Dell Networking Command Line Reference Guide for the MXL 10/40GbE Switch I/O Module 9.10(0.
Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2016 Dell Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws.
Contents 1 About this Guide..................................................................................................................... 46 Objectives.................................................................................................................................. 46 Audience.....................................................................................................................................47 Conventions.................................................................
Control and Monitoring........................................................................................................ 83 asset-tag.....................................................................................................................................83 asf-mode....................................................................................................................................83 banner exec.................................................................................
show command-history........................................................................................................ 111 show cpu-traffic-stats........................................................................................................... 113 show debugging..................................................................................................................... 114 show environment.................................................................................................
mac............................................................................................................................................ 153 show dot1x cos-mapping interface................................................................................... 154 show dot1x interface............................................................................................................. 156 show dot1x profile............................................................................................
permit....................................................................................................................................... 209 seq.............................................................................................................................................. 211 Extended MAC ACL Commands......................................................................................... 213 deny.............................................................................................
deny...........................................................................................................................................257 permit (for Standard IP ACLs).............................................................................................. 259 permit arp.................................................................................................................................261 permit ether-type (for Extended MAC ACLs).....................................................
bfd neighbor............................................................................................................................325 bfd protocol-liveness............................................................................................................ 326 ip route bfd.............................................................................................................................. 326 ipv6 ospf bfd all-neighbors....................................................................
clear ip bgp peer-group....................................................................................................... 359 debug ip bgp........................................................................................................................... 359 debug ip bgp dampening.....................................................................................................360 debug ip bgp events...............................................................................................
show capture bgp-pdu neighbor....................................................................................... 392 show config.............................................................................................................................393 show ip bgp............................................................................................................................. 393 show ip bgp cluster-list......................................................................................
cam-acl (Configuration)....................................................................................................... 436 cam-optimization.................................................................................................................. 438 show cam-acl......................................................................................................................... 439 show cam-acl-egress.........................................................................................
dcb-buffer-threshold ........................................................................................................... 477 dcb enable pfc-queues.........................................................................................................478 dcb {ets | pfc} enable.............................................................................................................479 dcb-policy buffer-threshold (Interface Configuration).................................................
netbios-name-server.............................................................................................................521 netbios-node-type.................................................................................................................521 network.................................................................................................................................... 522 show ip dhcp binding..................................................................................
Equal Cost Multi-Path (ECMP)......................................................................................... 543 ecmp-group............................................................................................................................543 hash-algorithm.......................................................................................................................544 hash-algorithm ecmp.............................................................................................
show fip-snooping fcf...........................................................................................................576 show fip-snooping sessions.................................................................................................577 show fip-snooping statistics................................................................................................ 578 show fip-snooping system...................................................................................................
ip igmp snooping flood........................................................................................................ 608 ip igmp snooping last-member-query-interval.............................................................. 609 ip igmp snooping mrouter...................................................................................................609 ip igmp snooping querier.....................................................................................................
show interfaces switchport..................................................................................................657 show interfaces transceiver................................................................................................. 659 show range..............................................................................................................................665 shutdown...........................................................................................................
ip domain-name.................................................................................................................... 698 ip helper-address................................................................................................................... 699 ip helper-address hop-count disable................................................................................700 ip host..................................................................................................................
cam-acl-egress...................................................................................................................... 740 ipv6 access-list........................................................................................................................741 ipv6 control-plane egress-filter.......................................................................................... 742 permit......................................................................................................
bgp cluster-id..........................................................................................................................778 bgp confederation identifier................................................................................................ 779 bgp confederation peers...................................................................................................... 779 bgp dampening....................................................................................................
neighbor fall-over..................................................................................................................809 neighbor filter-list.................................................................................................................. 810 neighbor maximum-prefix................................................................................................... 810 neighbor X:X:X::X password....................................................................................
show ip bgp paths as-path.................................................................................................. 843 show ip bgp paths community........................................................................................... 843 show ip bgp paths extcommunity......................................................................................843 show ip bgp regexp...............................................................................................................
advertise dcbx-app-tlv.......................................................................................................... 875 iscsi aging time....................................................................................................................... 876 iscsi cos.................................................................................................................................... 876 iscsi enable.................................................................................
ipv6 router isis........................................................................................................................ 904 isis circuit-type....................................................................................................................... 904 isis csnp-interval.................................................................................................................... 905 isis csnp-interval.........................................................................
lacp port-priority....................................................................................................................940 lacp system-priority............................................................................................................... 941 port-channel mode............................................................................................................... 941 port-channel-protocol lacp...............................................................................
multiplier.................................................................................................................................. 973 protocol lldp (Configuration)...............................................................................................973 protocol lldp (Interface)........................................................................................................ 973 show lldp neighbors......................................................................................
debug spanning-tree mstp................................................................................................ 1002 description.............................................................................................................................1003 disable.................................................................................................................................... 1004 disable.............................................................................................
show running-config track.......................................................................................... 1032 show track....................................................................................................................... 1033 threshold metric............................................................................................................. 1035 track interface ip routing..............................................................................................
ip ospf hello-interval........................................................................................................... 1069 ip ospf message-digest-key.............................................................................................. 1069 ip ospf mtu-ignore...............................................................................................................1070 ip ospf network......................................................................................................
area encryption......................................................................................................................1113 auto-cost................................................................................................................................ 1115 clear ipv6 ospf process........................................................................................................ 1116 debug ipv6 ospf bfd...............................................................................
clear ip pim tib....................................................................................................................... 1151 debug ip pim.......................................................................................................................... 1151 ip pim bsr-border..................................................................................................................1152 ip pim bsr-candidate...........................................................................
show ipv6 pim tib................................................................................................................. 1182 42 Port Monitoring................................................................................................................1184 Description.............................................................................................................................1184 flow-based enable...................................................................................
rate police.............................................................................................................................. 1219 rate shape.............................................................................................................................. 1220 service-class dynamic dot1p..............................................................................................1221 service-class bandwidth-percentage...................................................................
wred ecn................................................................................................................................ 1253 wred-profile.......................................................................................................................... 1254 dscp......................................................................................................................................... 1255 qos dscp-color-map.................................................................
rmon hc-alarm..................................................................................................................... 1285 show rmon............................................................................................................................ 1286 show rmon alarms............................................................................................................... 1287 show rmon events........................................................................................
access-class...........................................................................................................................1321 enable password................................................................................................................... 1321 enable restricted...................................................................................................................1322 enable secret......................................................................................
ip ssh rsa-authentication (EXEC).......................................................................................1353 ip ssh server........................................................................................................................... 1354 show accounting..................................................................................................................1356 show crypto.....................................................................................................
protocol-tunnel enable...................................................................................................... 1385 protocol-tunnel rate-limit..................................................................................................1386 show protocol-tunnel.........................................................................................................1386 52 Simple Network Management Protocol (SNMP) and Syslog................................... 1388 SNMP Commands..............
logging trap........................................................................................................................... 1420 logging version..................................................................................................................... 1420 show logging......................................................................................................................... 1421 show logging driverlog stack-unit.............................................................
show spanning-tree 0......................................................................................................... 1447 spanning-tree 0....................................................................................................................1450 56 SupportAssist.................................................................................................................... 1452 eula-consent...............................................................................................
debug ntp.............................................................................................................................. 1480 ntp authenticate................................................................................................................... 1481 ntp authentication-key........................................................................................................1481 ntp broadcast client...................................................................................
no interface management ethernet ip address............................................................. 1505 reload......................................................................................................................................1505 show boot blc.......................................................................................................................1506 show boot selection.....................................................................................................
lacp ungroup member-independent vlt......................................................................... 1534 multicast peer-routing timeout........................................................................................ 1534 peer-link port-channel........................................................................................................1535 peer-routing..........................................................................................................................
version.................................................................................................................................... 1566 64 ICMP Message Types.......................................................................................................1568 65 SNMP Traps....................................................................................................................... 1570 66 FC Flex IO Modules...............................................................................
1 About this Guide This guide provides information about the Dell Networking Operating System (OS) command line interface (CLI). This guide also includes information about the protocols and features found in the Dell OS and on the Dell Networking systems supported by the Dell OS.
Audience This book is intended for system administrators who are responsible for configuring or maintaining networks. This guide assumes that you are knowledgeable in Layer 2 and Layer 3 networking technologies. Conventions This book uses the following conventions to describe command syntax. Keyword Keywords are in Courier font and must be entered in the CLI as listed. parameter Parameters are in italics and require a number or word to be entered in the CLI.
2 CLI Basics This chapter describes the command line interface (CLI) structure and command modes. The Dell operating software commands are in a text-based interface that allows you to use the launch commands, change command modes, and configure interfaces and protocols.
Multiple Configuration Users When a user enters CONFIGURATION mode and another user is already in CONFIGURATION mode, the Dell Networking Operating System (OS) generates an alert warning message similar to the following: Dell#conf % Warning: The following users are currently configuring the system: User "" on line User "admin" on User "admin" on User "Irene" on Dell#conf console0 line vty0 ( 123.12.1.123 ) line vty1 ( 123.12.1.123 ) line vty3 ( 123.12.1.
Prompt CLI Command Mode Dell(conf-if-ma-0/0)# Dell(conf-if-range)# Dell(conf-line-console)# LINE Dell(conf-line-vty)# Dell(conf-mon-sess)# MONITOR SESSION Obtaining Help As soon as you are in a command mode there are several ways to access help. To obtain a list of keywords at any command mode: Type a ? at the prompt or after a keyword. There must always be a space before the ?. To obtain a list of keywords with a brief functional description: Type help at the prompt.
Key Combination Action CNTL-A Moves the cursor to the beginning of the command line. CNTL-B Moves the cursor back one character. CNTL-D Deletes the character at the cursor. CNTL-E Moves the cursor to the end of the line. CNTL-F Moves the cursor forward one character. CNTL-I Completes a keyword. CNTL-K Deletes all the characters from the cursor to the end of the command line. CNTL-L Re-enters the previous command.
