 and IPv6 neighbors. 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. The following describes the show ip bgp command shown in the following example.
n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete ID *>I ID *>I ID *>I ID ID ID ID ID Network 110.1.1.0/24 111.1.1.0/24 112.1.1.0/24 113.1.1.0/24 114.1.1.0/24 115.1.1.0/24 116.1.1.0/24 117.1.1.0/24 118.1.1.0/24 119.1.1.0/24 120.1.1.0/24 Next Hop 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.2 11.1.1.
cluster-id Command Modes Command History Usage Information Example • EXEC • EXEC Privilege (OPTIONAL) Enter the cluster id in dotted decimal format. The range is 1 — 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp cluster-list command shown in the following example. Field Description Network Displays the destination network prefix of each BGP route.
show ip bgp community View information on all routes with Community attributes or view specific BGP community groups. Syntax show ip bgp [ipv4 unicast] community [community-number] [local-as] [no-export] [no-advertise] Parameters ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. community-number Enter the community number in AA:NN format where AA is the AS number (2 bytes) and NN is a value specific to that autonomous system.
The following describes the show ip bgp community command shown in the following example. Example Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight.
• Command History Usage Information EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The show ip bgp community-list command without any parameters lists BGP routes matching the Community List and the output is the same as for the show ip bgp command output. The following describes the show ip bgp community-list pass command shown in the following example.
Example Field Description Network Displays the network ID to which the route is dampened. From Displays the IP address of the neighbor advertising the dampened route. Reuse Displays the hour:minutes:seconds until the dampened route is available. Path Lists all the ASs the dampened route passed through to reach the destination network. Dell>show ip bgp dampened-paths BGP table version is 210708, local router ID is 63.114.8.
RxOpCodeP 0x41a1b6e4 RxUpdCodeP 0x41a1b704 : TxEcodeP 0x41a1b734 : TxHdrcodeP 0x41a1b750 : TxOpCodeP 0x41a1b760 TxUpdCodeP 0x41a1b780 : TrEvt 0 : LocPref 100 : tmpPathP 0x41a1b7b8 : LogNbrChgs 1 RecursiveNH 1 : PgCfgId 0 : KeepAlive 0 : HldTime 0 : DioHdl 0 : AggrValTmrP 0x41ee7024 UpdNetTmrP 0 : RedistTmrP 0x41ee7094 : PeerChgTmrP 0 : CleanRibTmrP 0x41ee7104 PeerUpdTmrP 0x41ee70cc : DfrdNHTmrP 0x41ee7174 : DfrdRtselTmrP 0x41ee713c : FastExtFallover 1 : FastIntFallover 0 : Enforce1stAS 1 PeerIdBitsP 0x41967
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found. The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output.
Example Dell#show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r redistributed, n network Origin codes: i - IGP, e - EGP, ? - incomplete Network * I 6.1.5.0/24 * I * I * I *>I * I * I * I * I * I * I *>I * I * I * I * I * I * I Dell# Next Hop Metric LocPrf Weight Path 192.100.11.2 20000 9999 0 ? 192.100.8.2 20000 9999 0 ? 192.100.9.
Command Modes Command History Usage Information Example • EXEC • EXEC Privilege • { } = (braces) minimum and the maximum match count. • ^ = (caret) the beginning of the input string. If you use the caret at the beginning of a sequence or range, it matches on everything BUT the characters specified. • $ = (dollar sign) the end of the output string. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp inconsistent-as command shown in the following example. Field Description Network Displays the destination network prefix of each BGP route. Next Hop Displays the next hop address of the BGP router. If 0.0.0.0 is listed in this column, then local routes exist in the routing table. Metric Displays the BGP route’s metric, if assigned.
advertised-routes (OPTIONAL) Enter the keywords advertised-routes to view only the routes the neighbor sent. dampened-routes (OPTIONAL) Enter the keywords dampened-routes to view information on dampened routes from the BGP neighbor. detail (OPTIONAL) Enter the keyword detail to view neighbor-specific internal information for the IPv4 Unicast address family. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to view flap statistics on the neighbor’s routes.
The Lines Beginning with: Description Received messages This line displays the number of BGP messages received, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Sent messages The line displays the number of BGP messages sent, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Received updates This line displays the number of BGP updates received and sent.
Minimum time before advertisements start is 0 seconds Capabilities received from neighbor for IPv4 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128) Capabilities advertised to neighbor for IPv4 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) ROUTE_REFRESH(2) GRACEFUL_RESTART(64) CISCO_ROUTE_REFRESH(128) Route map for incoming advertisements is test Maximum prefix set to 4 with threshold 75 For address family: IPv4 Unicast BGP table version 34, neighbor version 34 5 accepted prefixes consume
Example (deniedroutes) Dell#show ip bgp neighbors 100.10.10.2 denied-routes 4 denied paths using 205 bytes of memory BGP table version is 34, local router ID is 100.10.10.2 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r redistributed n - network, D - denied, S - stale Origin codes: i - IGP, e - EGP, ? - incomplete Network D 70.70.21.0/24 D 70.70.22.0/24 D 70.70.23.0/24 D 70.70.24.
show ip bgp paths View all the BGP path attributes in the BGP database. Syntax Parameters show ip bgp paths [regexp regular-expression] regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (zero or more sequences). • + = (plus) the sequences in a pattern (one or more sequences).
0x1efe7ddc 0x1efe7d9c 0x1efe7d5c 0x1efe7c9c 0x1efe7b1c 0x1efe7d1c 0x1efe7c5c 0x1efe7cdc 0x1efe7c1c 0x1efe7bdc 0x1efe7b5c 0x1efe7adc 0x1efe7e9c 0x1efe7b9c Dell# 127 183 239 283 287 295 339 351 395 451 491 883 983 1003 10000 10000 10000 6 336 20000 10000 6 10000 6 6 78 0 2 120 10000 6 0 22 ? 43 ? 42 ? {102 103} ? ? 13 ? {92 93} ? 12 ? {82 83} ? {72 73} ? ? i 33 ? i show ip bgp paths as-path View all unique AS-PATHs in the BGP database.
0x1ea3c02c Dell# 1021 4 show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. Syntax Command Modes Command History Usage Information Example show ip bgp paths community • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp paths community command shown in the following example.
show ip bgp peer-group Allows you to view information on the BGP peers in a peer group. Syntax show ip bgp [ipv4 unicast] peer-group [peer-group-name [detail | summary]] Parameters Command Modes Command History Usage Information Example ( ) ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only.
BGP neighbor is pg1 Number of peers in this group 4 Update packing has 4_OCTECT_AS support enabled Add-path support enabled Peer-group members (* - outbound optimized): 1.1.1.5 1.1.1.6 10.10.10.2* 20.20.20.100 Example Dell#show ip bgp peer-group Peer-group RT-PEERS Description: ***peering-with-RT*** BGP version 4 Minimum time between advertisement runs is 30 seconds For address family: IPv4 Unicast BGP neighbor is RT-PEERS Number of peers in this group 20 Peer-group members (* - outbound optimized): 12.1.
NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression. Command Modes Command History Usage Information Example (S4810) 352 • EXEC • EXEC Privilege • [ ] = (brackets) a range of single-character patterns. • ( ) = (parenthesis) groups a series of pattern elements to a single element. • { } = (braces) minimum and the maximum match count. • ^ = (caret) the beginning of the input string.
*>I *>I *>I *>I 4.78.32.0/21 6.1.0.0/16 6.2.0.0/22 6.3.0.0/18 1.1.1.2 1.1.1.2 1.1.1.2 1.1.1.2 0 0 0 0 100 100 100 100 0 0 0 0 2914 2914 2914 2914 3491 29748 i 701 668 i 701 668 i 701 668 i show ip bgp summary Allows you to view the status of all BGP connections. Syntax Command Modes Command History Usage Information show ip bgp [ipv4 unicast] summary • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Field Description OutQ Displays the number of messages waiting to be sent to that neighbor. If a number appears in parentheses, the number represents the number of messages waiting to be sent to the peer group. Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. timers bgp Adjust the BGP Keep Alive and Hold Time timers. Syntax timers bgp keepalive holdtime To return to the default, use the no timers bgp command. Parameters keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. The range is from 1 to 65535. The default is 60 seconds.
Usage Information Version Description 9.14(0.0) Introduced on the C9010, MXL, FN IOM, S3100 series, S3048–ON, S4048–ON, S4048TON, S5048F-ON, S6000, S6010–ON, S6100–ON, Z9100–ON, Z9500, and S6000–ON. The peer remains in idle state based on the configured idle-holdtime. The less the idle-holdtime, lesser the peer in idle state. For the new idle-holdtime to take effect, you need to shutdown all the peers manually using neighbor shutdown command and enable the peers again.
local-distance Defaults Command Modes Command History Enter a number to assign to routes learned from networks listed in the network command. The range is from 1 to 255. The default is 200. • external-distance = 20 • internal-distance = 200 • local-distance = 200 ROUTER BGP (conf-router_bgp_af) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Origin codes: i - IGP, e - EGP, ? - incomplete Network From Reuse Path Dell> BGP Extended Communities (RFC 4360) BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute. BGP Extended Communities provides two major advantages over Standard Communities: • The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number communities.
set extcommunity soo To set extended community site-of-origin in Route Map, use this feature. Syntax set extcommunity soo {as4 ASN4:NN | ASN:NNNN | IPADDR:NN [non-trans]} To delete the site-of-origin community, use the no set extcommunity command. Parameters as4 ASN4:NN Enter the keyword as4 then the 4-octet AS specific extended community number in the format ASN4:NN (4-byte AS number:2-byte community value).
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip bgp paths extcommunity command shown in the following example. Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these extended communities.
IPv6 BGP Commands IPv6 Border Gateway Protocol (IPv6 BGP) is supported on the switch. Border gateway protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically send messages to update those routing tables.
ipv6 unicast soft Clear and reapply policies for all IPv6 unicast routes. in Reapply only inbound policies. NOTE: If you enter soft, without an in or out option, both inbound and outbound policies are reset. out Reapply only outbound policies. NOTE: If you enter soft, without an in or out option, both inbound and outbound policies are reset. Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
ipv6 prefix-list Configure an IPv6 prefix list. Syntax Parameters ipv6 prefix-list prefix-list name prefix-list name Enter the name of the prefix list. NOTE: There is a 140-character limit for prefix list names. Defaults none Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ipv6 prefix-list — View the selected IPv6 prefix-list.
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). MBGP is implemented as per IETF RFC 1858. show ipv6 mbgproutes Display the selected IPv6 MBGP route or a summary of all MBGP routes in the table.
10 Content Addressable Memory (CAM) Content addressable memory (CAM) commands are supported on the Dell Networking operating software on the platform. WARNING: If you are using these features for the first time, contact Dell Networking Technical Assistance Center (TAC) for guidance.
cam-acl (Configuration) Select the default CAM allocation settings or reconfigure a new CAM allocation for Layer 2, IPv4, and IPv6 ACLs, Layer 2 and Layer 3 (IPv4) QoS, Layer 2 Protocol Tunneling (L2PT), IP and MAC source address validation for DHCP, Ethernet Connectivity Fault Management (CFM) ACLs, and Policy-based Routing (PBR).
NOTE: When you reconfigure CAM allocation, use the nlbclusteracl number command to change the number of NLB ARP entries. The range is from 0 to 2. The default value is 0. At the default value of 0, eight NLB ARP entries are available for use. This platform supports upto 256 CAM entries. Select 1 to configure 128 entries. Select 2 to configure 256 entries.
When configuring space for IPv6 ACLs, the total number of Blocks must equal 13. On the switch, there can be only one odd number of Blocks in the CLI configuration; the other Blocks must be in factors of two. For example, a CLI configuration of 5+4+2+1+1 Blocks is not supported; a configuration of 6+4+2+1 Blocks is supported. Ranges for the CAM profiles are from 1 to 10, except for the ipv6acl profile which is from 0 to 10. The ipv6acl allocation must be a factor of two (2, 4, 6, 8, 10).
Command Modes threshold threshold-percent Enter the threshold percent for notification of the CAM usage through syslog message. The range is from 1 to 100 percent. silence-period default Enter the keyword default to set the silence period for receiving syslog message regarding CAM usage for CAM region, slot/portpipe. The default silence period is 0 seconds. silence-period silence-period-value Enter the silence period for stop receiving syslog message for the respective CAM region, slot/portpipe.
Ipv4Qos : L2Qos : L2PT : IpMacAcl : VmanQos : VmanDualQos : EcfmAcl : FcoeAcl : iscsiOptAcl : ipv4pbr : vrfv4Acl : Openflow : fedgovacl : nlbclusteracl: 2 1 0 0 0 0 0 0 0 0 0 0 0 0 -- stack-unit 0 -Current Settings(in block sizes) 1 block = 128 entries L2Acl : 6 Ipv4Acl : 4 Ipv6Acl : 0 Ipv4Qos : 2 L2Qos : 1 L2PT : 0 IpMacAcl : 0 VmanQos : 0 VmanDualQos : 0 EcfmAcl : 0 FcoeAcl : 0 iscsiOptAcl : 0 ipv4pbr : 0 vrfv4Acl : 0 Openflow : 0 fedgovacl : 0 nlbclusteracl: 0 -- stack-unit 1 -Current Settings(in block
Command Modes Command History Configuration Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The display reflects the settings implemented with the cam-acl-egress command.
11 Control Plane Policing (CoPP) The Dell Networking OS supports the following CoPP commands. control-plane-cpuqos To manage control-plane traffic, enter control-plane mode and configure the switch. Syntax control-plane-cpuqos Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis. Syntax Parameters service-policy rate-limit-protocols policy-name policy-name Enter the service-policy name, using a string up to 32 characters. Defaults Not configured. Command Modes CONTROL-PLANE-CPUQOS Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell#show cpu-queue rate cp Service-Queue Rate (PPS) -----------------------Q0 1300 Q1 300 Q2 300 Q3 400 Q4 2000 Q5 300 Q6 400 Q7 400 Q8 400 Q9 600 Q10 300 Q11 300 Burst () ----------512 50 50 50 50 50 50 50 50 50 50 50 show ip protocol-queue-mapping Display the queue mapping for each configured protocol. Syntax show ip protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
12 Data Center Bridging (DCB) Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. The Dell Networking Operating System (OS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging exchange (DCBX) protocol.
• qos-policy-buffer • service-class buffer shared-threshold-weight • show qos dcb-map • show stack-unit stack-ports pfc details advertise dcbx-appln-tlv On a DCBX port with a manual role, configure the application priority TLVs advertised on the interface to DCBX peers. Syntax advertise dcbx-appln-tlv {fcoe | iscsi} To remove the application priority TLVs, use the no advertise dcbx-appln-tlv {fcoe | iscsi} command.
Version 8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. You can configure the transmission of more than one TLV type at a time; for example: advertise dcbx-tlv ets-conf ets-reco. You can enable ETS recommend TLVs (ets-reco) only if you enable ETS configuration TLVs (ets-conf). To disable TLV transmission, use the no form of the command; for example, no advertise dcbx-tlv pfc ets-reco. DCBX requires that you enable LLDP to advertise DCBX TLVs to peers.
• scheduler — schedules priority traffic in port queues. dcb-enable Enable data center bridging. Syntax dcb enable To disable DCB, use the no dcb enable command. Defaults none Command Modes CONFIGURATION Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. DCB is not supported if you enable link-level flow control on one or more interfaces.
Example for Interface Mode Dell(conf-if-te-1/1)#dcb-policy buffer-threshold test dcb-policy buffer-threshold (Interface Configuration) Assign the DCB policy to the DCB buffer threshold profile on interfaces. This setting takes precedence over the global buffer-threshold setting.
Defaults Manual Command Modes INTERFACE PROTOCOL LLDP Command History Usage Information Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. DCBX requires that you enable LLDP to advertise DCBX TLVs to peers. Configure DCBX operation at the INTERFACE level on a switch or globally on the switch. To verify the DCBX configuration on a port, use the show interface dcbx detail command.
Parameters {all | auto-detecttimer | configexchng | fail | mgmt | resource | sem | tlv} Defaults none Command Modes EXEC Privilege Command History Enter the type of debugging, where: • all: enables all DCBX debugging operations. • auto-detect-timer: enables traces for DCBX auto-detect timers. • config-exchng: enables traces for DCBX configuration exchanges. • fail: enables traces for DCBX failures. • mgmt: enables traces for DCBX management frames.
To remove the configured FCoE priority, use the no fcoe priority-bits command. Parameters priority-bitmap Defaults 0x8 Command Modes PROTOCOL LLDP Command History Usage Information Enter the priority-bitmap range. The range is from 1 to FF. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is available at the global level only.
threshold-value Buffer limit at which the port sends the pause to peer in KB. Enter a number in the range of 0 to 7787. The default is 10 KB. resume-offset Buffer offset limit for resuming in KB threshold-value Buffer offset limit at which the port resumes the peer in KB. Enter a number in the range of 1 to 7787. The default is 10 KB. shared-thresholdweight Buffer shared threshold weight size Weightage of the priorities on the shared buffer size in the system. Enter a number in the range of 0 to 9.
Usage Information By applying a DCB input policy with PFC enabled, you enable PFC operation on ingress port traffic. To achieve complete lossless handling of traffic, also enable PFC on all DCB egress ports or configure the dot1p priority-queue assignment of PFC priorities to lossless queues (refer to pfc no-drop queues). To disable PFC operation on an interface, enter the no pfc mode on command in DCB Input Policy Configuration mode.
priority-list Configure the 802.1p priorities for the traffic on which you want to apply an ETS output policy. Syntax priority-list value To remove the priority list, use the no priority-list command. Parameters value Enter the priority list value. Separate priority values with a comma; specify a priority range with a dash; for example, priority-list 3,5-7. The range is from 0 to 7. Defaults none Command Modes PRIORITY-GROUP Command History Usage Information Version Description 9.9(0.
If an error occurs when a port receives a peer’s ETS configuration, the port’s configuration is reset to the previously configured ETS output policy. If no ETS output policy was previously applied, the port is reset to the default ETS parameters. Related Commands • scheduler — schedules the priority traffic in port queues. • bandwidth-percentage — bandwidth percentage allocated to the priority traffic in port queues. scheduler Configure the method used to schedule priority traffic in port queues.
Parameters Command Modes Command History Usage Information unit number Enter the DCB unit number. The range is from 0 to 5. EXEC Privilege Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Specify a stack-unit number on the Master switch in a stack.
Field Description Port-Role Configured the DCBX port role: auto-upstream, auto-downstream, config-source, or manual. DCBX Operational Status Operational status (enabled or disabled) used to elect a configuration source and internally propagate a DCB configuration. The DCBX operational status is the combination of PFC and ETS operational status. Configuration Source Specifies whether the port serves as the DCBX configuration source on the switch: true (yes) or false (no).
Example Field Description PFC TLV Statistics: Error PFC pkts Number of PFC error packets received. PFC TLV Statistics: PFC Pause Tx pkts Number of PFC pause frames transmitted. PFC TLV Statistics: PFC Pause Rx pkts Number of PFC pause frames received. PFC TLV Statistics: Input PG TLV Pkts Number of PG TLVs received. PFC TLV Statistics: Output PG TLV Pkts Number of PG TLVs transmitted. PFC TLV Statistics: Error PG TLV Pkts Number of PG error packets received.
Remote Mac Address 00:00:00:00:00:11 Port Role is Auto-Upstream DCBX Operational Status is Enabled Is Configuration Source? TRUE Local DCBX Compatibility mode is CEE Local DCBX Configured mode is CEE Peer Operating version is CEE Local DCBX TLVs Transmitted: ErPfi Local DCBX Status ----------------DCBX Operational Version is 0 DCBX Max Version Supported is 0 Sequence Number: 2 Acknowledgment Number: 2 Protocol State: In-Sync Peer DCBX Status: ---------------DCBX Operational Version is 0 DCBX Max Version Sup
The following describes the show interface summary command shown in the following example. Field Description Interface Interface type with stack-unit and port number. Max Supported TC Group Maximum number of priority groups supported. Number of Traffic Classes Number of 802.1p priorities currently configured. Admin mode ETS mode: on or off. When on, the scheduling and bandwidth allocation configured in an ETS output policy or received in a DCBX TLV from a peer can take effect on an interface.
3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# Bandwidth TSA 0 13% ETS 1 13% ETS 2 13% ETS 3 13% ETS 4 12% ETS 5 12% ETS 6 12% ETS 7 12% ETS Remote Parameters: ------------------Remote is disabled Local Parameters: -----------------Local is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# Bandwidth TSA 0 13% ETS 1 13% ETS 2 13% ETS 3 13% ETS 4 12% ETS 5 12% ETS 6 12% ETS 7 12% ETS Oper status is init Conf TLV T
7 Remote Parameters: ------------------Remote is disabled Local Parameters : -----------------Local is enabled TC-grp Priority# 0 0,1,2,3,4,5,6,7 1 2 3 4 5 6 7 12% ETS Bandwidth 100% 0% 0% 0% 0% 0% 0% 0% TSA ETS ETS ETS ETS ETS ETS ETS ETS Priority# Bandwidth TSA 0 13% ETS 1 13% ETS 2 13% ETS 3 13% ETS 4 12% ETS 5 12% ETS 6 12% ETS 7 12% ETS Oper status is init Conf TLV Tx Status is disabled Traffic Class TLV Tx Status is disabled 0 Input Conf TLV Pkts, 0 Output Conf TLV Pkts, 0 Error Conf TLV Pkts 0 I
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To clear the PFC TLV counters, use the clear pfc counters interface port-type slot/port command. The following describes the show interface pfc summary command shown in the following example. Field Description Interface Interface type with stack-unit and port number. Admin mode is on Admin is enabled PFC admin mode is on or off with a list of the configured PFC priorities.
Field Description Application Priority TLV: Remote ISCSI Priority Map Status of iSCSI advertisements in application priority TLVs from the remote peer port: enabled or disabled. PFC TLV Statistics: Input TLV pkts Number of PFC TLVs received. PFC TLV Statistics: Output TLV pkts Number of PFC TLVs transmitted. PFC TLV Statistics: Error pkts Number of PFC error packets received. PFC TLV Statistics: Pause Tx pkts Number of PFC pause frames transmitted.
show interface pfc statistics Displays counters for the PFC frames received and transmitted (by dot1p priority class) on an interface. Syntax Parameters show interface port-type slot/port pfc statistics port-type Enter the port type. slot/port Enter the slot/port number. NOTE: This command also enables you to view information corresponding to a range of ports. • Command Modes Command History You can specify multiple ports as slot/port-range.
Usage Information Example NOTE: Please note that Dell Networking does not recommended to use this command as it has been deprecated in the current 9.4(0.0) release. A warning message appears when you try to run this command indicating that you have to use the dcb-map commands in the future.
3 4 5 6 7 8 - - dcb pfc-shared-buffer-size Configure the maximum amount of shared buffer size for PFC packets in kilobytes. Syntax Parameters dcb pfc-shared—buffer—size KB KB Enter a number in the range of 0 to 7787. Default None. Command Modes CONFIGURATION mode Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. Configure the maximum shared buffer available for PFC traffic.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.9(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Configure the maximum buffer available for PFC traffic. You can choose to increase or decrease the buffer size that is allocated in the system by default. However, if you modify the PFC buffer size lower than the previously configured size, the system determines whether this reduction in size is valid without disrupting the existing configuration.
128000 pause-threshold 103360 resume-threshold 83520 Dell(conf-qos-policy-buffer)# queue 4 pause no-drop buffer-size 128000 pause-threshold 103360 resume-threshold 83520 priority value buffer-size size pause-threshold threshold-value resume-offset threshold-value shared-threshold-weight size Dell(conf-dcb-buffer-thr)#priority 0 buffer-size 52 pause-threshold 16 resumeoffset 10 shared-threshold-weight 7 dcb enable pfc-queues Configure the number of PFC queues.
Usage Information Limitations PFC and ETS are enabled by default on the interfaces when DCB is globally enabled (refer to dcb enable). In some network topology, you may want to disable PFC on an interface and apply link level flow control; Similarly you may want to disable ETS on an interface and apply QoS bandwidth configurations. • “dcb-map” CLI on interface is mutually exclusive to “no dcb ets enable” and “no dcb pfc enable”.
stack-unit all Enter the stack unit identification. Indicates the specific the stack unit or units. Entering all shows the status for all stacks. stack-port all Enter the port number of a port in a switch stack. Default None Command Modes CONFIGURATION mode Command History Version Description 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure up to a maximum of four lossless (PFC) queues.
Command History Usage Information Version 9.3(0.0) Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch module platform. PFC and ETS settings are not pre-configured on Ethernet ports. You must use the dcb-map command to configure different groups of 802.1p priorities with PFC and ETS settings. Using the priority-pgid command, you assign each 802.1p priority to one priority group. A priority group consists of 802.
resume-offset Buffer offset limit for resuming in KB threshold-value Buffer offset limit at which the port resumes the peer in KB. Enter a number in the range of 1 to 7787. The default is 10 KB. shared-thresholdweight Buffer shared threshold weight size Weightage of the priorities on the shared buffer size in the system. Enter a number in the range from 0 to 9. The default shared threshold weight is 10. Default The default size of the ingress buffer is 45 KB.
shared-thresholdweight Specify the weight of a queue for the shared buffer space. queue 0 to queue 7 To apply the shared-threshold weight, specify the queue number . number Enter a weight for the queue on the shared buffer as a number in the range of 1 to 11. Default The default threshold weight on the shared buffer for each queue is 9. Therefore, each queue can consume up to 66.67 percent of available shared buffer by default.
show qos dcb-map Display the DCB parameters configured in a specified DCB map. FC Flex IO Modules with MXL Syntax Parameters Command Modes Command History Usage Information show qos dcb-map map-name map-name • EXEC • EXEC Privilege Version 9.3(0.0) Displays the PFC and ETS parameters configured in the specified map. Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch.
show stack-unit stack-ports pfc details Displays the PFC configuration applied to ingress traffic on stacked ports, including PFC Operational mode on each unit with the configured priorities, link delay, and number of pause packets sent and received. Syntax show stack-unit {all | stack-unit} stack-ports {all | port-number} pfc details Parameters Command Modes Command History Example stack-unit Enter the stack unit. port-number Enter the port number. CONFIGURATION Version 9.2(0.
13 Debugging and Diagnostics The basic debugging and diagnostic commands are supported by the Dell Networking Operating System (OS).
diag stack-unit Run offline diagnostics on a stack unit. Syntax diag stack-unit number [alllevels | level0 | level1 | level2] verbose no-reboot Parameters number Enter the stack-unit number. The range is from 0 to 5. alllevels Enter the keyword alllevels to run the complete set of offline diagnostic tests. level0 Enter the keyword level0 to run Level 0 diagnostics. Level 0 diagnostics check for the presence of various components and perform essential path verifications.
stack unit 0 syncing disks... 1 1 done unmounting file systems... unmounting /f10/flash (/dev/ld0e)... unmounting /usr/pkg (/dev/ld0h)... unmounting /usr (mfs:35)... unmounting /lib (mfs:24)... unmounting /f10 (mfs:21)... unmounting /tmp (mfs:15)... unmounting /kern (kernfs)... unmounting / (/dev/md0a)... done rebooting... offline stack-unit Place a stack unit in the offline state.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Hardware Commands These commands display information from a hardware sub-component or ASIC. clear hardware stack-unit Clear statistics from selected hardware components.
Parameters stack-unit 0–5 Enter the keywords stack-unit then 0 to 5 to select a particular stack member and then enter one of the following command options to clear a specific collection of data. port-set 0–0 counters Enter the keywords port-set along with a port-pipe number, then the keyword counters to clear the system-flow counters on the selected port-pipe. Defaults none Command Modes EXEC Privilege Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show hardware stack-unit Display the data plane or management plane input and output statistics of the designated component of the designated stack member.
unit 0–0 {counters | details | port-stats [detail] | register} Defaults Command Modes Command History Example Enter the keyword unit then 0 for port-pipe 0, and then enter one of the following keywords to troubleshoot errors on the selected port-pipe and to give status on why a port is not coming up to register level: counters, details, port-stats [detail], or register. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.
txInternalError txDatapathErr txPkt(COS0) txPkt(COS1) txPkt(COS2) txPkt(COS3) txPkt(COS4) txPkt(COS5) txPkt(COS6) txPkt(COS7) txPkt(UNIT0) Dell# :0 :0 :0 :0 :0 :0 :0 :0 :0 :0 :0 Example Dell#show hardware stack-unit 0 cpu party-bus statistics Input Statistics: 8189 packets, 8076608 bytes 0 dropped, 0 errors Output Statistics: 366 packets, 133100 bytes 0 errors Dell# Example (drop summary) Dell#show hard stack-unit 0 drops unit 0 Example (portstatistics) Dell#show hardware stack-unit 0 unit 0 port-sta
0x0332a000 ASF_PORT_SPEED.xe2 = 0x00000007 0x0332e000 ASF_PORT_SPEED.xe3 = 0x00000000 0x03323000 ASF_PORT_SPEED.xe4 = 0x00000000 0x03327000 ASF_PORT_SPEED.xe5 = 0x00000000 0x0332b000 ASF_PORT_SPEED.xe6 = 0x00000000 0x0332f000 ASF_PORT_SPEED.xe7 = 0x00000000 0x03324000 ASF_PORT_SPEED.xe8 = 0x00000000 0x03328000 ASF_PORT_SPEED.xe9 = 0x00000000 0x0332c000 ASF_PORT_SPEED.xe10 = 0x00000000 0x03330000 ASF_PORT_SPEED.xe11 = 0x00000000 0x03325000 ASF_PORT_SPEED.xe12 = 0x00000000 0x03329000 ASF_PORT_SPEED.
The linkStatus of Front End Port 16 is FALSE The linkStatus of Front End Port 17 is FALSE The linkStatus of Front End Port 18 is FALSE The linkStatus of Front End Port 19 is FALSE The linkStatus of Front End Port 20 is FALSE The linkStatus of Front End Port 21 is FALSE The linkStatus of Front End Port 22 is FALSE The linkStatus of Front End Port 23 is FALSE The linkStatus of Front End Port 24 is FALSE The linkStatus of Front End Port 25 is FALSE The linkStatus of Front End Port 26 is FALSE The linkStatus of
----- Buffer Stats for Interface Te 0/2 Queue 6 Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 0/3 Queue 6 Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 0/4 Queue 6 Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: 8 Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 0/5 Queue 6 Maximum Shared Limit: 7667 De
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/1 Queue Maximum Shared Limit: 29514 Default Packet Buffer allocate for the Queue: 10 ----8 11 ----8
RX - 1519 to 1522 Byte Good VLAN Frame Counter RX - 1519 to 2047 Byte Frame Counter RX - 2048 to 4095 Byte Frame Counter RX - 4096 to 9216 Byte Frame Counter RX - Good Packet Counter RX - Packet/Frame Counter RX - Unicast Frame Counter RX - Multicast Frame Counter RX - Broadcast Frame Counter RX - Byte Counter RX - Control Frame Counter RX - Pause Control Frame Counter RX - Oversized Frame Counter RX - Jabber Frame Counter RX - VLAN Tag Frame Counter RX - Double VLAN Tag Frame Counter RX - RUNT Frame Counte
Command Modes • Interface all queue mcast {id | all} - egress queue-level snapshot for multicast packets only. • Interface all prio-group {id | all} - ingress priority-group level snapshot. EXEC EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Introduced on the MXL 10/40GbE Switch.
MCAST 3 0 Unit 1 unit: 3 port: 25 (interface Fo 1/168) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 29 (interface Fo 1/172) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 33 (interface Fo 1/176) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 uni
Usage Information -Queue ucast/mcast — Displays the total unicast/multicast buffer usage on per-port per-queue basis. For CPU port, counters for queues 0 to11 displays and there is no differentiation between unicast and multicast queues.
--------------------------------------MCAST 3 0 Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 queue mcast all Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 0 0 MCAST 1 0 MCAST 2 0 MCAST 3 0 MCAST 4 0 MCAST 5 0 MCAST 6 0 MCAST 7 0 MCAST 8 0 Example displaying ingress prioritygroup level snapshot for the specific interface Dell#show hardware buffer-stats-snapshot resource
(OPTIONAL) Enter the keyword counters to display hit counters for the selected ACL or QoS option. Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
, 0x00 action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)}, action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)}, action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)}, meter=NULL, counter={idx=1, mode=0x01, entries=1} ############## FP Entry for redirecting LACP traffic to CPU Port ############ EID 2045: gid=1, slice=15, slice_idx=0x02, prio=0x7fd, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 00000000
Parameters interface drops Command Modes Enter any of the following keywords and slot/port or slot/port-range or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. Enter the keyword drops to display internal drops. EXEC EXEC Privilege Command History This guide is platform-specific.
HOL DROPS on COS15 HOL DROPS on COS16 HOL DROPS on COS17 TxPurge CellErr Aged Drops --- Egress MAC counters--Egress FCS Drops --- Egress FORWARD PROCESSOR IPv4 L3UC Aged & Drops TTL Threshold Drops INVALID VLAN CNTR Drops L2MC Drops PKT Drops of ANY Conditions Hg MacUnderflow TX Err PKT Counter --- Error counters--Internal Mac Transmit Errors Unknown Opcodes Internal Mac Receive Errors : : : : : 0 0 0 0 0 : 0 Drops : 0 : 0 : 0 : 0 : 0 : 0 : 0 --- : 0 : 0 : 0 Example displaying Dell(conf)#do show hardw
Internal Mac Transmit Errors Unknown Opcodes Internal Mac Receive Errors Dell(conf)# : 0 : 0 : 0 Debugging and Diagnostics 431
14 Dynamic Host Configuration Protocol (DHCP) Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on the configuration policies the network administrators determine. An MXL switch can operate as a DHCP server or DHCP client. As a DHCP client, the switch requests an IP address from a DHCP server.
• Commands to Configure Secure DHCP • arp inspection • arp inspection-trust • clear ip dhcp snooping • clear ipv6 dhcp snooping binding • ip dhcp snooping • ipv6 dhcp snooping • ip dhcp snooping database • ipv6 dhcp snooping database write-delay • ip dhcp snooping binding • IPv6 DHCP Snooping Binding • ip dhcp snooping database renew • ipv6 dhcp snooping database renew • ip dhcp snooping trust • ipv6 dhcp snooping trust • ip dhcp source-address-validation • ip dhcp snooping
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Entering after the clear ip dhcp binding command clears all the IPs from the binding table. debug ip dhcp server Display the Dell Networking OS debugging messages for DHCP. Syntax debug ip dhcp server [events | packets] Parameters events Enter the keyword events to display the DHCP state changes.
Parameters address Defaults none Command Modes DHCP Command History Enter a list of routers that may be the default gateway for clients on the subnet. You may specify up to eight routers. List them in order of preference. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the DHCP server. Syntax disable DHCP Server is disabled by default. To enable the system to be a DHCP server, use the no disable command.
domain-name Assign a domain to clients based on the address pool. Syntax domain-name name Parameters name Defaults none Command Modes DHCP Command History Give a name to the group of addresses in a pool. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. excluded-address Prevent the server from leasing an address or range of addresses in the pool.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. host For manual (rather than automatic) configurations, assign a host to a single-address pool. Syntax Parameters host address address/mask Defaults none Command Modes DHCP Command History Enter the host IP address and subnet mask. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
netbios-name-server Specify the NetBIOS windows internet naming service (WINS) name servers, in order of preference, that are available to Microsoft dynamic host configuration protocol (DHCP) clients. Syntax netbios-name-server address [address2...address8] Parameters address Defaults none Command Modes DHCP Command History Enter the address of the NETBIOS name server. You may enter up to eight, in order of preference. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Parameters network/ prefixlength Defaults none Command Modes DHCP Command History Specify a range of addresses. Prefix-length range is from 17 to 31. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp binding Display the DHCP binding table. Syntax show ip dhcp binding Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
show ip dhcp conflict Display the address conflict log. Syntax show ip dhcp conflict address Parameters address Defaults none Command Modes EXEC Privilege Command History Display a particular conflict log entry. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp server Display the DHCP server statistics.
Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The ip address dhcp command enables an Ethernet interface to acquire a DHCP server-assigned dynamic IP address. This setting persists after a switch reboot. If you enter the shutdown command on the interface, DHCP transactions are stopped and the dynamically-acquired IP address is saved.
debug ip dhcp clients events Enable the display of log messages for the following events on DHCP client interfaces: IP address acquisition, IP address release, Renewal of IP address and lease time, and Release of an IP address. Syntax debug ip dhcp client events [interface type slot/port] Parameters interface type slot/ port Defaults none Command Modes EXEC Privilege Command History Display log messages for DHCP events on the specified interface.
Parameters interface type slot/ port Defaults none Command Modes EXEC Privilege Command History Usage Information • For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3. • For a 40-GigabitEthernet Ethernet interface, enter FortyGigabitEthernet then the slot/port numbers; for example, fortygigabitethernet 0/2. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters all Display DHCP client statistics on all DHCP client-enabled interfaces on the switch. interface type slot/ port Display DHCP client statistics on the specified interface. Defaults none Command Modes EXEC Privilege Command History • For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3.
Command Modes Command History Related Commands INTERFACE VLAN Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. arp inspection-trust — specifies a port as trusted so that ARP frames are not validated against the binding table. arp inspection-trust Specify a port as trusted so that ARP frames are not validated against the binding table.
Command Modes Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM Dell# clear ipv6 dhcp snooping? binding Clear the snooping binding database ip dhcp snooping Enable DHCP snooping globally. Syntax [no] ip dhcp snooping Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip dhcp snooping database Delay writing the binding table for a specified time. Syntax Parameters ip dhcp snooping database write-delay minutes minutes Defaults none Command Modes CONFIGURATION Command History The range is from 5 to 21600. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping database write-delay To set time interval for storing the snooping binding entries in a file.
Defaults ip ip-address Enter the keyword ip then the IP address that the server is leasing. interface type Enter the keyword interface then the type of interface to which the host is connected: • For a Ten-Gigabit Ethernet interface, enter the keyword tengigabitethernet. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE. slot/port Enter the slot and port number of the interface. lease time Enter the keyword lease then the amount of time the IP address are leased.
Defaults Command Modes Command History • For a Ten-Gigabit Ethernet interface, enter the keyword tengigabitethernet. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE. interface number Enter the number of the interface. lease value Enter the keyword lease then the amount of time the IPv6 address are leased. The range is from 1 to 4294967295. none • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL.
ip dhcp snooping trust Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping trust Configure an interface as trusted for DHCP snooping. Syntax [no] ipv6 dhcp snooping trust To disable dhcp snooping trusted capability on this interface, use the no ipv6 dhcp snooping trust command.
1 Use the cam-acl l2acl command from CONFIGURATION mode. 2 Save the running-config to the startup-config. 3 Reload the system. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. Syntax Parameters [no] ip dhcp snooping vlan name name Defaults Disabled Command Modes CONFIGURATION Command History Usage Information Enter the name of a VLAN on which to enable DHCP Snooping. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
ip dhcp relay Enable Option 82. Syntax ip dhcp relay information-option [remote-id | trust-downstream] Parameters remote-id Configure the system to enable the remote-id string in option-82. trust-downstream Configure the system to trust Option 82 when it is received from the previous-hop router. Defaults Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Example Version Description 9.11(2.0) Introduced the circuit-id attribute in the command. 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.4.(0.0) Added support for VRF. 9.0.2.
show ip dhcp snooping Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard. Syntax show ip dhcp snooping [binding | source-address-validation] Parameters Defaults binding Display the interfaces configured with IP Source Guard. source-addressvalidation Display the interfaces configured with IP Source Guard. none Command Modes Command History Related Commands • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM.
ip dhcp snooping verify mac-address Validate a DHCP packet’s source hardware address against the client hardware address field (CHADDR) in the payload. Syntax [no] ip dhcp snooping verify mac-address Defaults Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 DHCP snooping verify mac-address Configure to enable verify source mac-address against ipv6 DHCP packet mac address.
15 Equal Cost Multi-Path (ECMP) Equal cost multi-path (ECMP) is supported on the Dell Networking OS. ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle. A system log is generated when the standard deviation of traffic distribution on a member link exceeds a defined threshold. Syntax ecmp-group {ecmp-group-id interface interface | link-bundle-monitor} To remove the selected interface, use the ecmp-group no interface command.
based-hashing {crc16|crc16cc|crc32MSB|crc32LSB|xor1|xor2|xor4|xor8|xor16}|lsb | xor1 | xor2 | xor4 | xor8 | xor16}[[hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16}]| [lag {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16 }][stack-unit|linecard number | port-set number] | [hg—seed value] | [seedvalue] To return to the default hash algorithm, use the no hash-algorithm command.
crc32LSB|xor1 | xor2 | xor4 | xor8 | xor16}|lsb | xor1 | xor2 | xor4 | xor8 | xor16 hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} lag {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} hg-seed seed-value 458 Equal Cost Multi-Path (ECMP) • flow-based-hashing: Enter the keywords flow-based-hashing followed by the algorithm crc16 |crc16cc |crc32MSB |crc32LSB |xor1 |xor2 |xor4 |xor8 | xor16 • lsb: Returns the LSB of the key as the hash • xor1:
stack-unit number (OPTIONAL) : Enter the keyword stack-unit then the stack-unit slot number. linecard number (OPTIONAL) : Enter the keyword linecard then the linecard slot number. port-set number (OPTIONAL) Enter the keyword port-set then the port-set slot number. Defaults 0 for hash-algorithm value on TeraScale and ExaScale IPSA and IPDA mask value is FF for a line card. Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
hash-algorithm ecmp Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing) group. Syntax hash-algorithm ecmp {crc-upper} | {dest-ip} | {lsb} To return to the default hash algorithm, use the no hash-algorithm ecmp command. Parameters Defaults Command Modes Command History Usage Information crc-upper Uses the upper 32 bits of the key for the hash computation. The default is crc-lower. dest-ip Uses the destination IP for ECMP hashing.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Deterministic ECMP sorts ECMPs in order even though RTM provides them in a random order. However, the hash algorithm uses as a seed the lower 12 bits of the chassis MAC, which yields a different hash result for every chassis. This behavior means that for a given flow, even though the prefixes are sorted, two unrelated chassis select different hops.
link-bundle-distribution trigger-threshold Provides a mechanism to set the threshold to trigger when traffic distribution begins being monitored on an ECMP link bundle. Syntax link-bundle-distribution trigger-threshold [percent] Parameters Command Modes Command History percent Indicate the threshold value when traffic distribution starts being monitored on an ECMP link bundle. The range is from 1 to 90%. The default is 60%. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.
show link-bundle distribution Display the link-bundle distribution for the interfaces in the bundle, type of bundle (LAG or ECMP), and the most recently calculated interface utilization (either bytes per second rate or maximum rate) for each interface. Syntax show link-bundle-distribution Command Modes EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
16 FC FLEXIO FPORT The switch is a blade switch which is plugged into the Dell M1000 Blade server chassis.The blade module contains two slots for pluggable flexible module. With single FC Flex IO module, 4 ports are supported, whereas 8 ports are supported with both FC Flex IO modules. Each port can operate in 2G, 4G or 8G Fiber Channel speed. The topology-wise, FC Flex IOM is directly connected to a FC Storage.
• fcoe-map • fabric • active-zoneset • show fc ns • show fc switch • show fc zoneset • show fc zone • show fc alias • show fcoe-map feature fc Enable feature fc with FPort functionality. Syntax Parameters Command Modes Command History feature fc fport domain-id range Range Enter the range from 1 to 239. CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example without member Dell(conf)# fc zone z1 Dell(conf-fc-zone-z1)# Example with member Dell(conf)#fc zone test Dell(conf-fc-zone-test)#member ? WORD WWN(00:00:00:00:00:00:00:00), portID(000000), or Alias name(word) Dell(conf-fc-zone-test)#member Related Commands show fc zone — displays the configured zone. show fcoe-map — displays the fabric parameters. fc alias Create a zone alias name. Syntax fc alias ZoneAliasNamemember name To delete a zone alias name, use the no fc zone ZoneAliasName command.
To delete a zoneset, use the no fc zoneset zoneset_name [member] command. Parameters Command Modes Command History zoneset_namemem ber Enter the zoneset name. Enter the WWPN, FC-ID, or Alias name. CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
On an MXL NPIV proxy gateway, an FCoE map is applied on fabric-facing FC ports and server-facing Ethernet ports. Use the fcoe-map command to apply an FCoE map on an Ethernet port. Use the fabric command to apply an FCoE map on an FC port. An FCoE map consists of the following parameters: the dedicated FCoE VLAN for storage traffic, the destination SAN fabric (FC-MAP value), FCF priority, and the FIP keepalive (FKA) advertisement timeout.
Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map — displays the Fibre Channel and FCoE configuration parameters in FCoE maps. active-zoneset Activate the zoneset. Syntax active-zoneset zoneset_name To change to the default zone behavior, use the no active-zoneset zoneset_name command. Parameters Command Modes Command History zoneset_name Enter the zoneset name.
Example Version Description 9.1(1.0) Introduced on the S5000. Dell#show fc ns switch Total number of devices = 1 Switch Name 10:00:5c:f9:dd:ef:0a:00 Domain Id 1 Switch Port 53 Port Id 01:35:00 Port Name 10:00:8c:7c:ff:17:f8:01 Node Name 20:00:8c:7c:ff:17:f8:01 Class of Service 8 IP Address Symbolic Port Name Brocade-1860 | 3.0.3.
Port Type Registered with NameServer Registered for SCN Dell# Dell#show fc ns Total number of Intf# Domain 9 2 11 2 Dell# fabric brief devices = 2 FC-ID 02:09:00 02:0b:00 Node port Yes Yes Enode-WWPN Enode-WWNN 32:11:0e:fc:00:00:00:88 22:11:0e:fc:00:00:00:88 31:11:0e:fc:00:00:00:77 21:11:0e:fc:00:00:00:77 show fc switch Display the switch configuration for Fibre Channel capability.
merged Command Modes Command History Example • EXEC • EXEC Privilege Enter the keyword merged to display the merge active zones. Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
Parameters Command Modes Command History Example zonename • EXEC • EXEC Privilege Enter the zone name to display the details. Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000. Dell#show fc zone ZoneName ZoneMember ======================================================= brcd_sanb brcd_cna1_wwpn1 sanb_p2tgt1_wwpn Dell# Related Commands fc zone — creates a zone.
show fcoe-map Display the Fibre Channel and FCoE configuration parameters in FCoE maps. Syntax show fcoe-map Parameters None Command Modes Command History Usage Information • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1.1.0 Introduced on the S5000.
17 FIPS Cryptography To configure federal information processing standards (FIPS) cryptography, use the following commands on the switch. Topics: • fips mode enable • show fips status • show ip ssh • ssh fips mode enable Enable the FIPS cryptography mode on the platform. Syntax fips mode enable To disable the FIPS cryptography mode, use the no fips mode enable command. Default Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.
Example 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show fips status FIPS Mode : Disabled Dell# Dell#show fips status FIPS Mode : Enabled Dell# show ip ssh Display information about established SSH sessions Syntax show ip ssh Defaults none Command Modes EXEC EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. -c encryption cipher Enter the following encryption cipher to use. (For v2 clients only.) Without the FIPS mode enabled: • 3des-cbc: Force ssh to use 3des-cbc encryption cipher. With the FIPS mode enabled: • aes128–cbc: Force ssh to use the aes128–cbc encryption cipher. • aes256–cbc: Force ssh to use the aes256–cbc encryption cipher. -l username (OPTIONAL) Enter the keyword —l then the user name used in this SSH session.
Dell#ssh 10.11.8.12 -c ? 3des-cbc Force ssh to use 3des-cbc encryption cipher Dell#ssh 10.11.8.12 -m ? hmac-sha1 Force ssh to use hmac-sha1 HMAC algorithm hmac-sha1-96 Force ssh to use hmac-sha1-96 HMAC algorithm hmac-md5 Force ssh to use hmac-md5 HMAC algorithm hmac-md5-96 Force ssh to use hmac-md5-96 HMAC algorithm With FIPS mode enabled: Dell#ssh 10.11.8.
18 FIP Snooping In a converged Ethernet network, the switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet initialization protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a transit FIP snooping bridge, the switch uses dynamically-created ACLs to permit only authorized FCoE traffic to be transmitted between an FCoE end-device and an FCF.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear fip-snooping statistics Clears the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port interface. Syntax clear fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel port-channel-number] Parameters Command Modes Command History vlan-id Enter the VLAN ID of the FIP packet statistics to be cleared.
To disable the FIP snooping feature on all or a specified VLAN, use the no fip-snooping enable command. Defaults Command Modes Command History Usage Information FIP snooping is disabled on all VLANs. • CONFIGURATION • VLAN INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The maximum number of FCFs supported per FIP snooping-enabled VLAN is four.
Usage Information 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The maximum number of FCFs supported per FIP snooping-enabled VLAN is four. show fip-snooping config Display the FIP snooping status and configured FC-MAP values. Syntax show fip-snooping config Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Example Field Description ENode MAC MAC address of the ENode. ENode Interface Slot/ port number of the interface connected to the ENode. FCF MAC MAC address of the FCF. VLAN VLAN ID number the session uses. FC-ID Fibre Channel session ID the FCF assigns.
show fip-snooping sessions Display information on FIP-snooped sessions on all VLANs or a specified VLAN, including the ENode interface and MAC address, the FCF interface and MAC address, VLAN ID, FCoE MAC address and FCoE session ID number (FC-ID), worldwide node name (WWNN) and the worldwide port name (WWPN).
show fip-snooping statistics Display statistics on the FIP packets snooped on all interfaces, including VLANs, physical ports, and port channels. Syntax Parameters Command Modes Command History Usage Information show fip-snooping statistics [interface vlan vlan-id | interface port-type port/slot | interface port-channel port-channel-number] vlan-id Enter the VLAN ID of the FIP packet statistics displays. port-type port/slot Enter the port-type and slot number of the FIP packet statistics displays.
Example Field Description Number of Unicast Discovery Advertisements Number of FIP-snoop unicast discovery advertisements received on the interface. Number of FLOGI Accepts Number of FIP FLOGI accept frames received on the interface. Number of FLOGI Rejects Number of FIP FLOGI reject frames received on the interface. Number of FDISC Accepts Number of FIP FDISC accept frames received on the interface. Number of FDISC Rejects Number of FIP FDISC reject frames received on the interface.
Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Example (Port Channel) of of of of of of of of of of of of of of of of FDISC :16 FLOGO :0 Enode Keep Alive :4416 VN Port Keep Alive :3136 Multicast Discovery Advertisement :0 Unicast Discovery Advertisement :0 FLOGI Accepts :0 FLOGI Rejects :0 FDISC Accepts :0 FDISC Rejects :0 FLOGO Accepts :0 FLOGO Rejects :0 CVL :0 FCF Discovery Timeouts :0 VN Port Session Timeouts :0 Session failures due to H
Enodes Sessions : 2 : 17 show fip-snooping vlan Display information on the FCoE VLANs on which FIP snooping is enabled. Syntax show fip-snooping vlan Command Modes Command History Example 488 • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
19 Force10 Resilient Ring Protocol (FRRP) FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the spanning tree protocol (STP). The resilient ring protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode. Important Points to Remember • FRRP is media- and speed-independent.
Usage Information Example 9.9(0.0) Introduced on the FN MXL. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Executing this command without the optional ring-id command clears the statistics counters on all the available rings. The system requires a command line confirmation before the command executes.
description Enter an identifying description of the ring. Syntax description Word To remove the ring description, use the no description [Word] command. Parameters Word Enter a description of the ring. Maximum: 255 characters. Defaults none Command Modes CONFIGURATION (conf-frrp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the resilient ring protocol.
secondary interface control-vlan vlan-id • Port Channel interface: enter the keyword port-channel then a number. The range is from 1 to 128.
9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. mode Set the Master or Transit mode of the ring. Syntax mode {master | transit} To reset the mode, use the no mode {master | transit} command. Parameters master Enter the keyword master to set the Ring node to Master mode. transit Enter the keywordtransit to set the Ring node to Transit mode. Defaults Mode None Command Modes CONFIGURATION (conf-frrp) Command History Version Description 9.9(0.
show frrp Display the resilient ring protocol configuration. Syntax show frrp [ring-id [summary]] | [summary] Parameters ring-id Enter the ring identification number. The range is from 1 to 255 summary (OPTIONAL) Enter the keyword summary to view just a summarized version of the Ring configuration. Defaults none Command Modes EXEC Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
timer Set the hello interval or dead interval for the Ring control packets. Syntax timer {hello-interval milliseconds}| {dead-interval milliseconds} To remove the timer, use the no timer {hello-interval [milliseconds]}| {dead-interval milliseconds} command. Parameters hello-interval milliseconds Enter the keyword hello-interval then the time, in milliseconds, to set the hello interval of the control packets.
20 GARP VLAN Registration (GVRP) The Dell Networking Operating System (OS) supports the basic GVRP commands. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes. At the same time, based on received declarations or withdrawals, GARP handles attributes of other participants.
Topics: • clear gvrp statistics • debug gvrp • disable • garp timers • gvrp enable • gvrp registration • protocol gvrp • show config • show garp timers • show gvrp • clear gvrp statistics • show vlan clear gvrp statistics Clear GVRP statistics on an interface.
event Enter the keyword event to enable debugging on the JOIN/LEAVE events. pdu Enter the keyword pdu then one of the following Interface keywords and slot/port or number information: Defaults Disabled. Command Modes EXEC Command History • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Parameters join Enter the keyword join then the number of milliseconds to configure the join time. The range is from 100 to 147483647 milliseconds. The default is 200 milliseconds. NOTE: Designate the milliseconds in multiples of 100. leave Enter the keyword leave then the number of milliseconds to configure the leave time. The range is from 100 to 2147483647 milliseconds. The default is 600 milliseconds. NOTE: Designate the milliseconds in multiples of 100.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable — globally disables GVRP. gvrp registration Configure the GVRP register type. Syntax gvrp registration {fixed | normal | forbidden} To return to the default, use the gvrp register normal command. Parameters fixed Enter the keyword fixed then the VLAN range in a comma-separated VLAN ID set. normal Enter the keyword normal then the VLAN range in a comma-separated VLAN ID set.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable — globally disables GVRP. show config Display the global GVRP configuration. Syntax show config Command Modes CONFIGURATION-GVRP Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. gvrp enable — enables GVRP on physical interfaces and LAGs.
show gvrp Display the GVRP configuration. Syntax show gvrp [brief | interface] Parameters Defaults brief (OPTIONAL) Enter the keyword brief to display a brief summary of the GVRP configuration. interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Parameters interface interface summary Defaults Command Modes Command History Usage Information Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information.
show vlan Display the global VLAN configuration. Syntax show vlan Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
21 Internet Group Management Protocol (IGMP) The IGMP commands are supported by the Dell Networking Operating System (OS). IGMP Snooping Commands The Dell Networking OS supports IGMP Snooping version 2 and 3 on all Dell Networking systems. Important Points to Remember for IGMP Snooping • The Dell Networking OS supports version 1, version 2, and version 3 hosts.
To remove the feature, use the no ip igmp access-group access-list command. Parameters access-list Enter the name of the extended ACL (16 characters maximum). Defaults Not configured Command Modes INTERFACE (conf-if-interface-slot/port) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The access list accepted is an extended ACL.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip igmp query-interval Change the transmission frequency of IGMP general queries the Querier sends. Syntax ip igmp query-interval seconds To return to the default values, use the no ip igmp query-interval command. Parameters seconds Defaults 60 seconds Command Modes INTERFACE Command History Enter the number of seconds between queries sent out.
ip igmp version Manually set the version of the router to IGMPv2 or IGMPv3. Syntax ip igmp version {2 | 3} Parameters 2 Enter the number 2 to set the IGMP version number to IGMPv2. 3 Enter the number 3 to set the IGMP version number to IGMPv3. Defaults 2 (that is, IGMPv2) Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To disable IGMP snooping fast leave, use the no igmp snooping fast-leave command. Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Queriers normally send some queries when a leave message is received prior to deleting a group from the membership database. There may be situations when you require a fast deletion of a group.
Defaults 1000 milliseconds Command Modes INTERFACE VLAN Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This last-member-query-interval is also the interval between successive Group-Specific Query messages. To change the last-member-query interval, use this command. ip igmp snooping mrouter Statically configure a VLAN member port as a multicast router interface.
Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command enables the IGMP switch to send General Queries periodically. This behavior is useful when there is no multicast router present in the VLAN because the multicast traffic is not routed.
22 Interfaces The commands in this chapter are supported by Dell Networking Operating System (OS).
• show config (from INTERFACE RANGE mode) • show interfaces • show interfaces configured • show interfaces dampening • show interfaces description • show interfaces stack-unit • show interfaces status • show interfaces switchport • show interfaces transceiver • show range • shutdown • speed (for 1000/10000/auto interfaces) • stack-unit portmode • wavelength • Port Channel Commands • channel-member • group • interface port-channel • minimum-links • port-channel failover
• For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For the management interface on the RPM, enter the keyword ManagementEthernet then slot/port information. The slot range is from 0 to 1 and the port range is 0. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information.
Parameters interface (OPTIONAL) Enter any of the following keywords and slot/port or number to clear counters from a specified interface: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command only works on ports that the system recognizes as CX4 ports. The figures below shows an attempt to configure an XFP port with the command after inserting a CX4 converter into the port. For details about using XFP ports with CX4 cables, refer to your MXLswitch hardware guide.
Command Modes Command History Usage Information INTERFACE (conf-if-) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. With each flap, the Dell Networking OS penalizes the interface by assigning a penalty (1024) that decays exponentially depending on the configured half-life. After the accumulated penalty exceeds the suppress threshold value, the interface moves to the Error-Disabled state.
Version Description 9.9(0.0) Introduced on the MXL and FN IOM. Usage Information Use the default interface command to set a 10- Gigabit Ethernet or 40-Gigabit Ethernet interface to its factory-default state. By default, a physical interface is disabled (shutdown) with no assigned IP address or switchport (no ip address). This command removes all software settings and all L3, VLAN, VXLAN, and portchannel configurations on a physical interface.
Usage Information Related Commands Important Points to Remember: • Spaces between characters are not preserved after entering this command unless you enclose the entire description in quotation marks (“desc_text”). • Entering a text string after the description command overwrites any previous text string that you previously configured as the description. • The shutdown and description commands are the only commands that you can configure on an interface that is a member of a port-channel.
To remove a management application configuration, use the no application {all | applicationtype} command. Parameters application-type all Enter any of the following keywords: • For DNS, enter the keyword dns. • For FTP, enter the keyword ftp. • For NTP, enter the keyword ntp. • For Radius, enter the keyword radius. • For sFlow collectors, enter the keyword sflow-collector. • For SNMP (traps and MIB responses), enter the keywords snmp . • For SSH, enter the keyword ssh .
Defaults Disabled Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(0.0) Introduced on the platforms S4048–ON, S6100–ON, Z9100–ON, S4048T-ON, S3048– ON, S6000, S6010–ON, S5048F-ON, FN-IOM and MXL. 9.13(0.2P2) Introduced on the S3100.
flowcontrol Control how the system responds to and generates 802.3x pause frames on 10G stack units. Syntax flowcontrol rx {off | on} tx {off | on} [negotiate] [monitor session-ID] Parameters Defaults Command Modes Command History Usage Information rx on Enter the keywords rx on to process the received flow control frames on this port. This is the default value for the receive side. rx off Enter the keywords rx off to ignore the received flow control frames on this port.
On 4–port 10G stack units: Changes in the flow-control values may not be reflected automatically in the show interface output for 10G interfaces. This is because 10G interfaces do not support auto-negotiation. Important Points to Remember • Do not enable tx pause when buffer carving is enabled. For information and assistance, consult Dell Networking TAC. • Asymmetric flow control (rx on tx off, or rx off tx on) setting for the interface port less than 100 Mb/s speed is not permitted.
Related Commands off off off off off off off off off off off off off off off off off off on off off off on off off off off off off on on on off off on on off off on on off on on on off off on on off off on on off off on on off off on on show running-config — displays the flow configuration parameters (non-default values only). show interfaces — displays the negotiated flow control parameters. interface Configure a physical interface on the switch.
Commands command. By default, the interface is shutdown when the portmode hybrid and switchport are enabled. The tunnel interface operates as an ECMP (equal cost multi path) only when the next hop to the tunnel destination is over a physical interface. If you select any other interface as the next hop to the tunnel destination, the tunnel interface does not operate as an ECMP.
interface ManagementEthernet Configure the Management port on the system. Syntax interface ManagementEthernet slot/port Parameters slot/port Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Enter the keyword ManagementEthernet, then the slot number (0 or 1) and port number zero (0). Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell(conf)#interface null 0 Dell(conf-if-nu-0)# Related Commands interface — configures a physical interface. interface loopback — configures a Loopback interface. interface port-channel — configures a port channel. interface vlan — configures a VLAN. ip unreachables — enables generation of internet control message protocol (ICMP) unreachable messages. interface range This command permits configuration of a range of interfaces to which subsequent commands are applied (bulk configuration).
• Bulk configuration is created if at least one interface is valid. • Non-existing interfaces are excluded from the bulk configuration with a warning message. • The interface range prompt includes interface types with slot/port information for valid interfaces. The prompt allows for a maximum of 32 characters. If the bulk configuration exceeds 32 characters, it is represented by an ellipsis ( ... ).
Dell(config-if-range)# no shutdown Dell(config-if-range)# Related Commands interface port-channel — configures a port channel group. interface vlan — configures a VLAN interface. show config (from INTERFACE RANGE mode) — shows the bulk configuration interfaces. show range — shows the bulk configuration ranges. interface range macro (define) Defines a macro for an interface range and then saves the macro in the running configuration.
define interface-range test tengigabitethernet0/0-3, tengigabitethernet5/0-7, Dell(config)#interface range macro test Dell(config-if-range-te-0/0-3,te-5/0-7)# Related Commands interface range – configures a range of command (bulk configuration) interface range macro name – runs an interface range macro. interface range macro name Run the interface-range macro to automatically configure the pre-defined range of interfaces.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. For more information about VLANs and the commands to configure them, refer to the Virtual LAN (VLAN) Commands. FTP, TFTP, and SNMP operations are not supported on a VLAN. MAC/IP ACLs are not supported.
keepalive Send keepalive packets periodically to keep an interface alive when it is not transmitting data. Syntax keepalive [seconds] To stop sending keepalive packets, use the no keepalive command. Parameters seconds Defaults Enabled. Command Modes INTERFACE Command History Usage Information (OPTIONAL) For interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets. The range is from 0 to 23767. The default is 10 seconds. Version Description 9.9(0.
dest-mac — Uses the destination MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash. source-dest-mac — Uses the destination and source MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash. source-mac — Uses the source MAC address, VLAN, Ethertype, source module ID and source port ID fields to hash.
module-id | protocol | vlan | L4-sourceport | L4-destport ] mac [source-mac | source-port-id | source-module-id | dest-mac | destport-id | destmodule-id | vlan | ethertype | sourcedest-mac ] tunnel [ipv4-overipv4 | ipv4-overgre-ipv4 | mac-inmac] • dest-ip — Use IPv4 dest-ip field in hash calculation • dest-ipv6 — Use IPv6 dest-ip field in hash calculation • dest-port-id — Use dest-port-id field in hash calculation. • dest-module-id — Use dest-module-id field in hash calculation.
Command Modes Command History Usage Information • EXEC • EXEC Privilege • For the management port, enter the keyword managementethernet then the slot (0 or 1) and the port (0). • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Over 511B packets: Over 1023B packets: Error statistics: Input underruns: Input giants: Input throttles: Input CRC: Input IP checksum: Input overrun: Output underruns: Output throttles: m l T q - 286 2781 0 0 0 0 0 0 0 0 Change mode Page up Increase refresh interval Quit 0 pps 0 pps 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 pps pps pps pps pps pps pps pps c - Clear screen a - Page down t - Decrease refresh interval mtu Set the link maximum transmission unit (MTU) (frame size) for an Ethernet interface.
• Members can have different Link MTU values. Tagged members must have a link MTU 4 bytes higher than untagged members to account for the packet tag. • The VLAN link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the VLAN members. For example, the VLAN contains tagged members with Link MTU of 1522 and IP MTU of 1500 and untagged members with Link MTU of 1518 and IP MTU of 1500.
• Slave • Auto-neg Error — typically indicates that both ends of the node are configured with forced-master or forcedslave. CAUTION: Ensure that one end of your node is configured as forced-master and one is configured as forced-slave. If both are configured the same (that is, forced-master or forced-slave), the show interfaces command flaps between an auto-neg-error and forced-master/slave states. You can display master/slave settings with the show interfaces command.
Link Status Between Port 1 and Port 2 • Up at 1000 Mb/s • Up at 100 Mb/s • Up at 100 Mb/s • Down • Down * You cannot disable auto-negotiation when the speed is set to 1000 or auto. Related Commands speed (for 1000/10000 interfaces) — sets the link speed to 1000, 10000, or auto-negotiate the speed. portmode hybrid To accept both tagged and untagged frames, set a physical port or port-channel. A port configured this way is identified as a hybrid port in report displays.
Dell(conf-if-te-0/2)#portmode hybrid Dell(conf-if-te-0/2)#sw Dell(conf-if-te-0/2)#int vlan 10 Dell(conf-if-vl-10)#tag tengig 0/2 Dell(conf-if-vl-10)#int vlan 20 Dell(conf-if-vl-20)#untag tengig 0/2 Dell(conf-if-vl-20)# Example (tagged hybrid) Dell(conf)#interface tengig 0/2 Dell(conf-if-te-0/2)#no shut Dell(conf-if-te-0/2)#portmode hybrid Dell(conf-if-te-0/2#sw Dell(conf-if-te-0/2)#int vlan 10 Dell(conf-if-vl-10)#int tengig 0/2 Dell(conf-if-vl-20)# untag tengig 0/2 Dell (conf-if-vl-20)# Dell(conf)#do show
NOTE: For 0 to 5 seconds, polling occurs every 5 seconds. For 6 to 10 seconds, polling occurs every 10 seconds. For any other value, polling occurs every 15 seconds. Defaults 299 seconds Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The output of the show interfaces command displays the configured rate interval, along with the collected traffic data.
When rate-interval is configured only in the global configuration mode and not in the interface mode, the global rate-interval value is applied at the interface level also. When rate-interval is configured at the interface level and not in the global configuration mode, the interface level rate-interval value is applied for an interface.
no shutdown Dell(conf-if)# show config (from INTERFACE RANGE mode) Display the bulk configured interfaces (interface range). Syntax show config Command Modes CONFIGURATION INTERFACE (conf-if-range) Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: This command also enables you to view information corresponding to a range of ports. However, for Open Networking (ON) platforms the notation for specifying port range in the command is different from how you specify in nonON platforms. Command Modes Command History Usage Information • EXEC • EXEC Privilege • For non-ON platforms, you can specify multiple ports as slot/port-range.
Line Description MTU 1554... Displays link and IP MTU information. LineSpeed Displays the interface’s line speed, duplex mode, and Slave. ARP type:... Displays the ARP type and the ARP timeout value for the interface. Last clearing... Displays the time when the show interfaces counters where cleared. Queuing strategy... States the packet queuing strategy. FIFO means first in first out.
Internet address is 213.121.22.
Example Dell#show interface managementethernet ? (ManagementEthern 0/0 Management Ethernet interface number Dell#show interface managementethernet 0/0 et) ManagementEthernet 0/0 is up, line protocol is up Hardware is DellForce10Eth, address is 00:1e:c9:f1:00:05 Current address is 00:1e:c9:f1:00:05 Pluggable media not present Interface index is 235159752 Internet address is 10.11.209.
Current address is 00:01:e8:05:f7:fc Interface index is 474791997 Internet address is 1.1.1.
summary (OPTIONAL) Enter the keyword summary to display the current summary of dampening data, including the number of interfaces configured and the number of interfaces suppressed, if any. detail (OPTIONAL) Enter the keyword detail to display detailed interface dampening data. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.
NOTE: This command also enables you to view information corresponding to a range of ports. However, for Open Networking (ON) platforms the notation for specifying port range in the command is different from how you specify in nonON platforms. Command Modes Command History Usage Information Example • EXEC • EXEC Privilege • For non-ON platforms, you can specify multiple ports as slot/port-range.
Parameters Command Modes Command History stack-unit-number • EXEC • EXEC Privilege Enter the stack unit number. The range is from 0 to 5. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. NOTE: This command also enables you to view information corresponding to a range of ports. However, for Open Networking (ON) platforms the notation for specifying port range in the command is different from how you specify in nonON platforms.
• For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • Enter the keyword backup to view the backup interface for this interface. NOTE: This command also enables you to view information corresponding to a range of ports.
Name: TenGigabitEthernet 5/2 802.1QTagged: False Vlan membership: Q Vlans U 1 Name: TenGigabitEthernet 5/3 802.1QTagged: False Vlan membership: Q Vlans U 1 Name: TenGigabitEthernet 5/49 (Port-channel 128) 802.1QTagged: True Vlan membership: Q Vlans G 10 Name: Port-channel 128 802.1QTagged: True Vlan membership: Q Vlans Dell# Related Commands interface — configures a physical interface on the switch. show ip interface — displays Layer 3 information about the interfaces.
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show interfaces transceiver command shown in the following example.
Interfaces Line Description Temp Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Bias Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. TX Power Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+. Power Low Warning threshold Factory-defined setting. Value can differ between SFP and SFP+.
Example Line Description Temperature Low Alarm Flag This can be either true or false, depending on the Current Temperature value displayed above. Voltage Low Alarm Flag This can be either true or false, depending on the Current voltage value displayed above. Tx Bias Low Alarm Flag This can be either true or false, depending on the Tx bias current value displayed above. Tx Power Low Alarm Flag This can be either true or false, depending on the Current Tx power value displayed above.
SFP SFP SFP SFP SFP SFP 0 0 0 0 0 0 Options BR max= 0 BR min= 0 Vendor SN= P5N1ACE Datecode CheckCodeExt = 0x00 0x12 = 040528 = 0x5b SFP 1 Diagnostic Information =================================== SFP 1 Rx Power measurement type = Average =================================== SFP 1 Temp High Alarm threshold = 95.000C SFP 1 Voltage High Alarm threshold = 3.900V SFP 1 Bias High Alarm threshold = 17.000mA SFP 1 TX Power High Alarm threshold = 0.631mW SFP 1 RX Power High Alarm threshold = 1.
show inventory — displays the switch type, components (including media), the Dell Networking OS version including hardware identification numbers, and configured protocols. show range Display all interfaces configured using the interface range command. Syntax show range Command Modes INTERFACE RANGE (config-if-range) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
The shutdown and description commands are the only commands that you can configure on an interface that is a member of a port channel. Related Commands interface port-channel — creates a port channel interface. interface vlan — creates a VLAN. show ip interface — displays the interface routing status. Add the keyword brief to display a table of interfaces and their status. speed (for 1000/10000/auto interfaces) Set the speed for 1000/10000 Base-T Ethernet interfaces.
stack-unit portmode Split a single 40G port into 4-10G ports on the switch. Syntax Parameters stack-unit stack-unit-number port number portmode quad stack-unit Enter the stack member unit identifier of the stack member to reset. The range is 0 to 5. NOTE: The switch commands accept Unit ID numbers from 0 to 5, though the switch supports stacking up to three units only with the Dell Networking OS version 8.3.7.1.
Usage Information Version Description 9.10(0.0) Introduced on the S6000, S6000–ON, S5000, S4810, S4820T, S3048–ON, S4048–ON, M I/O Aggregator, FN I/O Module, MXL, C9010, S3100 series, and Z9100-ON. The wavelength can be configured only on a tunable 10–Gigabit SFP+ optic. The wavelength range is from 1528.3 nm to 1568.77nm. If you configure the wavelength on a non-tunable optic, there is no change to the existing wavelength.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Use the interface port-channel command to access this command. You cannot add an interface to a Port Channel if the interface contains an IP address in its configuration. Link MTU and IP MTU considerations for Port Channels are: • All members must have the same link MTU value and the same IP MTU value.
port-channel number Enter the keywords port-channel then an existing LAG number. Enter this keyword/ variable combination twice, identifying the two paired LAGs. Defaults none Command Modes PORT-CHANNEL FAILOVER-GROUP (conf-po-failover-grp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator.
If the line card is in a Jumbo mode chassis, you can also configure the mtu and ip mtu commands. The Link MTU and IP MTU values configured on the channel members must be greater than the Link MTU and IP MTU values configured on the Port Channel interface. NOTE: In a Jumbo-enabled system, you must configure all members of a Port Channel with the same link MTU values and the same IP MTU values.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This feature groups two LAGs to work in tandem as a supergroup. For example, if one LAG goes down, the other LAG is taken down automatically, providing an alternate path to reroute traffic, avoiding oversubscription on the other LAG.
NOTE: This command also enables you to view information corresponding to a range of ports. • brief Command Modes Command History Usage Information • EXEC • EXEC Privilege For port-channel interfaces, you can specify multiple ports as port-range. For example, if you want to display information corresponding to all ports between 1 and 4, specify the port range as show interfaces portchannel 1 - 4.
Field Description Output 0... Displays the type and number of packets sent out the interface. This information is displayed over three lines. Rate information... Displays the traffic rate information into and out of the interface. Traffic rate is displayed in bits and packets per second. Time since... Displays the time since the last change in the configuration of this interface.
Field Description • Example (brief) In Layer 3 port channels, the primary port is not indicated. Dell#show int po 1 brief Codes: L - LACP Port-channel LAG Mode Status Uptime Ports 1 L3 down 00:00:00 Te 0/6 (Down) Dell# Related Commands show lacp — displays the LACP matrix. Time Domain Reflectometer (TDR) TDR is useful for troubleshooting an interface that is not establishing a link; either it is flapping or not coming up at all.
Related Commands show tdr — displays the results of the TDR test. show tdr Display the TDR test results. Syntax show tdr interface Parameters interface Defaults none Command Modes EXEC Command History Usage Information Enter the keyword TenGigabitEthernet then the slot/port information for the 100/1000 Ethernet interface. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
UDP Broadcast The user datagram protocol (UDP) broadcast feature is a software-based method to forward low throughput (not to exceed 200 pps) IP/UDP broadcast traffic arriving on a physical or VLAN interface. Important Points to Remember • Routing information protocol (RIP) is not supported with the UDP Broadcast feature. • If you configure this feature on an interface using the ip udp-helper udp-port command, the ip directed-broadcast command becomes ineffective on that interface.
ip udp-broadcast-address Configure an IP UDP address for broadcast. Syntax ip udp-broadcast-address address To delete the configuration, use the no ip udp-broadcast-address address command. Parameters address Defaults Not configured. Command Modes INTERFACE (config-if) Command History Enter an IP broadcast address in dotted decimal format (A.B.C.D). Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Enter an IP broadcast address in dotted decimal format (A.B.C.D).
ip helper-address configuration. This occurs regardless if the ip udp-helper udp-port command contains port numbers 67/68 or not. If you only configure the ip udp-helper udp-port command, all the UDP broadcast traffic is flooded, including ports 67/68 traffic if those ports are part of the udp-port-list. Related Commands ip helper-address — configures the destination broadcast or host address for the DHCP server. debug ip udp-helper — enables debug and displays the debug information on a console.