Version Description 8.3.17.0 Supported on the M I/O Aggregator. Filtering show Commands To find specific information, display certain information only or begin the command output at the first instance of a regular expression or phrase, you can filter the display output of a show command. When you execute a show command, and then enter a pipe ( | ), one of the following parameters, and a regular expression, the resulting output either excludes or includes those parameters.
Command Modes To navigate and launch various CLI modes, use specific commands. Navigation to these modes is described in the following sections. EXEC Mode When you initially log in to the switch, by default, you are logged in to EXEC mode. This mode allows you to view settings and enter EXEC Privilege mode, which is used to configure the device. When you are in EXEC mode, the > prompt is displayed following the host name prompt, which is “Dell” by default.
1 Verify that you are logged in to CONFIGURATION mode. 2 Enter the interface command and then enter an interface type and interface number that is available on the switch. The prompt changes to include the designated interface and slot/port number.
2 Enter the line command. Include the keywords console or vty and their line number available on the switch. The prompt changes to include (config-line-console) or (config-line-vty). You can exit this mode by using the exit command. MAC ACCESS LIST Mode To enter MAC ACCESS LIST mode and configure either standard or extended access control lists (ACLs), use the mac access-list standard or mac access-list extended command.
1 Verify that you are logged in to CONFIGURATION mode. 2 Enter the ip prefix-list command. Include a name for the prefix list. The prompt changes to include (conf-nprefixl). You can return to CONFIGURATION mode by using the exit command. PROTOCOL GVRP Mode To enable and configure GARP VLAN Registration Protocol (GVRP), use PROTOCOL GVRP mode. For more information, refer to GARP VLAN Registration (GVRP). To enter PROTOCOL GVRP mode: 1 Verify that you are logged in to CONFIGURATION mode.
2 Enter the router ospf {process-id} command. The prompt changes to include (confrouter_ospf-id). You can switch to INTERFACE mode by using the interface command or you can switch to ROUTER RIP mode by using the router rip command. ROUTER RIP Mode To enable and configure Router Information Protocol (RIP), use ROUTER RIP mode. For more information, refer to Routing Information Protocol (RIP). To enter ROUTER RIP mode: 1 Verify that you are logged in to CONFIGURATION mode.
3 File Management This chapter contains command line interface (CLI) commands needed to manage the configuration files as well as other file management commands. The commands in this chapter are supported by the Dell Networking Operating System (OS).
To return to the default boot sequence, use the no boot system command. Parameters gateway Enter the IP address of the default next-hop gateway for the management subnet. ip-address Enter an IP address in dotted decimal format. stack-unit Enter the stack-unit number for the master switch. stack-unitnumber Enter the stack-unit number. The range is from 0 to 5. all Enter the keywordall to apply the configuration for all stack units.
Usage Information To display these changes in the show bootvar command output, save the running configuration to the startup configuration (using the copy command) and reload system. The keyword bmp-boot is used only when the device boots up from BMP. In case of industrial standard upgraded device, the Dell networking OS stores the image partition upgraded from the DHCP offer in bmp-boot variable. cd Change to a different working directory.
Command Modes Command History To copy the startup configuration Enter the keywords startup-config. To copy a file on the external FLASH Enter the keyword slot0:// then the filename. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The Dell Networking OS supports a maximum of 100 files at the root directory level, on both the internal and external Flash. The usbflash commands are supported.
Password to login remote host: Password to login remote host? dilling In this copy scp: flash: example, specifying SCP in the first position indicates that the target is to be specified in the ensuing prompts. Entering flash: in the second position indicates that the target is the internal Flash. The source is on a secure server running SSH, so you are prompted for the user datagram protocol (UDP) port of the SSH server on the remote host.
no-confirm Command Modes Command History Example • For a file or directory on the internal Flash, enter flash:// then the filename or directory name. • For a file or directory on an external USB drive, enter usbflash:// then the filename or directory name. (OPTIONAL) Enter the keywords no-confirm to specify that the Dell Networking OS does not require user input for each file prior to deletion. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You must include the colon (:) when entering this command. CAUTION: This command deletes all files, including the startup configuration file. So, after executing this command, consider saving the running config as the startup config (use the write memory command or copy run start command). Related Commands copy — copies the current configuration to either the startup-configuration file or the terminal.
Example Version Description 9.8(0.0P2) Introduced on the S3048-ON. 9.3(0.1) Introduced on the S6000, Z9000, S4810, and S4820T. copy http://admin:admin123@10.16.206.77/sample_file flash:// sample_file logging coredump Enable coredump. Syntax logging coredump stack-unit all Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
type Enter the password type: password • Enter 0 to enter an unencrypted password. • Enter 7 to enter a password that has already been encrypted using a Type 7 hashing algorithm. Enter a password to access the target server. Defaults Crash kernel files are uploaded to flash by default. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.4.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
rename Rename a file in the local file system. Syntax Parameters Command Modes Command History rename url url url Enter the following keywords and a filename: • For a file on the internal Flash, enter flash:// then the filename. • For a file on an external USB drive, enter usbflash:// then the filename. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. restore factory-defaults Restore factory defaults.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.1) Added bootvar as a new parameters. 9.0.2.0 Introduced on the S6000. 9.0.0.0 Introduced on the Z9000. 8.3.19.0 Introduced on the S4820T. 8.3.12.0 Introduced on the S4810. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Restoring factory defaults deletes the existing startup configuration and all persistent settings (stacking, fan-out, and so forth).
• default_server, default_file, and default_type NOTE: For information on the default values that these variables take, refer to the Restoring Factory Default Environment Variables section in the Dell Networking OS Configuration guide.
2 Success 3 Not present 4 Not present 5 Not present Power-cycling the unit(s). Dell# Example (NvRAM, single unit) Dell#restore factory-defaults stack-unit 1nvram ************************************************************** * Warning - Restoring factory defaults will delete the existing * * persistent settings (stacking, fanout, etc.) * * After restoration the unit(s) will be powercycled immediately.
Stack-unit Stack-unit Stack-unit Stack-unit Stack-unit 1 2 3 4 5 is not present. is not present. is not present. is not present. DOWNLOAD BOOT 9-1-0-675 9-1-0-684 show file Display contents of a text file in the local filesystem. Syntax Parameters Command Modes Command History Example show file url url Enter one of the following: • For a file on the internal Flash, enter flash:// then the filename. • For a file on the external Flash, enter usbflash:// then the filename.
hostname FTOS --More-Related Commands format flash — Erases all the existing files and reformats the filesystem in the internal flash memory. show file-systems — displays information about the file systems on the system. show file-systems Display information about the file systems on the system. Syntax show file-systems Command Modes EXEC Privilege Command History Example Command Fields Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Related Commands Field Description Prefixes Displays the name of the storage location. format flash — Erases all the existing files and reformats the filesystem in the internal flash memory. show file — Displays the contents of a text file in the local filesystem. show startup-config — Displays the current SFM status. show os-version Display the release and software image version information of the image file specified.
TARGET IMAGE INFORMATION : -------------------------------------------------------Type Version Target checksum runtime 9-1-0-848 Control Processor passed BOOT IMAGE INFORMATION : -------------------------------------------------------Type Version Target checksum boot flash 4.0.1.0bt Control Processor passed BOOTSEL IMAGE INFORMATION : -------------------------------------------------------Type Version Target checksum boot selector 4.0.0.
configured line for the current line configuration load-balance for the current port-channel loadbalance configuration logging for the current logging configuration mac for the current MAC ACL configuration mac-addresstable for the current MAC configuration managementroute for the current Management port forwarding configuration mroute for the current Mroutes configuration ntp for the current NTP configuration ospf for the current OSPF configuration pim for the current PIM configuration
status Command Modes Command History (OPTIONAL) Enter the keyword status to display the checksum for the running configuration and the start-up configuration. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show running-config Current Configuration ...
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show startup-config ! Version E8-3-16-29 ! Last configuration change at Thu Apr 26 19:19:02 2012 by default ! Startup-config last updated at Thu Apr 26 19:19:04 2012 by default ! boot system stack-unit 0 primary system: A: boot system stack-unit 0 secondary tftp://10.11.200.241/ dt-m1000e-5-c2 boot system gateway 10.11.209.
FTOS uptime is 13 hour(s), 29 minute(s) System image file is "system://A" System Type: MXL-10/40GbE Control Processor: MIPS RMI XLP with 2147483648 bytes of memory. 256M bytes of boot flash memory. 1 34-port GE/TE/FG (XL) 48 Ten GigabitEthernet/IEEE 802.3 interface(s) 2 Forty GigabitEthernet/IEEE 802.3 interface(s) Command Fields Lines Beginning With Description Dell Force10 Network... Name of the operating system Dell Force10 Operating... OS version number Dell Force10 Application...
upgrade boot Upgrade the bootflash image or bootselector image. Syntax Parameters upgrade boot {all | bootflash-image | bootselector-image} stackunit {0-5 | all} {booted | flash: |ftp: | tftp: | usbflash:} (A: | B:} all Enter the keyword all to change both the bootflash and bootselecter images. bootflash-image Enter the keywords bootflash-image to change the bootflash image. bootselectorimage Enter the keywords bootselector-image to change the bootselector image.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You must reload the Dell Networking OS after executing this command. Example Dell#upgrade boot ? all Upgrade both boot flash image and selector image bootflash-image Upgrade boot flash image bootselector-image Upgrade boot selector image Dell# upgrade system Upgrade the bootflash image or system image.
B: Defaults none Command Modes EXEC Privilege Command History Enter this keyword to upgrade the bootflash partition B. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Reset the card using the power-cycle option after restoring the FPGA command.
Command History Version 9.5.(0.0) Version Description 9.8(1.0) Introduced on the Z9100–ON. 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information You can enter this command in the following ways: Example • verify md5 flash://img-file • verify md5 flash://img-file • verify sha256 flash://img-file • verify sha256 flash://img-file Without Entering the Hash Value for Verification using SHA256 Dell# verify sha256 flash://FTOS-SE-9.5.0.0.