23 IPv4 Routing The basic IPv4 commands are supported by Dell Networking Operating System (OS).
• show ip fib stack-unit • show ip interface • show ip management-route • show ip protocols • show ip route • show ip route list • show ip route summary • show ip traffic • show tcp statistics arp To associate an IP address with a multicast MAC address in the switch when you configure multicast mode of the network load balancing (NLB), use the address resolution protocol (ARP).
configuration mode. This setting causes the multicast MAC address to be mapped to the cluster IP address for NLB mode of operation of the switch. You cannot use Class D or Class E IP addresses or zero IP address (0.0.0.0) when creating a static ARP. Zero MAC addresses (00:00:00:00:00:00) are also invalid. Although static ARP entries take precedence over dynamically-learnt ARP entries, a static ARP entry that points to a wrong port is not included in the FIB or ARP entries.
arp timeout Set the time interval for an ARP entry to remain in the ARP cache. Syntax Parameters arp timeout minutes minutes Defaults 240 minutes (4 hours) Command Modes INTERFACE Command History Related Commands Enter the number of minutes. The range is from 0 to 35790. The default is 240 minutes. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show interfaces — displays the ARP timeout value for all available interfaces.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear host Remove one or all dynamically learned host table entries. Syntax clear host name Parameters Command Modes Command History name Enter the name of the host to delete. Enter * to delete all host table entries. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
clear ip route Clear one or all routes in the routing table. Syntax Parameters Command Modes Command History Related Commands clear ip route {* | ip-address mask} * Enter an asterisk (*) to clear all learned IP routes. ip-address mask Enter a specific IP address and mask in dotted decimal format to clear that IP address from the routing table. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
count value Defaults none Command Modes EXEC Privilege Command History Usage Information • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094.
00:12:42 : %RELAY-I-PACKET: BOOTP REPLY (Unicast) received at interface 14.4.4.1 BOOTP Reply, hops = 0, XID = 0xda4f9503, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 113.3.3.17 00:12:42 : %RELAY-I-BOOTREPLY: Forwarded BOOTREPLY for 00:60:CF:20:7B:8C to 113.3.3.254 00:12:42 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xda4f9503, secs = 0, hwaddr = 00:60:CF:20:7B:8C, giaddr = 0.0.0.
ICMP: ICMP: ICMP: ICMP: ICMP: ICMP: Usage Information src 40.40.40.40, dst 40.40.40.40, echo reply echo request sent to dst 40.40.40.40 echo request rcvd from src 40.40.40.40 src 40.40.40.40, dst 40.40.40.40, echo reply src 40.40.40.40, dst 40.40.40.40, echo reply echo request sent to dst 40.40.40.40 To stop packets from flooding the user terminal when debugging is turned on, use the count option. debug ip packet View a log of IP packets sent and received.
Field Description sending, rcvd, fragment, sending broad/multicast proto, unroutable The last part of each line lists the status of the packet. TCP src= Displays the source and destination ports, the sequence number, the acknowledgement number, and the window size of the packets in that TCP packets. UDP src= Displays the source and destination ports for the UDP packets. ICMP type= Displays the ICMP type and code.
Example (Error Messages) Dell#debug ip packet access-group test %Error: port operator GT not supported in access-list debug %Error: port operator LT not supported in access-list debug %Error: port operator RANGE not supported in access-list debug %Error: port operator NEQ not supported in access-list debug Dell#00:10:45: %RPM0-P:CP %IPMGR-3-DEBUG_IP_PACKET_ACL_AMBIGUOUS_EXP: Ambiguous rules not supported in access-list debug, access-list debugging is turned off Dell# ip address Assign a primary and second
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip domain-list Configure names to complete unqualified host names. Syntax ip domain-list name To remove the name, use the no ip domain-list name command. Parameters name Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Enter a domain name to be used to complete unqualified names (that is, incomplete domain names that cannot be resolved). Version Description 9.9(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To fully enable DNS, also specify one or more domain name servers with the ip name-server command. The Dell Networking OS does not support sending DNS queries over a VLAN. DNS queries are sent out all other interfaces, including the Management port. To view current bindings, use the show hosts command.
ip helper-address Specify the address of a DHCP server so that DHCP broadcast messages can be forwarded when the DHCP server is not on the same subnet as the client. Syntax ip helper-address ip-address To remove a DHCP server address, use the no ip helper-address command. Parameters ip-address Defaults Not configured. Command Modes INTERFACE Command History Usage Information Enter an IP address in dotted decimal format (A.B.C.D). Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
relayed with the same value for hops. However, the message is discarded if the hops field exceeds 16, to comply with the relay agent behavior specified in RFC 1542. Related Commands ip helper-address — specifies the destination broadcast or host address for DHCP server requests. show running-config — displays the current configuration and changes from the default values. ip host Assign a name and IP address to be used by the host-to-IP address mapping table.
Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE. • For a VLAN interface, enter the keyword vlan. The range is from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform.
Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE. • For a VLAN interface, enter the keyword vlan. The range is from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform.
ip name-server Enter up to six IPv4 addresses of name servers. The order you enter the addresses determines the order of their use. Syntax ip name-server ipv4-address [ipv4-address2...ipv4-address6] To remove a name server, use the no ip name-server ip-address command. Parameters ipv4-address Enter the IPv4 address, in dotted decimal format, of the name server to be used. ipv4-address2... ipv4-address6 (OPTIONAL) Enter up five more IPv4 addresses, in dotted decimal format, of name servers to be used.
To delete a specific static route, use the no ip route destination mask command. To delete all routes matching a certain route, use the no ip route destination mask command. Parameters destination Enter the IP address in dotted decimal format of the destination device. mask Enter the mask in the slash prefix format (/x) of the destination IP address. ip-address Enter the IP address of the forwarding router in dotted decimal format. interface Enter the keyword interface then the slot/port number.
ip source-route Enable the system to forward IP packets with source route information in the header. Syntax ip source-route To drop packets with source route information, use the no ip route-source command. Defaults Enabled. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip tcp initial-time Define the wait duration in seconds for the TCP connection to be established.
EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. ip unreachables Enable the generation of internet control message protocol (ICMP) unreachable messages. Syntax ip unreachables To disable the generation of ICMP messages, use the no ip unreachables command. Defaults Disabled. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information When a static route (or a protocol route) overlaps with Management static route, the static route (or a protocol route) is preferred over the Management Static route. Also, Management static routes and the Management Connected prefix are not reflected in the hardware routing tables. Separate routing tables are maintained for IPv4 and IPv6 management routes. This command manages both tables. Related Commands interface ManagementEthernet — configures the Management port on the system.
The following describes the show arp command shown in the following example. Example Row Heading Description Protocol Displays the protocol type. Address Displays the IP address of the ARP entry. Age(min) Displays the age (in minutes) of the ARP entry. Hardware Address Displays the MAC address associated with the ARP entry. Interface Displays the first two letters of the interfaces type and the slot/port associated with the ARP entry.
Related Commands ip local-proxy-arp — enables/disables Layer 3 communication in secondary VLANs. switchport mode private-vlan — sets PVLAN mode of the selected port. show arp retries Display the configured number of ARP retries. Syntax Command Modes Command History Related Commands show arp retries • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Field Description Flags Classifies the entry as one of the following: • perm — the entry was manually configured and will not time out • temp — the entry was learned and will time out after 72 hours of inactivity. Also included in the flag is an indication of the validity of the route: Example • ok — the entry is valid. • ex — the entry expired. • ?? — the entry is suspect. TTL Displays the amount of time until the entry ages out of the cache. For dynamically learned entries only.
The detail information under member-info gives the MAC address, VLAN ID, and gateway of every member port of the ecmp. summary Command Modes Command History Usage Information Example • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword summary to view a table listing route prefixes and the total number routes which can be entered in to CAM. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Field Description Initial Size Displays the CAM size the system allocates for the corresponding mask. The system adjusts the CAM size if the number of routes for the mask exceeds the initial allocation. Example (ECMPGroup) Dell#show ip cam stack-unit 0 po 0 ecmp-group detail Example (MemberInfo) Dell#show ip cam stack-unit 0 po 0 ecmp-group member-info detail Destination EC CG ----------------1.1.1.2 0 0 2.1.1.2 0 0 1.1.1.1 0 0 2.1.1.1 0 0 1.1.1.0 0 0 2.1.1.0 0 0 100.1.1. 0 1 100.1.1. 0 1 0.0.0.
Example Field Description Destination Lists the destination IP address. Gateway Displays either the word “direct” and an interface for a directly connected route or the remote IP address used to forward the traffic. First-Hop Displays the first hop IP address. Mac-Addr Displays the MAC address. Port Displays the egress-port information. VId Displays the VLAN ID. If no VLAN is assigned, zero (0) is listed. EC Displays the number of ECMP paths.
Command History Usage Information Version Description 9.11(0.0) Updated the command output to include the unicast reverse path forwarding (uRPF) status. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip interface command shown in the following example. Lines Description TenGigabitEthernet 0/0... Displays the interface’s type, slot/port, and physical and line protocol status. Internet address...
Example (Brief) Dell#show ip int brief Interface IP-Address GigabitEthernet 1/1 unassigned GigabitEthernet 1/2 unassigned GigabitEthernet 1/3 unassigned GigabitEthernet 1/4 unassigned GigabitEthernet 1/5 10.10.10.1 GigabitEthernet 1/6 unassigned OK? NO YES YES YES YES NO Method Manual Manual Manual Manual Manual Manual Status Protocol administratively down down up up up up up up up up administratively down down show ip management-route View the IP addresses assigned to the Management interface.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip route all command in the following example.
100.10.10.0/24 > R 100.10.10.0/24 C 101.10.10.0/24 > R 101.10.10.0/24 Dell# via 101.10.10.
Related Commands ip prefix-list — enters CONFIGURATION-IP PREFIX-LIST mode and configures a prefix list. show ip prefix-list summary — displays a summary of the configured prefix lists. show ip route summary View a table summarizing the IP routes in the switch. Syntax Command Modes Command History Usage Information show ip route summary • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show ip traffic View IP, ICMP, UDP, TCP and ARP traffic statistics. Syntax show ip traffic Command Modes EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip traffic summary shown in the following example. Keyword Definition unknown protocol... No receiver for these packets. Counts packets whose protocol type field is not recognized by the system.
Example • IP Statistics: Mcast: Received: Object = f10McastPktRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.3 • IP Statistics: Mcast: Sent: Object = f10McastPktSent, OIDs = 1.3.6.1.4.1.6027.3.3.5.1.4 • ARP Statistics: Rcvd: Request: Object = f10ArpReqRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.1 • ARP Statistics: Rcvd: Replies: Object = f10ArpReplyRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.3 • ARP Statistics: Sent: Request: Object = f10ArpReqSent, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.
Field Example Description • checksum errors • bad offset to data • too short 329 packets... Displays the number of packets and bytes received in sequence. 17 dup... Displays the number of duplicate packets and bytes received. 0 partially... Displays the number of partially duplicated packets and bytes received. 7 out-of-order... Displays the number of packets and bytes received out of order.
0 window probe packets, 0 window update packets 0 dup ack packets, 0 ack packets with unsend data 6671 ack packets (152813 bytes) Sent: 6778 Total, 0 urgent packets 7 control packets 6674 data packets (152822 bytes) 12 data packets (1222 bytes) retransmitted 85 ack only packets (5677 delayed) 0 window probe packets, 0 window update packets 0 Connections initiated, 7 connections accepted, 7 connections established 8 Connections closed (including 4 dropped, 0 embryonic dropped) 12 Total rxmt timeout, 1 connec
24 Internet Protocol Security (IPSec) Internet protocol security (IPSec) is an end-to-end security scheme for securing IP communications by authenticating and encrypting all packets in a session. Use IPSec between hosts, gateways, or hosts and gateways. IPSec uses a series of protocol functions to achieve information security: • Authentication Headers (AH) — Connectionless integrity and origin authentication for IP packets.
To delete a transform set, use the no crypto ipsec transform-set name {ah-authentication {md5|sha1|null} | esp-authentication {md5|sha1|null} | esp-encryption {3des| cbc|des|null}} command. Parameters name Enter the name for the transform set. ah-authentication Enter the keywords ah-authentication then the transform type of operation to apply to traffic. The transform type represents the encryption or authentication applied to traffic.
crypto ipsec policy Create a crypto policy used by ipsec. Syntax crypto ipsec policy name seq-num ipsec-manual To delete a crypto policy entry, use the no crypto ipsec policy name seq-num ipsec-manual command. Parameters name Enter the name for the crypto policy set. seq-num Enter the sequence number assigned to the crypto policy entry. Defaults none Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
match Match a sequence number to the transmission control protocol (TCP)/user datagram protocol (UDP) packets. Syntax match seq-num {tcp | udp} {ipv6 | ip} port-num dest-ip dest-port-num To remove the match filter for the crypto map, use the no match seq-num command. Parameters seq-num Enter the match command sequence number. The range is from 0 to 255. tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter.
inbound Specify the inbound session key for IPSec. outbound Specify the outbound session key for IPSec. ah Use the AH protocol when you select the AH transform set in the crypto policy. esp Use the ESP protocol when you select the ESP transform set in the crypto policy. spi Enter the security parameter index number. hex-key-string Enter the session key in hex format (a string of 8, 16, or 20 bytes). For DES algorithms, specify at least 16 bytes per key.
show crypto ipsec policy Display the crypto policy configuration. Syntax Parameters Command Modes Command History Example show crypto ipsec policy name name Enter the name for the crypto policy set. EXEC Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To delete a transform set from the crypto policy, use the no transform-set transform-set-name command. Parameters transform-setname Enter the name for the crypto policy transform set. Defaults none Command Modes CONFIG-CRYPTO-POLICY Command History 618 Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
25 IPv6 Access Control Lists (IPv6 ACLs) IPv6 ACLs and IPv6 Route Map commands are supported on Dell Networking switch. NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember • Certain platforms require manual CAM usage space allotment. For more information, refer to the cam-acl (Configuration) command. • Egress IPv6 ACL and IPv6 ACL on the Loopback interface is not supported. • Reference to an empty ACL permits any traffic.
Parameters default l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10 Command Modes Command History Usage Information Use the default CAM profile settings, and set the CAM as follows: • L3 ACL (ipv4acl): 6 • L2 ACL(l2acl): 5 • IPv6 L3 ACL (ipv6acl): 0 • L3 QoS (ipv4qos): 1 • L2 QoS (l2qos): 1 Allocate space to support IPv6 ACLs. Enter all of the profiles and a range. Enter the CAM profile name then the amount to be allotted. The total space allocated must equal 13.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. For the new settings to take effect, save the new CAM settings to the startup-config (write-mem or copy run start), then reload the system. The total amount of space allowed is 16 FP Blocks. System flow requires three blocks and these blocks cannot be reallocated. When configuring space for IPv6 ACLs, the total number of Blocks must equal 13.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for CoPP for OSPFv3 on the MXL 10/40GbE Switch IO Module. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The number of entries allowed per ACL is hardware-dependent. For detailed specification on entries allowed per ACL, refer to your line card documentation.
dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
host ipv6-address Enter the keyword host then the IPv6 address of the host in the x:x:x:x::x format. The :: notation specifies successive hexadecimal fields of zero. destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. The :: notation specifies successive hexadecimal fields of zero.
instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). show cam-acl Show space allocated for IPv6 ACLs.
vrfv4Acl Openflow fedgovacl : : : 0 0 0 Dell# Related Commands cam-acl — configures CAM profiles to support IPv6 ACLs. show cam-acl-egress Show information on FP groups allocated for egress ACLs. Syntax show cam-acl-egress Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
26 IPv6 Basics This chapter describes IPv6 basic commands.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ipv6 route Clear (refresh) all or a specific route from the IPv6 routing table. Syntax clear ipv6 route {* | ipv6-address prefix-length} Parameters * Enter the * to clear (refresh) all routes from the IPv6 routing table. ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format.
Command Modes Command History Usage Infomation INTERFACE (management interface only) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • SAA can configure up to two addresses. If any preferred prefix or valid timers time out, the corresponding address are deprecated or removed. If an address is removed due to a time-out, an address from the current unused prefix is used to create a new address.
• IPv6 secondary addresses on management interfaces should not match the virtual IP address and should not be in the same subnet as the virtual IP. NOTE: Do not use the /128 prefix length on physical or port channel interfaces. You can use the /128 prefix length on loopback interfaces.
Parameters pps Default 100 pps Command Modes CONFIGURATION Command History Enter the maximum number of error packets generated per second. The range is from 1 to 200, where 0 disables the rate-limiting. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 flowlabel-zero Configure system to set the flow label field in the packets to zero.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 name-server Enter up to six IPv6 addresses of name servers. The order you enter the addresses determines the order of their use. Syntax ipv6 name-server ipv6-address [ipv6-address2... ipv6-address6] To remove a name server, use the no ipv6 name—server ipv6–address command. Parameters ipv6-address Enter the IPv6 address (X:X:X:X::X) of the name server to be used.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 nd disable-reachable-timer Keep the learnt neighbor discovery entries stateless so that the entries do not time out. Syntax ipv6 nd disable-reachable-timer To restore to default, use the no ipv6 nd disable-reachable-timer command. Default Disabled Command Modes INTERFACE Command History This guide is platform-specific.
Usage Information Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100–ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.0) Introduced on the Z9000, S6000, S4810, S4820T, and MXL..
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, all prefixes configured as addresses on the interface are advertised. This command allows control over the individual parameters per prefix; you can use the default keyword to use the default parameters for all prefixes.
tag value (OPTIONAL) Enter the keyword tag then a tag value number. The range is from 1 to 4294967295. permanent (OPTIONAL) Enter the keyword permanent to specify that the route is not to be removed, even if the interface assigned to that route goes down. NOTE: If you disable the interface with an IPv6 address associated with the keyword permanent, the route disappears from the routing table. Defaults none Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.
To disable unicast routing, use the no ipv6 unicast-routing command. Defaults Enabled Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Because this command is enabled by default, it does not appear in the running configuration. When you disable unicast routing, the no ipv6 unicast-routing command is included in the running configuration.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information NOTE: If a route has a mask greater than 64, no output is displayed and no output is displayed for show ipv6 cam stack-unit unit-number port-set {0-1} ipv6-address, but an equivalent /64 entry would be listed in the show ipv6 cam stack-unit unit-number port-set {0-0} output.
Usage Information Host tables are not stored in CAM tables. Entries for camIndex displays as zero (0) on the show ipv6 fib stack-unit output for neighbor entries, such as address resolution protocol (ARP) entries. show ipv6 flowlabel-zero Display the flow label zero setting. Syntax show ipv6 flowlabel-zero Default Disabled Command Modes EXEC Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults loopback (OPTIONAL) View information for IPv6 Loopback interfaces. port-channel (OPTIONAL) View information for IPv6 port channels. tengigabitethernet (OPTIONAL) View information for an IPv6 tengigabitethernet interface. fortyGigE (OPTIONAL) View information for an IPv6 fortygigabitethernet interface. vlan (OPTIONAL) View information for IPv6 VLANs. none Command Modes Command History • EXEC • EXEC Privilege Version Description 9.11(0.
ff02::1 ff02::1:ff00:1 ff02::1:ffa7:497e ND MTU is 0 ICMP redirects are not sent DAD is enabled, number of DAD attempts: 3 ND reachable time is 20410 milliseconds ND base reachable time is 30000 milliseconds ND retransmit interval is 1000 milliseconds ND hop limit is 64 Dell# Example (Brief) Example (tunnel) Dell#show ipv6 interface brief TenGigabitEthernet 0/2 fe80::201:e8ff:fea7:497e 2002:1:2::3/96 TenGigabitEthernet 0/8 fe80::201:e8ff:fea7:497e 100::2/64 ManagementEthernet 0/0 fe80::201:e8ff:fea7:497e
Usage Information Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ipv6 mld-host command shown in the following example. Field Description Valid MLD Packets The total number of packets received and sent from the last time the elapsed time was cleared. Reports The total number of reports (queries and unsolicited reports generated from joins or leaves) that have been received or sent.
Defaults Command Modes Command History Usage Information rip (OPTIONAL) View information for all IPv6 RIP routes. static (OPTIONAL) View only routes configured by the ipv6 route command. summary (OPTIONAL) View a brief list of the configured IPv6 routes. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ipv6 route command shown in the following examples.
Example Dell#show ipv6 route Codes: C - connected, S - static, R - RIP, B - BGP, IN - internal BGP, EX - external BGP,LO - Locally Originated, O - OSPF, IA - OSPF inter area, N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2, E1 - OSPF external type 1, E2 - OSPF external type 2, i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, IA - IS-IS inter area, * - candidate default, Gateway of last resort is not set Destination Dist/Metric, Gateway, Last Change -----------------------------------------
IPv6 Service Class Field Queue ID 101XXXXX 5 100XXXXX 4 011XXXXX 3 010XXXXX 2 001XXXXX 1 000XXXXX 0 IPv6 Basics 645
27 IPv6 Border Gateway Protocol (IPv6 BGP) IPv6 Border Gateway Protocol (IPv6 BGP) is supported on Dell Networking platforms.
• debug ip bgp • debug ip bgp events • debug ip bgp ipv6 dampening • debug ip bgp ipv6 unicast soft-reconfiguration • debug ip bgp keepalives • debug ip bgp notifications • debug ip bgp updates • default-metric • description • distance bgp • maximum-paths • neighbor activate • neighbor advertisement-interval • neighbor allowas-in • neighbor default-originate • neighbor description • neighbor distribute-list • neighbor ebgp-multihop • neighbor fall-over • neighbor filte
• show ip bgp ipv6 unicast community • show ip bgp ipv6 unicast community-list • show ip bgp ipv6 unicast dampened-paths • show ip bgp ipv6 unicast detail • show ip bgp ipv6 unicast extcommunity-list • show ip bgp ipv6 unicast filter-list • show ip bgp ipv6 unicast flap-statistics • show ip bgp ipv6 unicast inconsistent-as • show ip bgp ipv6 unicast neighbors • show ip bgp ipv6 unicast peer-group • show ip bgp ipv6 unicast summary • show ip bgp next-hop • show ip bgp paths • show
• show ip bgp ipv6 unicast filter-list • show ip bgp ipv6 unicast flap-statistics • show ip bgp ipv6 unicast inconsistent-as • show ip bgp ipv6 unicast neighbors • show ip bgp ipv6 unicast peer-group • show ip bgp ipv6 unicast summary IPv6 BGP Commands BGP is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults advertise-map map-name (OPTIONAL) Enter the keywords advertise-map then the name of a configured route map to set filters for advertising an aggregate route. as-set (OPTIONAL) Enter the keywords as-set to generate path attribute information and include it in the aggregate. AS_SET includes AS_PATH and community information from the routes included in the aggregated route.
To disable comparison of MED, use the no bgp always-compare-med command. Defaults Disabled (that is, the software only compares MEDs from neighbors within the same AS). Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Any update without a MED attribute is the least preferred route.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path. bgp bestpath med missing-as-best During path selection, indicate a preference to paths with missing MED (MULTI_EXIT_DISC) over those paths with an advertised MED attribute.
neighbor route-reflector-client — configures a route reflector and clients. bgp cluster-id Assign a cluster ID to a BGP cluster with more than one route reflector. Syntax bgp cluster-id {ip-address | number} To delete a cluster ID, use the no bgp cluster-id {ip-address | number} command. Parameters ip-address Enter an IP address as the route reflector cluster ID. number Enter a route reflector cluster ID as a number from 1 to 4294967295. Defaults Not configured.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. The next hop, MED, and local preference information is preserved throughout the confederation. The system accepts confederation EBGP peers without a LOCAL_PREF attribute.
reuse (OPTIONAL) Enter a number as the reuse value, which is compared to the flapping route’s Penalty value. If the Penalty value is less than the reuse value, the flapping route is once again advertised (or no longer suppressed). The range is from 1 to 20000. The default is 750. suppress (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value.
bgp enforce-first-as Disable (or enable) enforce-first-as check for updates received from EBGP peers. Syntax bgp enforce-first-as To turn off the default, use the no bgp enforce-first-as command. Defaults Enabled. Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the 10/40GbE Switch IO Module.
bgp four-octet-as-support Enable 4-byte support for the BGP process. Syntax bgp four-octet-as-support To disable fast external fallover, use the no bgp four-octet-as-support command. Defaults Disabled (supports 2-Byte format) Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Routers supporting 4-Byte ASNs advertise that function in the OPEN message.
Defaults As above Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This feature is advertised to BGP neighbors through a capability advertisement. In Receiver Only mode, BGP saves the advertised routes of peers that support this capability when they restart. bgp log-neighbor-changes Enable logging of BGP neighbor resets.
the neighbors because MED may or may not get compared between adjacent paths. In Deterministic mode (no bgp non-deterministic-med), the system compares MED between adjacent paths within an AS group because all paths in the AS group are from the same AS. When you change the path selection from Deterministic to Non-Deterministic mode, the path selection for existing paths remains Deterministic until you enter the capture bgp-pdu max-buffer-size command to clear existing paths.
Usage Information BGP uses regular expressions (regex) to filter route information. In particular, the use of regular expressions to filter routes based on AS-PATHs and communities is quite common. In a large scale configuration, filtering millions of routes based on regular expressions can be quite CPU intensive, as a regular expression evaluation involves generation and evaluation of complex finite state machines.
Usage Information When you enable soft-reconfiguration for a neighbor and you execute the clear ip bgp soft in command, the update database stored in the router replays and updates are reevaluated. With this command, the replay and update process is triggered only if route-refresh request is not negotiated with the peer. If the request is negotiated (after execution of clear ip bgp soft in), BGP sends a route-refresh request to the neighbor and receives all of the peer’s updates.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. capture bgp-pdu neighbor (ipv6) — enables route reflection between the route reflector and the clients. show capture bgp-pdu neighbor — configures a route reflector and clients. clear ip bgp * (asterisk) Reset all BGP sessions in the specified category. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection.
Parameters as-number Enter an autonomous system (AS) number to reset neighbors belonging to that AS. If used without a qualifier, the keyword resets all neighbors belonging to that AS. The range is from 1 to 65535. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to clear all flap statistics belonging to that AS or a specified address family within that AS. ipv4 (OPTIONAL) Enter the keyword ipv4 to select options for that address family.
multicast (OPTIONAL) Enter the keyword multicast to select the multicast option within the selected address family. Multicast is supported on IPv4 only. soft (OPTIONAL) Enter the keyword soft to configure and activate policies without resetting the BGP TCP session; that is, BGP Soft Reconfiguration. NOTE: If you enter clear ip bgp ip6-address soft, both inbound and outbound policies are reset. Command Modes Command History in (OPTIONAL) Enter the keyword in to activate only inbound policies.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. After you enter this command, the software deletes the history routes and returns the suppressed routes to the active state. clear ip bgp ipv6 flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap.
clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. Syntax clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6-neighbor-addr | peergroup name} ipv6 unicast soft [in | out] Parameters * Clear and reapply policies for all BGP sessions. as-number Clear and reapply policies for all neighbors belonging to the AS. The range is from 0 to 65535 (2 Byte), from 1 to 4294967295 (4 Byte), or from 0.
Command Modes Command History Usage Information in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To view information on both incoming and outgoing routes, do not include the in and out parameters in the debugging command.
Usage Information Entering a no debug ip bgp command removes all configured debug commands for BGP. debug ip bgp ipv6 dampening View information on dampened (non-active) IPv6 routes. Syntax debug ip bgp ipv6 unicast dampening [in | out] To disable debugging, use the no debug ip bgp ipv6 unicast dampening command. Parameters Command Modes Command History in (OPTIONAL) Enter the keyword in to view only inbound dampened routes.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command turns on BGP soft-reconfiguration inbound debugging for IPv6 unicast routes. If no neighbor is specified, debug is turned on for all neighbors. Related Commands show ip bgp ipv6 unicast dampened-paths — views BGP dampened routes. debug ip bgp keepalives Allows you to view information about BGP keepalive messages.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History Usage Information peer-group peergroup-name (OPTIONAL) Enter the keywords peer-group then the name of the peer group. in (OPTIONAL) Enter the keyword in to view BGP notifications received from neighbors. out (OPTIONAL) Enter the keyword out to view BGP notifications sent to neighbors. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
default-metric Allows you to change the metrics of redistributed routes to locally originated routes. Use this command with the redistribute command. Syntax default-metric number To return to the default setting, use the no default-metric command. Parameters number Defaults 0 Command Modes ROUTER BGP Command History Enter a number as the metric to be assigned to routes from other protocols. The range is from 1 to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
distance bgp Configure three administrative distances for routes. Syntax distance bgp external-distance internal-distance local-distance To return to default values, use the no distance bgp command. Parameters Defaults Command Modes Command History Usage Information external-distance Enter a number to assign to routes learned from a neighbor external to the AS. The range is from 1 to 255. The default is 20. internal-distance Enter a number to assign to routes learned from a router within the AS.
Defaults 1 Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you enable this command, use the capture bgp-pdu max-buffer-size command to recompute the best path. neighbor activate This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Command Modes Command History peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. seconds Enter a number as the time interval, in seconds, between BGP advertisements. The range is from 0 to 600 seconds. The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers.
neighbor default-originate Inject the default route to a BGP peer or neighbor. Syntax neighbor {ipv6-address | peer-group-name} default-originate [route-map mapname] To remove a default route, use the no neighbor {ipv6-address | peer-group-name} defaultoriginate [route-map map-name] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor distribute-list Distribute BGP information using an established prefix list. Syntax neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} To delete a neighbor distribution list, use the no neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} command.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. ttl (OPTIONAL) Enter the number of hops as the time to live (ttl) value. The range is from 1 to 255. The default is 255. Defaults Disabled. Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To delete a BGP filter, use the no neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to apply the filter to all routers in the peer group. in Enter the keyword in to filter inbound BGP routes. out Enter the keyword out to filter outbound BGP routes.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you configure the neighbor maximum-prefix command and the neighbor receives more prefixes than allowed by the neighbor maximum-prefix command configuration, the neighbor goes down and the show ip bgp ipv6 unicast summary command displays (prfxd) in the State/PfxRcd column for that neighbor.
Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you configure the set ipv6 next-hop command in ROUTE-MAP mode, its configuration takes precedence over the neighbor next-hop-self command. neighbor peer-group (assigning peers) Allows you to assign one peer to a existing peer group.
A peer group must exist before you add a peer to it. If the peer group is disabled (shutdown) the peers within the group are also disabled (shutdown). Related Commands capture bgp-pdu max-buffer-size — resets BGP sessions. neighbor peer-group (creating group) — creates a peer group. show ip bgp ipv6 unicast peer-group — views BGP peers. show ip bgp ipv6 unicast neighbors — views BGP neighbors configurations. neighbor peer-group (creating group) Allows you to create a peer group and assign it a name.
Command Modes Command History ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information After you configure a peer group as passive, you must assign it a subnet using the neighbor subnet command. Related Commands neighbor subnet — assigns a subnet to a dynamically configured BGP neighbor. neighbor remote-as Create and specify the remote peer to the BGP neighbor.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to remove the private AS numbers. Defaults Disabled (that is, the private AS number are not removed). Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. All routers in the peer group receive routes from a route reflector. Defaults Not configured and COMMUNITY attributes are not sent to neighbors. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
neighbor soft-reconfiguration inbound Enable a BGP soft-reconfiguration and start storing updates for inbound IPv6 unicast routes. Syntax neighbor {ipv4-address | ipv6-address | peer-group-name} soft-reconfiguration inbound Parameters ipv4-address | ipv6address Enter the IP address of the neighbor for which you want to start storing inbound routing updates. peer-group-name Enter the name of the peer group for which you want to start storing inbound routing updates. Defaults Disabled.
neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group. Syntax neighbor {ipv6-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ipv6-address | peer-group-name} timers command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the timers for all routers within the peer group. loopback interface Enter the keyword loopback then a number of the loopback interface. The range is from 0 to 16383. Defaults Not configured. Command Modes ROUTER BGP Command History Usage Information Version Description 9.9(0.
network Specify the networks for the BGP process and enter them in the BGP routing table. Syntax network ipv6-address prefix-length [route-map map-name] To remove a network, use the no network ip-address mask [route-map map-name] command. Parameters ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Though the system does not generate a route due to backdoor config, there is an option for injecting/sourcing a local route in presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP.
Parameters level-1 | level-1-2 | level-2] (OPTIONAL) Enter the type (level) of routes to redistribute. metric (OPTIONAL) Assign metric to an interface for use with IPv6 information. metric-type (OPTIONAL) The external link type associated with the default route advertised into a routing domain. You must specify one of the following: route-map mapname • external • internal (default) (OPTIONAL) Enter the keywords route-map then the name of an established route map.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you enter the redistribute ospf process-id command without any other parameters, the system redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes. router bgp Enter ROUTER BGP mode to configure and enable BGP. Syntax router bgp as-number To disable BGP, use the no router bgp as-number command. Parameters as-number Defaults Not enabled.
show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster.
no-export Command Modes Command History Usage Information • EXEC • EXEC Privilege Enter the keywords no-export to view all routes containing the well-known community attribute of NO_EXPORT. All routes with the NO_EXPORT (0xFFFFFF01) community attribute must not be advertised outside a BGP confederation boundary. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast detail Display BGP internal information for IPv6 Unicast address family. Syntax show ip bgp ipv6 unicast detail Defaults none Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ip bgp ipv6 unicast filter-list View the routes that match the filter lists. Syntax Parameters Command Modes Command History show ip bgp ipv6 unicast filter-list as-path-name as-path-name • EXEC • EXEC Privilege Enter the name of an AS-PATH. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast flap-statistics View flap statistics on BGP routes.
• Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast inconsistent-as View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax show ip bgp ipv6 unicast inconsistent-as Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.
received-routes [network [networkmask] (OPTIONAL) Enter the keywords received-routes then either the network address (in dotted decimal format) or the network mask (in slash prefix format) to view all information received from neighbors. NOTE: You must configure the neighbor soft-reconfiguration inbound command prior to viewing all the information received from the neighbors.
Example Lines Beginning With Description For address family: Displays IPv6 Unicast as the address family. BGP table version Displays which version of the primary BGP routing table the router and the neighbor are using. Prefixes accepted Displays the number of network prefixes accepted by the router and the amount of memory used to process those prefixes. Prefixes advertised Displays the number of network prefixes advertised, the number rejected, and the number withdrawn from the BGP routing table.
'Connection Reset' Sent : 1 Recv: 0 BGP neighbor is 5ffe:11::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
9000::a:2 18508 35 9000::b:14 18508 29 Dell# 32 29 0 0 0 0 0 0 00:16:43 00:13:01 0 0 show ip bgp next-hop View all next hops (using learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. Syntax Parameters Command Modes Command History Example show ip bgp next-hop [local-routes] local-routes • EXEC • EXEC Privilege (OPTIONAL) Show next-hop information for local routes. Version Description 9.
• Command Modes Command History • EXEC • EXEC Privilege $ = (dollar sign) the end of the output string. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp paths as-path View all unique AS-PATHs in the BGP database. Syntax show ip bgp paths as-path Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp regexp Allows you to view the subset of BGP routing table matching the regular expressions specified. Syntax Parameters show ip bgp regexp regular-expression [character] regular-expression [character] Enter a regular expression then use one or a combination of the following characters to match: • .
Parameters Defaults Command Modes Command History Related Commands keepalive Enter the time interval (in seconds) between which the system sends keepalive messages. The range is from 1 to 65535. The default is 60 seconds. holdtimer Enter the time interval (in seconds) that the the system waits since the last keepalive message before declaring a BGP peer dead. The range is from 3 to 65535. The default is 180 seconds.
aggregate-address Summarize a range of prefixes to minimize the number of entries in the routing table. Syntax Parameters aggregate-address ipv6-address prefix-length [advertise-map map-name] [as-set] [attribute-map map-name] [summary-only] [suppress-map map-name] ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the / x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
bgp dampening Enable MBGP route dampening. Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased. After the router assigns a Penalty of 1024 to a route, the Penalty is decreased by half, after the halflife period expires. The range is from 1 to 45. The default is 15 minutes.
clear ip bgp ipv6 unicast dampening Clear information on route dampening. Syntax Parameters Command Modes Command History clear ip bgp dampening ipv6 unicast [network network-mask] network (OPTIONAL) Enter the IPv6 network address in x:x:x:x::x format. network-mask If you enter the network address, next enter the network mask, from 0 to 128. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
debug ip bgp ipv6 unicast dampening View information on routes being dampened. Syntax debug ip bgp ipv6 unicast dampening To disable debugging, use the no debug ip bgp ipv6 unicast dampening command. Parameters Command Modes Command History dampening Enter the keyword dampening to clear route flap dampening information. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the S4820T.
Parameters ipv6-address prefixlength Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. updates Enter the keyword updates to view BGP update information. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. Defaults Disabled.
The higher the administrative distance assigned to a route means that your confidence in that route is low. Routes assigned an administrative distance of 255 are not installed in the routing table. Routes from confederations are treated as internal BGP routes. neighbor activate Allows you to enable a specified neighbor/peer group for the current address and subsequent address family identifier (AFI/SAFI).
seconds Defaults Command Modes Command History Enter a number as the time interval, in seconds, between BGP advertisements. The range is from 0 to 600 seconds. The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers. • seconds = 5 seconds (internal peers) • seconds = 30 seconds (external peers) ROUTER BGPV6-ADDRESS FAMILY Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To delete a neighbor distribution list, use the no neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. prefix-list-name Enter the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes).
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor maximum-prefix Control the number of network prefixes received. Syntax neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] To return to the default values, use the no neighbor {ipv6-address | peer-group-name} maximum-prefix maximum [threshold] [warning-only] command.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name (OPTIONAL) Enter the name of the peer group. Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you configure the set ipv6 next-hop command in ROUTE-MAP mode, its configuration takes precedence over the neighbor next-hop-self command.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. map-name Enter the name of an established route map. If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version Description 9.9(0.
Usage Information The first time you enter this command it configures the neighbor as a route reflector and members of the routereflector cluster. Internal BGP (IBGP) speakers do not need to be fully meshed if you configure a route reflector. When all clients of a route reflector are disabled, the neighbor is no longer a route reflector. network Specify the networks for the BGP process and enter them in the BGP routing table.
If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. If you do not configure the default-metric command, in addition to the redistribute command, or there is no route map to set the metric, the metric for redistributed static and connected is “0”.