4 Control and Monitoring The Dell Networking OS supports the following control and monitoring commands. asset-tag Assign and store a unique asset-tag to the stack member. Syntax asset-tag stack-unit unit id Asset-tag ID To remove the asset tag, use no stack-unit unit-id Asset-tag ID command. Parameters stack-unit unit-id Enter the keywordsstack-unit then the unit-id to assign a tag to the specific member. The range is from 0 to 5.
To return to standard Store and Forward mode, use the no asf-mode stack unit command. Parameters unit-id Enter the stack member unit identifier of the stack member to reset. The range is from 0 to 5 or all. queue size Enter the queue size of the stack member. The range is from 0 to 5. Defaults Not configured Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell(conf)#banner exec ? LINE c banner-text(max length 255) c, where 'c' is a delimiting character Dell(conf)#banner exec % Enter TEXT message. End with the character '%'. This is the banner% Dell(conf)#end Dell#exit 4d21h5m: %STKUNIT0-M P:CP %SEC-5-LOGOUT: Exec session is terminated for user on line console This is the banner Dell Force10 con0 now available Press RETURN to get started. This is the banner Related Commands banner login — sets a banner for login connections to the system.
character (%). Range: maximum of 50 lines, up to 255 characters per line Defaults No banner is configured and the CR is required when creating a banner. Command Modes CONFIGURATION Command History Version Description 9.10(0.0) Introduced the acknowledgement keyword. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information A login banner message displays only in EXEC Privilege mode after entering the enable command then the password.
Parameters c Enter a delineator character to specify the limits of the text banner. The delineator is a percent character (%). line Enter a text string for your message of the day banner message ending the message with your delineator. The delineator is a percent character (%). Defaults No banner is configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
clear command history Clear the command history log. Syntax clear command history Command Modes EXEC Privilege Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show command-history — displays a buffered log of all the commands all users enter along with a time stamp. clear line Reset a terminal line.
Parameters Command Modes Command History Example terminal (OPTIONAL) Enter the keyword terminal to specify that you are configuring from the terminal. EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#configure Dell(conf)# debug cpu-traffic-stats Enable the collection of computer processor unit (CPU) traffic statistics. Syntax debug cpu-traffic-stats Defaults Disabled Command Modes EXEC Privilege Command History Version Description 8.3.16.
debug ftpserver View transactions during an FTP session when a user is logged into the FTP server. Syntax debug ftpserver Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Return to EXEC mode. Syntax Parameters disable [level] level Defaults 1 Command Modes EXEC Privilege Command History (OPTIONAL) Enter a number for a privilege level of the Dell OS.
Command Modes Command History • CONFIGURATION • INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Users entering EXEC Privilege mode or any other configured privilege level can access configuration commands. To protect against unauthorized access, use the enable password command to configure a password for the enable command at a specific privilege level. If no privilege level is specified, the default is privilege level 15. NOTE: If you are authorized for the EXEC privilege mode by your role, you do not need to enter an enable password.
Parameters None Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. end Return to EXEC Privilege mode from other command modes (for example, CONFIGURATION or ROUTER OSPF modes). Syntax Command Modes Command History Related Commands end • CONFIGURATION • SPANNING TREE • MULTIPLE SPANNING TREE • LINE • INTERFACE • VRRP • ACCESS-LIST • PREFIX-LIST • ROUTER OSPF • ROUTER RIP Version Description 9.
Defaults Enabled on all lines (if configured, the banner appears). Command Modes LINE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Optionally, use the banner exec command to create a text string that is displayed when you access EXEC mode. This command toggles that display. Related Commands banner exec — configures a banner to display when entering EXEC mode.
exit Return to the lower command mode. Syntax Command Modes Command History Related Commands exit • EXEC Privilege • CONFIGURATION • LINE • INTERFACE • PROTOCOL GVRP • SPANNING TREE • MULTIPLE SPANNING TREE • MAC ACCESS LIST • ACCESS-LIST • PREFIX-LIST • ROUTER OSPF • ROUTER RIP Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. end — returns to EXEC Privilege mode. feature unique-name Set a unique host name for the system.
• Command History STOMP Full Switch Version Description 9.10(0.0) Introduced on the M I/O Aggregator, the FN IOM and MXL. Usage Information If you use the feature unique-name command, the system generates a host name using the platform type and system serial number. It overwrites any existing host name configured on the system using the hostname command. The feature uniquename command is also added to the running configuration.
512 Jul-20-2004 18:15:00 other 512 Jul-20-2004 18:15:00 tgt 226 Transfer complete 329 bytes received in 0.018 seconds (17.95 Kbytes/s) ftp> Related Commands ftp-server topdir — sets the directory to be used for incoming FTP connections. ftp-server username — sets a username and password for incoming FTP connections. ftp-server topdir Specify the top-level directory to be accessed when an incoming FTP connection request is made.
password password Enter the keyword password then a string up to 40 characters long as the password. Without specifying an encryption type, the password is unencrypted. encryption-type (OPTIONAL) After the keyword password, enter one of the following numbers: Defaults Not enabled. Command Modes CONFIGURATION Command History • 0 (zero) for an unecrypted (clear text) password • 7 (seven) for a hidden text password Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters encryption-type password Defaults Not configured. Command Modes CONFIGURATION Command History (OPTIONAL) Enter one of the following numbers: • 0 (zero) for an unecrypted (clear text) password • 7 (seven) for a hidden text password Enter a string up to 40 characters as the password. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. Defaults The IP address on the system that is closest to the Telnet address is used in the outgoing packets. Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. copy — copies files from and to the switch. ip ftp username Assign a user name for outgoing FTP connection requests.
To disable the Telnet server, use the no ip telnet server enable command. Defaults Enabled Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip ssh server — enables the secure shell (SSH) server on the system. ip telnet source-interface Set an interface’s IP address as the source address in outgoing packets for Telnet sessions.
ip tftp source-interface Assign an interface’s IP address in outgoing packets for TFTP traffic. Syntax Parameters ip tftp source-interface interface interface Enter the following keywords and slot/port or number information: • For Loopback interfaces, enter the keyword loopback then a number from zero (0) to 16383. • For a Port Channel, enter the keywords port-channel then a number. The range is from 1 to 128.
end-number Defaults Not configured Command Modes CONFIGURATION Command History (OPTIONAL) Enter a number from 1 to 9 as the last virtual terminal line to configure. You can configure multiple lines at one time. Version Description 8.3.17.0 Supported on the M I/O Aggregator. Usage Information You cannot delete a terminal connection. Related Commands show memory — view current memory usage on the M I/O Aggregator.
Use the login concurrent-session limit number-of-sessions command to limit the number of concurrent sessions that any user can have on console, aux, and virtual terminal lines. If the login concurrent-session clear-line enable command is configured, you are provided with an option to clear any of your existing sessions after a successful login authentication. When you reach the maximum concurrent session limit, you can still login by clearing any of your existing sessions.
show login statistics — Displays login statistics of users who have used the console or virtual terminal lines to log in to the system. login statistics Enable and configure user login statistics on console and virtual terminal lines. Syntax login statistics {enable | time-period days} no login statistics {enable | time-period days} Parameters enable Enables user login statistics. By default, the system displays the login statistics for the last 30 days.
Login: admin Password: Last successful login: Mon Feb 16 04:36:11 2015 Line vty0 ( 10.14.1.97 ). There were 2 unsuccessful login attempt(s) since the last successful login. There were 3 unsuccessful login attempt(s) for user admin in last 30 day(s). The preceding message shows that the user had previously logged in to the system using the VTY line from 10.14.1.97.
ping Test connectivity between the system and another device by sending echo requests and waiting for replies.
• Y: Do set “don't fragment” bit Default is No. validate-reply (IPv4 only) Enter Y or N for reply validation. • N: Do not validate reply data. • Y: Do validate reply data. Default is No. Defaults Command Modes Command History pattern pattern (IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF. Default: 0xABCD. sweep-min-size Enter the minimum size of datagram in sweep range. The range is from 52 to 15359 bytes. sweep-max-size Enter the maximum size of datagram in sweep range.
Sending 5, 100-byte ICMP Echos to 172.31.1.255, timeout is 2 seconds: Reply to request 1 from 172.31.1.208 0 ms Reply to request 1 from 172.31.1.216 0 ms Reply to request 1 from 172.31.1.205 16 ms :: Reply to request 5 from 172.31.1.209 0 ms Reply to request 5 from 172.31.1.66 0 ms Reply to request 5 from 172.31.1.87 0 ms Dell# Example (IPv6) Dell#ping 100::1 Type Ctrl-C to abort. Sending 5, 100-byte ICMP Echos to 100::1, timeout is 2 seconds: !!!!! Success rate is 100.
line Send a message to a specific line. The range is from 0 to 11. console Enter the keyword console to send a message to the primary terminal line. vty Enter the keyword vty to send a message to the virtual terminal. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History CONFIGURATION Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you do not specify parameters and enter service timestamps, it appears as service timestamps debug uptime in the running-configuration. To view the current options set for the service timestamps command, use the show running-config command. show alarms View alarms.
Defaults Command Modes Command History none • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information One trace log message is generated for each command. No password information is saved to this file. Example Dell#show command-history [4/20 10:27:23]: CMD-(CLI):[enable]by default from console [4/20 10:27:23]: CMD-(CLI):[configure terminal]by default from console - Repeated 1 time.
- Repeated 1 time. [5/4 9:19:50]: CMD-(TEL0):[interface tengigabitethernet 0/9]by admin from vty0 (10.11.68.14) [5/4 9:20:11]: CMD-(TEL0):[exit]by admin from vty0 (10.11.68.14) Dell# Related Commands clear command history — clears the command history log. show cpu-traffic-stats View the CPU traffic statistics. Syntax Parameters show cpu-traffic-stats [port number | all] port number (OPTIONAL) Enter the port number to display traffic statistics on that port only. The range is from 1 to 1568.
show debugging View a list of all enabled debugging processes. Syntax show debugging Command Modes EXEC Privilege Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following example shows the output of the show environment fan command as it appears prior to the Dell Networking OS version 7.8.1.0.