Paramters Command Modes Command History cluster-id • EXEC • EXEC Privilege (OPTIONAL) Enter the cluster id in dotted decimal format. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups.
show ip bgp ipv6 unicast community-list View routes that are affected by a specific community list. Syntax Paramters Command Modes Command History show ip bgp ipv6 unicast community-list community-list-name community-listname • EXEC • EXEC Privilege Enter the name of a configured IP community list. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example R2_Training#show ip bgp ipv6 unicast detail Detail information for BGP Node bgpNdP 0x41a17000 : NdTmrP 0x41a17000 : NdKATmrP 0x41a17014 : NdTics 327741 : NhLocAS 1 : NdState 2 : NdRPMPrim 1 : NdListSoc 13 NdAuto 1 : NdEqCost 1 : NdSync 0 : NdDefOrg 0 NdV6ListSoc 14 NdDefDid 0 : NdConfedId 0 : NdMedConfed 0 : NdMedMissVal -1 : NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP 0x41a19088 NdASPTblP 0x41a19090 : NdCommTblP 0x41a19098 : NhOptTransTblP 0x41a190a0 : NdRRClsTblP 0x41a190a8 NdPktPA 0
• . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences). • ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL+v) prior to entering the ? regular expression. Command Modes Command History Example • EXEC • EXEC Privilege • [ ] = (brackets) a range of single-character patterns.
show ip bgp ipv6 unicast neighbors Allows you to view the information exchanged by BGP neighbors. Syntax show ip bgp ipv6 unicast neighbors [ipv6-address prefix-length [advertisedroutes | dampened-routes | detail | flap-statistics | routes]] Parameters ipv6-address prefixlength (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Example Lines Beginning With Description Received messages This line displays the number of BGP messages received, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Sent messages The line displays the number of BGP messages sent, the number of notifications (error messages), and the number of messages waiting in a queue for processing. Received updates This line displays the number of BGP updates received and sent.
Prefixes accepted 1 (consume 4 bytes), withdrawn 0 by peer Prefixes advertised 0, rejected 0, withdrawn 0 from peer Connections established 3; dropped 2 Last reset 00:00:39, due to Closed by neighbor Notification History 'OPEN error/Bad AS' Sent : 0 Recv: 1 Local host: 5ffe:10::4, Local port: 179 Foreign host: 5ffe:10::3, Foreign port: 35470 Notification History 'Connection Reset' Sent : 1 Recv: 0 BGP neighbor is 5ffe:11::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Command Modes Command History Related Commands • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor peer-group (assigning peers) — assigns a peer to a peer-group. neighbor peer-group (creating group) — creates a peer group. show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections.
Field Description MsgRcvd Displays the number of BGP messages that neighbor received. MsgSent Displays the number of BGP messages that neighbor sent. TblVer Displays the version of the BGP table that was sent to that neighbor. InQ Displays the number of messages from that neighbor waiting to be processed. OutQ Displays the number of messages waiting to be sent to that neighbor. If a number appears in parentheses, the number represents the number of messages waiting to be sent to the peer group.
28 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic. To configure and verify the iSCSI optimization feature, use the following Dell Networking Operating System (OS) commands.
To remove the iSCSI session aging time, use the no iscsi aging time command. Parameters time Defaults 10 minutes Command Modes CONFIGURATION Command History Enter the aging time for the iSCSI session. The range is from 5 to 43,200 minutes. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. iscsi cos Set the QoS policy that is applied to the iSCSI flows.
iscsi enable Globally enable iSCSI optimization. Syntax iscsi enable To disable iSCSI optimization, use the no iscsi enable command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Enter the keyword enable to enable the iSCSI optimization feature. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. iscsi target port Configure the iSCSI target ports and optionally, the IP addresses on which iSCSI communication is monitored. Syntax iscsi target port [tcp-port-2...tcp-port-16]ip-address [ip-address] To remove the configured iSCSI target ports or IP addresses, use the no iscsi target port command. Parameters tcpport-2...tcpport- 16 Enter the tcp-port number of the iSCSI target ports.
Session aging time: 10 Maximum number of connections is 256 -----------------------------------------------iSCSI Targets and TCP Ports: -----------------------------------------------TCP Port Target IP Address 3260 860 Related Commands • show iscsi sessions — displays information about active iSCSI sessions on the switch. • show iscsi sessions detailed — displays detailed information about active iSCSI sessions on the switch. • show run iscsi — shows run iscsi.
Parameters Command Modes Command History Example isid • EXEC • EXEC Privilege Enter the session’s iSCSi ID to display detailed information about the specified iSCSi session. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell# show isci session detailed Session 0 : --------------------------------------------------Target:iqn.2010-11.com.ixia:ixload:iscsi-TG1 Initiator:iqn.2010-11.com.ixia.
• show iscsi sessions — show iscsi session — displays detailed information about active iSCSI sessions on the switch. • show iscsi sessions detailed — displays detailed information on active iSCSI sessions on the switch.
29 Intermediate System to Intermediate System (ISIS) The Dell Networking OS supports the intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
• graceful-restart restart-wait • hello padding • hostname dynamic • ignore-lsp-errors • ip router isis • ipv6 router isis • isis circuit-type • isis csnp-interval • isis csnp-interval • isis hello-multiplier • isis hello padding • isis ipv6 metric • isis metric • isis network point-to-point • isis password • isis priority • is-type • log-adjacency-changes • lsp-gen-interval • lsp-mtu • lsp-refresh-interval • max-area-addresses • max-lsp-lifetime • maximum-path
adjacency-check Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router. Syntax adjacency-check To disable adjacency check, use the no adjacency-check command. Defaults Enabled. Command Modes • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information You cannot disable leaking from one level to another; however, you can regulate the rate flow from one level to another using an IP Prefix list. If you do not configure the IP Prefix list, all routes are leaked. You can find more information in IETF RFC 2966, Domain-wide Prefix Distribution with Two-Level IS-IS. area-password Configure a hash message authentication code (HMAC) password for an area.
Usage Information CAUTION: Use caution when you enter this command. Back up your configuration prior to using this command or your IS-IS configuration will be erased. clear isis Restart the IS-IS process. All IS-IS data is cleared. Syntax clear isis [tag] {* | database | traffic} Parameters Command Modes Command History tag (Optional) Enter an alphanumeric string to specify the IS-IS routing tag area. * Enter the keyword * to clear all IS-IS information and restart the IS-IS process.
debug isis Enable debugging for all IS-IS operations. Syntax debug isis To disable debugging of IS-IS, use the no debug isis command. Command Modes Command History Usage Information EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Entering debug isis enables all debugging parameters. To display all debugging information in one output, use this command.
debug isis local-updates To debug IS-IS local update packets, enable debugging on a specific interface and provides diagnostic information. Syntax debug isis local-updates [interface] To turn off debugging, use the no debug isis local-updates [interface] command. Parameters Command Modes Command History interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
debug isis spf-triggers Enable debugging on the events that triggered IS-IS shortest path first (SPF) events for debugging purposes. Syntax debug isis spf-triggers To turn off debugging, use the no debug isis spf-triggers command. Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug isis update-packets Enable debugging on link state PDUs (LSPs) that a router detects.
Defaults metric metric (OPTIONAL) Enter the keyword metric then a number to assign to the route. The range is from 0 to 16777215. route-map mapname (OPTIONAL) A default route the routing process generates if the route map is satisfied. Not configured. Command Modes Command History Usage Information • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Related Commands router isis — Enter ROUTER mode on the switch. distance Define the administrative distance for learned routes. Syntax distance weight [ip-address mask [prefix-list]] To return to the default values, use the no distance weight command. Parameters Defaults Command Modes Command History Usage Information weight The administrative distance value indicates the reliability of a routing information source. The range is from 1 to 255. (A higher relative value indicates lower reliability.
Defaults Not configured. Command Modes Command History Related Commands • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • distribute-list out — suppresses networks from being advertised in updates. • redistribute — redistributes routes from one routing domain to another routing domain.
• redistribute — redistributes routes from one routing domain to another routing domain. distribute-list redistributed-override Suppress flapping of routes when the same route is redistributed into IS-IS from multiple routers in the network. Syntax distribute-list redistributed-override in To return to the default, use the no distribute-list redistributed-override in command.
Related Commands • area-password — configures an IS-IS area authentication password. • isis priority — configures the authentication password for an interface. graceful-restart ietf Enable graceful restart on an IS-IS router. Syntax graceful-restart ietf To return to the default, use the no graceful-restart ietf command. Parameters ietf Enter ietf to enable graceful restart on the IS-IS router. Defaults Graceful restart disabled.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart t1 Set the graceful restart wait time before unacknowledged restart requests are generated. This wait time is the interval before the system sends a restart request (an IIH with RR bit set in Restart TLV) until the CSNP is received from the helping router. Syntax graceful-restart t1 {interval seconds | retry-times value} To return to the default, use the no graceful-restart t1 command.
graceful-restart t3 Configure the overall wait time before graceful restart completes. Syntax graceful-restart t3 {adjacency | manual} seconds To return to the default, use the no graceful-restart t3 command. Parameters adjacency Enter the keyword adjacency so that the restarting router receives the remaining time value from its peer and adjusts its T3 value so if you have configured this option. manual Enter the keyword manual to specify a time value that the restarting router uses.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart t3 — configures the overall wait time before graceful restart completes. hello padding Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON or OFF for LAN or point-to-point hello PDUs.
Usage Information To build name-to-systemID mapping tables through the protocol, use this command. All show commands that display systems also display the hostname. Related Commands clns host — defines a name-to-NSAP mapping. ignore-lsp-errors Ignore LSPs with bad checksums instead of purging those LSPs. Syntax ignore-lsp-errors To return to the default values, use the no ignore-lsp-errors command. Defaults In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsp-errors).
ipv6 router isis Enable the IPv6 IS-IS routing protocol and specify an IPv6 IS-IS process. Syntax ipv6 router isis [tag] To disable IS-IS routing, use the no router isis [tag] command. Parameters tag Defaults Not configured. Command Modes ROUTER ISIS Command History Usage Information (OPTIONAL) This parameter is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router.
Defaults level-1-2 Command Modes INTERFACE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Because the default establishes Level 1 and Level 2 adjacencies, you do not need to configure this command. Routers in an IS-IS system must be configured as a Level 1-only, Level 1-2, or Level 2-only system.
isis csnp-interval Configure the IS-IS complete sequence number PDU (CSNP) interval on an interface. Syntax isis csnp-interval seconds [level-1 | level-2] To return to the default values, use the no isis csnp-interval [seconds] [level-1 | level-2] command. Parameters seconds Interval of transmission time between CSNPs on multi-access networks for the designated intermediate system. The range is from 0 to 65535. The default is 10.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The holdtime (the product of the hello-multiplier multiplied by the hello-interval) determines how long a neighbor waits for a hello packet before declaring the neighbor is down so routes can be recalculated. isis hello padding Turn ON or OFF padding of hello PDUs from INTERFACE mode.
Command Modes Command History Usage Information INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell Networking recommends configuring metrics on all interfaces. Without configuring this command, the IS-IS metrics are similar to hop-count metrics. isis metric Assign a metric to an interface.
Command Modes Command History INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. isis password Configure an authentication password for an interface. Syntax isis password [hmac-md5] password [level-1 | level-2] To delete a password, use the no isis password [password] [level-1 | level-2] command. Parameters encryption-type (OPTIONAL) Enter 7 to encrypt the password using DES.
To return to the default values, use the no isis priority [value] [level-1 | level-2] command. Parameters value This value sets the router priority. The higher the value, the higher the priority. The range is from 0 to 127. The default is 64. level-1 (OPTIONAL) Specify the priority for Level 1. This setting is the default. level-2 (OPTIONAL) Specify the priority for Level 2. Defaults value = 64; level-1 (if not otherwise specified).
If you are configuring only one area in your network, you do not need to run both Level 1 and Level 2 routing algorithms. You can configure the IS type as Level 1. log-adjacency-changes Generate a log messages for adjacency state changes. Syntax log-adjacency-changes To disable this function, use the no log-adjacency-changes command. Defaults Adjacency changes are not logged. Command Modes ROUTER ISIS Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. LSP throttling slows down the frequency at which LSPs are generated during network instability. Even though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected.
Parameters seconds Defaults 900 seconds Command Modes ROUTER ISIS Command History Usage Information The LSP refresh interval, in seconds. This value has to be less than the seconds value specified with the max-lsp-lifetime command. The range is from 1 to 65535 seconds. The default is 900. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To restore the default time, use the no max-lsp-lifetime command. Parameters seconds Defaults 1200 seconds Command Modes ROUTER ISIS Command History Usage Information The maximum lifetime of LSP in seconds. This value must be greater than the lsprefresh-interval command. The higher the value the longer the LSPs are kept. The range is from 1 to 65535. The default is 1200. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
metric-style To generate and accept old-style, new-style, or both styles of type, length, and values (TLV), configure a router. Syntax metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] To return to the default values, use the no metric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2] command. Parameters narrow Allows you to generate and accept old-style TLVs. The metric range is from 0 to 63.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. net To configure an IS-IS network entity title (NET) for a routing process, use this mandatory command. If you did not configure a NET, the ISIS process does not start. Syntax net network-entity-title To remove a net, use the no net network-entity-title command. Parameters network-entity-title Defaults Not configured.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Although the passive interface does not send nor receive routing updates, the network on that interface is still included in the IS-IS updates sent using other interfaces. redistribute Redistribute routes from one routing domain to another routing domain.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. To redistribute a default route (0.0.0.0/0), configure the default-information originate command. Changing or disabling a keyword in this command does not affect the state of the other command keywords. When an LSP with an internal metric is received, the system considers the route cost while considering the advertised cost to reach the destination.
route-map mapname map-name is an identifier for a configured route map. The route map filters imported routes from the source routing protocol to the current routing protocol. If you do not specify a map-name, all routes are redistributed. If you specify a keyword, but fail to list route map tags, no routes are imported. Defaults IS-IS Level 2 routes only Command Modes Command History • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version Description 9.9(0.
level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This setting is the default. match {external | internal} (OPTIONAL) The command used for OSPF to route and redistribute into other routing domains.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Configure a network entity title (the net command) to specify the area address and the router system ID. Enable routing on one or more interfaces to establish adjacencies and establish dynamic routing. You can configure only one IS-IS routing process to perform Level 2 routing. A level-1-2 designation performs Level 1 and Level 2 routing at the same time.
Command History Example (RouterIsis) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The bold section identifies that Multi-Topology IS-IS is enabled in Transition mode. Dell(conf-router_isis)#show config ! router isis clns host ISIS 49.0000.0001.F100.E120.0013.00 log-adjacency-changes net 49.0000.0001.F100.E120.0013.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show isis database command shown in the following example. Field Description IS-IS Level-1/ Level-2 Link State Database Displays the IS-IS link state database for Level 1 or Level 2. LSPID Displays the LSP identifier. The first six octets are the System ID of the originating router.
IS-IS Level-2 Link State Database LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL ISIS.00-00 * 0x00000006 0xCF43 580 0/0/0 ! Dell#show isis database detail ISIS.00-00 IS-IS Level-1 Link State Database LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL ISIS.00-00 * 0x0000002B 0x853B 1075 0/0/0 Area Address: 49.0000.0001 NLPID: 0xCC 0x8E IP Address: 10.1.1.1 IPv6 Address: 1011::1 Topology: IPv4 (0x00) IPv6 (0x8002) Metric: 10 IS OSPF.00 Metric: 10 IS (MT-IPv6) OSPF.00 Metric: 10 IP 15.1.1.0 255.255.
Example Dell#show isis graceful-restart detail Configured Timer Value ====================== Graceful Restart : Enabled T3 Timer : Manual T3 Timeout Value : 30 T2 Timeout Value : 30 (level-1), 30 (level-2) T1 Timeout Value : 5, retry count: 1 Adjacency wait time : 30 Operational Timer Value ====================== Current Mode/State : T3 Time left : T2 Time left : Restart ACK rcv count : Restart Req rcv count : Suppress Adj rcv count : Restart CSNP rcv count : Database Sync count : Dell# Normal/RUNNING 0 0
Command Modes Command History Example • EXEC • EXEC Privilege • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
• Command Modes Command History Usage Information • EXEC • EXEC Privilege For a VLAN, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Use this command to confirm that the neighbor adjacencies are operating correctly. If you suspect that they are not, you can verify the specified area addresses of the routers by using the show isis neighbors command.
• Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The bold section identifies that Multi-Topology IS-IS is enabled. Dell#show isis protocol IS-IS Router: System Id: F100.E120.0013 IS-Type: level-1-2 Manual area address(es): 49.0000.0001 Routing for area address(es): 49.0000.
Example 778 Item Description Level-1/Level-2 Hellos (sent/rcvd) Displays the number of Hello packets sent and received. PTP Hellos (sent/ rcvd) Displays the number of point-to-point Hellos sent and received. Level-1/Level-2 LSPs sourced (new/refresh) Displays the number of new and refreshed LSPs. Level-1/Level-2 LSPs flooded (sent/rcvd) Displays the number of flooded LSPs sent and received. Level-1/Level-2 LSPs CSNPs (sent/ rcvd) Displays the number of CSNP LSPs sent and received.
spf-interval Specify the minimum interval between shortest path first (SPF) calculations. Syntax spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] To restore default values, use the no spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command.
30 Link Aggregation Control Protocol (LACP) This chapter contains commands for Dell Networks’s implementation of the link aggregation control protocol (LACP) for creating dynamic link aggregation groups (LAGs) — known as port-channels in the Dell Networking Operating System (OS). NOTE: For static LAG commands, refer to theInterfaces chapter), based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision detection (CSMA/CD) access method and physical layer specifications.
To disable LACP debugging, use the no [config | events | pdu [interface [in | out]]] command. Parameters config (OPTIONAL) Enter the keyword config to debug the LACP configuration. events (OPTIONAL) Enter the keyword events to debug the LACP event information. pdu (OPTIONAL) Enter the keyword pdu to debug the LACP Protocol Data Unit information.
Usage Information You can configure the optimal switchover functionality for LACP. This command applies to dynamic port-channel interfaces only. When applied on a static port-channel, this command has no effect If you configure the optimized booting-time capability and perform a reload of the system, the LACP application sends PDUs across all the active LACP links immediately. Related Commands show lacp — displays the LACP configuration.
lacp system-priority Configure the LACP system priority. Syntax Parameters lacp system-priority priority-value priority-value Defaults 32768 Command Modes INTERFACE Command History Enter the port-priority value. The higher the value number, the lower the priority. The range is from 1 to 65535. The default is 32768. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. port-channel mode Configure the LACP port channel mode.
Mode Function passive An interface is not in an active negotiating state in this mode. LACP runs on any link configured in the passive state. Ports in a passive state respond to negotiation requests from other ports that are in active states. Ports in a passive state respond to LACP packets off An interface cannot be part of a dynamic port channel in off mode. LACP does not run on a port configured in off mode. port-channel-protocol lacp Enable LACP on any LAN port.
Command History Example (PortChannel-Number) Version 8.3.16.1 Dell#show lacp Port-channel 1 Actor System Partner System Introduced on the MXL 10/40GbE Switch IO Module. 1 admin up, oper up, mode lacp ID:Priority 32768, Address 0001.e800.a12b ID:Priority 32768, Address 0001.e801.
31 Layer 2 This chapter describes commands to configure Layer 2 features.
clear mac-address-table Clear the MAC address table. Syntax Parameters clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} address macaddress Enter the keyword address then a MAC address in nn:nn:nn:nn:nn:nn format. all Enter the keyword all to delete all MAC address entries in the MAC address table.
mac-address-table disable-learning Disable MAC address learning from LACP or LLDP BPDUs. Syntax mac-address-table disable-learning [lacp | lldp] Parameters lacp Enter lacp to disable MAC address learning from LACP BPDUs. lldp Enter LLDP to disable MAC address learning from LLDP BPDUs. Defaults Disabled Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide.
Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac-address-table station-move refresh-arp Ensure that address resolution protocol (ARP) refreshes the egress interface when a station move occurs due to a topology change. Syntax [no] mac-address-table station-move refresh-arp Defaults Enabled Command Modes CONFIGURATION Command History Usage Information Version 9.9(0.0) Modified the default option from none to Enabled. Version 9.2(0.0) Introduced on the M I/O Aggregator.
Usage Information This command and its options are supported on physical interfaces, static LAGs, LACP LAGs, and VLANs. If you do not specify the vlan option, the MAC address counters are not VLAN-based. That is, the sum of the addresses learned on all VLANs (not having any learning limit configuration) is counted against the MAC learning limit. MAC Learning Limit violation logs and actions are not available on a per-VLAN basis.
mac learning-limit station-move-violation Specify the actions for a station move violation. Syntax mac learning-limit station-move-violation {log | shutdown-both | shutdownoffending | shutdown-original} To disable a configuration, use the no mac learning-limit station-move-violation command, then the configured keyword. Parameters log Enter the keyword log to generate a syslog message on a station move violation.
show cam mac stack-unit Display the content addressable memory (CAM) size and the portions allocated for MAC addresses and for MAC ACLs. Syntax show cam mac stack-unit unit_number port-set port-pipe count [vlan vlan-id] [interface interface] Parameters stack-unit unit_number (REQUIRED) Enter the keyword linecard then a stack member number to select the linecard for which to gather information. The range is 0 to 5.
Command Modes Command History Usage Information static (OPTIONAL) Enter the keyword static to display only those MAC addresses specifically configured on the switch. Optionally, you can also add one of these combinations: address/mac-address, interface/interface, or vlan vlanid. address macaddress (OPTIONAL) Enter the keyword address then a MAC address in the nn:nn:nn:nn:nn:nn format to display information on that MAC address.
20 Dell# Usage Information 00:00:c9:ad:f6:12 Dynamic Te 0/3 Active The following describes the show mac-address-table command shown in the following example. Column Heading Description VlanId Displays the VLAN ID number. Mac Address Displays the MAC address in nn:nn:nn:nn:nn:nn format. Type Lists whether the MAC address was manually configured (Static), learned (Dynamic), or associated with a specific port (Sticky).
• Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show mac-address-table aging-time Mac-address-table aging time : 1800 Dell# Related Commands show mac-address-table — displays the current MAC address configuration. show mac learning-limit Display MAC address learning limits set for various interfaces.
Virtual LAN (VLAN) Commands The following commands configure and monitor virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces. You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP, ACLs and SNMP are not supported on a VLAN. Occasionally, while sending broadcast traffic over multiple Layer 3 VLANs, the VRRP state of a VLAN interface may continually switch between Master and Backup.
Usage Information To return VLAN 1 as the Default VLAN, use the (default-vlan-id 1) command. The Default VLAN contains only untagged interfaces. Related Commands interface vlan — configures a VLAN. default-vlan disable Disable the default VLAN so that all switchports are placed in the Null VLAN until they are explicitly configured as a member of another VLAN. Defaults Enabled. Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM.
show config Display the current configuration of the selected VLAN. Syntax show config Command Modes INTERFACE VLAN Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vl-100)#show config ! interface Vlan 1 description a no ip address mtu 2500 shutdown Dell(conf-if-vl-100)# show vlan Display the current VLAN configurations on the switch.
Usage Information The following describes the show vlan command shown in the following example. Column Heading Description (Column 1 — no heading) asterisk symbol (*) = Default VLAN • G = GVRP VLAN • P = primary VLAN • C = community VLAN • I = isolated VLAN • O = OpenFlow NUM Displays existing VLAN IDs. Status Displays the word Inactive for inactive VLANs and the word Active for active VLANs.
Q: U - Untagged, T - Tagged x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Vlan-stack, H - VSN tagged i - Internal untagged, I - Internal tagged, v - VLT untagged, V - VLT tagged NUM Status Description Q Ports 1 Inactive a Dell# Example (Brief) Dell#show vlan brief VLAN Name STG MAC Aging IP Address ---- -----------------------------1 0 0 unassigned 2 0 0 unassigned 20 0 0 unassigned 1002 0 0 unassigned Dell# Example (Name) Dellconf)#interface vlan 222 Dell(conf-if-vl-222)#name test Dell(conf-
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When you use the no tagged command, the interface is automatically placed in the Default VLAN as an untagged interface unless the interface is a member of another VLAN. If the interface belongs to several VLANs, remove it from all VLANs to change it to an untagged interface.
Related Commands interface vlan — configures a VLAN. tagged — specifies which interfaces in a VLAN are tagged. untagged Add a Layer 2 interface to a VLAN as an untagged interface. Syntax untagged interface To remove an untagged interface from a VLAN, use the no untagged interface command. Parameters interface Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
32 Link Layer Discovery Protocol (LLDP) Link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The Dell Networking operating software implementation of LLDP is based on IEEE standard 801.1ab.
advertise dot1-tlv Advertise dot1 TLVs (Type, Length, Value). Syntax advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlan-name} To remove advertised dot1-tlv, use the no advertise dot1-tlv {port-protocol-vlan-id | portvlan-id | vlan-name} command. Parameters port-protocol-vlanid Enter the keywords port-protocol-vlan-id to advertise the port protocol VLAN identification TLV. port-vlan-id Enter the keywords port-vlan-id to advertise the port VLAN identification TLV.
Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. advertise interface-port-desc Advertise port descriptor. Syntax advertise interface-port-desc {description | port-id} To remove the advertised port descriptor, use the no advertise interface—port—desc {description | port-id} command. Parameters description Enter the keyword description then the interface description. port-id Enter the keyword port-id then the port-id. The range is from 0 to 7.
Command Modes Command History Usage Information CONFIGURATION (conf-lldp) Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The command options system-capabilities, system-description, and system-name can be invoked individually or together, in any sequence. clear lldp counters Clear LLDP transmitting and receiving counters for all physical interfaces or a specific physical interface.
debug lldp interface To display timer events, neighbor additions or deletions, and other information about incoming and outgoing packets, enable LLDP debugging. Syntax debug lldp interface {interface | all}{events | packet {brief | detail} {tx | rx | both}} To disable debugging, use the no debug lldp interface {interface | all}{events} {packet {brief | detail} {tx | rx | both}} command.
Command History Related Commands Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. hello Configure the rate at which the LLDP control packets are sent to its peer. Syntax hello seconds To revert to the default, use the no hello seconds command.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. show lldp neighbors — displays the LLDP neighbors. multiplier Set the number of consecutive misses before LLDP declares the interface dead. Syntax multiplier integer To return to the default, use the no multiplier integer command. Parameters integer Enter the number of consecutive misses before the LLDP declares the interface dead.
Command Modes Command History Usage Information INTERFACE (conf-if-interface-lldp) Version 8.3.16.1 Before LLDP can be configured on an interface, it must be enabled globally from CONFIGURATION mode. This command places you in LLDP mode on the interface; it does not enable the protocol. When you enter the LLDP protocol in the Interface context, it overrides global configurations.
Example Dell#show lldp statistics --------- LLDP GLOBAL STATISTICS ON CHASSIS -----------Total number of neighbors: 2 Last table change time: 1w5d4h, In ticks: 52729764 Total number of Table Inserts: 56 Total number of Table Deletes: 54 Total number of Table Drops: 0 Total number of Table Age Outs: 12 Dell# show running-config lldp Display the current global LLDP configuration. Syntax show running-config lldp Defaults none Command Modes EXEC Privilege Command History Example 9.9(0.
• identify network policy advertise med guest-voice To advertise a separate limited voice service for a guest user with their own IP telephony handset or other appliances that support interactive voice services, configure the system. Syntax advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {prioritytagged number} To return to the default, use the no advertise med guest-voice {vlan-id layer2_priority DSCP_value} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID.
priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration.
show running-config lldp — displays the LLDP running configuration. advertise med power-via-mdi To advertise the Extended Power via MDI TLV, configure the system. Syntax advertise med power-via-mdi To return to the default, use the no advertise med power-via-mdi command. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show running-config lldp — displays the LLDP running configuration. advertise med streaming-video To advertise streaming video services for broadcast or multicast-based video, configure the system. This command does not include video applications that rely on TCP buffering. Syntax advertise med streaming-video {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med streaming-video {vlan-id} | {prioritytagged number} command. Parameters vlan-id Enter the VLAN ID.
Related Commands debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration. advertise med voice-signaling To advertise when voice control packets use a separate network policy than voice data, configure the system. Syntax advertise med voice-signaling {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med voice-signaling {vlan-id} | {prioritytagged number} command.
Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration. advertise med voice-signaling To advertise when voice control packets use a separate network policy than voice data, configure the system.
33 Microsoft Network Load Balancing Network Load Balancing (NLB) is a clustering functionality that is implemented by Microsoft on Windows 2000 Server and Windows Server 2003 operating systems. NLB uses a distributed methodology or pattern to equally split and balance the network traffic load across a set of servers that are part of the cluster or group.
With multicast NLB mode, the data is forwarded to all the servers based on the port specified using the Layer 2 multicast command, which is the mac-address-table static multicast vlan output-range , command in CONFIGURATION mode. Limitations With Enabling NLB on Switches The following limitations apply to switches on which you configure NLB: • The NLB unicast mode uses switch flooding to transmit all packets to all the servers that are part of the VLAN.
• mac-address-table static (for Multicast MAC Address) • ip vlan-flooding mac-address-table static (for Multicast MAC Address) For multicast mode of network load balancing (NLB), configure a static multicast MAC address, associate the multicast MAC address with the VLAN used to switch Layer 2 multicast traffic, and add output ports that will receive multicast streams on the VLAN.
Example (Multicast) Version Description 9.3(0.0) Added support for multicast MAC address on the MXL platform. mac-address-table static 01:00:5E:01:00:01 {multicast vlan 2 output—range Te 0/2,Te 0/3} ip vlan-flooding Enable unicast data traffic flooding on VLAN member ports. Syntax ip vlan-flooding To disable, use the no ip vlan-flooding command. Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL Switch .
34 Multicast Source Discovery Protocol (MSDP) Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
clear ip msdp sa-cache Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries. Syntax Parameters clear ip msdp sa-cache [group-address | rejected-sa | local] group-address Enter the group IP address in dotted decimal format (A.B.C.D.).
debug ip msdp Turn on MSDP debugging. Syntax debug ip msdp {event peer address | packet peer address | pim} To turn debugging off, use the no debug ip msdp {event peer address | packet peer address | pim} command. Parameters event peer address Enter the keyword event then the peer address in a dotted decimal format (A.B.C.D.). packet peer address Enter the keyword packet then the peer address in a dotted decimal format (A.B.C.D.). pim Enter the keyword pim to debug advertisement from PIM.
ip msdp default-peer Define a default peer from which to accept all source-active (SA) messages. Syntax ip msdp default-peer peer address [list name] To remove the default peer, use the no ip msdp default-peer {peer address} list name command. Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.) list name Enter the keywords list name and specify a standard access list that contains the RP address that should be treated as the default peer.
To remove the peer from a mesh group, use the no ip msdp mesh-group {name} {peer address} command. Parameters name Enter a string of up to 16 characters long for as the mesh group name. peer address Enter the peer address in a dotted decimal format (A.B.C.D.). Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ip msdp peer Configure an MSDP peer. Syntax ip msdp peer peer address [connect-source] [description] [sa-limit number] To remove the MSDP peer, use the no ip msdp peer peer address [connect-source interface] [description name] [sa-limit number] command. Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.).
ip msdp redistribute Filter local PIM SA entries in the SA cache. SAs which the ACL denies time out and are not refreshed. Until they time out, they continue to reside in the MSDP SA cache. Syntax ip msdp redistribute [list acl-name] Parameters list acl-name Defaults Not configured. Command Modes CONFIGURATION Command History Usage Information Enter the name of an extended ACL that contains permitted SAs. If you do not use this option, all local entries are blocked. Version Description 9.9(0.
ip msdp sa-limit Configure the upper limit of source-active (SA) entries in SA-cache. Syntax ip msdp sa-limit number To return to the default, use the no ip msdp sa-limit number command. Parameters number Defaults 50000 Command Modes CONFIGURATION Command History Usage Information Enter the maximum number of SA entries in SA-cache. The range is from 0 to 40000. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ip multicast-msdp Enable MSDP. Syntax ip multicast-msdp To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip msdp Display the MSDP peer status, SA cache, or peer summary.
Example (Sa-cache) Dell#show ip msdp sa-cache MSDP Source-Active Cache - 1 entries GroupAddr SourceAddr RPAddr 224.1.1.1 172.21.220.10 172.21.3.254 Dell# Example (Summary) Dell#show ip msdp summary Peer Addr Local Addr Description 5.5.5.32 6.6.6.32 Peer1 Dell# LearnedFrom Expire UpTime 172.21.3.254 102 00:02:52 State Source Established Lo 32 SA 20 Up/Down 00:07:17 show ip msdp sa-cache rejected-sa Display the rejected SAs in the SA cache.
35 Multiple Spanning Tree Protocol (MSTP) Multiple spanning tree protocol (MSTP), as implemented by the Dell Networking Operating System (OS), conforms to IEEE 802.1s.
• For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. Optionally, enter an in or out parameter with the optional interface: events Command Modes Command History Example • For Receive, enter the keyword in. • For Transmit, enter the keyword out. (OPTIONAL) Enter the keyword events to debug MSTP events. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Related Commands MULTIPLE SPANNING TREE Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree mstp — enters MULTIPLE SPANNING TREE mode. disable Enable bridge protocol data units (BPDU) filter globally to filter transmission of BPDU on port-fast enabled interfaces. Syntax edge-port bpdufilter default To disable global bpdu filter default, use the no edge-port bpdufilter default command.
hello-time Set the time interval between generation of MSTB bridge protocol data units (BPDUs). Syntax hello-time seconds To return to the default value, use the no hello-time command. Parameters seconds Enter a number as the time interval between transmission of BPDUs. The range is from 1 to 10. The default is 2 seconds. Defaults 2 seconds Command Modes MULTIPLE SPANNING TREE Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
max-hops Configure the maximum hop count. Syntax max-hops number To return to the default values, use the no max-hops command. Parameters range Enter a number for the maximum hop count. The range is from 1 to 40. The default is 20. Defaults 20 hops Command Modes MULTIPLE SPANNING TREE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, all VLANs are mapped to MST instance zero (0) unless you use the vlan range command to map it to a non-zero instance. Although MSTP instance IDs range from 0 to 4094, only 64 active instances are supported on the switch. name The name you assign to the multiple spanning tree region. Syntax name region-name To remove the region name, use the no name command.
Usage Information MSTP is not enabled when you enter MULTIPLE SPANNING TREE mode. To enable MSTP globally on the switch, enter the no disable command while in MULTIPLE SPANNING TREE mode. For more information about the multiple spanning tree protocol, refer to the Dell Networking OS Configuration Guide. Example Dell(conf)#protocol spanning-tree mstp Dell(config-mstp)#no disable Related Commands disable — disables multiple spanning tree.
protocol spanning-tree mstp no disable name CustomerSvc revision 2 MSTI 10 VLAN 101-105 max-hops 5 Dell(conf-mstp)# show spanning-tree mst configuration View the multiple spanning tree configuration. Syntax Command Modes Command History show spanning-tree mst configuration • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Enable the multiple spanning tree protocol prior to using this command. Example Dell#show spanning-tree msti 0 brief MSTI 0 VLANs mapped 1-4094 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 0001.e800.0204 Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e800.
Number of topology changes 1, last change occured 00:00:15 ago on Gi 0/0 Port 257 (GigabitEthernet 0/0) is LBK_INC Discarding Port path cost 20000, Port priority 128, Port Identifier 128.257 Designated root has priority 32768, address 0001.e801.6aa8 Designated bridge has priority 32768, address 0001.e801.6aa8 Designated port id is 128.
spanning-tree msti Configure multiple spanning tree instance cost and priority for an interface. Syntax spanning-tree msti instance {cost cost | priority priority} Parameters msti instance Enter the keyword msti and the MST instance number. The range is from zero (0) to 63. cost cost (OPTIONAL) Enter the keyword cost then the port cost value. The range is from 1 to 200000.
Command Modes Command History Usage Information shutdown-onviolation (OPTIONAL) Enter the keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. rootguard Enter the keyword rootguard to enable root guard on an MSTP port or port-channel interface. INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
36 Multicast The multicast commands are supported by Dell Networking Operating System (OS).
Related Commands Version Description 9.2.(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip pim tib — shows the PIM tree information base. ip mroute Assign a static mroute.
ip multicast-limit To limit the number of multicast entries on the system, use this feature. Syntax ip multicast-limit limit Parameters limit Defaults 15000 routes. Command Modes CONFIGURATION Command History Usage Information Enter the desired maximum number of multicast entries on the system. The range is from 1 to 50000. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
mtrace Trace a multicast route from the source to the receiver. Syntax Parameters Command Modes Command History Usage Information mtrace [vrf vrf-name] {source-address/hostname} [destination-address/hostname] [group-address/hostname] vrf vrf-name Enter the keyword vrf followed by the name of the VRF. If VRF name is not mentioned, the default VRF will be used. Mtrace is not supported for management VRF. source-address/ hostname Enter the source IP address in dotted decimal format (A.B.C.D).
-3 2.2.2.1 PIM 103.103.103.0/24 -4 103.103.103.3 --> Source -----------------------------------------------------------------The mtrace command traverses the path of the response data block in the reverse direction of the multicast data traffic. The mtrace command traverses the reverse path to the source from the destination.
Command Modes Command History Example (Static) • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2.(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip mroute static Mroute: 23.23.23.0/24, interface: Lo 2 Protocol: static, distance: 0, route-map: none, last change: 00:00:23 Example (Snooping) Dell#show ip mroute snooping IPv4 Multicast Snooping Table (*, 224.0.0.
Example Field Description Incoming interface Displays the reverse path forwarding (RPF) information towards the source for (S,G) entries and the RP for (*,G) entries. Outgoing interface list: Lists the interfaces that meet one of the following: • a directly connected member of the Group • statically configured member of the Group • received a (*,G) or (S,G) Join message Dell#show ip mroute IP Multicast Routing Table (*, 224.10.10.
RPF route/mask: 10.10.10.9/255.255.255.255 RPF type: unicast IPv6 Multicast Commands The following section contains the IPv6 multicast commands. debug ipv6 mld_host Enable the collection of debug information for MLD host transactions. Syntax [no] debug ipv6 mld_host [int-count | interface type] [slot/port-range] To discontinue collection of debug information for the MLD host transactions, use the no debug ipv6 mld_host command.
Defaults 15000 routes. Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This feature allows you to limit the number of multicast entries on the system. This number is the total of all the multicast entries on all line cards in the system. On each line card, the multicast module only installs the maximum number of entries, depending on the configured CAM profile.
37 Neighbor Discovery Protocol (NDP) The Dell Networking Operating System (OS) supports the network discovery protocol for IPv6. The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
Command Modes Command History • EXEC • EXEC Privilege • For a Fast Ethernet interface, enter the keyword fastEthernet then the slot/port information. • For a Port Channel interface, enter the keywords port-channel then a number. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For a VLAN, enter the keyword vlan then the VLAN ID.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ipv6 neighbors Display IPv6 discovery information. Entering the command without options shows all the IPv6 neighbor addresses stored on the control processor (CP). Syntax Parameters show ipv6 neighbors [ipv6-address] [cpu {rp1 [ipv6-address] | rp2 [ipv6address]}] [interface interface] ipv6-address Enter the IPv6 address of the neighbor in the x:x:x:x::x format.
38 Object Tracking Object Tracking supports IPv4 and IPv6, and is available on the Dell Networking platforms. Object tracking allows you to define objects of interest, monitor their state, and report to a client when a change in an object’s state occurs.
Example Dell#debug track all 04:35:04: %RPM0-P:RP2 %OTM-5-STATE: track 6 - Interface TenGigabitEthernet 1/2 line-protocol DOWN 04:35:04: %RPM0-P:RP2 %OTM-5-NOTIF: VRRP notification: resource ID 6 DOWN delay Configure the time delay used before communicating a change in the status of a tracked object to clients. Syntax delay {[up seconds] [down seconds]} To return to the default setting, use the no delay command.
Command History Related Commands Version Description 9.7(0.0) Introduced on the MXL. • track interface ip routing – configures object tracking on the routing status of an IPv4 Layer 3 interface. • track interface line-protocol – configures object tracking on the line-protocol state of a Layer 2 interface. • track ip route metric threshold – configures object tracking on the threshold of an IPv4 route metric.
show track Display information about tracked objects, including configuration, current tracked state (UP or DOWN), and the clients which are tracking an object. Syntax Parameters Command Modes Command History Usage Information Example show track [object-id [brief] | interface [brief] | ip route [brief] | resolution | [brief] | brief] object-id (OPTIONAL) Display information on the specified tracked object. The range is 1 to 500.
First-hop interface is TenGigabitEthernet 1/2 Tracked by: VRRP TenGigabitEthernet 2/3 IPv6 VRID 1 Track 3 IPv6 route 2050::/64 reachability Reachability is Up (STATIC) 5 changes, last change 00:02:16 First-hop interface is TenGigabitEthernet 1/2 Tracked by: VRRP TenGigabitEthernet 2/3 IPv6 VRID 1 Usage Information Example (Brief) The following describes the show track brief command shown in the Example below. Output Description ResID Number of the tracked object. Resource Type of tracked object.
Usage Information Use this command to configure the UP and/or DOWN threshold for the scaled metric of a tracked IPv4 or IPv6 route. Determine the UP/DOWN state of a tracked route by the threshold for the current value of the route metric in the routing table. To provide a common tracking interface for different clients, route metrics are scaled in the range 0 to 255, where 0 is connected and 255 is inaccessible.
Command History Usage Information Version Description 9.7(0.0) Introduced on the MXL. Added support for tunnel interface. Use this command to create an object that tracks the routing state of an IPv4 Layer 2 interface: • The status of the IPv4 interface is UP only if the Layer 2 status of the interface is UP and the interface has a valid IP address.
track ip route metric threshold Configure object tracking on the threshold of an IPv4 route metric. Syntax track object-id ip route ip-address/prefix-len metric threshold To return to the default setting, use the no track object-id command. Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. ip-address/ prefixlen Enter an IPv4 address in dotted decimal format. The valid IPv4 prefix lengths are from /0 to /32.
track ip route reachability Configure object tracking on the reachability of an IPv4 route. Syntax track object-id ip route ip-address/prefix-len reachability [vrf vrf-name] To return to the default setting, use the no track object-id command. Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. ip-address/ prefixlen Enter an IPv4 address in dotted decimal format. The valid IPv4 prefix lengths are from /0 to /32.
Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. isis resolution-value Enter the resolution used to convert the metric in the routing table for ISIS routes to a scaled metric. ospf resolutionvalue Enter the resolution used to convert the metric in the routing table for OSPF routes to a scaled metric. Defaults none Command Modes CONFIGURATION Command History Usage Information Version Description 9.7(0.0) Introduced on the MXL.
Parameters Command Modes Command History Usage Information Example brief • EXEC • EXEC Privilege (OPTIONAL) Display a single line summary of information for tracked IPv6 routes. Version Description 9.7(0.0) Introduced on the MXL. The following describes the show track ipv6 route command shown in the Example below. Output Description Track object-id Displays the number of the tracked object.
Example (Brief) Ouput Description Last Change Time since the last change in the state of the tracked object. Dell#show track ipv6 route brief ResId Resource Parameter State LastChange 2 IPv6 route metric threshold 2040::/64 Up 00:02:36 3 IPv6 route reachability 2050::/64 Up 00:02:36 track interface ipv6 routing Configure object tracking on the routing status of an IPv6 Layer 3 interface.
track ipv6 route metric threshold Configure object tracking on the threshold of an IPv4 route metric. Syntax track object-id ipv6 route ipv6-address/prefix-len metric threshold To return to the default setting, use the no track object-id command. Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. ipv6-address/ prefix-len Enter an IPv6 address in X:X:X:X::X format. The valid IPv6 prefix lengths are from /0 to / 128.
track ipv6 route reachability Configure object tracking on the reachability of an IPv6 route. Syntax track object-id ipv6 route ip-address/prefix-len reachability To return to the default setting, use the no track object-id command. Parameters object-id Enter the ID number of the tracked object. The range is 1 to 500. ipv6-address/ prefix-len Enter an IPv6 address in X:X:X:X::X format. The valid IPv6 prefix lengths are from /0 to / 128.
ospf resolutionvalue Defaults none Command Modes CONFIGURATION Command History Usage Information Enter the resolution used to convert the metric in the routing table for OSPF routes to a scaled metric. Version Description 9.7(0.0) Introduced on the MXL. Use this command to configure the protocol-specific resolution value that converts the actual metric of an IPv6 route in the routing table to a scaled metric in the range 0 to 255.
39 Open Shortest Path First (OSPFv2 and OSPFv3) The Switch supports open shortest path first version 2 (OSPFv2) for IPv4 and version 3 (OSPFv3) for IPv6. Up to 16 OSPF instances can be run simultaneously on the Switch. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
• ip ospf dead-interval • ip ospf hello-interval • ip ospf message-digest-key • ip ospf mtu-ignore • ip ospf network • ip ospf priority • ip ospf retransmit-interval • ip ospf transmit-delay • log-adjacency-changes • maximum-paths • mib-binding • network area • passive-interface • redistribute • redistribute bgp • redistribute isis • router-id • router ospf • show config • show ip ospf • show ip ospf asbr • show ip ospf database • show ip ospf database asbr-summa
• debug ipv6 ospf • debug ipv6 ospf bfd • debug ipv6 ospf events • debug ipv6 ospf packet • debug ipv6 ospf spf • default-information originate • graceful-restart grace-period • graceful-restart mode • ipv6 ospf area • ipv6 ospf authentication • ipv6 ospf bfd all-neighbors • ipv6 ospf cost • ipv6 ospf dead-interval • ipv6 ospf encryption • ipv6 ospf graceful-restart helper-reject • ipv6 ospf hello-interval • ipv6 ospf priority • ipv6 router ospf • maximum-paths • passi
Defaults cost = 1; no areas are configured. Command Modes ROUTER OSPF Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information In the Dell Networking operating software, cost is defined as reference bandwidth. Related Commands area stub — creates a stub area. area nssa Specify an area as a not so stubby area (NSSA).
mask Specify a mask for the destination prefix. Enter the full mask (for example, 255.255.255.0). not-advertise (OPTIONAL) Enter the keywords not-advertise to set the status to DoNotAdvertise (that is, the Type 3 summary-LSA is suppressed and the component networks remain hidden from other areas.) Defaults Not configured. Command Modes ROUTER OSPF Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
auto-cost Specify how the OSPF interface cost is calculated based on the reference bandwidth method. Syntax auto-cost [reference-bandwidth ref-bw] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [reference-bandwidth] command. Parameters ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. The range is from 1 to 4294967. The default is 100 megabits per second. Defaults 100 megabits per second.
neighbor router-id Defaults none Command Modes EXEC Privilege Command History Related Commands • For Port Channel groups, enter the keywords port-channel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information.
Field Description 8:14 Displays the time stamp. OSPF Displays the OSPF process ID: instance ID. v: Displays the OSPF version. The system supports version 2 only. t: Displays the type of packet sent: • 1 - Hello packet • 2 - database description • 3 - link state request • 4 - link state update • 5 - link state acknowledgement l: Displays the packet length. rid: Displays the OSPF router ID. aid: Displays the Autonomous System ID. chk: Displays the OSPF checksum.
Example Field Description dr: Displays the IP address of the designated router. bdr: Displays the IP address of the Border Area Router. Dell#debug ip ospf 1 packet OSPF process 90, packet debugging is on Dell# 08:14:24 : OSPF(100:00): Xmt. v:2 t:1(HELLO) l:44 rid:192.1.1.1 aid:0.0.0.1 chk:0xa098 aut:0 auk: keyid:0 to:Gi 4/3 dst:224.0.0.5 netmask:255.255.255.0 pri:1 N-, MC-, E+, T-, hi:10 di:40 dr:90.1.1.1 bdr:0.0.0.
default-metric Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. Syntax default-metric number To return to the default values, use the no default-metric [number] command. Parameters number Defaults Disabled. Command Modes ROUTER OSPF Command History Related Commands Enter a number as the metric. The range is from 1 to 16777214. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
To delete the settings, use the no distance weight [ip-address mask access-list-name] command. Parameters weight Specify an administrative distance. The range is from 1 to 255. The default is 110. ip-address (OPTIONAL) Enter a router ID in the dotted decimal format. If you enter a router ID, include the mask for that router address. mask (OPTIONAL) Enter a mask in dotted decimal format or /n format. access-list-name (OPTIONAL) Enter the name of an IP standard access list, up to 140 characters.
distribute-list in Apply a filter to incoming routing updates from OSPF to the routing table. Syntax distribute-list prefix-list-name in [interface] To delete a filter, use the no distribute-list prefix-list-name in [interface] command. Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: Defaults Not configured.
Command Modes Command History Usage Information ROUTER OSPF Version Description heading 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The distribute-list out command applies to routes autonomous system boundary routers (ASBRs) redistributes into OSPF. It can be applied to external type 2 and external type 1 routes, but not to intra-area and inter-area routes.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. In OSPF, flooding is the most resource-consuming task. The flooding algorithm, described in RFC-2328, requires that OSPF flood LSAs (Link State Advertisements) on all interfaces, as governed by LSA’s flooding scope (see Section 13 of the RFC).
Command Modes Command History ROUTER OSPF Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart mode Enable the graceful restart mode. Syntax graceful-restart mode [planned-only | unplanned-only] To disable graceful restart mode, use the no graceful-restart mode command. Parameters planned-only (OPTIONAL) Enter the keywords planned-only to indicate graceful restart is supported in a planned restart condition only.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ospf auth-change-wait-time OSPF provides a grace period while OSPF changes its interface authentication type. During the grace period, OSPF sends out packets with new and old authentication scheme until the grace period expires. Syntax ip ospf auth-change-wait-time seconds To return to the default, use the no ip ospf auth-change-wait-time command. Parameters seconds Defaults zero (0) seconds.
ip ospf cost Change the cost associated with the OSPF traffic on an interface. Syntax ip ospf cost cost To return to default value, use the no ip ospf cost command. Parameters cost Enter a number as the cost. The range is from 1 to 65535. Defaults The default cost is based on the reference bandwidth. Command Modes INTERFACE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip ospf hello-interval Specify the time interval between the hello packets sent on the interface. Syntax ip ospf hello-interval seconds To return to the default value, use the no ip ospf hello-interval command. Parameters seconds Defaults 10 seconds Command Modes INTERFACE Command History Enter the number of seconds for the interval. The range is from 1 to 65535. The default is 10 seconds. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
After the reply is received and the new key is authenticated, delete the old key. Dell recommends keeping only one key per interface. NOTE: The MD5 secret is stored as plain text in the configuration file with service password encryption. Write down or otherwise record the key. You cannot learn the key once it is configured. Use caution when changing the key. ip ospf mtu-ignore Disable OSPF MTU mismatch detection upon receipt of database description (DBD) packets.
ip ospf priority To determine the designated router for the OSPF network, set the priority of the interface. Syntax ip ospf priority number To return to the default setting, use the no ip ospf priority command. Parameters number Defaults 1 Command Modes INTERFACE Command History Usage Information Enter a number as the priority. The range is from 0 to 255. The default is 1. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip ospf transmit-delay To send a link state update packet on the interface, set the estimated time elapsed. Syntax ip ospf transmit-delay seconds To return to the default value, use the no ip ospf transmit-delay command. Parameters seconds Enter the number of seconds as the interval between retransmission. The range is from 1 to 3600. The default is 1 second. This value must be greater than the transmission and propagation delays for the interface.
Parameters number Specify the number of paths. The range for OSPFv2 is from 1 to 16. The default for OSPFv2 is 4 paths. The range for OSPFv3 is from 1 to 64. The default for OSPFv3 is 8 paths. Defaults 4 Command Modes ROUTER OSPF for OSPFv2 ROUTER OSPFv3 for OSPFv3 Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
area-id Enter the OSPF area ID as either a decimal value or in a valid IP address. Decimal value range is from 0 to 65535. IP address format is dotted decimal format A.B.C.D. NOTE: If the area ID is smaller than 65535, it is converted to a decimal value. For example, if you use an area ID of 0.0.0.1, it is converted to 1. Command Modes Command History Usage Information ROUTER OSPF Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Although the passive interface does not send or receive routing updates, the network on that interface is still included in OSPF updates sent using other interfaces. The default keyword sets all interfaces as passive. You can then configure individual interfaces, where adjacencies are desired, using the no passive-interface interface command.
metric metric-value (OPTIONAL) Enter the keyword metric then a number. The range is from 0 (zero) to 16777214. metric-type typevalue (OPTIONAL) Enter the keywords metric-type then one of the following: 1 = OSPF External type 1 • 2 = OSPF External type 2 route-map mapname (OPTIONAL) Enter the keywords route-map then the name of the route map. tag tag-value (OPTIONAL) Enter the keyword tag then a number. The range is from 0 to 4294967295. Defaults Not configured.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. redistribute isis Redistribute IS-IS routing information throughout the OSPF instance. Syntax redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value | metric-type type-value] [route-map map-name] [tag tag-value] To disable redistribution, use the no redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric metric-value | metric-type type-value] [route-map map-name] [tag tag-value] command.
Parameters ip-address Defaults none. Command Modes ROUTER OSPF Command History Enter the router ID in the IP address format. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can configure an arbitrary value in the IP address format for each router. However, each router ID must be unique.
show config Display the non-default values in the current OSPF configuration. Syntax show config Command Modes ROUTER OSPF Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-router_ospf)#show config ! router ospf 3 passive-interface FastEthernet 0/1 Dell(conf-router_ospf)# show ip ospf Display information on the OSPF process configured on the switch.
Line Beginning with Description “Convergence Level” “Min LSA....” Displays the intervals set for LSA transmission and acceptance. “Number of...” Displays the number and type of areas configured for this process ID. Example Dell#show ip ospf 10 Routing Process ospf 10 with ID 1.1.1.
You can determine if an ASBR is in a directly connected area (or not) by the flags. For ASBRs in a directly connected area, E flags are set. In the following example, router 1.1.1.1 is in a directly connected area since the Flag is E/-/-/. For remote ASBRs, the E flag is clear (-/-/-/). Example Dell#show ip ospf 1asbr RouterID 3.3.3.3 1.1.1.1 Dell# Flags -/-/-/ E/-/-/ Cost Nexthop 2 10.0.0.2 0 0.0.0.0 Interface Area Gi 0/1 1 0 show ip ospf database Display all LSA information.
Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.0 Dell> Related Commands Network (Area 0.0.0.0) ADV Router Age Seq# Checksum 13.1.1.1 676 0x80000003 0x6592 192.68.135.2 908 0x80000055 0x683e Type-5 AS External ADV Router Age Seq# 192.68.135.2 908 0x80000052 192.68.135.2 908 0x8000002a 11.1.2.1 718 0x80000002 11.1.2.1 718 0x80000002 11.1.2.1 718 0x80000002 11.1.2.1 718 0x80000002 13.1.1.1 1184 0x80000068 11.
Example Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router. The following options can be found in this item: • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. • DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits. • E or No E is displayed on whether the originating router can accept AS External LSAs.
show ip ospf database external Display information on the AS external (type 5) LSAs. Syntax Parameters show ip ospf process-id database external [link-state-id] [adv-router ipaddress] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Field Description Length Displays the length in bytes of the LSA. Network Mask Displays the network mask implemented on the area. Metrics Type Displays the external type. TOS Displays the Type of Service (TOS) options. Option 0 is the only option. Metric Displays the LSA metric. Forward Address Identifies the address of the forwarding router. Data traffic is forwarded to this router. If the forwarding address is 0.0.0.0, data traffic is forwarded to the originating router.
Parameters process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
LS age: 1372 Options: (No TOS-capability, DC, E) LS type: Network Link State ID: 202.10.10.2 Advertising Router: 20.20.20.8 LS Seq Number: 0x80000006 Checksum: 0xa35 Length: 36 Network Mask: /24 Attached Router: 20.20.20.8 Attached Router: 20.20.20.9 Attached Router: 20.20.20.7 Network (Area 0.0.0.1) LS age: 252 Options: (TOS-capability, No DC, E) LS type: Network Link State ID: 192.10.10.2 Advertising Router: 192.10.10.
show ip ospf database opaque-area Display the opaque-area (type 10) LSA information. Syntax Parameters show ip ospf process-id database opaque-area [link-state-id] [adv-router ipaddress] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Example Item Description Opaque ID Displays the Opaque type-specific ID (the remaining 24 bits of the Link State ID). Dell>show ip ospf 1 database opaque-area OSPF Router with ID (3.3.3.3) (Process ID 1) Type-10 Opaque Link Area (Area 0) LS age: 1133 Options: (No TOS-capability, No DC, E) LS type: Type-10 Opaque Link Area Link State ID: 1.0.0.1 Advertising Router: 10.16.1.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip ospf database — displays OSPF database information. show ip ospf database opaque-link Display the opaque-link (type 9) LSA information. Syntax Parameters show ip ospf process-id database opaque-link [link-state-id] [adv-router ipaddress] process-id Enter the OSPF process ID to show a specific process.
adv-router ipaddress Command Modes Command History Usage Information Example • EXEC • EXEC Privilege • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.0) for Type 5 LSAs (OPTIONAL) Enter the keywords adv-router then the IP address of an Advertising Router to display only the LSA information about that router. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Router (Area 0) LS age: 967 Options: (No TOS-capability, No DC, E) LS type: Router Link State ID: 1.1.1.10 Advertising Router: 1.1.1.10 LS Seq Number: 0x8000012f Checksum: 0x3357 Length: 144 AS Boundary Router Area Border Router Number of Links: 10 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.129.1 (Link Data) Router Interface address: 192.68.129.1 Number of TOS metric: 0 TOS 0 Metric: 1 Link connected to: a Transit Network (Link ID) Designated Router address: 192.68.130.
adv-router ipaddress Command Modes Command History Usage Information Example • EXEC • EXEC Privilege • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.0) for Type 5 LSAs (OPTIONAL) Enter the keywords adv-router then the IP address of an Advertising Router to display only the LSA information about that router. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
LS Seq Number: 0x80000054 Checksum: 0xb5a2 Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 9 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.32.0 Advertising Router: 1.1.1.10 LS Seq Number: 0x80000016 Checksum: 0x987c Length: 28 Network Mask: /24 TOS: 0 Metric: 1 LS age: 7 Options: (No TOS-capability, No DC, E) LS type: Summary Network Link State ID: 192.68.33.0 Advertising Router: 1.1.1.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf process-id interface command shown in the following example. Item Description TenGigabitEthernet. .. This line identifies the interface type slot/port and the status of the OSPF protocol on that interface. Internet Address...
Loopback interface is treated as a stub Host. Dell> show ip ospf neighbor Display the OSPF neighbors connected to the local router. Syntax Parameters Command Modes Command History Usage Information Example show ip ospf process-id neighbor process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Defaults none Command Modes • EXEC • EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command is useful in isolating routing problems between the OSPF and the RTM. For example, if a route is missing from the RTM/FIB but is visible from the display output of this command, the problem is with downloading the route to the RTM.
neighbor router-id Defaults Command Modes Command History Usage Information (OPTIONAL) Enter the keyword neighbor then the neighbor’s router-id in dotted decimal format (A.B.C.D.). none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ip ospf statistics process-id global command shown in the following example.
Example Error Type Description Nbr-State LSA, LSR, and LSU are received from a neighbor with stats less than the loading state. Auth-Error Simple authentication error. MD5-Error MD5 error Cksum-Err Checksum Error Version Version mismatch AreaMismatch Area mismatch Conf-Issue The received hello packet has a different hello or dead interval than the configuration. No-Buffer Buffer allocation failure. Seq-no A sequence no errors occurred during the database exchange process.
Example (Statistics) Related Commands • The LSU Q length and its highest mark for each neighbor • The LSR Q length and its highest mark for each neighbor Dell#show ip ospf 10 statistics Interface TenGigabitEthernet 4/45 Error packets (Receive statistics) Intf-Down 0 Non-Dr 0 Self-Org Wrong-Len 0 Invld-Nbr 0 Nbr-State Auth-Error 0 MD5-Error 0 Cksum-Err Version 0 AreaMisMatch 0 Conf-Issue SeqNo-Err 0 Unknown-Pkt 0 Bad-LsReq RtidZero 0 Neighbor ID 3.1.1.
show ip ospf topology Display routers in directly connected areas. Syntax show ip ospf process-id topology Parameters Defaults process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. none Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The area range command summarizes routes for the different areas. With the not-advertise parameter configured, you can use this command to filter out some external routes. For example, if you want to redistribute static routes to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.0, you can configure the summary-address 1.1.0.0 255.255.0.
Dell(conf-router_ospf-1)#show config ! router ospf 1 timers spf 2 5 msec Dell(conf-router_ospf-1)# Dell(conf-router_ospf-1)#end Dell# timers throttle lsa all Configure LSA transmit intervals. Syntax timers throttle lsa all {start-interval | hold-interval | max-interval} To return to the default, use the no timers throttle lsa command. Parameters Defaults Command Modes Command History Usage Information start-interval Set the minimum interval between initial sending and resending the same LSA.
Parameters arrival-time Defaults 1000 msec Command Modes ROUTER OSPF Command History Set the interval between receiving the same LSA repeatedly, to allow sufficient time for the system to accept the LSA. The range is from 0 to 600,000 milliseconds. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. OSPFv3 Commands The fundamental mechanisms of OSPF (flooding, DR election, area support, SPF calculations, and so on) remain unchanged.
Defaults Not configured. Command Modes ROUTER OSPFv3 Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before you enable IPsec authentication on an OSPFv3 area, you must first enable OSPFv3 globally on the router. Configure the same authentication policy (same SPI and key) on each interface in an OSPFv3 link.
The required lengths of a non-encrypted or encrypted key are: 3DES - 48 or 96 hex digits; DES - 16 or 32 hex digits; AES-CBC -32 or 64 hex digits for AES-128 and 48 or 96 hex digits for AES-192. authenticationalgorithm Specifies the authentication algorithm to use for encryption. Valid values are MD5 or SHA1. key-encryptiontype (OPTIONAL) Specifies if the authentication key is encrypted. Valid values: 0 (key is not encrypted) or 7 (key is encrypted). key Text string used in authentication.
area nssa Specify an area as a not so stubby area (NSSA). Syntax area area-id nssa [default-information-originate] [no-redistribution] [nosummary] To delete an NSSA, use the no area area-id nssa command. Parameters area-id Specify the OSPF area by entering a number from zero (0) to 65535. no-redistribution (OPTIONAL) Specify that the redistribute command does not distribute routes into the NSSA.
Version Description pre- 6.1.1.1 Introduced on the E-Series. auto-cost Specify how the OSPF interface cost is calculated based on the reference bandwidth method. Syntax auto-cost [reference-bandwidth ref-bw] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [reference-bandwidth ref-bw] command. Parameters ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. The range is from 1 to 4294967. The default is 100 megabits per second.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug ipv6 ospf Display debug information and interface types on OSPF IPv6 packets or events.
• Command Modes Command History Usage Information Example For a VLAN, enter the keyword vlan then a number from 1 to 4094. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The following section describes the command fields. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version..
Parameters interface vrf vrf-name (OPTIONAL) Enter one of the following keywords and slot/port or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For a port channel interface, enter the keywords port-channel then a number. • For a VLAN interface, enter the keyword vlan then a number from 1 to 4094.
Lines Beginning With or Including Description • 3 - link state request • 4 - link state update • 5 - link state acknowledgement Length: Displays the OSPFv3 packet length. Router ID: Displays the OSPFv3 router ID. Area ID: Displays the OSPFv3 area ID. Chksum: Displays the OSPFv3 checksum. debug ipv6 ospf packet Display debug information and interface types on OSPF IPv6 packets.
Version Description 9.2(1.0) Introduced on the Z9500. 9.1.(0.0) Introduced on the S4810 and Z9000. 8.3.19.0 Introduced on the S4820T. 7.8.1.0 Added support for C-Series. 7.4.1.0 Introduced on E-Series. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp. Sending Ver:3 Sending OSPF3 version..
Command Modes EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Usage Information Example Version Description 9.11.0.0 Introduced the command. The following section describes the command fields. Lines Beginning With or Including Description OSPFv3... Debugging is on for all OSPFv3 packets and all interfaces. 05:21:01 Displays the time stamp.
Parameters always (OPTIONAL) Enter the keyword always to specify that default route information must always be advertised. metric metric-value (OPTIONAL) Enter the keyword metric then a number to configure a metric value for the route. The range is from 1 to 16777214. metric-type typevalue (OPTIONAL) Enter the keywords metric-type then an OSPFv3 link state type of 1 or 2 for default routes. The values are: route-map mapname Defaults Disabled.
graceful restart is enabled (restarting role), an OSPFv3 restarting expects its OSPFv3 neighbors to help when it restarts by not advertising the broken link. When you enable the helper-reject role on an interface with the ipv6 ospf graceful-restart helper-reject command, you reconfigure OSPFv3 graceful restart to function in a “restarting-only” role. In a “restarting-only” role, OSPFv3 does not participate in the graceful restart of a neighbor.
area area-id Defaults none Command Modes INTERFACE Command History Specify the OSPF area. The range is from 0 to 65535. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 ospf authentication Enable IPv6 OSPF on an interface.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Before you enable IPsec authentication on an OSPFv3 interface, first enable IPv6 unicast routing globally, configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area. An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router. Configure the same authentication policy (same SPI and key) on each OSPFv3 interface in a link.
command overrides timers set using the bfd all-neighbors command. Using the no form of this command does not disable BFD if you configured BFD in CONFIGURATION mode. To disable BFD on a specific interface while BFD is configured in CONFIGURATION mode, use the keyword disable. ipv6 ospf cost Explicitly specify the cost of sending a packet on an interface. Syntax ipv6 ospf interface-cost Parameters interface-cost Enter a unsigned integer value expressed as the link-state metric.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. By default, the dead interval is four times longer than the default ipv6 ospf hello-interval command. ipv6 ospf encryption Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface.
For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits (encrypted). Defaults Not configured. Command Modes INTERFACE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ipv6 ospf hello-interval Specify the time interval between the hello packets sent on the interface. Syntax Parameters ipv6 ospf hello—interval seconds seconds Defaults 10 seconds (Ethernet). Command Modes INTERFACE Command History Usage Information Enter the time interval in seconds as the time between hello packets. The range is from 1 to 65525 seconds. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ipv6 router ospf Enable OSPF for IPv6 router configuration. Syntax ipv6 router ospf process-id To exit OSPF for IPv6, use the no ipv6 router ospf process-id command. Parameters process-id Defaults none Command Modes CONFIGURATION Command History Enter the process identification number. The range is from 1 to 65535. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
To return all OSPF interfaces (current and future) to active, use the no passive-interface default command. Parameters Command Modes Default Enter the keyword default to make all OSPF interfaces (current and future) passive. interface Enter the following keywords and slot/port or number information: • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information.
connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. metric metric-value Enter the keyword metric then the metric value. The range is from 0 to 16777214. The default is 20. metric-type typevalue (OPTIONAL) Enter the keywords metric-type then the OSPFv3 link state type of 1 or 2 for default routes.
router-id Designate a fixed router ID. Syntax router-id ip-address To return to the previous router ID, use the no router-id ip-address command. Parameters ip-address Enter the router ID in the dotted decimal format. Defaults The router ID is selected automatically from the set of IPv4 addresses configured on a router. Command Modes ROUTER OSPFv3 for OSPFv3 Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. The show crypto ipsec policy command output displays the AH and ESP parameters configured in IPsec security policies, including the SPI number, keys, and algorithms used. When configured in a helper-reject role, an OSPFv3 router ignores the Grace LSAs that it receives from a restarting OSPFv3 neighbor.
Parameters database-summary (OPTIONAL) Enter the keywords database-summary to view a summary of database LSA information. grace-lsa (OPTIONAL): Enter the keywords grace-lsa to display the Type-11 Grace LSAs sent and received on an OSPFv3 router. Defaults none Command Modes EXEC EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator.
Usage Information If you enable BFD at the global level, show ipv6 ospf interface shows the BFD provisioning. If you enable BFD at the interface level, show ipv6 ospf interface shows the BFD interval timers. Example Dell#show ipv6 ospf interface Tengigabitethernet 1/0 TenGigabitEthernet 1/0 is up, line protocol is up Link Local Address fe80::201:e8ff:fe17:5bbd, Interface ID 67420217 Area 0, Process ID 1, Instance ID 0, Router ID 11.1.1.
To return to the default, use the no timers spf command. Parameters delay Enter a number as the delay. The range is from 0 to 2147483647. The default is 5 seconds. holdtime Enter a number as the hold time. The range is from 0 to 2147483647. The default is 10 seconds. msec Enter the keyword msec to specify the time interval value in milli seconds. NOTE: If you do not specify the msec option, the timer values are considered as seconds.
40 Policy-based Routing (PBR) Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR, create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. PBR is supported by the Dell Networking operating software (OS).
ip redirect-group Apply a redirect list (policy-based routing) on an interface. You can apply multiple redirect lists to an interface by entering this command multiple times. Syntax ip redirect-group redirect-list-nametest [l2–switch] To remove a redirect list from an interface, use the no ip redirect-group name command. Parameters redirect-list-name Enter the name of a configured redirect list. l2–switch Enter the keyword l2–switch to enable PBR on Layer2 (switched) traffic.
• show ip redirect-list – displays the redirect-list configuration. ip redirect-list Configure a redirect list and enter REDIRECT-LIST mode. Syntax ip redirect-list redirect-list-name To remove a redirect list, use the no ip redirect-list command. Parameters redirect-list-name Defaults none Command Modes CONFIGURATION Command History Enter the name of a redirect list. Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.
any Enter the keyword any to specify that all traffic is subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent.
• Parameters You can also use the no redirect {ip-address | slot/port}| tunnel tunnel-id}[track ]{ip-protocol-number [bit] | protocol-type} {source mask | any | host ip-address} {destination mask | any | host ip-address} [operator] command. ip-address Enter the IP address of the forwarding router. slot/port Enter the keyword slot / port followed by the slot/port information. ip-protocol-number Enter a number from 0 to 255 for the protocol identified in the IP protocol header.
Command Modes Command History REDIRECT-LIST Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Added the keyword track-id on the MXL. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series. 8.4.2.0 Introduced on the E-Series TeraScale. seq Configure a filter with an assigned sequence number for the redirect list.
destination Enter the IP address of the network or host to which the packets are sent. bit (OPTIONAL) For the TCP protocol type only, enter one or a combination of the following TCP flags: operator ack = acknowledgement • fin = finish (no more data from the user) • psh = push function • rst = reset the connection • syn = synchronize sequence number • urg = urgent field (OPTIONAL) For the TCP and UDP parameters only.
Parameters interface interface Enter the keyword interface then the name of the interface. stack–unit number Enter the keyword stack-unit then the slot number. The range is from 0 to 11 . port-set number Enter the keywords port-set then the port-pipe number. The range is from 0 to 0. summary Enter the keyword summary to view only the total number of CAM entries. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for removing the Sonet interface on the MXL. 7.4.1.0 Introduced. Dell#show ip redirect-list explicit_tunnel IP redirect-list explicit_tunnel: Defined as: seq 5 redirect tunnel 1 track 1 tcp 155.55.2.0/24 222.22.2.0/24, Track 1 [up], Next-hop reachable (via Te 1/32) seq 10 redirect tunnel 1 track 1 tcp any any, Track 1 [up], Next-hop reachable (via Te 1/32) seq 15 redirect tunnel 2 udp 155.55.0.
41 PIM-Sparse Mode (PIM-SM) The protocol-independent multicast (PIM) commands are supported by the Dell Networking Operating System (OS).
• ipv6 pim join-filter • ipv6 pim query-interval • ipv6 pim neighbor-filter • ipv6 pim register-filter • ipv6 pim rp-address • ipv6 pim rp-candidate • ipv6 pim sparse-mode • ipv6 pim spt-threshold • show ipv6 pim bsr-router • show ipv6 pim interface • show ipv6 pim neighbor • show ipv6 pim rp • show ipv6 pim tib IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands.
Usage Information If you use this command on a local VLT node, all multicast routes from the local PIM TIB, the entire multicast route table, and all the entries in the data plane are deleted. The local VLT node sends a request to the peer VLT node to download multicast routes learned by the peer. Both local and synced routes are removed from the local VLT node multicast route table. The peer VLT node clears synced routes from the node.
ip pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. Syntax ip pim bsr-border To return to the default value, use the no ip pim bsr-border command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command is applied to the subsequent PIM-BSR.
ip pim dr-priority Change the designated router (DR) priority for the interface. Syntax ip pim dr-priority priority-value To remove the DR priority value assigned, use the no ip pim dr-priority command. Parameters priority-value Defaults 1 Command Modes INTERFACE Command History Usage Information Enter a number. Preference is given to larger/higher number. The range is from 0 to 4294967294. The default is 1. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Example Dell(conf)# ip access-list extended iptv-channels Dell(config-ext-nacl)# permit ip 10.1.2.3/24 225.1.1.0/24 Dell(config-ext-nacl)# permit ip any 232.1.1.0/24 Dell(config-ext-nacl)# permit ip 100.1.1.0/16 any Dell(config-if-te-1/1)# ip pim join-filter iptv-channels Dell(config-if-te-1/1)# ip pim join-filter iptv-channels Related Commands ip access-list extended — configure an access list based on IP addresses or protocols.
ip pim query-interval Change the frequency of PIM Router-Query messages. Syntax ip pim query-interval seconds To return to the default value, use the no ip pim query-interval seconds command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Enter a number as the number of seconds between router query messages. The range is from 0 to 65535. The default is 30 seconds. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
To remove an RP address, use the no ip pim rp-address address {group-address groupaddress mask} override command. Parameters address Enter the RP address in dotted decimal format (A.B.C.D). group-address group-address mask Enter the keywords group-address then a group-address mask, in dotted decimal format (/xx), to assign that group address to the RP. override Enter the keyword override to override the BSR updates with static RP. The override takes effect immediately during enable/disable.
Command Modes Command History Usage Information CONFIGURATION Version Description 9.11.0.0 Introduced the acl-name keyword. 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Priority is stored at BSR router when receiving a Candidate-RP-Advertisement. ip pim sparse-mode Enable PIM sparse mode and IGMP on the interface. Syntax ip pim sparse-mode To disable PIM sparse mode and IGMP, use the no ip pim sparse-mode command. Defaults Disabled.
Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. This command configures an expiration timer for all S.G entries, unless they are assigned to an Extended ACL. ip pim spt-threshold To switch to the shortest path tree when the traffic reaches the specified threshold value, configure the PIM router. Syntax ip pim spt-threshold value | infinity To return to the default value, use the no ip pim spt-threshold command.
When designated-router flooding is disabled, PIM-SM snooping only forwards the multicast traffic, which belongs to a multicast group for which the switch receives a join request, on the port connected towards the designated router. If the PIM DR flood is not disabled (default setting): Related Commands • Multicast traffic is transmitted on the egress port towards the PIM DR if the port is not the incoming interface. • Multicast traffic for an unknown group is sent on the port towards the PIM DR.
Example Field Description Address Lists the IP addresses of the interfaces participating in PIM. Interface List the interface type, with either slot/port information or ID (VLAN or Port Channel), of the interfaces participating in PIM. Ver/Mode Displays the PIM version number and mode for each interface participating in PIM: • v2 = PIM version 2 • S = PIM Sparse mode Nbr Count Displays the number of PIM neighbors discovered over this interface.
Field Description Uptime/expires Displays the amount of time the neighbor has been up then the amount of time until the neighbor is removed from the multicast routing table (that is, until the neighbor hold time expires). Ver Displays the PIM version number. • DR prio/Mode Example v2 = PIM version 2 Displays the Designated Router priority and the mode.
Example (Mapping) Dell#sh ip pim rp mapping Group(s): 224.0.0.0/4 RP: 165.87.20.4, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:02:46 RP: 165.87.20.3, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:03:03 Dell# Example (Address) Dell#sh ip pim rp 229.1.2.1 Group RP 229.1.2.1 165.87.20.4 Dell# show ip pim snooping interface Display information on VLAN interfaces with PIM-SM snooping enabled.