Parameters media slot Defaults none Command Modes EXEC Command History (OPTIONAL) Enter the keyword media then the stack ID of the stack member you want to display pluggable media inventory. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If there are no fiber ports in the unit, just the header under show inventory media displays. If there are fiber ports but no optics inserted, the output displays "Media not present or accessible".
show interfaces transceiver — displays the physical status and operational status of an installed transceiver. The output also displays the transceiver’s serial number. show login statistics Displays login statistics of users who have used the console or virtual terminal lines to log in to the system.
To view the successful and failed login details of all users in the last 30 days or the custom defined period, use the show login statistics all command. You can use this command only if you have system or security administrator rights. To view the successful and failed login details of a specific user in the last 30 days or the custom defined time period, use the show login statistics user user-id command.
-----------------------------------------------------------------User: admin3 Last login time: 13:18:42 UTC Tue Mar 22 2016 Last login location: Line vty0 ( 10.16.127.145 ) Unsuccessful login attempt(s) since the last successful login: 0 Unsuccessful login attempt(s) in last 30 day(s): 3 Successful login attempt(s) in last 30 day(s): 2 The following is sample output of the show login statistics user user-id command.
show memory View current memory usage on the MXL switch. Syntax Parameters Command Modes Command History show memory [stack-unit 0–5] stack-unit 0–5 • EXEC • EXEC Privilege (OPTIONAL) Enter the keywords stack-unit then the stack unit ID of the stack member to display memory information on the designated stack member. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
As an option of the show processes cpu command, this option displays CPU usage for the designated stack member. Or, as an option of memory, this option limits the output of memory statistics to the designated stack member. Refer to Example (stack-unit). Command Modes Command History Example (summary) summary (OPTIONAL) Enter the keyword summary to view the CPU utilization of processes related to line card processing.
Process 0x763a7000 96806080 KP 0x760d5000 26384050 frrpagt 0x762da000 491370 F10StkMgr 0x762f9000 665580 lcMgr 0x7631d000 37580 dla 0x76348000 452110 sysAdmTsk 0x76367000 1751990 timerMgr 0x76385000 14460 PM 0x7629d000 347970 diagagt 0x763c7000 0 evagt 0x763eb000 90800 ipc 0x77ee9000 5 tme 0x77eec000 0 ttraceIpFlow 0x77eee000 20 linkscan_user_threa 0x77ff6000 0 isrTask 0x7811a000 0 tDDB 0x7811c000 22980 GC 0x7811e000 0 bshell_reaper_threa 0x78365000 10 tSysLog 0x78367000 1106980 tTimerTask 0x78369000 131311
f10appioserv vrrp f10appioserv frrp f10appioserv xstp f10appioserv pim f10appioserv igmp f10appioserv mrtm f10appioserv l2mgr f10appioserv l2pm f10appioserv arpm Dell# 225280 335872 225280 180224 225280 2740224 225280 1007616 225280 401408 225280 5496832 225280 1036288 225280 172032 225280 192512 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 208896 8048640 208896 7512064 208896 9801728 208896 7757824 208896 7639040 208896 11124736 208896 16134144 208896 7483392 208896 7057408
show processes memory — displays CPU usage information based on processes running. show processes ipc flow-control Display the single window protocol queue (SWPQ) statistics. Syntax Parameters Defaults Command Modes Command History Usage Information show processes ipc flow-control [cp] cp (OPTIONAL) Enter the keyword cp to view the control processor’s SWPQ statistics. none • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Important Points: Example • The SWP provides flow control-based reliable communication between the sending and receiving software tasks. • A sending task enqueues messages into the SWP queue3 for a receiving task and waits for an acknowledgement. • If no response is received within a defined period of time, the SWP timeout mechanism resubmits the message at the head of the FIFO queue. • After retrying a defined number of times, the SWP-2-NOMORETIMEOUT timeout message is generated.
• Command History Usage Information EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
dhclient f10appioserv ndpm f10appioserv vrrp Example (managementunit) 548864 225280 618496 225280 335872 0 0 0 0 0 0 0 0 1310720 208896 7512064 208896 Dell#show processes memory management-unit Total:2147483648, MaxUsed:378470400 [05/23/2012 09:49:39] CurrentUsed:378470400, CurrentFree:1769013248 SharedUsed:18533952, SharedFree:2437592 PID Process ResSize Size 472 ospf 8716288 573440 529 fcoecntrl 7917568 262144 225 dhclient 1310720 548864 360 ndpm 7512064 618496 160 vrrp 8048640 335872 508 frrp 751206
trace-flags Defaults Command Modes Command History Example Enter the keyword trace-flags to display IFM information for internal trace flags. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
stack-unit unit-id Command Modes Command History Example (brief) • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword stack-unit then the stack member ID for information on that stack member. The range is 0 to 5. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Piece Part ID : N/A PPID Revision : N/A Service Tag : N/A Expr Svc Code : N/A Chassis Svce Tag: RTWB200 Fabric Id : C2 Asset tag : test PSOC FW Rev : 0xb ICT Test Date : 0-0-0 ICT Test Info : 0x0 Max Power Req : 31488 Fabric Type : 0x3 Fabric Maj Ver : 0x1 Fabric Min Ver : 0x0 SW Manageability: 0x4 HW Manageability: 0x1 Max Boot Time : 6 minutes Link Tuning : unsupported Auto Reboot : enabled Burned In MAC : 00:01:e8:43:de:e1 No Of MACs :3 Related Commands asset-tag — Assigns and stores a unique asset-tag
When using the pipe command ( | ), enter one of these keywords to filter command output. For details about filtering commands, refer to CLI Basics. save Command Modes Command History Enter the keyword save to save the command output. flash: Save to local flash drive (flash://filename [max 20 chars] ). EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
find Search for the first occurrence of a pattern grep Show only text that matches a pattern no-more Don't paginate output save Save output to a file Dell#show tech-support stack-unit 1 | save ? flash: Save to local file system (flash://filename (max 20 chars) ) Dell#show tech-support stack-unit 1 | save flash://LauraSave Start saving show command report .......
0 fragmented, 0 couldn't fragment Bcast: 402 received, 0 sent; Mcast: 37 received, 0 sent Sent: 468133 generated, 0 forwarded 42 encapsulation failed, 0 no route ICMP statistics: Rcvd: 0 format errors, 0 checksum errors, 0 redirects, 2 unreachable 0 echo, 0 echo reply, 0 mask requests, 0 mask replies, 0 quench 0 parameter, 0 timestamp, 0 info request, 0 other Sent: 0 redirects, 0 unreachable, 0 echo, 0 echo reply 0 mask requests, 0 mask replies, 0 quench, 0 timestamp 0 info reply, 0 time exceeded, 0 paramet
Defaults Command Modes Command History • For a Loopback interface, enter the keyword loopback then a number from zero (0) to 16383. • For the Null interface, enter the keyword null then 0. • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
traceroute View a packet’s path to a specific device. Syntax Parameters Defaults Command Modes Command History traceroute {host | ip-address} host Enter the name of device. ip-address Enter the IP address of the device in dotted decimal format. • Timeout = 5 seconds • Probe count = 3 • 30 hops max • 40 byte packet size • UDP port = 33434 • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
000.000 ms Dell# Related Commands ping — tests the connectivity to a device. undebug all Disable all debug operations on the system. Syntax undebug all Defaults none Command Modes EXEC Privilege Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. virtual-ip Configure a virtual IP address for the active management interface. You can configure virtual addresses both for IPv4 independently.
Example Dell#virtual-ip 10.11.197.99/16 write Copy the current configuration to either the startup-configuration file or the terminal. Syntax Parameters Command Modes Command History write {memory | terminal} memory Enter the keyword memory to copy the current running configuration to the startup configuration file. This command is similar to the copy running-config startup-config command. terminal Enter the keyword terminal to copy the current running configuration to the terminal.
5 802.1X An authentication server must authenticate a client connected to an 802.1X switch port. Until the authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the port to which a client is connected. After authentication is successful, normal traffic passes through the port. The Dell Networking operating software supports remote authentication dial-in service (RADIUS) and active directory environments using 802.1X Port Authentication.
• dot1x profile • dot1x static-mab • dot1x guest-vlan • dot1x host-mode • dot1x mac-auth-bypass • dot1x max-eap-req • dot1x max-supplicants • dot1x port-control • dot1x quiet-period • dot1x reauthentication • dot1x reauth-max • dot1x server-timeout • dot1x supplicant-timeout • dot1x tx-period • mac • show dot1x cos-mapping interface • show dot1x interface • show dot1x profile debug dot1x Display 802.1X debugging information.
dot1x auth-fail-vlan Configure an authentication failure VLAN for users and devices that fail 802.1X authentication. Syntax dot1x auth-fail-vlan vlan-id [max-attempts number] To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan vlan-id [max-attempts number] command. Parameters vlan-id Enter the VLAN Identifier. The range is from 1 to 4094. max-attempts number (OPTIONAL) Enter the keywords max-attempts followed number of attempts desired before authentication fails.
dot1x auth-server Configure the authentication server to RADIUS. Syntax dot1x auth-server radius Defaults none Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x auth-type mab-only To authenticate a device with MAC authentication bypass (MAB), only use the host MAC address.
Related Commands dot1x mac-auth-bypass — Enables MAC authentication bypass. dot1x authentication (Configuration) Enable dot1x globally. Enable dot1x both globally and at the interface level. Syntax dot1x authentication To disable dot1x on a globally, use the no dot1x authentication command. Defaults Disabled Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
dot1x critical-vlan Configure critical-VLAN for users or devices when authentication server is not reachable. Syntax Parameters [no] dot1x critical-vlan vlan-id vlan-id Defaults Not Configured. Command Modes INTERFACE Enter the VLAN identifier. The VLAN-ID range is from 1 to 4094. INTERFACE (BATCH MODE) Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
Critical VLAN id: Mac-Auth-Bypass: Mac-Auth-Bypass Only: Tx Period: Quiet Period: ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Auth PAE State: Backend State: 400 Disable Disable 30 seconds 60 seconds 2 30 seconds 30 seconds 60 seconds 2 SINGLE_HOST Authenticated Idle dot1x profile Configure a dot1x profile to define a list of trusted supplicant MAC addresses.