Example (#2) Dell#show ip pim snooping interface Interface Ver Nbr DR DR Count Prio Vlan 2 v2 3 1 165.87.32.2 show ip pim snooping neighbor Display information on PIM neighbors learned through PIM-SM snooping. Syntax Parameters Command Modes Command History Usage Information show ip pim snooping neighbor [vlan vlan-id] vlan vlan-id • EXEC • EXEC Privilege (OPTIONAL) Enter a VLAN ID to display information about PIM neighbors that PIM-SM snooping discovered on a specified VLAN.
show ip pim snooping tib Display information from the tree information base (TIB) PIM-SM snooping discovered about multicast group members and states. Syntax show ip pim snooping tib [vlan vlan-id] [group-address [source-address]] Parameters Command Modes Command History Usage Information 974 vlan vlan-id (OPTIONAL) Enter a VLAN ID to display TIB information PIM-SM snooping discovered on a specified VLAN. The valid VLAN IDs range is from 1 to 4094.
Field Example Description • statically configured member of the Group • received a (*,G) Join message Dell#show ip pim snooping tib PIM Multicast Snooping Table Flags: J/P - (*,G) Join/Prune, j/p - (S,G) Join/Prune SGR-P - (S,G,R) Prune Timers: Uptime/Expires * : Inherited port (*, 225.1.2.1), uptime 00:00:01, expires 00:02:59, RP 165.87.70.1, flags: J Incoming interface: Vlan 2, RPF neighbor 0.0.0.0 Outgoing interface list: TenGigabitEthernet 4/5 RPF 165.87.32.
0 passive PIM interfaces 3 active PIM neighbors TIB summary: 1/1 (*,G) entries in PIM-TIB/MFC 1/1 (S,G) entries in PIM-TIB/MFC 0/0 (S,G,Rpt) entries in PIM-TIB/MFC 0 0 0 0 PIM nexthops RPs sources Register states Message summary: 2582/2583 Joins sent/received 5/0 Prunes sent/received 0/0 Candidate-RP advertisements sent/received 0/0 BSR messages sent/received 0/0 State-Refresh messages sent/received 0/0 MSDP updates sent/received 0/0 Null Register messages sent/received 0/0 Register-stop messages sent/rec
Example Field Description uptime Displays the amount of time the entry has been in the PIM route table. expires Displays the amount of time until the entry expires and is removed from the database. RP Displays the IP address of the RP/source for this entry.
Outgoing interface list: TenGigabitEthernet 0/8 show running-config pim Display the current configuration of PIM-SM snooping. Syntax show running-config pim Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show running-config pim ! ip pim snooping enable Related Commands ip pim sparse-mode — enables PIM-SM snooping.
Parameters interface • For a Loopback interface, enter the keyword loopback then a number from 0 to 16383. • For a Port Channel interface, enter the keywords port-channel then a number. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. hash-mask-length (OPTIONAL) Enter the hash mask length for RP selection. The range is from 0 to 128. The default is 126.
ipv6 pim join-filter Permit or deny PIM Join/Prune messages on an interface using an access list. This command prevents the PIM-SM router from creating state based on multicast source and/or group. Syntax ipv6 pim join-filter access-list Parameters access-list Enter the name of an extended access list. in Enter the keyword in to apply the access list to inbound traffic. out Enter the keyword out to apply the access list to outbound traffic.
ipv6 pim neighbor-filter Prevent the system from forming a PIM adjacency with a neighboring system. Syntax Parameters ipv6 pim neighbor-filter {access-list} access-list Defaults none Command Modes CONFIGURATION Command History Usage Information Enter the name of a standard access list. Maximum 16 characters. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Do not enter this command before creating the access-list.
To remove an RP address, use the no ipv6 pim re-address address group-address mask override command. Parameters address Enter the IPv6 RP address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zero. group-address group-address mask Enter the keywords group-address then the group address in the x:x:x:x::x format and then the mask in /nn format to assign that group address to the RP.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 pim sparse-mode Enable IPv6 PIM sparse mode on the interface. Syntax ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, use the no ipv6 pim sparse-mode command. Defaults Disabled. Command Modes INTERFACE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ipv6 pim bsr-router View information on the Bootstrap router (v2). Syntax show ipv6 pim bsr-router Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ipv6 pim neighbor Displays IPv6 PIM neighbor information. Syntax Parameters Command Modes Command History Example show ipv6 pim neighbor [detail] detail • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword detail to displayed PIM neighbor detailed information. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
ff0e::226:1:2:2 14::1 Dell Example (Mapping) Dellshow ipv6 pim rp mapping PIM Group-to-RP Mappings Group(s): ff00::/8 RP: 14::1, v2 Info source: 14::1, via bootstrap, priority 192 Uptime: 00:03:37, expires: 00:01:53 Group(s): ff00::/8, Static RP: 14::2, v2 Dell show ipv6 pim tib View the IPv6 PIM multicast-routing database (tree information base — tib).
RPF neighbor: TenGigabitEthernet 0/3, fe80::201:e8ff:fe00:6265 Outgoing interface list: TenGigabitEthernet 1/1 (25::1, ff0e::226:1:2:1), uptime 00:09:54, expires 00:00:00,flags: CJ RPF neighbor: TenGigabitEthernet 0/3, fe80::201:e8ff:fe00:6265 Outgoing interface list: TenGigabitEthernet 1/1 Dell# PIM-Sparse Mode (PIM-SM) 987
42 Port Monitoring The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. Important Points to Remember • Port monitoring is supported on physical ports and logical interfaces, such as Port Channels and virtual local area networks (VLANs). • The monitoring (destination, “MG”) and monitored (source, “MD”) ports must be on the same switch.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the RPM / ERPM. 8.3.16.1 Introduced on the M I/O Aggregator. monitor session — enables a monitoring session. erpm Configure the source and destination IP address for ERPM traffic. Syntax erpm source-ip ip-address dest-ip ip-address [gre-protocol value] To remove the configuration, use the no erpm source-ip IP-address dest-ip IP-address [greprotocol value] command.
To disable flow-based monitoring, use the no flow-based enable command. Defaults Disabled, that is flow-based monitoring is not applied. Command Modes MONITOR SESSION (conf-mon-sess-session-ID) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the RPM/ERPM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.0 Introduced on the E-Series.
Version Description 8.3.16.1 Introduced on the M I/O Aggregator. Usage Information The monitor command is saved in the running configuration at Monitor Session mode level and can be restored after a chassis reload. Example Dell(conf)# monitor session 60 Dell(conf-mon-sess-60) Related Command show monitor session — displays the monitor session. show running-config monitor session — displays the running configuration of a monitor session.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the M I/O Aggregator. Dell(conf-mon-sess-1)#show config ! monitor session 1 source TenGigabitEthernet 0/1 destination Port-channel 1 direction rx show monitor session Display the monitor information of a particular session or all sessions. Syntax show monitor session {session-ID} To display monitoring information for all sessions, use the show monitor session command.
Defaults Command Modes Command History none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the M I/O Aggregator. Usage Information The monitoring command is saved in the running configuration at the Monitor Session mode level and can be restored after a chassis reload.
interface direction {rx | tx | both} • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For a port channel interface, enter the keyword LAG then port channel and the portchannel id . Enter the one of the following keywords and slot/port information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
43 Private VLAN (PVLAN) Private VLANs extend the Dell Networking OS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The Dell Networking OS private VLAN implementation is based on RFC 3069. For more information, refer to the following commands. The command output is augmented in the Dell Networking OS version 7.8.1.
Topics: • ip local-proxy-arp • private-vlan mapping secondary-vlan • private-vlan mode • show interfaces private-vlan • show vlan private-vlan • show vlan private-vlan mapping • switchport mode private-vlan ip local-proxy-arp Enable/disable Layer 3 communication between secondary VLANs in a private VLAN. Syntax [no] ip local-proxy-arp To disable Layer 3 communication between secondary VLANs in a private VLAN, use the no ip local-proxyarp command in INTERFACE VLAN mode for the primary VLAN.
private-vlan mapping secondary-vlan Map secondary VLANs to the selected primary VLAN. Syntax [no] private-vlan mapping secondary-vlan vlan-list To remove specific secondary VLANs from the configuration, use the no private-vlan mapping secondary-vlan vlan-list command syntax. Parameters vlan-list Defaults none Command Modes INTERFACE VLAN Command History Usage Information Related Commands Enter the list of secondary VLANs to associate with the selected primary VLAN.
primary Defaults none Command Modes INTERFACE VLAN Command History Usage Information Enter the keyword primary to configure the VLAN as a primary VLAN. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The VLAN: • can be in only one mode, either community, isolated, or primary. • mode ode to community or isolated even before associating it to a primary VLAN.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command has two types of display — a list of all PVLAN interfaces or for a specific interface. Examples of both types of output are shown below. The following describes the show interfaces private-vlan command shown in the following examples. Example (All) Field Description Interface Displays the type of interface and associated slot and port number.
Defaults primary (OPTIONAL) Enter the keyword primary to display VLANs configured as primary VLANs, along with their interfaces. primary_vlan (OPTIONAL) Enter a private VLAN ID or secondary VLAN ID to display interface details about the designated PVLAN. interface interface (OPTIONAL) Enter the keyword interface and an interface ID to display the PVLAN configuration of the designated interface.
100 200 isolated isolated Yes Yes Gi 2/2,4-6 Gi 3/2,4-6 Example (Community) Dell# show vlan private-vlan community Primary Secondary Type Active Ports ------- --------- --------- ------ ----------10 primary Yes Gi 2/1,3 101 community Yes Gi 2/7-10 20 primary Yes Po 10, 12-13 Gi 3/1 201 community No 202 community Yes Gi 3/11-12 Example (Specific) Dell# show vlan private-vlan interface Gi 2/1 Primary Secondary Type Active Ports ------- --------- --------- -------------------10 primary Yes Gi 2/1 Usage
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced the on MXL 10/40GbE Switch IO Module. Usage Information The output of this command, shown below, displays the community and isolated VLAN IDs that are associated with each primary VLAN.
Example Dell#conf Dell(conf)#interface GigabitEthernet 2/1 Dell(conf-if-te-2/1)#switchport mode private-vlan promiscuous Dell(conf)#interface GigabitEthernet 2/2 Dell(conf-if-te-2/2)#switchport mode private-vlan host Dell(conf)#interface GigabitEthernet 2/3 Dell(conf-if-te-2/3)#switchport mode private-vlan trunk Dell(conf)#interface port-channel 10 Dell(conf-if-te-2/3)#switchport mode private-vlan promiscuous Related Commands private-vlan mode — sets the mode of the selected VLAN to community, isolated,
44 Per-VLAN Spanning Tree Plus (PVST+) The Dell Networking Operating System (OS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1w standard spanning tree protocol, but it creates a separate spanning tree for each VLAN configured. NOTE: For easier command line entry, the plus (+) sign is not used at the command line.
disable Disable PVST+ globally. Syntax disable To enable PVST+, use the no disable command. Defaults Disabled. Command Modes CONFIGURATION (conf-pvst) Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree pvst — enter PVST+ mode. edge-port bpdufilter default Enable BPDU Filter globally to filter transmission of BPDU on port fast enabled interfaces.
Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-pvst)#do show spanning-tree pvst vlan 2 brief VLAN 2 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 001e.c9f1.00f3 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 001e.c9f1.
Dell(conf-pvst)#vlan 2 bridge-priority 4096 Dell(conf-pvst)#vlan 3 bridge-priority 16384 Dell(conf-pvst)# Dell(conf-pvst)#show config ! protocol spanning-tree pvst no disable vlan 2 bridge-priority 4096 vlan 3 bridge-priority 16384 Dell# Usage Information After you enable PVST+, the device runs an STP instance for each VLAN it supports. Related Commands disable — disables PVST+. show spanning-tree pvst — displays the PVST+ configuration.
Field Description Instance PVST instance. Sts Port state: root-inconsistent (INCON Root), forwarding (FWD), listening (LIS), blocking (BLK), or shut down (EDS Shut). Guard Type Type of STP guard configured (Root, Loop, or BPDU guard). Bpdu Filter Yes - Bpdu filter Enabled No - Bpdu filter Disabled Example (Brief) Dell# show spanning-tree pvst vlan 2 brief VLAN 2 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 001e.c9f1.
Port 459 (TenGigabitEthernet 0/5) is designated Forwarding Port path cost 2000, Port priority 128, Port Identifier 128.459 Designated root has priority 32768, address 001e.c9f1.00:f3 Designated bridge has priority 32768, address 001e.c9f1.00:f3 Designated port id is 128.
bpduguard Enter the keyword portfast to enable Portfast to move the interface into Forwarding mode immediately after the root fails. Enter the keyword bpduguard to disable the port when it receives a BPDU. shutdown-onviolation (OPTIONAL) Enter the keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. bpdufilter (OPTIONAL) Enter the keyword bpdufilter to stop sending and receiving BPDUs on port fast enabled ports.
no shutdown Dell(conf-if-te-0/1)#end Dell# Related Commands show spanning-tree pvst — views the PVST+ configuration. spanning-tree pvst err-disable Place ports in an Err-Disabled state if they receive a PVST+ BPDU when they are members an untagged VLAN. Syntax spanning-tree pvst err-disable cause invalid-pvst-bpdu Defaults Enabled; ports are placed in the Err-Disabled state if they receive a PVST+ BPDU when they are members of an untagged VLAN.
changes. However, if a standards-based flush mechanism is needed, you can turn this knob command on to enable flushing MAC addresses after receiving every topology change notification. vlan bridge-priority Set the PVST+ bridge-priority for a VLAN or a set of VLANs. Syntax vlan vlan-id bridge-priority value To return to the default value, use the no vlan bridge-priority command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. vlan bridge-priority — sets the bridge-priority value. vlan hello-time — changes the time interval between BPDUs. vlan max-age — changes the time interval before PVST+ refreshes. show spanning-tree pvst — displays the PVST+ configuration. vlan hello-time Set the time interval between generation of PVST+ and BPDUs.
Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094. max-age seconds Enter the keywords max-age then the time interval, in seconds, that the system waits before refreshing configuration information. The range is from 6 to 40 seconds. The default is 20 seconds. Defaults 20 seconds Command Modes CONFIGURATION (conf-pvst) Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
45 Quality of Service (QoS) The Dell Networking Operating System (OS) commands for quality of service (QoS) include traffic conditioning and congestion control.
• rate shape • service-policy input • service-policy output • service-queue • set • show qos class-map • show qos policy-map • show qos policy-map-input • show qos policy-map-output • show qos qos-policy-input • show qos qos-policy-output • show qos statistics • show qos wred-profile • test cam-usage • trust • wred • wred ecn • wred-profile • dscp • qos dscp-color-map • qos dscp-color-policy • show qos dscp-color-policy • show qos dscp-color-map Global Configura
service-class dot1p-mapping This command maps an 802.1p priority to an internal traffic class. Syntax Parameters Command Modes Command History service-class dot1p-mapping user-priority user-priority The user-priority value ranges from 0 to 7. CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Per-Port QoS Commands Per-port QoS (port-based QoS) allows you to define the QoS configuration on a per-physical-port basis.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The dot1p-priority command changes the priority of incoming traffic on the interface. The system places traffic marked with a priority in the correct queue and processes that traffic according to its queue.
Related Commands rate-police — specifies traffic policing on the selected interface. rate shape Shape the traffic output on the selected interface. Syntax Parameters rate shape [kbps] rate [burst-KB] kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). rate Enter the outgoing rate in multiples of 10 Mbps. The range is from 10 to 10000.
Command Modes Command History Usage Information dot1p Queue ID 7 3 • INTERFACE • CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To honor all incoming 802.1p markings on incoming switched traffic on the interface, enter this command. By default, this facility is not enabled (that is, the 802.1p markings on incoming traffic are not honored).
queues are superseded by ETS configurations. This is to provide compatibility with DCBX. Therefore, Dell Networking OS recommends disabling ETS when you wish to apply these features exclusively. After you disable ETS on an interface, the configured parameters are applied. strict-priority unicast Configure a unicast queue as a strict-priority (SP) queue.
Parameters percentage Enter the percentage assignment of weight to the class/queue. The range is from 1 to 100% (granularity 1%). Defaults none Command Modes CONFIGURATION (conf-qos-policy-out) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The unit of bandwidth percentage is 1%.
Related Commands ip access-list extended — configures an extended IP ACL. ip access-list standard — configures a standard IP ACL. match ip access-group — configures the match criteria based on the access control list (ACL). match ip precedence — identifies the IP precedence values as match criteria. match ip dscp configures the match criteria based on the DSCP value. match ip access-group — configures a match criterion for a class map based on the contents of the designated MAC ACL.
crypto key zeroize rsa Removes the generated RSA host keys and zeroize the key storage location. Syntax crypto key zeroize rsa Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.
Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.
match ip vlan Uses a VLAN as the match criterion for an L3 class map. Syntax match ip vlan vlan-id To remove VLAN as the match criterion, use the no match ip vlan vlan-id command. Parameters vlan vlan-id Enter the keyword vlan and then the ID of the VLAN. The range is from 1 to 4094. Defaults none Command Modes CONF-CLASS-MAP Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
Usage Information Version Description 9.4(0.0) Introduced on the MXL switch. To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. Use this command to match an IP class-map against a single VRF ID . Related Commands class-map — identifies the class map. description Add a description to the selected policy map or QoS policy. Syntax description {description} To remove the description, use the no description {description} command.
dscp-list Enter the IP DSCP values that is to be the match criteria. Separate values by commas — no spaces ( 1,2,3 ) or indicate a list of values separated by a hyphen (1-3). The range is from 0 to 63. set-ip-dscp value (OPTIONAL) Enter the keywords set-ip-dscp then the IP DSCP value. The matched traffic is marked with the DSCP value. The range is from 0 to 63. Defaults none Command Modes CLASS-MAP CONFIGURATION (config-class-map) Command History Usage Information Version Description 9.9(0.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for ipv6 and ip-any options on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. The match ip precedence command and the match ip dscp command are mutually exclusive.
Command Modes Command History CLASS-MAP Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. Related Commands class-map — identifies the class map. match mac vlan Configure a match criterion for a class map based on VLAN ID.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If the rate shape exists in both aggregate and per-queue qos-policy, minimum of two take effect. Some of all Queue-rate will not exceed aggregate. Related Commands policy-map-output — creates an output policy map. policy-map-input Create an input policy map. Syntax policy-map-input policy-map-name [layer2] To remove an input policy map, use the no policy-map-input policy-map-name [layer2] command.
Parameters policy-map-name Defaults none Command Modes CONFIGURATION Command History Enter the name for the policy map in character format (32 characters maximum). Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To assign traffic to different flows using QoS policy, use the Output Policy map.
Related Commands rate police — incoming traffic policing function. qos-policy-output Create a QoS output policy. Syntax qos-policy-output qos-policy-name To remove an existing output QoS policy, use the no qos-policy-output qos-policy-name command. Parameters qos-policy-name Defaults none Command Modes CONFIGURATION Command History Enter your output QoS policy name in character format (32 characters maximum). Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rate police — specifies traffic policing on the selected interface. qos-policy-input — creates a QoS output policy. rate shape Shape the traffic output on the selected interface.
layer2 Defaults Layer 3 Command Modes INTERFACE Command History Usage Information (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can attach a single policy-map to one or more interfaces to specify the service-policy for those interfaces.
service-queue Assign a class map and QoS policy to different queues. Syntax service-queue queue-id [class-map class-map-name] [qos-policy qos-policy-name] To remove the queue assignment, use the no service-queue queue-id [class-map class-mapname] [qos-policy qos-policy-name] command. Parameters queue-id Enter the value used to identify a queue. The range is from 0 to 3 (four queues per interface; four queues are reserved for control traffic).
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. After the IP DSCP bit is set, other QoS services can then operate on the bit settings. show qos class-map View the current class map information.
Defaults • For a 40 Gigabit Ethernet interface, enter the keyword FortyGigabitEthernet then the slot/port information. • For a 10 Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. none Command Modes Command History Example (IPv4) • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos policy-map-input Policy-map-input PolicyMapInput Aggregate Qos-policy-name AggPolicyIn Queue# Class-map-name Qos-policy-name 0 ClassMap1 qosPolicyInput Dell# show qos policy-map-output View the output QoS policy map details.
Parameters Defaults qos-policy-name Enter the QoS policy name. none Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos qos-policy-input Qos-policy-input QosInput Rate-police 100 50 peak 100 50 Dscp 32 Dell# show qos qos-policy-output View the output QoS policy details.
show qos statistics View QoS statistics. Syntax Parameters show qos statistics {egress—queue [interface]} | {wred-profile [interface]} | [interface egress-queue interface wred-profile interface interface Defaults Command Modes Command History Example Enter the keyword egress-queue to display the egress-queue statistics and optionally one of the fo or number information.
12 Dell# MCAST 0 0 0 0 0 0 show qos wred-profile View the WRED profile details. Syntax show qos wred-profile wred-profile-name Parameters Defaults wred-profile-name Enter the WRED profile name to view the profile details. none Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information This feature allows you to determine if the CAM has enough space available before applying the configuration on an interface. An input policy map with both Trust and Class-map configuration, the Class-map rules are ignored and only the Trust rule is programmed in the CAM. In such an instance, the Estimated CAM output column contains the size of the CAM space required for the Trust rule and not the Class-map rule.
trust Specify dynamic classification (DSCP) or dot1p to trust. Syntax trust {diffserv [fallback]| dot1p [fallback]} Parameters diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration. fallback Enter the keyword fallback to classify packets according to their DSCP value as a secondary option in case no match occurs against the configured class maps.
wred Designate the WRED profile to yellow or green traffic. Syntax wred [[{yellow | green} profile-name] ecn] To remove the WRED drop precedence, use the no wred {yellow | green} [profile-name] command. Parameters yellow | green Enter the keyword yellow for yellow traffic. A DSCP value of xxx110 and xxx101 maps to yellow. Enter the keyword green for green traffic. A DSCP value of xxx0xx maps to green. profile-name Enter your WRED profile name in character format (16 character maximum).
Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.0.2.0 Introduced on the S6000. 8.3.19.0 Introduced on the S4820t. 8.3.11.1 Introduced on the Z9000. 8.3.7.0 Introduced on the S4810.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Use the default pre-defined profiles or configure your own profile. You cannot delete the pre-defined profiles or their default values. This command enables WRED configuration mode — (conf-wred). dscp Sets the number of specific DSCP values for a color map profile to yellow or red.
Usage Information If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence). The default setting for each DSCP value (0-63) is green (low drop precedence). This command allows setting the number of specific DSCP values to yellow or red. Important Points to Remember Example • All DSCP values that are not specified as yellow or red are colored green. • A DSCP value cannot be in both the yellow and red lists.
Version Description 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information A color map outlines the codepoint mappings to the appropriate color mapping (green, yellow, red) for the traffic. The system uses this information use to handle the traffic on the interface based on the traffic priority and places it into the appropriate shaping queue. You cannot delete a DSCP color map when it is configured on an interface.
Usage Information If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence). Example The following example assigns the color map, bat-enclave-map, to interface. Related Commands • dscp— sets the number of specific DSCP values for color map profile to yellow or red. • qos dscp-color-map— configures the DSCP color map.
show qos dscp-color-map Display the DSCP color map for one or all interfaces. Syntax Parameters show qos dscp-color-map map-name map-name Enter the name of the color map. Defaults None Command Modes EXEC Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Example Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
46 Routing Information Protocol (RIP) Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking Operating System (OS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more information about configuring RIP, refer to the Dell Networking OS Configuration Guide.
To send sub-prefix routing information, use the no auto-summary command. Defaults Enabled. Command Modes ROUTER RIP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip rip Update all the RIP routes in the routing table. Syntax clear ip rip Command Modes EXEC Privilege Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default-information originate Generate a default route for the RIP traffic. Syntax default-information originate [always] [metric metric-value] [route-map mapname] To return to the default values, use the no default-information originate command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command ensures that route information being redistributed is converted to the same metric value. Related Commands redistribute — allows you to redistribute routes learned by other methods. description Enter a description of the RIP routing protocol.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default-metric — assigns one distance metric to all routes learned using the redistribute command. distribute-list in Configure a filter for incoming routing updates. Syntax distribute-list prefix-list-name in [interface] To delete the filter, use the no distribute-list prefix-list-name in command.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. (OPTIONAL) Enter the keyword connected to filter only directly connected routes. ospf (OPTIONAL) Enter the keyword ospf to filter all OSPF routes. static (OPTIONAL) Enter the keyword static to filter manually configured routes.
Parameters 1 (OPTIONAL) Enter the number 1 for RIP version 1. 2 (OPTIONAL) Enter the number 2 for RIP version 2. Defaults RIPv1 and RIPv2 Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you want the interface to receive both versions of RIP, use the ip rip receive version 1 2 command.
ip split-horizon Enable split-horizon for RIP data on the interface. As described in RFC 2453, the split-horizon scheme prevents any routes learned over a specific interface to be sent back out that interface. Syntax ip split-horizon To disable split-horizon, use the no ip split-horizon command. Defaults Enabled Command Modes INTERFACE Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters ip-address Defaults Not configured. Command Modes ROUTER RIP Command History Usage Information Enter the IP address, in dotted decimal format, of a router with which to exchange information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. When a neighbor router is identified, unicast data exchanges occur. Multiple neighbor routers are possible.
Parameters prefix-list-name Enter the name of an established Prefix list to determine which incoming routes are modified. offset Enter a number from zero (0) to 16 to be applied to the incoming route metric matching the access list specified. If you set an offset value to zero (0), no action is taken. interface (OPTIONAL) Enter the following keywords and slot/port or number information: Defaults Not configured.
passive-interface Suppress routing updates on a specified interface. Syntax passive-interface interface To delete a passive interface, use the no passive-interface interface command. Parameters interface Defaults Not configured. Command Modes ROUTER RIP Command History Enter the following information: • For a Port Channel interface, enter the keywords port-channel then a number. The range is from 1 to 128.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To redistribute the default route (0.0.0.0/0), configure the default-information originate command. Related Commands default-information originate — generates a default route for RIP traffic. redistribute ospf Redistribute routing information from an OSPF process.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable RIP, assign a network address using the network command. Example Dell(conf)#router rip Dell(conf-router_rip)# Related Commands network — enables RIP. show config Display the changes you made to the RIP configuration. The default values are not shown.
Usage Information Example The following describes the show ip rip database command shown in the following example. Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database. 100.10.10.0/24 directly connected Lists the routes directly connected. 150.100.0.0 redistributed Lists the routes learned through redistribution. 209.9.16.0/24... Lists the routes and the sources advertising those routes.
neighbor 20.20.20.20 redistribute ospf 999 version 2 timers basic Manipulate the RIP timers for routing updates, invalid, holddown times, and flush time. Syntax timers basic update invalid holddown flush To return to the default settings, use the no timers basic command. Parameters Defaults Command Modes Command History Usage Information update Enter the number of seconds to specify the rate at which RIP routing updates are sent. The range is from zero (0) to 4294967295. The default is 30 seconds.
2 Enter the keyword 2 to specify RIP version 2. Defaults The system sends RIPv1 and receives RIPv1 and RIPv2. Command Modes ROUTER RIP Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip rip receive version — sets the RIP version the interface receives. ip rip send version — sets the RIP version the interface sends.
47 Remote Monitoring (RMON) The Dell Networking Operating System (OS) remote monitoring (RMON) is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection.
rmon alarm Set an alarm on any MIB object. Syntax rmon alarm number variable interval {delta | absolute} rising-threshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon alarm number command. Parameters number Enter the alarm integer number from 1 to 65535. The value must be unique in the RMON alarm table. variable Enter the MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3.
rmon collection history Enable the RMON MIB history group of statistics collection on an interface. Syntax rmon collection history {controlEntry integer} [owner name] [buckets number] [interval seconds] To remove a specified RMON history group of statistics collection, use the no rmon collection history {controlEntry integer} command. Parameters controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon event Add an event in the RMON event table. Syntax rmon event number [log] [trap community] [description string] [owner name] To disable RMON on an interface, use the no rmon event number command. Parameters number Assign an event number in integer format from 1 to 65535. The number value must be unique in the RMON event table.
interval Time, in seconds, the alarm monitors the MIB variables; this is the alarmSampleType in the RMON alarm table. The range is from 5 to 3600 seconds. delta Enter the keyword delta to test the change between MIB variables. This is the alarmSampleType in the RMON alarm table. absolute Enter the keyword absolute to test each MIB variable directly. This is the alarmSampleType in the RMON alarm table.
log table: 2 entries, 552 bytes Dell# show rmon alarms Display the contents of the RMON alarm table. Syntax Parameters show rmon alarms [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON alarm table in an easy-toread format. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
22 Dell# 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table. Syntax show rmon events [index] [brief] Parameters index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON event table in an easy-toread format. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. Syntax Parameters show rmon hc-alarm [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON High-Capacity alarm table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
brief Defaults none Command Modes EXEC Command History (OPTIONAL) Enter the keyword brief to display the RMON Ethernet history table in an easy-to-read format Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example (Index) Dell#show rmon history 6001 RMON history control entry 6001 interface: ifIndex.
Example (Index) Dell#show rmon log 2 RMON log entry, alarm table index 2, log index 1 log time: 14638 (THU AUG 12 22:10:40 2004) description: 2 Dell# Example (Brief) Dell#show rmon log br eventIndex description -----------------------------2 2 4 4 Dell# show rmon statistics Display the contents of RMON Ethernet statistics table. Syntax Parameters show rmon statistics [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry.
HC 64bytes packets overflow: 0 HC 64bytes packets: 0 HC 65-127 bytes packets overflow: 0 HC 65-127 bytes packets: 0 HC 128-255 bytes packets overflow: 0 HC 128-255 bytes packets: 0 HC 256-511 bytes packets overflow: 0 HC 256-511 bytes packets: 0 HC 512-1023 bytes packets overflow: 0 HC 512-1023 bytes packets: 0 HC 1024-1518 bytes packets overflow: 0 HC 1024-1518 bytes packets: 0 Dell# Example (Brief) 1078 Dell#show rmon statistics br index ifIndex interface ---------------------------------------6001 1009
48 Rapid Spanning Tree Protocol (RSTP) The Dell Networking Operating System (OS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges. bridge-priority Set the bridge priority for RSTP. Syntax bridge-priority priority-value To return to the default value, use the no bridge-priority command.
• For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. Optionally, enter an in or out parameter with the optional interface: events Command Modes Command History Example • For Receive, enter in. • For Transmit, enter out. (OPTIONAL) Enter the keyword events to debug RSTP events. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp — enters SPANNING TREE mode on the switch. forward-delay Configure the amount of time the interface waits in the Listening State and the Learning State before transitioning to the Forwarding State. Syntax forward-delay seconds To return to the default setting, use the no forward-delay command.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The hello time is encoded in BPDUs in increments of 1/256ths of a second. The standard minimum hello time in seconds is 1 second, which is encoded as 256. Millisecond hello times are encoded using values less than 256; the millisecond hello time equals (x/1000)*256.
Parameters priority-value Enter a number as the bridge priority value in increments of 4096. The range is from 0 to 61440. The default is 32768. Defaults Disabled Command Modes CONFIGURATION (conf-rstp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp To configure RSTP, enter RSTP mode. Syntax protocol spanning-tree rstp To exit RSTP mode, use the exit command.
no disable bridge-priority 16384 spanning-tree rstp Configure an RSTP interface with one of these settings: port cost, edge port with optional bridge port data unit (BPDU) guard, port priority, loop guard, or root guard. Syntax spanning-tree rstp {cost port-cost | edge-port [bpduguard [shutdown-onviolation]] | bpdufilter | priority priority | {rootguard}} Parameters cost port-cost Enter the keyword cost then the port cost value. The range is from 1 to 200000.
NOTE: A port configured as an edge port, on an RSTP switch, immediately transitions to the Forwarding state. Only configure ports connected to end-hosts as edge ports. Consider an edge port similar to a port with a spanning-tree portfast enabled. If you do not enable shutdown-on-violation, BPDUs are still sent to the RPM CPU. You cannot enable STP root guard and loop guard at the same time on a port.
Enter the keyword bpduguard to disable the port when it receives a BPDU. shutdown-onviolation (OPTIONAL) Enter the keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. bpdufilter (OPTIONAL) Enter the keyword bpdufilter to enable BPDU Filter to stop sending and receiving BPDUs on port enabled interfaces. priority priority Enter keyword priority then a value in increments of 16 as the priority. The range is from 0 to 240. The default is 128.
tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled Command Modes CONFIGURATION (conf-rstp) Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. By default, the system implements an optimized flush mechanism for RSTP.
49 Security This chapter contains various types of security commands offered in the Dell Networking Operating System (OS). The commands are listed in the following sections: • AAA Accounting Commands • Authorization and Privilege Commands • Authentication and Password Commands • RADIUS Commands • TACACS+ Commands • SSH Server and SCP Commands • Secure DHCP Commands For configuration details, refer to the Security chapter in the Dell Networking OS Configuration Guide.
To disable AAA Accounting, use the no aaa accounting {system | exec | command level} {name | default}{start-stop | wait-start | stop-only} {tacacs+} command. Parameters system Enter the keyword system to send accounting information of any other AAA configuration. exec Enter the keyword exec to send accounting information when a user has logged in to EXEC mode.
tacacs-server host — specifies a TACACS+ server host. aaa accounting suppress Prevent the generation of accounting records of users with the user name value of NULL. Syntax aaa accounting suppress null-username To permit accounting records to users with user name value of NULL, use the no aaa accounting suppress null-username command. Defaults Accounting records are recorded for all users. Command Modes CONFIGURATION Command History Usage Information Version Description 9.9(0.
Related Commands aaa accounting — enables AAA Accounting and creates a record for monitoring the accounting function. crypto key zeroize rsa Removes the generated RSA host keys and zeroize the key storage location. Syntax crypto key zeroize rsa Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.
Active Task Active Task Active Task Dell# Related Commands accounted actions on tty3, User ad Priv 15 Role ID 2, EXEC Accounting record, 00:01:22 Elapsed,service=shell accounted actions on tty4, User ad Priv 15 Role ID 11, EXEC Accounting record, 00:00:35 Elapsed, service=shell accounted actions on tty5, User ad Priv 1 Role sysadmin ID 16, EXEC Accounting record, 00:00:04 Elapsed, service=shell aaa accounting — enables AAA Accounting and creates a record for monitoring the accounting functio
Undo a configuration with the no aaa authorization commands {level | role role-name} {name | default} {local | tacacs+ | none} command. Parameters commands level Enter the keyword commands then the command privilege level for command level authorization. role role-name Enter the keyword role then the role name. name Define a name for the list of authorization methods. default Define the default list of authorization methods.
Usage Information Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, and MXL. By default, access to commands are determined by the user’s role (if defined) or by the user’s privilege level. If the aaa authorization role-only command is enabled, then only the user’s role is used. Before you enable role-based only AAA authorization: Related Commands 1 Locally define a system administrator user role.
To disable authorization checking for EXEC level commands, use the no aaa authorization exec command. Parameters name Define a name for the list of authorization methods. default Define the default list of authorization methods. local Use the authorization parameters on the system to perform authorization. tacacs+ Use the TACACS+ protocol to perform authorization. none Enter the keyword none to apply no authorization.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To define a password for the level to which you are assigning privilege or access, use the enable password command. privilege level (LINE mode) Change the access level for users on the terminal lines. Syntax privilege level level To delete access to a terminal line, use the no privilege level level command.
... method2 • enable: use the password the enable password command defines in CONFIGURATION mode. • line: use the password the password command defines in LINE mode. • none: no authentication. • radius: use the RADIUS servers configured with the radius-server host command. • tacacs+: use the TACACS+ server(s) configured with the tacacs-server host command. (OPTIONAL) In the event of a “no response” from the first method, the system applies the next configured method.
default Enter the keyword default to specify that the method list specified is the default method for all terminal lines. method Enter one of the following methods: ... method4 • enable: use the password the enable password command defines in CONFIGURATION mode. • line: use the password the password command defines in LINE mode. Not available if role-only is in use. • none: no authentication. Not available if role-only is in use.
tacacs-server host — specifies a TACACS+ server host. aaa reauthenticate enable Enable re-authentication of user whenever there is a change in the authenticators. Syntax aaa reauthenticate enable To disable the re-authentication option, use the no aaa reauthenticate enable command. Defaults Disabled Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide.
Defaults Not configured. Command Modes LINE Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. line — applies an authentication method list to the designated terminal lines. ip access-list standard — names (or selects) a standard access list to filter based on the IP address. ip access-list extended — names (or selects) an extended access list based on the IP addresses or protocols.
• Passwords can have a regular expression as the password. To create a password with a regular expression in it, use CNTL + v prior to entering regular expression. For example, to create the password abcd]e, you type “abcd CNTL v ]e”. When the password is created, you do not use the CNTL + v key combination and enter “abcd]e”. NOTE: The question mark (?) is not a supported character. Related Commands show running-config — views the current configuration.
encryption-type (OPTIONAL) Enter the number 5 or 0 as the encryption type. Enter a 5 then a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router. Use this parameter only with a password that you copied from the show runningconfig file of another Dell Networking router. password Enter a text string, up to 32 characters long, as the clear text password. Defaults No password is configured. level = 15.
Enter 8 to enter the sha256–based hashed password. password Enter a text string, up to 32 characters long, as the clear text password. Defaults No password is configured. level = 15. Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Related Commands Version Description 9.10(0.0) Introduced on the MXL.
password Specify a password for users on terminal lines. Syntax password [encryption-type] password To delete a password, use the no password password command. Parameters encryption-type password (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the password entered. The options are • 0 is the default and means the password is not encrypted and stored as clear text. • 7 means that the password is encrypted and hidden. Enter a text string up to 32 characters long.
To return to the default, use the no password-attributes [min-length number] [max-retry number] [lockout-period minutes] [character-restriction [upper number] [lower number] [numeric number] [special-char number]] command. Parameters min-length number (OPTIONAL) Enter the keywords min-length then the number of characters. The range is from 0 to 32 characters. max-retry number (OPTIONAL) Enter the keywords max-retry then the number of maximum password retries. The range is from 0 to 16.