Use this command in Configuration Terminal Batch mode to configure the dot1x profile in a dual-homing setup. Related Commands • dot1x static-mab • mac dot1x static-mab Enable static MAC authorization bypass (MAB) and configure static MAB profile to an interface. Syntax Parameters [no] dot1x static-mab profile profile-name profile profilename Defaults Disabled. Command Modes INTERFACE Enter the keyword profile and the profile-name to configure the static MAB profile name.
• Example Use this command in Interface Batch Mode to enable static MAB in a dual-homing setup. Dell(conf)#do show dot1x interface ten gigabit ethernet 0/41 802.
Usage Information 1X authentication is enabled when an interface is connected to the switch. If the host fails to respond within a designated amount of time, the authenticator places the port in the guest VLAN. If a device does not respond within 30 seconds, it is assumed that the device is not 802.1X capable. Therefore, a guest VLAN is allocated to the interface and authentication, for the device, occurs at the next reauthentication interval (dot1x reauthentication).
• Multi-host mode authenticates the first host to respond to an Identity Request and then permits all other traffic on the port. • Multi-supplicant mode authenticates every device attempting to connect to the network on the authenticator port. dot1x mac-auth-bypass Enable MAC authentication bypass. If 802.1X times out because the host did not respond to the Identity Request frame, the system attempts to authenticate the host based on its MAC address.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x max-supplicants Restrict the number of supplicants that can be authenticated and permitted to access the network through the port. This configuration is only takes effect in Multi-Auth mode. Syntax Parameters dot1x max-supplicants number number Enter the number of supplicants that can be authenticated on a single port in Multi-Auth mode. The range is from 1 to 128. The default is 128.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The authenticator completes authentication only when port-control is set to auto. dot1x quiet-period Set the number of seconds that the authenticator remains quiet after a failed authentication with a client. Syntax dot1x quiet-period seconds To disable quiet time, use the no dot1x quiet-time command.
Command Modes Command History INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. dot1x reauth-max Configure the maximum number of times a port can reauthenticate before the port becomes unauthorized. Syntax dot1x reauth-max number To return to the default, use the no dot1x reauth-max command. Parameters number Defaults 2 Command Modes INTERFACE Command History Enter the permitted number of reauthentications.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you configure the dot1x server-timeout value, take into account the communication medium used to communicate with an authentication server and the number of RADIUS servers configured.
dot1x tx-period Configure the intervals at which EAPOL PDUs the Authenticator PAE transmits. Syntax dot1x tx-period seconds To return to the default, use the no dot1x tx-period command. Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Enter the interval time, in seconds, that EAPOL PDUs are transmitted. The range is from 1 to 65535. The default is 30. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.10(0.0) Introduced on the S3100 series, S4048–ON, S4048–ON, S4810, S4820T, S5000, S6000, S6000–ON, the Configuration Terminal Batch mode on C9010, Z9100–ON, and Z9500. 9.9(0.0) Introduced on the C9010. Usage Information The mac command configures a list of supplicant MAC addresses for a dot1x profile represented with a profile-name. You can configure up to 6 MAC addresses in a single mac command.
• Command History EXEC privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To display CoS mapping information only for the specified supplicant, enter a supplicant’s MAC address using the mac-address option. You can display the CoS mapping information applied to traffic from authenticated supplicants on 802.1X-enabled ports that are in Single-Hot, Multi-Host, and MultiSupplicant authentication modes.
show dot1x interface Display the 802.1X configuration of an interface. Syntax Parameters show dot1x interface interface [mac-address mac-address] interface mac-address Defaults Command Modes Command History Enter one of the following keywords and slot/port or number information: • For a Ten-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40–Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
Quiet Period: ReAuth Max: Supplicant Timeout: Server Timeout: Re-Auth Interval: Max-EAP-Req: Host Mode: Auth PAE State: Backend State: Dell# 60 seconds 2 30 seconds 30 seconds 3600 seconds 2 SINGLE_HOST Initialize Initialize Dell#show dot1x interface tengigabitethernet 0/32 802.
Port status and State info for Supplicant: 00:00:00:00:00:10 Port Auth Status: Untagged VLAN id: Auth PAE State: Backend State: Dell# AUTHORIZED(MAC-AUTH-BYPASS) 400 Authenticated Idle show dot1x profile Display all the dot1x profiles or the details of a specific profile configured in the system. Syntax Parameters show dot1x profile profile-name profile-name Specify a static dot1x profile-name. The maximum character limit for a profile name is 32 characters.
6 Access Control Lists (ACL) Access control lists (ACLs) are supported by the Dell Networking Operating System (OS).
• deny tcp • deny udp • ip access-list extended • permit (for Extended IP ACLs) • permit icmp • permit tcp • permit udp • seq • Common MAC Access List Commands • clear counters mac access-group • mac access-group • show mac access-lists • show mac accounting access-list • Standard MAC ACL Commands • deny • mac access-list standard • permit • seq • Extended MAC ACL Commands • deny • mac access-list extended • permit • seq • IP Prefix List Commands • clear ip p
• set automatic-tag • set metric • set metric-type • set tag • show config • show route-map • deny (for Standard IP ACLs) • deny (for Extended IP ACLs) • seq • deny tcp • deny udp • deny arp (for Extended MAC ACLs) • deny icmp • deny ether-type (for Extended MAC ACLs) • deny • deny • permit (for Standard IP ACLs) • permit arp • permit ether-type (for Extended MAC ACLs) • permit icmp • permit udp • permit (for Extended IP ACLs) • permit • seq • permit tcp •
Commands Common to all ACL Types The following commands are available within each ACL mode and do not have mode-specific options. Some commands in this chapter may use similar names, but require different options to support the different ACL types (for example, the deny command). description Configure a short text string describing the ACL. Syntax Parameters Defaults Command Modes Command History description text text Enter a text string up to 80 characters long. Not enabled.
description Defaults Command Modes Command History Enter a description of up to 80 characters. Not configured. • CONFIGURATION-IP ACCESS-LIST-STANDARD • CONFIGURATION-IP ACCESS-LIST-EXTENDED • CONFIGURATION-MAC ACCESS LIST-STANDARD • CONFIGURATION-MAC ACCESS LIST-EXTENDED Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The remark command is available in each ACL mode.
Defaults Command Modes Command History access-list-name Enter the name of a configured IP access list. StartingSeqNum Enter the starting sequence number to resequence. The range is from 0 to 4294967290. Step-toIncrement Enter the step to increment the sequence number. The range is from 1 to 4294967290. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you have exhausted all the sequence numbers, this feature permits re-assigning a new sequence number to entries of an existing prefix list. Related Commands seq — Assigns a sequence number to a deny or permit filter in an IP access list while creating the filter. show config Display the current ACL configuration.
The switch supports both Ingress and Egress IP ACLs. NOTE: Also refer to the Commands Common to all ACL Types section. access-class Apply a standard ACL to a terminal line. Syntax Parameters access-class access-list-name [ipv4 | ipv6] access-list-name Enter the name of a configured Standard ACL, up to 140 characters. ipv4 Enter the keyword ipv4 to configure an IPv4 access class. ipv6 Enter the keyword ipv6 to configure an IPv6 access class. Defaults Not configured.
clear counters ip access-group Erase all counters maintained for access lists. Syntax Parameters Command Modes Command History clear counters ip access-group [access-list-name] access-list-name (OPTIONAL) Enter the name of a configured access-list, up to 140 characters. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip access-group Apply an egress IP ACL to an interface.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module platform. Usage Information You can assign one ACL (standard or extended ACL) to an interface.. NOTE: This command is not supported on the MXL Switch Loopback interfaces. NOTE: If outbound(egress) IP ACL is applied on switch port, filter will be applied only for routed traffic egressing out of that port. Related Commands ip access-list standard — configures a standard ACL. ip access-list extended — configures an extended ACL.
seq 5 permit 1.1.1.0/24 count (0 packets) seq 10 deny 2.1.1.0/24 count (0 packets) show ip accounting access-list Display the IP access-lists created on the switch and the sequence of filters. Syntax Parameters Command Modes Command History Usage Information show ip accounting {access-list access-list-name | cam_count} interface interface access-list-name Enter the name of the ACL to be displayed. cam_count List the count of the CAM rules for this ACL.
Total cam count 2 seq 5 permit 1.1.1.0/24 count (0 packets) seq 10 deny 2.1.1.0/24 count (0 packets) Standard IP ACL Commands When you create an ACL without any rule and then apply it to an interface, the ACL behavior reflects an implicit permit. The switch supports both Ingress and Egress IP ACLs. NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands sections. deny (for Standard IP ACLs) To drop packets with a certain IP address, configure a filter.
order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
resequence access-list — Displays the current configuration. permit (for Standard IP ACLs) To permit packets from a specific source IP address to leave the switch, configure a filter. Syntax permit {source [mask]| any | host ip-address} [no-drop] [count [byte]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated.
when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — assigns a IP ACL filter to deny IP packets. ip access-list standard — creates a standard ACL.
have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny {ip | ip-protocol-number} {source mask | any | host ip-address} {destination mask | any | host ip-address} command. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The time interval range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
deny udp — assigns a filter to deny UDP packets. ip access-list extended — creates an extended ACL. deny icmp To drop all or specific internet control message protocol (ICMP) messages, configure a filter.
fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). deny tcp Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria.
port port • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: • Defaults 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The order option is relevant in the context of the Policy QoS feature only.
Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address. dscp Enter this keyword dscp to deny a packet based on the DSCP value. The range is from 0 to 63.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide. You can configure either count (packets) or count (bytes).
Total Ports: 1024 Related Commands deny — assigns a filter to deny IP traffic. deny tcp — assigns a filter to deny TCP traffic. ip access-list extended Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols. Syntax ip access-list extended access-list-name To delete an access list, use the no ip access-list extended access-listname command. Parameters access-list-name Enter a string up to 140 characters long as the access list name.
permit (for Extended IP ACLs) To pass IP packets meeting the filter criteria, configure a filter. Syntax permit {source mask | any | host ip-address} {destination mask | any | host ip-address} [count [bytes]] [dscp value] [order] [fragments] [log [interval minutes] [threshold-in-msgs [count]] [monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands ip access-list extended — creates an extended ACL. permit tcp — assigns a permit filter for TCP packets. permit udp — assigns a permit filter for UDP packets. permit icmp Configure a filter to allow all or specific ICMP messages.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
• urg: urgent field dscp Enter the keyword dscp to deny a packet based on the DSCP value. The range is from 0 to 63. operator (OPTIONAL) Enter one of the following logical operand: port port • eq = equal to • neq = not equal to • gt = greater than • lt = less than • range = inclusive range of ports (you must specify two ports for the port parameter) Enter the application layer port number. Enter two port numbers if you are using the range logical operand. The range is from 0 to 65535.
is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The threshold range is from 1 to 10 minutes. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction.
[operator port [port]] [count [byte]] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no permit udp {source mask | any | host ip-address} {destination mask | any | host ip-address command. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D.
fragments Enter the keyword fragments to use ACLs to control packet fragments. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port.
deny Enter the keyword deny to configure a filter to drop packets meeting this condition. permit Enter the keyword permit to configure a filter to forward packets meeting this criteria. ip-protocolnumber Enter a number from 0 to 255 to filter based on the protocol identified in the IP protocol header. icmp Enter the keyword icmp to configure an ICMP access list filter. ip Enter the keyword ip to configure a generic IP access list.
count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority).
Usage Information The order option is relevant in the context of the Policy QoS feature only. The following applies: • The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number. • If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order.
Common MAC Access List Commands The following commands are available within both MAC ACL modes (Standard and Extended) and do not have mode-specific options. These commands allow you to clear, display, and assign MAC ACL configurations. The MAC ACL can be applied on Physical, Port-channel and VLAN interfaces. As per the stipulated rules in the ACL, the traffic on the Interface/VLAN members or Port-channel members will be permitted or denied. The switch supports both Ingress and Egress MAC ACLs.
NOTE: This option is available only with the keywordin option. in Enter the keyword in to configure the ACL to filter incoming traffic. out Enter the keyword out to configure the ACL to filter outgoing traffic. Defaults none Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can assign one ACL (standard or extended) to an interface.
interface interface in | out Command Modes Command History Enter the keyword interface then the one of the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords portchannel and then enter a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet and then enter the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE and then enter the slot/port information.
in | out Command Modes Command History • EXEC • EXEC Privilege Identify whether ACL is applied on ingress or egress side. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The ACL hit counters in this command increment the counters for each matching rule, not just the first matching rule.
• Parameters Use the no deny {any | mac-source-address mac-source-addressmask} command. any Enter the keyword any to specify that all routes are subject to the filter. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match).
Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The Dell operating system supports one ingress and one egress MAC ACL per interface. The number of entries allowed per ACL is hardware-dependent. For detailed specification about entries allowed per ACL, refer to your switch documentation. The switch supports both ingress and egress ACLs.
threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a MAC ACL filter to drop packets. seq —configure a MAC ACL filter with a specified sequence number. seq To a deny or permit filter in a MAC access list while creating the filter, assign a sequence number.
is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny — configures a filter to drop packets. permit — configures a filter to forward packets. Extended MAC ACL Commands When an access-list is created without any rule and then applied to an interface, ACL behavior reflects implicit permit. The following commands configure Extended MAC ACLs. The Switch supports both Ingress and Egress MAC ACLs.
mac-destinationaddress Enter the destination MAC address and mask in nn:nn:nn:nn:nn:nn format. mac-destinationaddress-mask Specify which bits in the MAC address must match. The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
Defaults None Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The number of entries allowed per ACL is hardware-dependent. For detailed specifications on entries allowed per ACL, refer to your line card documentation.
• Parameters Use the no permit {any | host mac-address | mac-source-address mac-source-address-mask} {any | mac-destination-address macdestination-address-mask} command. any Enter the keyword any to forward all packets. host Enter the keyword host then a MAC address to forward packets with that host address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match.
seq — configure a MAC ACL filter with a specified sequence number. seq Configure a filter with a specific sequence number. Syntax Parameters seq sequence-number {deny | permit} {any | host mac-address | macsource-address mac-source-address-mask} {any | host mac-address | mac-destination-address mac-destination-address-mask} [ethertype operator] [count [byte]] sequencenumber Enter a number as the filter sequence number. The range is from zero (0) to 65535.
count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. Defaults Not configured. Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. deny — configures a filter to drop packets. permit — configures a filter to forward packets.
Related Commands ip prefix-list — configures a prefix list. deny To drop packets meeting the criteria specified, configure a filter. Syntax Parameters deny ip-prefix [ge min-prefix-length] [le max-prefix-length] ip-prefix Specify an IP prefix in the network/length format. For example, 35.0.0.0/ 8 means match the first 8 bits of address 35.0.0.0. ge min-prefixlength (OPTIONAL) Enter the keyword ge and then enter the minimum prefix length, which is a number from zero (0) to 32.
Parameters Command Modes Command History prefix-name Enter a string up to 16 characters long as the name of the prefix list, up to 140 characters long. CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Prefix lists redistribute OSPF and RIP routes meeting specific criteria. Related Commands show ip route list — displays IP routes in an IP prefix list.
Related Commands deny — configures a filter to drop packets. seq — configures a drop or permit filter with a specified sequence number. seq To a deny or permit filter in a prefix list while configuring the filter, assign a sequence number. Syntax Parameters seq sequence-number {deny | permit} {any} | [ip-prefix /nn {ge min-prefix-length} {le max-prefix-length}] | [bitmask number] sequencenumber Enter a number. The range is from 1 to 4294967294.
permit — configures a filter to pass packets. show config Display the current PREFIX-LIST configurations. Syntax show config Command Modes PREFIX-LIST Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-nprefixl)#show config ! ip prefix-list snickers Dell(conf-nprefixl)# show ip prefix-list detail Display details of the configured prefix lists.
seq 10 deny 2.1.0.0/16 ge 23 (hit count: 0) seq 25 permit 192.0.0.0 bitmask 192.0.0.0 (hit count: 800) show ip prefix-list summary Display a summary of the configured prefix lists. Syntax Parameters Command Modes Command History Example show ip prefix-list summary [prefix-name] prefix-name • EXEC • EXEC Privilege (OPTIONAL) Enter a text string as the name of the prefix list, up to 140 characters. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Parameters sequencenumber Defaults Not configured Command Modes ROUTE-MAP Command History (OPTIONAL) Enter the route map sequence number. The range is from 1 to 65535. The default is: no sequence number Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The continue feature allows movement from one route-map entry to a specific route-map entry (the sequence number).
description Add a description to this route map. Syntax Parameters description description description Defaults none Command Modes ROUTE-MAP Command History Related Commands Enter a description to identify the route map (80 characters maximum). Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. route-map — Enables a route map. match interface To match routes whose next hop is on the interface specified, configure a filter.
Command Modes Command History Related Commands ROUTE-MAP Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.0 Introduced on the MXL 10/40GbE Switch IO Module. match ip address — redistributes routes that match an IP address. match ip next-hop — redistributes routes that match the next-hop IP address. match ip route-source — redistributes routes that match routes advertised by other routers. match metric — redistributes routes that match a specific metric.
match route-type — redistributes routes that match a route type. match tag — redistributes routes that match a specific tag. match ip next-hop To match based on the next-hop IP addresses specified in an IP access list or IP prefix list, configure a filter. Syntax Parameters match ip next-hop {access-list | prefix-list prefix-list-name} access-list-name Enter the name of a configured IP access list, up to 140 characters.
Parameters access-list-name Enter the name of a configured IP access list, up to 140 characters. prefix-list prefixlist-name Enter the keywords prefix-list and then enter the name of configured prefix list, up to 140 characters. Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands match interface — redistributes routes that match the next-hop interface. match ip address — redistributes routes that match an IP address. match ip next-hop — redistributes routes that match the next-hop IP address. match ip route-source — redistributes routes that match routes advertised by other routers. match route-type — redistributes routes that match a route type. match tag — redistributes routes that match a specific tag.
match tag — redistributes routes that match a specific tag. match tag To redistribute only routes that match a specified tag value, configure a filter. Syntax Parameters match tag tag-value tag-value Defaults Not configured. Command Modes ROUTE-MAP Command History Related Commands Enter a value as the tag on which to match. The range is from zero (0) to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults permit (OPTIONAL) Enter the keyword permit to set the route map default as permit. If you do not specify a keyword, the default is permit. deny (OPTIONAL) Enter the keyword deny to set the route map default as deny. sequencenumber (OPTIONAL) Enter a number to identify the route map for editing and sequencing with other route maps. You are prompted for a sequence number if there are multiple instances of the route map. The range is from 1 to 65535. Not configured.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. set metric — specify the metric value assigned to redistributed routes. set metric-type — specify the metric type assigned to redistributed routes. set tag — specify the tag assigned to redistributed routes. set metric To assign a new metric to redistributed routes, configure a filter. Syntax set metric [+ | -] metric-value To delete a setting, use the no set metric command.
set metric-type To assign a new route type for routes redistributed to OSPF, configure a filter. Syntax Parameters set metric-type {internal | external | type-1 | type-2} internal Enter the keyword internal to assign the Interior Gateway Protocol metric of the next hop as the route’s BGP MULTI_EXIT_DES (MED) value. external Enter the keyword external to assign the IS-IS external metric. type-1 Enter the keyword type-1 to assign the OSPF Type 1 metric.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. set automatic-tag — computes the tag value of the route. set metric — specifies the metric value assigned to redistributed routes. set metric-type — specifies the route type assigned to redistributed routes. show config Display the current route map configuration.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show route-map route-map firpo, permit, sequence 10 Match clauses: Set clauses: tag 34 Dell# Related Commands route-map — configures a route map. deny (for Standard IP ACLs) To drop packets with a certain IP address, configure a filter.
order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower order numbers have a higher priority) If you did not use the keyword order, the ACLs have the lowest order by default (255).
Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
source Enter an IP address in dotted decimal format of the network from which the packet was received. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes.
• The seq sequence-number command is applicable only in an ACL group. • The order option works across ACL groups that have been applied on an interface via the QoS policy framework. • The order option takes precedence over seq sequence-number. • If sequence-number is not configured, the rules with the same order value are ordered according to their configuration order. • If sequence-number is configured, the sequence-number is used as a tie breaker for rules with the same order.
[bit] [operator port [port]] [count [byte] [order] [fragments] [threshold-in-msgs [count]] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no deny tcp {source mask | any | host ip-address} {destination mask | any | host ip-address} command. source Enter the IP address of the network or host from which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D.
Defaults • 25 = SMTP • 169 = SNMP destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes.
You can configure either count (packets) or count (bytes). However, for an ACL with multiple rules, you can configure some ACLs with count (packets) and others as count (bytes) at any given time. Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt, or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range.
Total Ports: 1024 Related Commands deny — assigns a filter to deny IP traffic. deny udp — assigns a filter to deny UDP traffic. deny udp To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter.
port port Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. destination Enter the IP address of the network or host to which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range. When the configured maximum threshold is exceeded, generation of logs is stopped.
deny arp (for Extended MAC ACLs) Configure an egress filter that drops ARP packets on egress ACL supported line cards. (For more information, refer to your line card documentation).
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
deny icmp To drop all or specific internet control message protocol (ICMP) messages, configure a filter. Syntax deny icmp {source mask | any | host ip-address} {destination mask | any | host ip-address} [dscp] [count [byte]] [order] [fragments] [threshold-in-msgs] [count]] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command, if you know the filter’s sequence number.
is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flowbased monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.
deny ether-type (for Extended MAC ACLs) Configure an egress filter that drops specified types of Ethernet packets on egress ACL supported line cards. (For more information, refer to your line card documentation).
The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly. count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval. If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs.
count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keywordlog to enable the triggering of ACL log messages. threshold-inmsgs count (OPTIONAL) Enter thethreshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated. with the seq, permit, or deny commands.
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface.
Defaults count (OPTIONAL) Enter the keyword count to count packets processed by the filter. byte (OPTIONAL) Enter the keyword byte to count bytes processed by the filter. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address or hostname. no-drop Enter the keywords no-drop to match only the forwarded packets. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platforms. Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped.
To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the {destination-mac-address mac-address-mask | any} vlan vlan-id {ip-address | any | opcode code-number} command. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
fragments Enter the keyword fragments to use ACLs to control packet fragments. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages. threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100.
The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. You cannot include IP, TCP, or UDP filters in an ACL configured with ARP filters. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
• Parameters Use the no permit ether-type protocol-type-number {destinationmac-address mac-address-mask | any} vlan vlan-id {source-macaddress mac-address-mask | any} command. protocol-typenumber Enter a number from 600 to FFF as the specific Ethernet type traffic to drop. destination-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match.
threshold-in msgs count (OPTIONAL) Enter the threshold-in msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated. with the seq, permit, or deny commands. The threshold range is from 1 to 100. monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface.
The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring. You cannot include IP, TCP, or UDP filters in an ACL configured with ARP filters. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or noncontiguous. any Enter the keyword any to match and drop specific Ethernet traffic on the interface. host ip-address Enter the keyword host and then enter the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent. dscp Enter the keyword dscp to deny a packet based on the DSCP value.
Version Description 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The order option is relevant in the context of the Policy QoS feature only. For more information, refer to the Quality of Service chapter of the Dell Networking OS Configuration Guide. When the configured maximum threshold is exceeded, generation of logs is stopped.
• Parameters Use the no permit udp {source mask | any | host ip-address} {destination mask | any | host ip-address command. source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter.
is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flowbased monitoring is not enabled. Command Modes CONFIGURATION-IP ACCESS-LIST-EXTENDED Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Example An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address or hostname. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
Version Description 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platforms. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
Parameters • Use the no seq sequence-number command if you know the filter’s sequence number. • Use the no permit {any | mac-source-address mac-source-addressmask} command. any Enter the keyword any to forward all packets received with a MAC address. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match.
Usage Information When the configured maximum threshold is exceeded, generation of logs are stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
any Enter the keyword any to filter all packets. mac-sourceaddress Enter a MAC address in nn:nn:nn:nn:nn:nn format. mac-sourceaddress-mask (OPTIONAL) Specify which bits in the MAC address must match. If no mask is specified, a mask of 00:00:00:00:00:00 is applied (in other words, the filter allows only MAC addresses that match). count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes.
subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval. If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs.
mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter. host ip-address Enter the keyword host then the IP address to specify a host IP address.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
The switch cannot count both packets and bytes, so when you enter the count byte options, only bytes are incremented. Most ACL rules require one entry in the CAM. However, rules with TCP and UDP port operators (for example, gt, lt, or range) may require more than one entry. The range of ports is configured in the CAM based on bit mask boundaries; the space required depends on exactly what ports are included in the range. When the configured maximum threshold is exceeded, generation of logs is stopped.
Total Ports: 1024 Related Commands ip access-list extended — creates an extended ACL. permit — assigns a permit filter for IP packets. permit udp — assigns a permit filter for UDP packets. seq arp Configure an egress filter with a sequence number that filters ARP packets meeting this criteria. This command is supported only on 12-port GE line cards with SFP optics. For specifications, refer to your line card documentation.
ip-address Enter an IP address in dotted decimal format (A.B.C.D) as the target IP address of the ARP. opcode codenumber Enter the keyword opcode and then enter the number of the ARP opcode. The range is 1 to 16. count (OPTIONAL) Enter the keyword count to count packets the filter processes. byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry.
Version Description 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.0 Added the monitor option. 6.5.10 Expanded to include the optional QoS order priority for the ACL entry. Usage Information The monitor option is relevant in the context of flow-based monitoring only. For more information, refer to Port Monitoring.
specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG).
and 1 to 2094 for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic specify VLAN 1. source-macaddress macaddress-mask Enter a MAC address and mask in the nn:nn:nn:nn:nn format. For the MAC address mask, specify which bits in the MAC address must match. The MAC ACL supports an inverse mask; therefore, a mask of ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of 00:00:00:00:00:00 only allows entries that match exactly.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. 8.2.1.0 Allows ACL control of fragmented packets for IP (Layer 3) ACLs. 8.1.1.0 Introduced on the E-Series ExaScale. 7.4.1.0 Added the monitor option. 6.5.10 Expanded to include the optional QoS order priority for the ACL entry.
capability, traffic with particular flows that are traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available for Layer 2 and Layer 3 ingress and egress traffic.
order (OPTIONAL) Enter the keyword order to specify the QoS order for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments.
and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable logging for ACLs that are associated with egress interfaces. You can activate flow-based monitoring for a monitoring session by entering the flow-based enable command in the Monitor Session mode.
ip Enter the keyword ip to configure a generic IP access list. The keyword ip specifies that the access list permits all IP protocols. tcp Enter the keyword tcp to configure a TCP access list filter. udp Enter the keyword udp to configure a UDP access list filter. source Enter an IP address in dotted decimal format of the network from which the packet was received. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.
have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255). fragments Enter the keyword fragments to use ACLs to control packet fragments. log (OPTIONAL) Enter the keyword log to enable the triggering of ACL log messages.
If you configure the sequence-number, the sequence-number is used as a tie breaker for rules with the same order. When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero. If ACL logging was stopped previously because the configured threshold is exceeded, it is re-enabled for this new interval.
• Parameters Use the no permit udp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address} command. source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x).
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which the ACL logs are generated in five minutes. By default, flowbased monitoring is not enabled. Command Modes ACCESS-LIST Command History Version Description 9.9(0.
permit tcp Configure a filter to pass TCP packets that match the filter criteria. Syntax permit tcp {source address mask | any | host ipv6-address} [operator port [port]] {destination address | any | host ipv6address} [bit] [operator port [port]] [count [byte]] [log [interval minutes] [threshold-in-msgs [count][monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
• 169 = SNMP destination address Enter the IPv6 address of the network or host to which the packets are sent in the x:x:x:x::x format followed by the prefix length in the /x format. The range is /0 to /128. The :: notation specifies successive hexadecimal fields of zero.
Version Description 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
• Parameters Defaults Use the no permit icmp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address} command. source address Enter the IPv6 address of the network or host from which the packets were sent in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. The :: notation specifies successive hexadecimal fields of zero. mask Enter a network mask in /prefix format (/x).
Command Modes Command History ACCESS-LIST Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added the support for flow-based monitoring on the MXL 10/40GbE Switch IO Module platform 9.3(0.0) Added the support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped.
Parameters Defaults • Use the no seq sequence-number command syntax if you know the filter’s sequence number • Use the no permit {ipv6-protocol-number | icmp | ipv6 | tcp | udp} command ip-protocolnumber Enter an IPv6 protocol number. The range is from 0 to 255. icmp Enter the keyword icmp to filter internet Control Message Protocol version 6. ipv6 Enter the keyword ipv6 to filter any internet Protocol version 6. tcp Enter the keyword tcp to filter the Transmission Control protocol.
Command Modes Command History ACCESS-LIST Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module. 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. deny udp (for IPv6 ACLs) Configure a filter to drop user datagram protocol (UDP) packets meeting the filter criteria.
port Defaults • lt = less than • range = inclusive range of ports (you must specify two ports for the port command) Enter the application layer port number. Enter two port numbers if using the range logical operand. The range is from 0 to 65535. The following list includes some common TCP port numbers: • 23 = Telnet • 20 and 21 = FTP • 25 = SMTP • 169 = SNMP count (OPTIONAL) Enter the keyword count to count the packets that filter the processes.