Defaults Enabled. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information CAUTION: Encrypting passwords with this command does not provide a high level of security. When the passwords are encrypted, you cannot return them to plain text unless you re-configure them. To remove an encrypted password, use the no password password command.
show users Allows you to view information on all users logged in to the switch. Syntax Parameters Command Modes Command History Usage Information Example Related Commands show users [all] all (OPTIONAL) Enter the keyword all to view all terminal lines in the switch. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• VTY: the range is from 1 to 30 seconds, the default is 30 seconds. • Console: the range is from 1 to 300 seconds, the default is 0 seconds (no timeout). • AUX: the range is from 1 to 300 seconds, the default is 0 seconds (no timeout). Defaults See the defaults settings shown in Parameters. Command Modes LINE Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
privilege level Enter the keyword privilege then a number from zero (0) to 15. role role-name Enter the keyword role followed by the role name to associate with that user ID. secret Enter the keyword secret then the encryption type. sha256-password Enter the keyword sha256-password then the encryption-type or the password. Defaults The default encryption type for password option is 0. The default encryption type for secret option is 5. The default encryption type for sha256-password option is 8.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(2.0P1) Introduced the command on all Dell EMC Networking OS platforms. If an authentication method is not configured using this command, then PAP is used for authentication with the RADIUS server.
The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FM-IOM, and MXL. client-key Configures global shared key for the trusted DAC clients. Syntax client—key [encryption-type] key To remove the shared key configuration, enter the no client-key command. Defaults Parameters None.
Command Modes Usage Information Command History • CONF-DYNAMIC-AUTH • Configure no coa-bounce-port to drop radius CoA port-bounce requests from the DAC. This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.13(0.
Command Modes Command History • CONF-DYNAMIC-AUTH This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL.
The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL. disconnect-user Configure NAS to allow or reject DM requests corresponding to AAA users-sessions coming from the DAC. Syntax disconnect-user To undo this configuration, enter the no disconnect-user command. Defaults Enabled.
Usage Information If this configuration is not enabled, then dynamic authorization messages are not handled by the NAS. ip radius source-interface Specify an interface’s IP address as the source IP address for RADIUS connections. Syntax ip radius source-interface interface To delete a source interface, use the no ip radius source-interface command. Parameters interface Defaults Not configured.
Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.13(0.0) Introduced on the C9010, S3100, S3048–ON, S4048T-ON, S4048–ON, S5000, S6010– ON, S6000–ON, S6100–ON, S6000, Z9100–ON, Z9500, FN-IOM, and MXL.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. radius-server host Configure a RADIUS server host. Syntax Parameters radius-server host {hostname | ipv4-address} [auth-port port-number] [retransmit retries] [timeout seconds] [key [encryption-type] key] hostname Enter the name of the RADIUS server host. ipv4-address Enter the IPv4 address (A.B.C.D) of the RADIUS server host.
The global default values for the timeout, retransmit, and key optional parameters are applied, unless those values are specified in the radius-server host or other commands. To return to the global default values, if you configure the timeout, retransmit, or key values, include those keywords when using the no radiusserver host command syntax. Related Commands login authentication — sets the database to be checked when a user logs in.
radius-server retransmit Configure the number of times the switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable. Syntax radius-server retransmit retries To configure zero retransmit attempts, use the no radius-server retransmit command. To return to the default setting, use the radius-server retransmit 3 command.
role Changes command permissions for roles. Syntax role mode { { { addrole | deleterole } role-name } | reset } command To delete access to a command, use the no role mode role-name Parameters mode Enter one of the following keywords as the mode for which you are controlling access: configure for CONFIGURATION mode exec for EXEC mode interface for INTERFACE modes line for LINE mode route-map for Route-map mode router for Router mode addrole Enter the keyword addrole to add permission to the command.
Related Commands Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, and MXL. • userrole — creates user roles. rate-limit Configure NAS to allow or reject RADIUS dynamic authorization (DA) packets based on the configurable rate limit value. Syntax rate-limit packets per minute To undo the configuration, enter the no rate-limit command. Defaults Parameters Command Modes Usage Information Command History 30 packets per minute.
Usage Information Command History • Duplicate packets are dropped within replay-protection-window period if packet has same source IP address, source UDP port and identifier. This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command. Version Description 9.13(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip tacacs source-interface Specify an interface’s IP address as the source IP address for TACACS+ connections. Syntax ip tacacs source-interface interface To delete a source interface, use the no ip tacacs source-interface command. Parameters interface Defaults Not configured.
timeout seconds (OPTIONAL) Enter the keyword timeout then the number of seconds the switch waits for a reply from the TACACS+ server. The range is from 0 to 1000. The default is 10 seconds. key key (OPTIONAL) Enter the keyword key then a string up to 42 characters long as the authentication key. This authentication key must match the key specified in the tacacsserver key for the TACACS+ daemon. Defaults Not configured.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The key configured with this command must match the key configured on the TACACS+ daemon. SSH Server and SCP Commands The Dell Networking OS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for secure remote login over an insecure network. SSH sessions are encrypted and use authentication.
Related Commands ip ssh server — enables the SSH server. show crypto — displays the SSH host public keys. debug ip ssh Enables collecting SSH debug information. Syntax debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters client Enter the keyword client to enable collecting debug information on the client. server Enter the keyword server to enable collecting debug information on the server. Defaults Disabled on both client and server.
ip ssh authentication-retries Configure the maximum number of attempts that should be used to authenticate a user. Syntax Parameters ip ssh authentication-retries 1-10 1-10 Defaults 3 Command Modes CONFIGURATION Command History Usage Information Enter the number of maximum retries to authenticate a user. The range is from 1 to 10. The default is 3. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip ssh cipher Configure the list of ciphers supported on both SSH client and SCP. Syntax ip ssh cipher cipher-list Parameters Defaults cipher cipher-list Enter the keyword cipher and then a space-delimited list of ciphers that the SSH client supports. The following ciphers are available.
ip ssh connection-rate-limit Configure the maximum number of incoming SSH connections per minute. Syntax Parameters ip ssh connection-rate-limit 1-10 1-10 Defaults 10 per minute Command Modes CONFIGURATION Command History Enter the number of maximum numbers of incoming SSH connections allowed per minute. The range is from 1 to 10 per minute. The default is 10 per minute. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ip ssh rhostsfile — trusted hosts and users for rhost authentication. ip ssh key-size Configure the size of the server-generated RSA SSHv1 key. Syntax ip ssh key-size 512-869 Parameters 512-869 Defaults Key size 768 Command Modes CONFIGURATION Command History Usage Information Enter the key-size number for the server-generated RSA SSHv1 key. The range is from 512 to 869. The default is 768. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
When FIPS mode is enabled: • hmac-sha2–256 • hmac-sha1 • hmac-sha1–96 When FIPS mode is disabled: • hmac-sha2-256 • hmac-sha1 • hmac-sha1–96 • hmac-md5 • hmac-md5-96 Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Usage Information Version Description 9.10(0.
ip ssh pub-key-file Specify the file used for host-based authentication. Syntax ip ssh pub-key-file {WORD} Parameters WORD Defaults none Command Modes CONFIGURATION Command History Usage Information Enter the file name for the host-based authentication. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command specifies the file used for the host-based authentication.
volume rekeylimit Enter the keywords volume then the amount of volume in megabytes. The range is from 1 to 4096 to megabytes. The default is 1024 megabytes Defaults The default time is 60 minutes. The default volume is 1024 megabytes. Command Modes CONFIGURATION mode Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.10(0.
global configuration command, it does not appear in the running configuration because you only need to run this command once. This file contains hostnames and usernames, for which hosts and users, rhost-authentication can be allowed. NOTE: For rhostfile and pub-key-file, the administrator must FTP the file to the switch. ip ssh rsa-authentication (Config) Enable RSA authentication for the SSHv2 server.
Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you want to log in without being prompted for a password, log in through RSA authentication. To do that, first add the SSHv2 RSA public keys to the list of authorized keys. This command adds the specified RSA keys to the following file: flash://ADMIN_DIR/ssh/authorized-keys-username (where username is the user associated with this terminal).
mac hmacalgorithm Enter the keyword mac then a space-delimited list of hash message authentication code (HMAC) algorithms supported by the SSH server for keying hashing for the message authentication. The following HMAC algorithms are available: • hmac-sha1 • hmac-sha1-96 • hmac-sha2-256 When FIPS is enabled, the default HMAC algorithm is hmac-sha1-96.
Usage Information Version Description 9.5(0.0) Introduced the cipher, kex and mac options on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command enables the SSH server and begins listening on a port. If a port is not specified, listening is on SSH default port 22. NOTE: Starting with Dell Networking OS Release 9.2(0.0), SSH server is enabled by default.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions.
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgQ C9IYgcUcc8wQm+5KUQgW/zAs8V5S TalGq4/+S+6H9axpQnA+A0xweeo5iR5hvPP6Vc+ HS+uWoQH+VOJ8H5Jxsm347XnYv/ gpSqhgjZ/C5UwFiucVkVfYu8RDcJVIuQhLvPEeb IF5Q+sD8K89MXU90MAS/UdoiJZSO IlbaCuSTW1Q== Dell# Related Commands crypto key generate — generates the SSH keys. show ip ssh Display information about established SSH sessions. Syntax Command Modes Command History Example show ip ssh • EXEC • EXEC Privilege Version Description 9.11(0.
show ip ssh client-pub-keys Display the client public keys used in host-based authentication. Syntax show ip ssh client-pub-keys Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command displays the contents of the flash://ADMIN_DIRssh/knownhosts file. Example Dell# show ip ssh client-pub-keys 4.8.1.
AAAAB3NzaC1yc2EAAAABIwAAAIEAyB17l4g Fp4r2DRHIvMc1VZd0Sg5GQxRV1y 1X1JOMeO6Nd0WuYyzrQMM4qJAoBwtneOXfL BcHF3V2hcMIqaZN+CRCnw/ zCMlnCf0+qVTd1oofsea5r09kS0xTp0CNfH XZ3NuGCq9Ov33m9+U9tMwhS 8vy8AVxdH4x4km3c3t5Jvc=freedom@poclab4 Dell# Related Commands ip ssh rsa-authentication (Config) — configures the RSA authorized keys. show role Display information on permissions assigned to a command, including user role and/or permission level.
Examples DellEMC# show role mode configure username Role access: sysadmin DellEMC# show role mode configure management route Role access: netadmin, sysadmin DellEMC# show role mode configure management crypto-policy Role access: secadmin, sysadmin Related Commands • userrole — create user roles. show users Allows you to view information on all users logged in to the switch.
show userroles Display information on all defined user roles. Syntax show userroles Example DellEMC# show userroles Role Inheritance netoperator netadmin secadmin sysadmin netoperator testadmin netadmin Modes Exec Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Interface Line Router IP Route-map Protocol MAC Command Modes EXEC Privilege Command History This guide is platform-specific.
ssh Open an SSH connection specifying the host name, username, port number and version of the SSH client. Syntax ssh {hostname | ipv4 address} [-l username | -p port-number | -v {1 | 2}] Parameters hostname (OPTIONAL) Enter the IP address or the host name of the remote device. ipv4 address (OPTIONAL) Enter the IP address in dotted decimal format A.B.C.D. -l username (OPTIONAL) Enter the keyword -l then the user name used in this SSH session.
Defaults none Command Modes EXEC Privilege Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp snooping — displays the contents of the DHCP binding table. ip dhcp relay Enable Option 82. Syntax Parameters ip dhcp relay information-option [trust-downstream] trust-downstream Defaults Disabled.
ip dhcp snooping database Delay writing the binding table for a specified time. Syntax ip dhcp snooping database write-delay minutes Parameters minutes Defaults none Command Modes CONFIGURATION Command History The range is from 5 to 21600. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping binding Create a static entry in the DHCP binding table.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp snooping — displays the contents of the DHCP binding table. ip dhcp snooping database renew Renew the binding table. Syntax ip dhcp snooping database renew Defaults none Command Modes • EXEC • EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.19.0 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. Syntax [no] ip dhcp snooping vlan name Parameters name Defaults Disabled. Command Modes CONFIGURATION Command History Usage Information Enter the name of a VLAN on which to enable DHCP Snooping. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
secure-cli enable Enable the secured CLI mode. Syntax secure-cli enable Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.11(0.0) Introduced this command. The secured CLI mode prevents the users from enhancing the permissions or promoting the privilege levels.
• 7 to indicate that a password encrypted using a DES hashing algorithm follows. This encryption type is available with the password option only. • 5 to indicate that a password encrypted using an MD5 hashing algorithm follows. This encryption type is available with the secret option only, and is the default encryption type for this option. password Enter a string up to 32 characters long. privilege level Enter the keyword privilege then a number from zero (0) to 15.
Usage Information Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100-ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, MXL.
• IP ID Values Randomness You can configure the Dell Networking OS to drop ICMP reply messages. When you configure the drop icmp command, the system drops the ICMP reply messages from the front end and management interfaces. By default, the Dell Networking OS responds to all the ICMP messages. The Dell Networking OS suppresses the following ICMPv4 and ICMPv6 message types: Table 3.
NOTE: The Dell Networking OS does not suppress the following ICMPv6 message types: • Packet too big (2) • Echo request (128) • Multicast listener query (130) • Multicast listener report (131) • Multicast listener done (132) • Router solicitation (133) • Router advertisement (134) • Neighbor solicitation (135) • Neighbor advertisement (136) • Redirect (137) • Router renumbering (138) • MLD v2 listener report (143) • Duplicate Address Request (157) • Duplicate Address Confirmation (
generate hash Generate a hash checksum for the given file or the startup configuration using the MD5, SHA1, or SHA256 algorithm. Syntax generate hash {md5 | sha1 | sha256} {flash://filename | startup-config} Parameters md5 | sha1 | sha256 Enter the keyword md5, sha1, or sha256 to generate . flash://filename Enter the keyword flash: and enter the filename to generate the hash checksum for any file in the flash drive using the MD5, SHA1, or SHA256 algorithm.
Command Modes Command History Usage Information CONFIGURATION Version Description 9.14(0.0) Introduced on the S5048F–ON. 9.13(0.0) Introduced on the S3100 series, S3048–ON, S4048–ON, S4048T-ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, Z9500, C9010, MXL, and FN-IOM. If you configure the secure-cli command on the system, the Dell EMC Networking OS resets any previouslyconfigured root access password to the default root password without displaying any warning message.
Usage Information When you reboot the system using the reload command, the system performs OS image verification on the primary boot image. You can enable boot image hash validation only for images on local flash partitions such as A: or B:. Example DellEMC(config)# verified boot verified boot hash Verify and store the hash value of the startup configuration.
Command History Example Version Description 9.14(0.0) Introduced on the S5048F–ON. 9.13(0.0) Introduced on the S3100 series, S3048–ON, S4048–ON, S4048T-ON, S5000, S6000, S6000–ON, S6010–ON, S6100–ON, Z9100–ON, Z9500, C9010, MXL, and FN-IOM.
50 sFlow sFlow monitoring system includes an sFlow Agent and an sFlow Collector. • The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. • The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
sflow collector Configure a collector device to which sFlow datagrams are forwarded. Syntax sflow collector {ip-address} agent-addr {ip-address} [number [max-datagram-size number]] | [max-datagram-size number] To delete a configured collector, use the no sflow collector {ip-address} agent-addr {ipv4address} [number [max-datagram-size number]] | [max-datagram-size number] command. Parameters sflow collector ipaddress Enter the IPv4 (A.B.C.D) of the sFlow collector device.
Defaults Disabled. Command Modes CONFIGURATION Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information sFlow is disabled by default. In addition to this command, you must enable sFlow on individual interfaces where you want sFlow sampling. Related Commands sflow enable (Global) — enables sFlow on interfaces. sflow ingress-enable Enable sFlow ingress on interfaces.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The Dell Networking OS version 7.8.1.0 and later enhances the sflow implementation for real time traffic analysis to provide extended gateway information in cases where the destination IP addresses are learned by different routing protocols and for cases where the destination is reachable over ECMP. Related Commands show sflow — displays the sFlow configuration.
Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The polling interval for an interface is the maximum number of seconds between successive samples of counters sent to the collector. This command changes the global default counter polling (20 seconds) interval. You can configure an interface to use a different polling interval.
sampling rate. If the value entered is not a correct power of 2, the command generates an error message with the previous and next power of 2 value. Select one of these two packet numbers and re-enter the command. Related Commands sflow sample-rate (Interface) — changes the interface sampling rate. sflow sample-rate (Interface) Change the interface default sampling rate. Syntax sflow sample-rate value To return to the default sampling rate, use the no sflow sample-rate command.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The dropEvent counter (sFlow samples dropped due to sub-sampling) shown in the following example always displays a value of zero.
UDP packets dropped Dell# :0 sFlow 1165
51 Service Provider Bridging Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the Dell Networking OS Configuration Guide. This chapter includes commands for the Dell Networking operating software Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. For more information, see VLAN Stacking, Spanning Tree Protocol (STP), and GARP VLAN Registration (GVRP).
For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. in | out | both Enter the keyword in, out, or both to debug incoming interfaces, outgoing interfaces, or both incoming and outgoing interfaces. vlan vlan-id Enter the keyword vlan then the VLAN ID. The range is from 1 to 4094. count value Enter the keyword count then the number of debug outputs.
protocol-tunnel destination-mac Overwrite the BPDU destination MAC address with a specific value. Syntax protocol-tunnel destination-mac xstp address Parameters stp Change the default destination MAC address used for L2PT to another value. Defaults The default destination MAC is 01:01:e8:00:00:00. Command Modes CONFIGURATION Command History Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell# Dell#conf Dell(conf)#protocol-tunnel rate-limit 1000 Dell(conf)# Related Commands show protocol-tunnel — displays tunneling information for all VLANs. show running-config — displays the current configuration. show protocol-tunnel Display protocol tunnel information for all or a specified VLAN-Stack VLAN.
52 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog.
• logging • logging buffered • logging console • logging facility • logging history • logging history size • logging monitor • logging on • logging source-interface • logging synchronous • logging trap • logging version • show logging • show logging driverlog stack-unit • show logging auditlog • terminal monitor SNMP Commands The following SNMP commands are available in the Dell Networking OS.
Example Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100–ON. 9.9(0.0) Introduced on the FN IOM. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the MXL.
Related Commands snmp-server community — enables the SNMP and set community string. show snmp engineID Display the identification of the local SNMP engine and all remote engines that are configured on the router. Syntax Command Modes Command History Example show snmp engineID • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show snmp supported-mibs Display the list of SNMP MIBs supported by the platform. Syntax show snmp supported-mibs Command Modes Command History Example • EXEC • EXEC Privilege This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(0.0) Introduced on the C9010, FN-IOM, MIOA, MXL, S3048–ON, S3100, S4048–ON, S4048T-ON, S5048F-ON, S6000, S6000–ON, S6010–ON, S6100–ON and Z9100–ON.
Example Version Description 9.14(0.0) Introduced on the C9010, FN-IOM, MIOA, MXL, S3048–ON, S3100, S4048–ON, S4048T-ON, S5048F-ON, S6000, S6000–ON, S6010–ON, S6100–ON and Z9100–ON. DellEMC#show snmp supported-traps TRAP OID ----------------------------------------------------------------------COLDSTART 1.3.6.1.6.3.1.1.5.1 WARMSTART 1.3.6.1.6.3.1.1.5.2 LINKDOWN 1.3.6.1.6.3.1.1.5.3 LINKUP 1.3.6.1.6.3.1.1.5.4 Authenticationfailure 1.3.6.1.6.3.1.1.5.5 dellNetIfAlarmHighBer 1.3.6.1.4.1.6027.3.11.1.4.1.
snmp context Enables you to map a bgp vrf instance within a SNMP context through community mapping, in SNMPv2c and SNMPv3. Syntax [no] snmp context [context name] Parameters context name Enter a unique name for the context. Defaults None Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.13(0.
snmp-server community Configure a new community string access for SNMPv1 v2 and v3. Syntax snmp-server community community-name {ro | rw} [security-name name][accesslist-name] To remove access to a community, use the no snmp-server community community-string {ro | rw} [security-name name [access-list-name] command. Parameters community-name Enter a text string (up to 20 characters long) to act as a password for SNMP. ro Enter the keyword ro to specify read-only permission.
Dell(conf)# snmp-server community guest ro security-name guestuser Dell(conf)# Example Dell(conf)# ip access-list standard snmp-ro-acl Dell(config-std-nacl)#seq 5 permit host 10.10.10.224 Dell(config-std-nacl)#seq 10 deny any count ! Dell(conf)#snmp-server community guest ro snmp-ro-acl Dell(conf)# Related Commands ip access-list standard — names (or selects) a standard access list to filter based on IP address. show running-config — displays the current SNMP configuration and defaults.
notification-option • lacp — Notification of changes. • pfc — Notification of changes to pfc traps. • snmp — Notification of RFC 1157 traps. • stp — Notification of a state change in the spanning tree protocol (RFC 1493). • vrrp — Notification of a state change in a VRRP group. • xstp — Notification of a state change in MSTP (802.1s), RSTP (802.1w), and PVST +.
Format (as specified in RFC 3411): 12 octets. • The remaining eight octets are the MAC address of the chassis. Enter the keyword remote then the IP address that identifies the copy of the SNMP on the remote device. udp-port portnumber engineID Enter the keywords udp-port then the user datagram protocol (UDP) port number on the remote device. The range is from 0 to 65535. The default is 162. As above.
• 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. The default is 1. auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption. noauth (OPTIONAL) Enter the keyword noauth to specify no authentication of a packet. priv (OPTIONAL) Enter the keyword priv to specify both authentication and then scrambling of the packet.
Parameters ip-address Enter the keyword host then the IP address of the host (configurable hosts is limited to 16). traps (OPTIONAL) Enter the keyword traps to send trap notifications to the specified host. The default is traps. informs (OPTIONAL) Enter the keyword informs to send inform notifications to the specified host. The default is traps.
Command Modes Command History Usage Information CONFIGURATION Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. In order to configure the router to send SNMP notifications, enter at least one snmp-server host command. If you enter the command with no keywords, all trap types are enabled for the host. If you do not enter an snmpserver host command, no notifications are sent. In order to enable multiple hosts, issue a separate snmp-server host command for each host.
Parameters text Defaults Not configured. Command Modes CONFIGURATION Command History Enter an alpha-numeric text string, up to 55 characters long. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. snmp-server packetsize Set the largest SNMP packet size permitted. Wen the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable this snmp-server trap-source command, configure an IP address on the interface and enable the interface configured as an SNMP trap source. Related Commands snmp-server community — sets the community string. snmp-server user Configure a new user to an SNMP group.
• md5 — Message Digest Algorithm • sha — Secure Hash Algorithm auth-password (OPTIONAL) Enter a text string (up to 20 characters long) password that enables the agent to receive packets from the host and to send packets to the host. Minimum: eight characters long. priv des56 (OPTIONAL) Enter the keywords priv des56 to initiate a privacy authentication level setting using the CBC-DES privacy authentication algorithm (des56).
snmp-server user (for AES128-CFB Encryption) Specify that AES128-CFB encryption algorithm needs to be used for transmission of SNMP information. The Advanced Encryption Standard (AES) Cipher Feedback (CFB) 128-bit encryption algorithm is in compliance with RFC 3826. RFCs for SNMPv3 define two authentication hash algorithms, namely, HMAC-MD5-96 and HMAC-SHA1-96. These are the full forms or editions of the truncated versions, namely, HMAC-MD5 and HMAC-SHA1 authentication algorithms.
snmp-server view Configure an SNMPv3 view. Syntax snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command. Parameters view-name Enter the name of the view (not to exceed 20 characters). oid-tree Enter the OID sub tree for the view (not to exceed 20 characters). included (OPTIONAL) Enter the keyword included to include the MIB family in the view.
clear logging Clear the messages in the logging buffer. Syntax clear logging Defaults none Command Modes EXEC Privilege Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show logging — displays logging settings and system messages in the internal buffer. default logging buffered Return to the default setting for messages logged to the internal buffer.
Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the S6100–ON. 9.8(2.0) Introduced on the S3100 series. 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.
Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging monitor — sets the logging monitor parameters. terminal monitor — sends system messages to the terminal/monitor. default logging trap Return to the default settings for logging messages to the Syslog servers. Syntax default logging trap Defaults level = 6 or informational Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.
8.3.16.1 Related Commands Introduced on the MXL 10/40GbE Switch IO Module. logging on — enables the logging asynchronously to logging buffer, console, Syslog server, and terminal lines. logging trap — enables logging to the Syslog server based on severity. logging buffered Enable logging and specify which messages are logged to an internal buffer. By default, all messages are logged to the internal buffer.
Parameters level (OPTIONAL) Indicate a value from 0 to 7 or enter one of the following parameters: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging. The default is 7 or debugging. Defaults level = 7; size = debugging Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear logging — clears the logging buffer.
• sys14 (system use) • syslog (Syslog process) • user (user process) • uucp (Unix to Unix copy process) The default is local7. Defaults local7 Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging — enables logging to a Syslog server. logging on — enables logging.
To return to the default values, use the no logging history size command. Parameters size Defaults 1 message Command Modes CONFIGURATION Command History Indicate a value as the number of messages to be stored. The range is from 0 to 500. The default is 1 message. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History CONFIGURATION Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you use the no logging on command, messages are logged only to the console. Related Commands logging — enables logging to the Syslog server. logging buffered — sets the logging buffered parameters. logging console — sets the logging console parameters. logging monitor — sets the logging parameters for the terminal connections.
logging synchronous Synchronize unsolicited messages and output. Syntax logging synchronous [level level | all] [limit number-of-buffers] To disable message synchronization, use the no logging synchronous [level level | all] [limit number-of-buffers] command. Parameters all Enter the keyword all to ensure that all levels are printed asynchronously. level level Enter the keyword level then a number as the severity level. A high number indicates a low severity level and vice versa.
Command Modes Command History Related Commands CONFIGURATION Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging — enables the logging to another device. logging on — enables logging. logging version Displays syslog messages in a RFC 3164 or RFC 5424 format. Syntax logging version {0|1} Defaults 0 Command Modes CONFIGURATION Command History This guide is platform-specific.
show logging Display the logging settings and system messages logged to the internal buffer of the switch. Syntax Parameters Command Modes Command History Example (Partial) show logging [number | history [reverse][number] | reverse [number] | summary] number (OPTIONAL) Enter the number of messages displayed in the output. The range is from 1 to 65535. history (OPTIONAL) Enter the keyword history to view only information in the Syslog history table.
( 10.11.68.22 )by admin May 19 10:23:58: %STKUNIT0-M:CP %SEC-5-LOGOUT: Exec --More-Example (History) Dell#show logging history Syslog History Table: 1 maximum table entries, saving level warnings or higher SNMP notifications not Enabled May 22 08:53:09: %STKUNIT0-M:CP %SEC-3-AUTHENTICATION_ENABLE_SUCCESS: Enable password authentication success on vty0 ( 10.11.68.22 ) Dell# show logging driverlog stack-unit Display the driver log for the specified stack member.
Example Related Commands Version Description 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the S4810, S4820T, S6000, Z9000, and MXL. DellEMC(conf)# show logging auditlog • clear logging auditlog — clear the audit log. terminal monitor Configure the system to display messages on the monitor/terminal.
53 Stacking For more information about using the Switch stacking feature, see the Stacking MXL 10/40GbE Switches chapter in the Dell Networking OS Configuration Guide. NOTE: The terms stack-unit-id, unit-id, stack-unit-number, stack-number, and unit-number mentioned in this chapter refers to the stack-unit-number.
The unit does not reboot until it is manually rebooted. Related Commands show redundancy — displays the current redundancy status. redundancy force-failover stack-unit Force the standby unit in the stack to become the management unit. Syntax redundancy force-failover stack-unit Defaults Not enabled. Command Modes EXEC Privilege Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
2 3 4 5 Member Member Member Member online online online online MXL-10/40GbE MXL-10/40GbE MXL-10/40GbE MXL-10/40GbE MXL-10/40GbE MXL-10/40GbE MXL-10/40GbE MXL-10/40GbE 9-1-0-853 9-1-0-853 9-1-0-853 9-1-0-853 56 56 56 56 Dell#reset stack-unit ? <0-5> Unit number id Dell#reset stack-unit 0 % Error: Reset of master unit is not allowed. Dell(standby)#reset stack-unit 3 % Error: Reset of stack units from standby is not allowed.
Last failover type: None -- Last Data Block Sync Record: ------------------------------------------------Stack Unit Config: no block sync done Start-up Config: no block sync done Runtime Event Log: no block sync done Running Config: no block sync done ACL Mgr: no block sync done LACP: no block sync done STP: no block sync done SPAN: no block sync done Dell# Related Commands redundancy disable-auto-reboot — prevents the system from auto-rebooting if it fails.
1/33 1/37 1/49 1/53 2/33 2/37 2/49 2/53 Example (Status) Example (Topology) 2/37 0/33 0/41 2/49 0/37 1/33 1/53 0/45 40 40 40 40 40 40 40 40 Dell# show system stack-ports Topology: Ring Interface Link Speed Admin (Gb/s) Status 0/33 40 up 0/37 40 up 0/41 40 up 0/45 40 up 1/33 40 up 1/37 40 up 1/49 40 up 1/53 40 up 2/33 40 up 2/37 40 up 2/49 40 up 2/53 40 up up up up up up up up up up up up up up up up up status Link Trunk Status Group up up up up up up up up up up up up Dell# show system stack-ports T
Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • reload — reboots the system. • show system — displays the current status of all stack members or a specific member. stack-unit stack-group Configure a 40GbE port for stacking mode. Syntax Parameters Command Modes Command History Related Commands stack-unit unit number stack-group group number unit number <0–5> Number of the member stack unit. The valid values are from 0 to 5.
Related Commands • reload — reboots the system. • show system — displays the status of all stack members or a specific member. stack-unit provision Preconfigure a logical stacking ID of a switch that joins the stack. This is an optional command that is executed on the management unit. Syntax stack-unit 0–5] provision {MXL-10/40GbE} Parameters Command Modes Command History Related Commands 0–5 Enter a stack member identifier, from 0 to 5, of the switch that you want to add to the stack.
Example Dell#stack-unit 0 renumber 2 Renumbering master unit will reload the stack. Proceed to renumber [confirm yes/ no]: Related Commands • reload — reboots the system. • redundancy disable-auto-reboot — resets the designated stack member. • show system — displays the current status of all stack members or a specific member.
54 Storm Control The Dell Networking Operating System (OS) storm control feature allows you to limit or suppress traffic during a traffic storm. Storm control is supported on the Dell Networking OS. Important Points to Remember • Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs] and link aggregation group [LAG] interfaces are not supported). • An INTERFACE-level command only supports storm control configuration on ingress.
Command Modes Command History Example • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show storm-control broadcast tengigabitethernet 3/8 Broadcast storm control configuration Interface Direction Packets/Second ---------------------------------------TenGig 3/8 Ingress 1000 Dell# show storm-control multicast Display the storm control multicast configuration.
show storm-control unknown-unicast Display the storm control unknown-unicast configuration. Syntax show storm-control unknown-unicast [interface] Parameters Defaults interface (OPTIONAL) Enter one of the following interfaces to display the interface specific storm control configuration: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information.
8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. Broadcast storm control is valid on Layer 2/Layer 3 interfaces only. Layer 2 broadcast traffic is treated as unknown-unicast traffic. storm-control broadcast (Interface) Configure the percentage of broadcast traffic allowed on an interface. Syntax storm-control broadcast [packets_per_second in] To disable broadcast storm control on the interface, use the no storm-control broadcast [packets_per_second in] command.
storm-control multicast (Configuration) Configure the packets per second (pps) of multicast traffic. Syntax storm-control multicast packets_per_second in To disable storm-control for multicast traffic into the network, use the no storm-control multicast packets_per_second in command. Parameters packets_per_secon d Enter the packets per second of multicast traffic allowed into the network. The range is from 0 to 33554368.
To disable storm control for unknown-unicast traffic, use the no storm-control unknown-unicast [packets_per_second in] command. Parameters packets_per_secon d Defaults none Command Modes CONFIGURATION Command History Usage Information Enter the packets per second of broadcast traffic allowed into the network. The range is from 0 to 33554368. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
55 Spanning Tree Protocol (STP) The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP). Topics: • bridge-priority • debug spanning-tree • description • disable • forward-delay • hello-time • max-age • portfast bpdufilter default • protocol spanning-tree • show config • show spanning-tree 0 • spanning-tree 0 bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree.
debug spanning-tree Enable debugging of the spanning tree protocol and view information on the protocol. Syntax debug spanning-tree {stp-id [all | bpdu | events | exceptions] | protocol} To disable debugging, use the no debug spanning-tree command. Parameters Command Modes Command History stp-id Enter zero (0). The switch supports one spanning tree group with a group ID of 0. protocol Enter the keyword for the type of STP to debug, either mstp, pvst, or rstp.
disable Disable the spanning tree protocol globally on the switch. Syntax disable To enable Spanning Tree Protocol, use the no disable command. Defaults Enabled (that is, the spanning tree protocol is disabled.) Command Modes SPANNING TREE Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. portfast bpdufilter default — enters SPANNING TREE mode.
Parameters seconds Defaults 2 seconds Command Modes SPANNING TREE Command History Related Commands Enter a number as the time interval between transmission of BPDUs. The range is from 1 to 10. The default is 2 seconds. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. forward-delay — changes the wait time before STP transitions to the Forwarding state. max-age — changes the wait time before STP refreshes protocol configuration information.
9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree To enable and configure the spanning tree group, enter SPANNING TREE mode. Syntax protocol spanning-tree stp-id To disable the Spanning Tree group, use the no protocol spanning-tree stp-id command. Parameters stp-id Defaults Not configured. Command Modes CONFIGURATION Command History Enter zero (0). The system supports one spanning tree group, group 0. Version Description 8.3.
show spanning-tree 0 Display the spanning tree group configuration and status of interfaces in the spanning tree group. Syntax Parameters Command Modes Command History Usage Information show spanning-tree 0 [active | brief | guard | interface interface | root | summary] 0 Enter 0 (zero) to display information about that specific spanning tree group. active (OPTIONAL) Enter the keyword active to display only active interfaces in spanning tree group 0.
Example Field Description “Timers” Lists the values for the following bridge timers: hold time, topology change, hello time, max age, and forward delay. “Times” List the number of seconds since the last: • hello time • topology change • notification • aging “Port 1...” Displays the Interface type slot/port information and the status of the interface (Disabled or Enabled). “Port path...” Displays the path cost, priority, and identifier for the interface. “Designated root...
Dell# Example (Brief) Dell#show span 0 brief Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768 Address 0001.e800.0a56 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 0001.e800.0a56 Configured hello time 2, max age 20, forward delay 15 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID -------------- ------ ---- ---- --- ----- -----------------Gi 1/1 8.26 8 4 FWD 0 32768 0001.e800.0a56 8.26 Gi 1/2 8.27 8 4 FWD 0 32768 0001.
spanning-tree 0 Assigns a Layer 2 interface to STP instance 0 and configures a port cost or port priority, or enables loop guard, root guard, or the Portfast feature on the interface. Syntax spanning-tree stp-id {cost cost | {rootguard} | portfast [bpduguard [shutdownon-violation]| bpdufilter] | priority priority} To disable Spanning Tree group on an interface, use the no spanning-tree stp-id {cost cost | {rootguard} | portfast [bpduguard [shutdown-on-violation] | bpdufilter] | priority priority} command.
STP root guard is supported on a port or port-channel enabled in any Spanning Tree mode: Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP), Multiple Spanning Tree Protocol (MSTP), and Per-VLAN Spanning Tree Plus (PVST+). Root guard is supported on any STP-enabled port or port-channel except when used as a stacking port. When enabled on a port, root guard applies to all VLANs configured on the port.
56 SupportAssist SupportAssist sends troubleshooting data securely to Dell. SupportAssist in this Dell EMC Networking OS release does not support automated email notification at the time of hardware fault alert, automatic case creation, automatic part dispatch, or reports. SupportAssist requires Dell EMC Networking OS 9.9(0.0) and SmartScripts 9.7 or later to be installed on the Dell EMC Networking device. For more information on SmartScripts, see Dell EMC Networking Open Automation guide.
Usage Information Example Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. • When you run the command, the system displays a message with the information directing to the URL for further information.
transmission and/or use of the Collected Data, you may not download, install or otherwise use SupportAssist. Reject the EULA: DellEMC(conf)#eula-consent support-assist reject Aug 24 22:35:38: %STKUNIT1-M:CP %SUPPORT_ASSIST-6-SUPASSIST_EVT: Event monitor service stopped I do not accept the terms of the license agreement. The SupportAssist feature has been deactivated and can no longer be used.
Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
NOTE: The full transfer includes the core files as well in the information sent. The core transfer does not send core files that are older than 30 days. SupportAssist Commands Dell EMC Networking OS supports the following SupportAssist mode commands. activity Move to the SupportAssist Activity mode for an activity. Allow the user to configure customized details for a specific activity.
contact-company Configure the contact information for the company. Syntax contact-company name {company-name}[company-next-name] ... [company-next-name] To remove the contact company information, use the no contact-company command. Parameters company-name Enter the name for the company. If there are multiple words in the name, use optional additional fields. company-nextname (OPTIONAL) Enter the next components of the company name, up to 5 components are allowed.
Command Modes SUPPORTASSIST Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
server Configure the name of the remote SupportAssist Server and move to SupportAssist Server mode. Syntax server {default | server-name} To delete a server, use the no server server-name command. Parameters default Enter the keyword default for the default server. server-name Enter the name of the custom server to which the logs would be transferred. To include a space, enter a space within double quotes. Defaults Default server has URL stor.g3.ph.dell.
Parameters file-specification local-file-name Command Modes Enter the full file specification for the action-manifest file. For example: • tftp://hostip/filepath • ftp://userid:password@hostip/filepath • scp://userid:password@hostip/filepath Enter the name of the local action-manifest file, up to 32 characters long. Allowable characters are: a to z, A to Z, 0 to 9, -, _, and space.
Defaults Default Command Modes SUPPORTASSIST ACTIVITY FULL-TRANSFER SUPPORTASSIST ACTIVITY EVENT-TRANSFER Command History Usage Information Related Commands This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
Usage Information Related Commands Version Description 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. To revert to the default action-manifest file, use the action-manifest install command. If necessary, you can then remove the custom action-manifest file. • action-manifest get — copy an action-manifest file for an activity to the system. • action-manifest install — configure the action-manifest to use for a specific activity.
To disable a particular SupportAssist activity, use the no enable command. Defaults Enabled Command Modes SUPPORTASSIST ACTIVITY FULL-TRANSFER SUPPORTASSIST ACTIVITY CORE-TRANSFER SUPPORTASSIST ACTIVITY EVENT-TRANSFER Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.
province | region | state name (OPTIONAL) Enter the keyword province, region or state then the name of province, region or state for the company site. To include a space, enter a space within double quotes. country companycountry (OPTIONAL) Enter the keyword country then the country for the company site. To include a space, enter a space within double quotes.
Command History Usage Information This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
email-address Configure the email addresses to reach the contact person. Syntax email-address primary email-address [alternate email-address] To remove an email address, use the no email-address command. To remove the primary and the alternate email addresses, use the no email-address primary and no email-address alternate commands respectively. Parameters primary emailaddress Enter the keyword primary then the primary email address for the person.
alternate phone Enter the keyword alternate then the alternate phone number for the person. Command Modes SUPPORTASSIST PERSON Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
Related Commands Version Description 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. • email-address — configure email addresses to reach the contact person. • phone — configure phone numbers to reach the contact person. time-zone Configure the time zone for contacting the person. Syntax time-zone zone +-HH:MM[start-time HH:MM] [end-time HH:MM] To remove the time zone, use the no time-zone [zone | start-time | end-time] command.
proxy-ip-address Configure a proxy for reaching the SupportAssist remote server. Syntax proxy-ip-address {ipv4-address | ipv6-address} port port-number [ username userid password [encryption-type] password ] To remove the proxy, use the no proxy-ip-address command. Parameters ipv4-address Enter the IP address of the proxy server in a dotted decimal format (A.B.C.D). ipv6-address Enter the IPv6 address of the proxy server in the x:x:x:x::x format.
enable Enable communication with the SupportAssist server. Syntax enable To disable communication to a specific SupportAssist server, use the no enable command. Defaults Enabled Command Modes SUPPORTASSIST SERVER Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Related Commands Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.
Usage Information Version Description 9.11(0.0) Introduced on the M I/O Aggregator and FN IOM. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. The URL should be formatted to follow the ISO format. show eula-consent Display the EULA for the feature.
& performance information and related data (Collected Data) and transmits this information to Dell. By downloading SupportAssist and agreeing to be bound by these terms and the Dell end user license agreement, available at: www.dell.com/ aeula, you agree to allow Dell to provide remote monitoring services of your IT environment and you give Dell the right to collect the Collected Data in accordance with Dells Privacy Policy, available at: www.dell.
enable all ! activity event-transfer enable action-manifest install default ! activity core-transfer enable ! contact-company name Dell street-address F lane , Sector 30 address city Brussels state HeadState country Belgium postalcode S328J3 ! contact-person first Fred last Nash email-address primary des@sed.com alternate sed@dol.com phone primary 123422 alternate 8395729 preferred-method email time-zone zone +05:30 start-time 12:23 end-time 15:23 ! server Dell enable url http://1.1.1.
09:43:56 IST event-transfer 09:48:21 IST full-transfer 09:38:27 IST DellEMC# 1248 SupportAssist Success Feb 15 2016 09:47:43 IST Feb 15 2016 Success Feb 15 2016 09:36:12 IST Feb 15 2016
57 System Time and Date The commands in this chapter configure time values on the system, either using the Dell Networking Operating System (OS), or the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol” section of the Management chapter in the Dell Networking OS Configuration Guide.
year Defaults Not configured. Command Modes EXEC Privilege Command History Usage Information Enter a four-digit number as the year. The range is from 1993 to 2035. Version Description 9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. You can change the order of the month and day parameters to enter the time and date as time day month year. You cannot delete the software clock. The software clock runs only when the software is up.
offset Defaults Not configured. Command Modes CONFIGURATION Command History Related Commands (OPTIONAL) Enter the number of minutes to add during the summer-time period. The range is from 1 to1440. The default is 60 minutes. Version Description 9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clock summer-time recurring — sets a date (and time zone) on which to convert the switch to daylight saving time each year.
end-day Enter the weekday name that you want daylight saving time to end. Enter the weekdays using the three letter abbreviations; for example Sun, Sat, Mon, and so on. The range is from Sun to Sat. end-month Enter the name of one of the 12 months in English. end-time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format; example, 17:15:00 is 5:15 pm. offset (OPTIONAL) Enter the number of minutes to add during the summer-time period. The range is from 1 to 1440.
debug ntp Display network time protocol (NTP) transactions and protocol messages for troubleshooting. Syntax debug ntp {level level-number} To disable debugging of NTP transactions, use the no debug ntp {level level-number} command. Parameters Command Modes Command History level level-number Enter the keyword level then the level–number to display information about NTP logs. The log level range is from 1 to 6. • 1 is the most important log level. • 6 is the least important log level.
This number must be the same as the number parameter configured in the ntp trusted-key command. md5 Specify that the authentication key is encrypted using MD5 encryption algorithm. 0 Specify that authentication key is entered in an unencrypted format (default). 7 Specify that the authentication key is entered in DES encrypted format. key Enter the authentication key in the previously specified format. Defaults NTP authentication is not configured by default.
Command History Usage Information Related Commands This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Version Description 9.14(0.0) Introduced on the C9010, FN–IOM, MIOA, MXL, S3048–ON, S4048–ON, S4048T–ON, S5048F–ON, S6000, S6000–ON, S6010–ON, S6100–ON, and Z9100–ON. NTP control key is not configured by default. If the encryption–type (0 or 7) is not specified, then 0 is selected by default.
ntp master Configure the switch as NTP Server. Syntax ntp master Parameters ntp master Enter the keyword stratum number to identify the NTP Server's hierarchy. The stratum range value is from 2 to 15 and the default value is 8. Defaults Not configured. Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
Example DellEMC(config)# ntp offset-threshold 4 ntp server Configure an NTP time-serving host. Syntax Parameters ntp server[vrf vrf-name] {hostname | ipv4-address | ipv6-address} [key keyid] [prefer] [version number] [minpoll] [maxpoll] vrf vrf-name (Optional) Enter the keyword vrf and then the name of the VRF to configure a NTP time-serving host corresponding to that VRF. ipv4-address | ipv6address Enter an IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X) of NTP server.
ntp source Specify an interface’s IP address to be included in the NTP packets. Syntax ntp source interface To delete the configuration, use the no ntp source command. Parameters interface Defaults Not configured. Command Modes CONFIGURATION Command History Enter the following keywords and slot/port or number information: • For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383. • For a Port Channel interface, enter the keyword lag then a number.
Usage Information The number parameter in the ntp trusted-key command must be the same number as the number parameter in the ntp authentication-key command. If you change the ntp authentication-key command, you must also change the ntp trusted-key command. Related Commands ntp authentication-key — sets an authentication key for NTP. ntp authenticate — enables the NTP authentication parameters you set. show clock Display the current clock settings.
8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show ntp associations command shown in the following example. Field Description (none) One or more of the following symbols could be displayed: • * means synchronized to this peer. • # means almost synchronized to this peer. • + means the peer was selected for possible synchronization. • - means the peer is a candidate for selection.
show ntp vrf associations Displays the NTP servers configured for the VRF instance . Syntax show ntp [vrf] associations. Command Modes EXEC EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.6(0.0) Added support for VRF. 9.4.(0.
frequency is 0.000 ppm, stability is 0.000 ppm, precision is -18 reference time dec0e68a.07b308ac [Wed, Apr 7 0 9:42:34.030 UTC] UTC clock offset is 0.000000 msec, root delay is 152.003 msec root dispersion is 1381.293 msec, peer dispersion is 937.690 sec peer mode is client DellEMC# Related Commands 1262 show ntp associations — displays information on the NTP master and peer configurations.
58 Tunneling Tunneling is supported on the Dell Networking OS. tunnel-mode Enable a tunnel interface. Syntax tunnel mode {ipip | ipv6 | ipv6ip}[decapsulate-any] To disable an active tunnel interface, use the no tunnel mode command. Parameters ipip Enable tunnel in RFC 2003 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv4 tunnel. ipv6 Enable tunnel in RFC 2473 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv6 tunnel.
To delete the current tunnel source address, use the no tunnel source command. Parameters ip-address Enter the source IPv4 address in A.B.C.D format. ipv6–address Enter the source IPv6 address in X:X:X:X::X format. interface-typenumber • For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet then the slot/port information. • For a 1–Gigabit Ethernet interface, enter the keyword GigabitEthernet then the slot/port information.
unlimited Enter the keyword unlimited to specify the unlimited number of keepalive probe packets. Defaults Tunnel keepalive is disabled. Command Modes INTERFACE TUNNEL Command History Usage Information Version Description 9.4(0.0) Introduced on the MXL. When configured, the system will send ICMP echo probe packets at the configured interval and expect a response within the configured number of attempts, else the tunnel interface will be declared operational down.
tunnel dscp Configure the method to set the DSCP in the outer tunnel header. Syntax tunnel dscp {mapped | } To use the default tunnel mapping behavior, use the no tunnel dscp value command. Parameters mapped Enter the keyword mapped to map the original packet DSCP (IPv4)/Traffic Class (IPv6) to the tunnel header DSCP (IPv4)/Traffic Class (IPv6) depending on the mode of tunnel. value Enter a value to set the DSCP value in the tunnel header. The range is from 0 to 63.
To establish a logical tunnel to the particular destination address, use the destination address of the outer tunnel header. If you configure a tunnel interface or source address, the tunnel destination must be compatible. tunnel flow-label Configure the method to set the IPv6 flow label value in the outer tunnel header. Syntax tunnel flow-label value To return to the default value of 0, use the no tunnel flow-label value command.
ip unnumbered Configure a tunnel interface to operate without a unique explicit IPv4 address and select the interface from which the tunnel will borrow its address. Syntax ip unnumbered {interface-type interface-number} Use the no ip unnumbered command to set the tunnel back to default logical address. If the tunnel was previously operational, this will make the tunnel interface operationally down, unless the tunnel also has an IPv6 address configured..
9.4(0.0) Usage Information Introduced on the MXL. The ip unnumbered command will fail in two condition: • If the logical ip address is configured. • If the tunnel mode is ipv6ip (where ip address over tunnel interface is not possible). To ping the unnumbered tunnels the logical address route information should be present in both the ends. NOTE: The ipv6 unnumbered command can specify an interface name that does not yet exist, or does not yet have a configured IPv6 address.
59 u-Boot All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Networking Operating System (OS) MXL 10/40GbE Switch Module platform. To access this mode, press any key when the following line appears on the console during a system boot. Hit any key to stop autoboot: Enter u-Boot immediately, as the BOOT_USER# prompt. NOTE: This chapter describes only a few commands available in u-Boot mode. NOTE: You cannot use the Tab key to complete commands in this mode.
Command Modes Command History uBoot Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. boot selection Change the ROM bootstrap bootflash partition. Syntax boot selection [a | b] Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. boot show net config retries Show the number of retries for network boot configuration failure.
BOOT_USER # boot zero Clears the primary, secondary, or default boot parameters. Syntax boot zero [primary | secondary | default] Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default gateway Set the default gateway IP address. Syntax default-gateway Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. enable Change the access privilege level.
Example BOOT_USER # help ***** Dell Force10 Boot Interface Help Information ***** Current access level: USER LEVEL Use "syntax help" for more information on syntax.
Defaults No password is configured. level = 15. Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. Related Commands Version Description 9.13(0.0) Changed the maximum length of the password from 32 to 96. 9.10(0.1) Introduced on the S6010-ON and S4048T-ON. 9.10(0.0) Introduced on the S3148. 9.10(0.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. no interface management ethernet ip address Clear the management port IP address and mask. Syntax no interface management ethernet ip address Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. reload Reload the MXL switch. Syntax reload Command Modes uBoot Command History Version Description 8.3.16.
show boot selection Display the ROM bootstrap bootflash partition. Syntax show boot selection Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show boot selection ROM BOOTSTRAP SELECTOR PARMETERS: ================================ Next ROM bootstrap set to occur from Bootflash partition A. Last ROM bootstrap occurred from Bootflash partition B. BOOT_USER # show bootflash Show summary of boot flash information.
show bootvar Show summary of operating system boot parameters. Syntax show bootvar Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show bootvar PRIMARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : tftp file name : premnath Management Etherenet IP address : 10.16.130.134/16 Server IP address : 10.16.127.35 Default Gateway IP address : 15.0.0.
show interface management Ethernet Show the management port IP address and mask. Syntax show interface management ethernet Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show interface management ethernet Management ethernet IP address: 10.16.130.134/16 BOOT_USER # show interface management port config Show the management port boot characteristics.
Current access level: USER LEVEL Use "syntax help" for more information on syntax.
60 Uplink Failure Detection (UFD) Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if you use this with network interface controller (NIC) teaming, automatic recovery from a failed link.
Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • downstream — assigns a port or port-channel to the uplink-state group as a downstream interface. • upstream — assigns a port or port-channel to the uplink-state group as an upstream interface. • uplink-state-group — creates an uplink-state group and enables the tracking of upstream links.
uplink-state-group 3 description Testing UFD feature Related Commands uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. downstream Assign a port or port-channel to the uplink-state group as a downstream interface. Syntax downstream interface To delete an uplink-state group, enter the no downstream interface command.
downstream auto-recover Enable auto-recovery so that UFD-disabled downstream ports in an uplink-state group automatically come up when a disabled upstream port in the group comes back up. Syntax downstream auto-recover To disable auto-recovery on downstream links, use the no downstream auto-recover command. Defaults The auto-recovery of UFD-disabled downstream ports is enabled. Command Modes UPLINK-STATE-GROUP Command History Related Commands Version Description 8.3.16.
• uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. enable Re-enable upstream-link tracking for an uplink-state group after it has been disabled. Syntax enable To disable upstream-link tracking without deleting the uplink-state group, use the no enable command. Parameters group-id Enables debugging on the specified uplink-state group. The valid group-id values are from 1 to 16.
Related Commands • show uplink-state-group — displays the status information on a specified uplink-state group or all groups. • uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. show uplink-state-group Display status information on a specified uplink-state group or all groups.
Uplink State Group Upstream Interfaces Downstream Interfaces Related Commands : 16 Status: Disabled, Up : Gi 0/41(Dwn) Po 8(Dwn) : Gi 0/40(Dwn) • show running-config uplink-state-group — displays the current configuration of one or more uplink-state groups. • uplink-state-group — create an uplink-state group and enables the tracking of upstream links. uplink-state-group Create an uplink-state group and enable the tracking of upstream links on a switch/ router.
upstream Assign a port or port-channel to the uplink-state group as an upstream interface. Syntax upstream interface To delete an uplink-state group, use the no upstream interface command.
61 VLAN Stacking With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. dei honor Honor the incoming DEI value by mapping it to a system drop precedence. Enter the command once for 0 and once for 1. Syntax Parameters dei honor {0 | 1} {green | red | yellow} 0|1 Enter the bit value you want to map to a color. green | red | yellow Choose a color: • Green: High priority packets that are the least preferred to be dropped.
Usage Information You must first enable DEI for this configuration to take effect. Related Commands dei enable — enables DEI. member Assign a stackable VLAN access or trunk port to a VLAN. The VLAN must contain the vlan-stack compatible command in its configuration. Syntax member interface To remove an interface from a Stackable VLAN, use the no member interface command.
Gi Gi Gi Gi 0/1 0/1 8/9 8/40 0 1 1 0 Green Yellow Red Yellow Dell#show interface dei-honor Default Drop precedence: Green Interface CFI/DEI Drop precedence --------------------------------------------Te 0/1 0 Green Te 0/1 1 Yellow Te 1/2 1 Red Te 1/3 0 Yellow Related Commands dei honor — honors the incoming DEI value. show interface dei-mark Display the dei mark configuration.
8.3.16.1 Usage Information Introduced on the MXL 10/40GbE Switch IO Module. Prior to enabling this command, to place the interface in Layer 2 mode, enter the switchport command. To remove the access port designation, remove the port (using the no member interface command) from all stackable VLAN enabled VLANs. vlan-stack compatible Enable the stackable VLAN feature on a VLAN. Syntax vlan-stack compatible To disable the Stackable VLAN feature on a VLAN, use the no vlan-stack compatible command.
Parameters c-tag-dot1p value Enter the keyword c-tag-dot1p then the customer dot1p value that is mapped to a service provider do1p value. The range is from 0 to 5. sp-tag-dot1p value Enter the keyword sp-tag-dot1p then the service provider dot1p value. The range is from 0 to 5. Defaults none Command Modes INTERFACE Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History Usage Information INTERFACE Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Prior to using this command, to place the interface in Layer 2 mode, execute the switchport command. To remove the trunk port designation, first remove the port (using the no member interface command) from all stackable VLAN-enabled VLANs. Starting with the Dell Networking OS version 7.8.1.
Example Dell(config)#vlan-stack protocol-type 88A8 Dell(config)#interface gigabitethernet 3/10 Dell(conf-if-gi-3/10)#no shutdown Dell(conf-if-gi-3/10)#switchport Dell(conf-if-gi-3/10)#vlan-stack access Dell(conf-if-gi-3/10)#exit Dell(config)#interface tenGigabitethernet 8/0 Dell(conf-if-te-10/0)#no shutdown Dell(conf-if-te-10/0)#portmode hybrid Dell(conf-if-te-10/0)#switchport Dell(conf-if-te-10/0)#vlan-stack trunk Dell(conf-if-te-10/0)#exit Dell(config)#interface vlan 20 Dell(conf-if-vlan)#vlan-stack comp
62 Virtual Link Trunking (VLT) VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
Parameters ip–address Enter the IPv4 or IPv6 address of the backup destination. interval seconds Enter the keyword interval to specify the time interval to send hello messages. The range is from 1 to 5 seconds. The default is 1 second. Defaults Not configured. Command Modes VLT DOMAIN Usage Information You can only enable either IPv4 or IPv6. Command History Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
marked for re-download. Both local and synced routes are removed from the multicast route table. The peer VLT node clears synced routes from the node. If you use this command on a peer VLT node, only the synced routes are deleted from the multicast route table. delay-restore abort-threshold Increase the Boot Up timer to some value (>60 seconds). Syntax delay-restore abort-threshold To remove use the no delay-restore abort-threshold command.
multicast peer-routing timeout Configure the time for a VLT node to retain synced multicast routes or synced multicast outgoing interface (OIF) after a VLT peer node failure. Syntax multicast peer-routing timeout value To restore the default value, use the no multicast peer-routing timeout command. Parameters value Enter the timeout value in seconds. The range is from 1 to 1200. The default is 150. Default Not configured.
9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. peer-routing-timeout Configure the timeout for the software to wait before connecting to a VLT peer with a Down status. This command is applicable for both IPV6/ IPV4. Syntax peer-routing-timeout value To restore the default value, use the no peer-routing-timeout command. Parameters Command Modes Command History Usage Information value Enter the timeout value in seconds. The range is from 1 to 65535. The default value is 0 (no timeout).
show ip mroute View the multicast routing table. Syntax Parameters show ip mroute [static | group-address [source-address] | count | snooping [vlan vlan-id] [group-address [source-address]] | summary | vlt [group-address | count] Static (OPTIONAL) Enter the keyword static to view static multicast routes. group-address [source-address] (OPTIONAL) Enter the multicast group-address to view only routes associated with that group.
Field Description Outgoing interface list: Lists the interfaces that meet one of the following: • a directly connected member of the Group • statically configured member of the Group • received a (*,G) or (S,G) Join message Example (static) Dell#show ip mroute static Mroute: 23.23.23.0/24, interface: Lo 2 Protocol: static, distance: 0, route-map: none, last change: 00:00:23 Example (snooping) Dell#show ip mroute snooping IPv4 Multicast Snooping Table (*, 224.0.0.
Default Not configured. Command Modes EXEC Command History Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell# show vlt backup-link VLT Backup Link ----------------Destination: Peer HeartBeat status: HeartBeat Timer Interval: HeartBeat Timeout: UDP Port: HeartBeat Messages Sent: HeartBeat Messages Received: 10.11.198.130 Up 1 3 34998 634 473 show vlt brief Displays summarized status information about VLT domains currently configured on the switch.
show vlt detail Displays detailed status information about VLT domains currently configured on the switch. Syntax show vlt detail Default Not configured. Command Modes EXEC Command History Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell#show vlt mismatch Domain ----------Parameters Local ------------ ----------System-Mac 00:00:00:0a:0a:0a Vlan-config -----------Vlan-ID Local Mode --------- -----------2000 -3000 L3 Dell# Peer --------00:00:00:00:00:00 Peer Mode ---------L2 -- Example for Q-in-Q Dell#show vlt mismatch Implementation over Domain -----VLT Parameters Local -------------PB for stp Enabled Peer ---Disabled Vlan-type-config ---------------Codes:: P - Primary, C - Community, I - Isolated, N - Normal vlan, M - Vla
Default Not configured. Command Modes EXEC Command History Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show vlt role VLT Role ---------VLT Role: System MAC address: Primary Role Priority: Local System MAC address: Local System Role Priority: Local Unit Id: Dell# Primary 00:00:00:0a:0a:0a 700 00:01:e8:d7:3f:bd 700 0 show vlt statistics Displays statistics on VLT operations. Syntax show vlt statistics Default Not configured.
ARP-sync Pkts Sent:0 ARP-sync Pkts Rcvd:0 ARP Reg Request sent:18 ARP Reg Request rcvd:16 VLT NDP Statistics -------------------NDP NA VLT Tunnel Pkts sent:0 NDP NA VLT Tunnel Pkts Rcvd:0 NDP NA Non-VLT Tunnel Pkts sent:0 NDP NA Non-VLT Tunnel Pkts Rcvd:0 Ndp-sync Pkts Sent:0 Ndp-sync Pkts Rcvd:0 Ndp Reg Request sent:17 Ndp Reg Request rcvd:15 VLT Multicast Statistics ------------------------------Info Pkts Sent: 0 Info Pkts Rcvd: 0 Reg Request Sent: 0 Reg Request Rcvd: 0 Reg Response Sent: 0 Reg Response R
unit-id Explicitly configure the default unit ID of a VLT peer switch. Syntax unit-id id Parameters id Enter the system unit ID for VLT. The range is from 0 to 1. Defaults Automatically assigned based on the MAC address of each VLT peer. The peer with the lower MAC address is assigned unit 0; the peer with the higher MAC address is assigned unit 1. Command Modes VLT DOMAIN Command History Usage Information Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults Not configured. Command Modes INTERFACE PORT-CHANNEL Command History Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show vlt private-vlan Display the association of private VLAN (PVLAN) with the VLT LAG. You can configure VLT peer nodes in a PVLAN on the switch. Syntax show vlt private-vlan Command Modes EXEC Command History Version Description 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform.
63 Virtual Router Redundancy Protocol (VRRP) Virtual router redundancy protocol (VRRP) is supported by the Dell Networking Operating System (OS) for IPv4 and IPv6. The following commands apply to both VRRP IPv4 and IPv6: • advertise-interval • description • disable • hold-time • preempt • priority • show config • track • virtual-address VRRP Ipv6 are in the VRRP for IPv6 Commands section.
advertise-interval Set the time interval between VRRP advertisements. Syntax advertise-interval {seconds | centisecs centisecs} To return to the default settings, use the no advertise-interval command. Parameters seconds Enter a number of seconds. The range is from 1 to 255. The default is 1 second. centisecs centisecs Enter the keyword centisecs followed by the number of centisecs in multiple of 25 centisecs. The range is 25 to 4075 centisecs in multiples of 25 centisecs.
Usage Information The given password is encrypted by the system and the show config displays an encrypted text string for any of the encrypted typed used. clear counters vrrp Clear the counters maintained on VRRP operations. Syntax clear counters vrrp [vrrp-id] Parameters Command Modes Command History vrrp-id (OPTIONAL) Enter the number of the VRRP group ID. The range is from 1 to 255. EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If you do not specify options, debug is active on all interfaces and all VRRP groups. description Configure a short text string describing the VRRP group. Syntax description text To delete a VRRP group description, use the no description command. Parameters text Defaults Not enabled. Command Modes VRRP Command History Enter a text string up to 80 characters long.
To return to the default value, use the no hold-time command. Parameters seconds Enter a number of seconds. The range is from 0 to 65535. The default is zero (0) seconds. centisecs centisecs Enter the keyword centisecs then the number of centisecs in units of 25 centisecs. The range is from 0 to 65525 in units of 25 centisecs. Defaults zero (0) seconds Command Modes VRRP Command History Version Description 9.5(0.0) Introduced the support for centisecs on the MXL 10/40GbE Switch. 8.3.16.
Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. To guarantee that a VRRP group becomes MASTER, configure the VRRP group’s virtual address with same IP address as the interface’s primary IP address and change the priority of the VRRP group to 255. If you set the priority command to 255 and the virtual-address is not equal to the interface’s primary IP address, an error message appears.
brief Command Modes Command History Usage Information • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The following describes the show vrrp brief command shown in the following example. Item Description Interface Lists the interface type, slot and port on which the VRRP group is configured. Grp Displays the VRRP group ID. Pri Displays the priority value assigned to the interface.
Item Description • master (MASTER virtual router) • backup (BACKUP virtual router) the interface’s priority and the IP address of the MASTER. Hold Down:... Adv rcvd:... Example This line displays additional VRRP configuration information: • Hold Down displays the hold down timer interval in seconds. • Preempt displays TRUE if preempt is configured and FALSE if preempt is not configured. • AdvInt displays the Advertise Interval in seconds.
Up GigabitEthernet 12/17 priority-cost 10 Dell> track Monitor an interface and lower the priority value of the VRRP group on that interface if it is disabled. Syntax track interface [priority-cost cost] To disable monitoring, use the no track interface command.
Defaults Not configured. Command Modes VRRP Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The VRRP group only becomes active and sends VRRP packets when a virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. A system message appears after you enter or delete the virtual-address command.
Parameters seconds Defaults 0 Command Modes INTERFACE Command History Usage Information Enter the number of seconds for the delay. The range is from 0 to 900 (0 indicates no delay). Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. This command applies to all the VRRP configured interfaces on a system. When used with the vrrp delay minimum CLI, the later timer rules the VRRP enabling.
clear counters vrrp ipv6 Clear the counters recorded for IPv6 VRRP groups. Syntax Parameters clear counters vrrp ipv6 [vrid | vrf instance] vrid (OPTIONAL) Enter the number of an IPv6 VRRP group. The range is from 1 to 255. vrf instance (OPTIONAL) Enter the name of a VRF instance (32 characters maximum) to clear the counters of all IPv6 VRRP groups in the specified VRF. Defaults Not configured Command Modes INTERFACE Command History Version Description 8.3.16.
Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. If no options are specified, debug is active on all interfaces and all VRRP groups. show vrrp ipv6 View the IPv6 VRRP groups that are active. If no VRRP groups are active, the system returns No Active VRRP group. Syntax show vrrp ipv6 [vrid] [interface] [brief] Parameters vrid (OPTIONAL) Enter the virtual router identifier for the VRRP group to view only that group.
Line Beginning with Description Hold Down:... This line displays additional VRRP configuration information: Adv rcvd:... Example • Hold Down displays the hold down timer interval in seconds. • Preempt displays TRUE if preempt is configured and FALSE if preempt is not configured. • AdvInt displays the Advertise Interval in seconds. This line displays counters for the following: • Adv rcvd displays the number of VRRP advertisements received on the interface.
Command History Usage Information Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. The VRRP group only becomes active and sends VRRP packets when a link-local virtual IP address is configured. When you delete the virtual address, the VRRP group stops sending VRRP packets. • When VRF microcode is not loaded in CAM, the VRID for a VRRP group is the same as the VRID number configured with the vrrp-group or vrrp-ipv6-group command.
Usage Information Version Description 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, and MXL. You can use the both command to migrate from VRRPv2 to VRRPv3. When you set the VRRP protocol version to both, the switch sends only VRRPv3 advertisements but can receive either VRRPv2 or VRRPv3 packets. To migrate an IPv4 VRRP group from VRRPv2 to VRRPv3: 1 Set the switches with the lowest priority to both.
64 ICMP Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table 5. ICMP messages and their definitions Symbol Type Code . Description Query Error Timeout (no reply) ! 0 U 3 C 3 . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable . 3 port unreachable .
Symbol Type & 11 Code Description Query Error time exceeded: 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request . 14 0 timestamp reply . 15 0 information request (obsolete) . 16 0 information reply (obsolete) . 17 0 address mask request . 18 0 address mask reply .
65 SNMP Traps This chapter lists the traps sent by the Dell Networking Operating System (OS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Table 6.
Message ID Trap Type Trap Option NONE NONE ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE PROTO NONE PROTO NONE %RPM0-P:CP %SNMP-4-RMON_HC_FALLING_THRESHOLD: RMON highcapacity falling threshold alarm from SNMP OID RESV N/A CHM_MIN_ALRM_TEMP %CHMGR-2-MINOR_TEMP: Minor alarm: chassis temperature CHM_MIN_ALRM_TEMP_CLR %CHMRG-5-MINOR_TEMP_CLR: Minor alarm cleared: chassis temperature normal
Message ID Trap Type Trap Option PROTO NONE PROTO NONE PROTO NONE ETS NONE ETS NONE ETS NONE ETS NONE PFC NONE PFC NONE %VRRP-6-VRRP_MASTER: vrid-%d on %s entering MASTER VRRP_PROTOCOL_ERROR VRRP_PROTOERR: VRRP protocol error on %S BGP4_ESTABLISHED %TRAP-5-PEER_ESTABLISHED: Neighbor %a, state %s BGP4_BACKW_XSITION %TRAP-5-BACKWARD_STATE_TRANS: Neighbor %a, state %s ETS_TRAP_TYPE_MODULE_STATUS_CHA NGE %DIFFSERV-5-ETS_TRAP_TYPE_MODULE_STATUS_CHANGE: ETS Module status changed to enabled %D
Message ID Trap Type Trap Option PFC NONE PFC NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE FIPS NONE ENTITY NONE %DIFFSERV-5-PFC_TRAP_TYPE_ADMIN_MODE_CHANGE : PFC Admin mode changed to off for port %s PFC_TRAP_TYPE_OPER_STATE_CHANGE %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state changed to init for port %s %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state changed to off for port %s %DIFFSERV-5-PFC_TRAP_TYPE_OPER_STATE_CHANGE: PFC Oper state c
66 FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module. Topics: • FC Flex IO Modules • Data Center Bridging (DCB) for FC Flex IO Modules • NPIV Proxy Gateway for FC Flex IO Modules FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module.
description (for FCoE maps) In an FCoE map, add a text description of the FCoE and FC parameters used to transmit storage traffic over an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway in a converged fabric. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters description text text Defaults None Command Modes FCOE MAP Command History Version 9.3(0.0) Enter a maximum of 32 characters.
operate as an FCoE-FC bridge between an FC SAN and an FCoE network by providing FCoE-enabled servers and switches with the necessary parameters to log in to a SAN fabric. Use the fcoe-map command to create an FCoE map. On an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway, you cannot apply an FCoE map on fabric-facing FC ports and server-facing Ethernet ports.
You must first create a VLAN and then specify the configured VLAN ID in the fabric-id vlan command. Otherwise, the following error message is displayed. FTOS(conf-fcoe-f)#fabric-id 10 vlan 10 % Error: Vlan 10 does not exist Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps.
The range of FC-MAP values is from 0EFC00 to 0EFCFF. Defaults None Command Modes FCoE MAP Command History Usage Information Version Description 9.6(0.0) Supported on the FN 2210S Aggregator. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. The FC-MAP value you enter must match the FC-MAP value used by an FC switch or FCoE forwarder (FCF) in the fabric. An FCF switch accepts only FCoE traffic that uses the correct FC-MAP value.
• Command Modes Vlan priority: 3 CONFIGURATION INTERFACE Command History Usage Information Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
Usage Information To delete the FIP keepalive time period from an FCoE map, enter the no fka-adv-erpiod command. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric. show fcoe-map— displays the Fibre Channel and FCoE configuration parameters in FCoE maps.
keepalive In an FCoE map, enable the monitoring of FIP keepalive messages (if it is disabled). M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax keepalive Parameters None Defaults FIP keepalive monitoring is enabled on Ethernet and Fibre Channel interfaces. Command Modes FCOE MAP Command History Usage Information Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module.
Usage Information Use the show fcoe-map command to display the FC and FCoE parameters used to configure server-facing Ethernet (FCoE) and fabric-facing FC ports in all FCoE maps on an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway. In each FCoE map, the values for the fabric ID and FC-MAP that identify the SAN fabric to which FC storage traffic is sent, and the FCoE VLAN to be used must be unique.
Example Field Description Oper-State Operational status of link to the fabric: Up (link is up and transmitting FC traffic), Down (link is down and not transmitting FC traffic), Link-wait (link is up and waiting for FLOGI to complete on peer FC port), or Removed (port has been shut down). Members M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Ethernet and FC ports that are members of the dedicated FCoE VLAN that carries storage traffic to the specified fabric.
Usage Information Use the show npiv devices command to display information on the server CNA, server-facing Ethernet and fabric-facing FC ports, and the SAN fabric in each server-fabric connection over an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway. The following table describes the show npiv devices brief output shown in the example below.
Example Related Commands Field Description Fabric Map Name of the FCoE map containing the FCoE/FC configuration parameters for the server CNA-fabric connection. Enode WWPN Worldwide port name of the server CNA port. Enode WWNN Worldwide node name of the server CNA. FCoE MAC Fabric-provided MAC address (FPMA). The FPMA consists of the FC-MAP value in the FCoE map and the FC-ID provided by the fabric after a successful FLOGI.
67 X.509v3 X.509v3 is a standard for public key infrastructure (PKI) to manage digital certificates and public key encryption. This standard specifies a format for public-key certificates or digital certificates. Dell EMC Networking OS supports X.509v3 standards.
Usage Information The following RBAC roles are allowed to issue this command: • sysadmin • secadmin Before deleting a CA certificate, the system checks whether that certificate is an issuer of other installed certificate on the system. If so, the system informs you to delete other installed certificates first. Related Commands crypto ca-cert installcrypto cert generatecrypto ca-cert install crypto ca-cert install Downloads and installs the certificate of a Certificate Authority (CA) on to the device.
crypto cert delete Deletes a trusted certificate. Syntax crypto cert delete Defaults NA. Command Modes EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command: Usage Information Version Description 9.11.0.0 Introduced the command.
cert-path Enter the path to locally store the self-signed certificate or CSR. The path can be a full path or a relative path. If the system accepts this path, a notification is sent indicating the location where the CSR file is stored. You can then export the CSR to a CA using the “copy” command. Following is an example of a path that you can specify: flash:// certs/s4810-001-request.csr. key-file Enter the keyword key-file to specify the private key.
Usage Information Version Description 9.11.0.0 Introduced the command. The following RBAC roles are allowed to issue this command: • sysadmin • secadmin If the cert-file option is not specified in the command, then the system interactively prompts you to fill in various fields of the certificate signing request (CSR). You are prompted to fill out some metadata information for the certificate.
NOTE: After the certificate is successfully installed, the private key is deleted from the specified location and copied to the hidden location in NVRAM. password passphrase (Optional) Enter the keyword password followed by the password phrase used to decrypt the private key. NOTE: You can generate the private key and certificate on another host. While doing so, you must keep the private key encrypted with a passphrase so that the private key is not compromised during transport.
crypto x509 ocsp Configures the OCSP behavior. Syntax crypto x509 ocsp [nonce] [sign-requests] Parameters nonce Enter the keyword nonce to use the nonce feature for the OCSP requests to OCSP responder communication. This is a one-time value that must be returned in the OCSP response. If the OCSP responder is using precomputed responses, then it does not reply with the nonce. The nonce feature is off by default. The no version of the command disables the nonce feature.
reject Defaults Command Modes Command History Enter the keyword reject to reject the presented certificate and log in if OCSP retrieval fails. crypto x509 revocation ocsp accept • CONFIGURATION Mode This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command: Related Commands Version Description 9.11.0.
logging secure Creates a log file for various events related to X.509v3 certificates. Syntax logging {hostname} {secure | tcp | udp} [vrf vrf-name] [sha1 fingerprint] [port port-number] Parameters hostname Enter the name of the host or device for which you wish to record logs corresponding to the certificates. NOTE: The hostname can be an IPV4 address, an IPV6 address, or a DNS hostname—with or without DNS suffix.
Related Commands • crypto cert install • crypto ca-cert install • crypto cert generate crypto x509 ca-keyid Creates a per-certificate configuration context using the specified subject key identifier. Syntax crypto x509 ca-keyid subject-key-identifier Use to the no crypto x509 ca-keyid command to remove this configuration. Parameters Defaults Command Modes Command History subject-keyidentifier Enter the content of the SubjectKeyIdentifier field from the CA certificate.
ocsp-server Configures OCSP server on a CA. Syntax ocsp-server url [nonce] [sign-requests] Parameters url Enter the URL for the OCSP responder using standard URI format. Either http or https protocol can be used. For example, http://[1100::101]:8888. nonce Enter the keyword nonce to use the nonce feature for the OCSP requests to OCSP responder communication. This number is a one-time value that must be returned in the OCSP response.
Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC Networking OS Command Line Reference Guide. The following is a list of the Dell EMC Networking OS version history for this command: Usage Information Version Description 9.11.0.0 Introduced this command.
show crypto cert Displays the certificate information that is specified. Syntax show crypto cert {path} Parameters path (OPTIONAL) Enter the path to a local file where a certificate chain is stored in PEM format. If a path is not specified, display the certificate that is currently installed on the system. Defaults None. Command Modes EXEC Privilege Command History This guide is platform-specific.