Version Description 9.3(0.0) Added support for logging of ACLs on the MXL 10/40GbE Switch IO Module platform. Usage Information When the configured maximum threshold is exceeded, generation of logs is stopped. When the interval at which ACL logs are configured to be recorded expires, the subsequent, fresh interval timer is started and the packet count for that new interval commences from zero.
• Parameters Use the no deny tcp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address} command source Enter the IP address of the network or host from which the packets are sent. mask Enter a network mask in /prefix format (/x) or A.B.C.D. The mask, when specified in A.B.C.D format, may be either contiguous or non-contiguous. any Enter the keyword any to specify that all routes are subject to the filter.
Defaults threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The time interval range is from 1 to 10 minutes.
mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). Related Commands deny – assigns a filter to deny IP traffic. deny udp – assigns a filter to deny UDP traffic. deny icmp (for Extended IPv6 ACLs) Configure a filter to drop all or specific ICMP messages.
Defaults threshold-in msgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The time interval range is from 1 to 10 minutes.
mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). deny (for IPv6 ACLs) Configure a filter that drops IPv6 packets that match the filter criteria.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface. Defaults By default, 10 ACL logs are generated if you do not specify the threshold explicitly. The default frequency at which ACL logs are generated is five minutes. By default, flowbased monitoring is not enabled. Command Modes ACCESS-LIST Command History Version Description 9.9(0.
7 Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM) This section describes the access control list (ACL) virtual local area network (VLAN) group, and content addressable memory (CAM) enhancements. member vlan Add VLAN members to an ACL VLAN group. Syntax Parameters member vlan {VLAN-range} VLAN-range Enter the member VLANs using comma-separated VLAN IDs, a range of VLAN IDs, a single VLAN ID, or a combination.
Attaching an ACL individually to VLAN interfaces is similar to the behavior of ACL-VLAN mapping storage in CAM prior to the implementation of the ACL VLAN group functionality. ip access-group Apply an egress IP ACL to the ACL VLAN group. Syntax Parameters ip access-group {group name} out implicit-permit group-name Enter the name of the ACL VLAN group where you want the egress IP ACLs applied, up to 140 characters. out Enter the keyword out to apply the ACL to outgoing traffic.
Without the detail option, the output displays in a table style and information may be truncated. Default No default behavior or values Command Modes EXEC EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform. Usage Information When an ACL-VLAN-Group name or the Access List Group Name contains more than 30 characters, the name is truncated in the show acl-vlan-group command output.
Ingress IP Acl : test Ingress IPV6 Acl : Vlan Members : 1-100 show cam-acl-vlan Display the number of flow processor (FP) blocks that is allocated for the different VLAN services. Syntax show cam-acl-vlan Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform.
Example Dell#show cam-acl-vlan -- Chassis Vlan Cam ACL -Current Settings(in block sizes) VlanOpenFlow : 0 VlanIscsi : 0 VlanAclOpt : 2 VlanHp : 1 VlanFcoe : 1 cam-acl-vlan Allocate the number of flow processor (FP) blocks or entries for VLAN services and processes. Syntax Parameters cam-acl-vlan { default | vlanopenflow <0-2> | vlaniscsi <0-2> | vlanaclopt <0-2> default Reset the number of FP blocks to default. By default, 0 groups are allocated for the ACL in VCAP.
two flow processor (FP) blocks to iSCSI Counters, OpenFlow and ACL Optimization. You can configure only two of these features at a point in time. show cam-usage View the amount of CAM space available, used, and remaining in each partition (including IPv4Flow and Layer 2 ACL sub-partitions). Syntax Parameters Command Modes show cam-usage [acl | router | switch] acl (OPTIONAL) Enter the keyword acl to display Layer 2 and Layer 3 ACL CAM usage.
Example: Field Description Total CAM space Total amount of space in the CAM block Used CAM Amount of CAM space that is currently in use Available CAM Amount of CAM space that is free and remaining to be allocated for ACLs Dell#show cam-usage Stackunit|Portpipe|CAM Partition|Total CAM|Used CAM|AvailableCAM ========|========|==============|=========|========|======== 0 | 0 | IN-L3 ACL | 512 | 1 | 511 | | IN-V6 ACL | 0 | 0 | 0 | | IN-L2 ACL | 512 | 0 | 512 | | IN-NLB ACL | 256 | 0 | 256 | | IPMAC ACL
Examples The following sample output shows the line-by-line style display when using the show running-config acl-vlan-group option. Note that no group or access list names are truncated Dell#show running-config acl-vlan-group ! acl-vlan-group Test member vlan 1-100 ip access-group test in Dell#show running-config acl-vlan-group ! acl-vlan-group Test member vlan 1-100 ip access-group test in Test acl-vlan-group Create an ACL VLAN group.
ACL separately on the VLAN interface, each ACL maps with the VLAN and increased CAM space utilization occurs. Attaching an ACL individually to VLAN interfaces is similar to the behavior of ACL-VLAN mapping storage in CAM prior to the implementation of the ACL VLAN group functionality. show acl-vlan-group detail Display all the ACL VLAN Groups or display a specific ACL VLAN Group by name. To display the names in their entirety, the output displays in a line-by-line format.
Vlan Members : 1-100 description (ACL VLAN Group) Add a description to the ACL VLAN group. Syntax Parameters description description description Enter a description to identify the ACL VLAN group (80 characters maximum). Default No default behavior or values Command Modes CONFIGURATION (conf-acl-vl-grp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform.
8 Bidirectional Forwarding Detection (BFD) Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure detection. The Dell Networking Operating System (OS) implementation is based on the standards specified in the IETF Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including virtual local area network (VLAN) interfaces and port-channels.
interval milliseconds (OPTIONAL) Enter the keyword interval to specify nondefault BFD session parameters beginning with the transmission interval. The range is from 50 to 1000. The default is 200. min_rx milliseconds Enter the keyword min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system. The range is from 50 to 1000. The default is 200.
neighbor command or configured for the peer group to which a neighbor belongs. The neighbors inherit only the global timer values (configured with the bfd neighbor command). Related Commands show bfd neighbors — displays BFD neighbor information on all interfaces or a specified interface. bfd neighbor — explicitly enables a BFD session with a BGP neighbor or a BGP peer group. neighbor bfd disable — explicitly disables a BFD session with a BGP neighbor or a BGP peer group.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd enable (Interface) Enable BFD on an interface. Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BFD from CONFIGURATION mode. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bfd interval Specify non-default BFD session parameters beginning with the transmission interval.
• Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is Active. Defaults Refer to Parameters. Command Modes INTERFACE Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
bfd protocol-liveness Enable the BFD protocol liveness feature. Syntax bfd protocol-liveness Defaults Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Protocol Liveness is a feature that notifies the BFD Manager when a client protocol (for example, OSPF and ISIS) is disabled. When a client is disabled, all BFD sessions for that protocol are torn down.
role [active | passive] Enter the role that the local system assumes: • Active — The active system initiates the BFD session. Both systems can be active for the same session. • Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system. The default is Active. Defaults See Parameters Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
multiplier value Enter the keyword multiplier to specify the number of packets that must be missed in order to declare a session down. The range is from 3 to 50. The default is 3. role [active | passive] Enter the role that the local system assumes: • Active — The active system initiates the BFD session. Both systems can be active for the same session. • Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
multiplier value Enter the keywords multiplier to specify the number of packets that must be missed in order to declare a session down. The range is from 3 to 50. The default is 3. role [active | passive] Enter the role that the local system assumes: • Active — The active system initiates the BFD session. Both systems can be active for the same session. • Passive — The passive system does not initiate a session. It only responds to a request for session initialization from the active system.
Command Modes Command History ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable a BFD session with a specified BGP neighbor or peer group using the bfd neighbor command, the default BFD session parameters are used (interval: 200 milliseconds, min_rx: 200 milliseconds, multiplier: 3 packets, and role: active) if you have not specified parameters with the bfd neighbor command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you explicitly disable a BGP neighbor for a BFD session with the neighbor bfd disable command: • The neighbor does not inherit the global BFD disable values configured with the bfd all-neighbor command or configured for the peer group to which the neighbor belongs.
detail Defaults Command Modes Command History Example (OPTIONAL) Enter the keyword detail to view detailed information about BFD neighbors. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#show bfd neighbors * - Active session role Ad Dn - Admin Down B - BGP C - CLI I - ISIS O - OSPF R - Static Route (RTM) LocalAddr Clients * 10.1.3.
Related Commands bfd neighbor — establishes a BFD session with a neighbor. bfd all-neighbors — establishes BFD sessions with all neighbors discovered by the IS-IS protocol or OSPF protocol out of all interfaces. vrrp bfd neighbor Establish a BFD for VRRP session with a neighbor. Syntax Parameters vrrp bfd neighbor ip-address neighbor ipaddress Defaults none Command Modes INTERFACE Command History Enter the IP address of the BFD neighbor. Version Description 9.9(0.0) Introduced on the FN IOM.
9 Border Gateway Protocol IPv4 (BGPv4) For detailed information about configuring BGP, refer to the BGP chapter in the Dell Networking OS Configuration Guide.
• bgp non-deterministic-med • bgp recursive-bgp-next-hop • bgp regex-eval-optz-disable • bgp router-id • bgp soft-reconfig-backup • capture bgp-pdu neighbor • capture bgp-pdu max-buffer-size • clear ip bgp • clear ip bgp dampening • clear ip bgp flap-statistics • clear ip bgp peer-group • debug ip bgp • debug ip bgp dampening • debug ip bgp events • debug ip bgp keepalives • debug ip bgp notifications • debug ip bgp soft-reconfiguration • debug ip bgp updates • default-m
• neighbor soft-reconfiguration inbound • neighbor timers • neighbor update-source • neighbor weight • network • network backdoor • redistribute • redistribute ospf • router bgp • show capture bgp-pdu neighbor • show config • show ip bgp • show ip bgp cluster-list • show ip bgp community • show ip bgp community-list • show ip bgp dampened-paths • show ip bgp detail • show ip bgp extcommunity-list • show ip bgp filter-list • show ip bgp flap-statistics • show ip bgp i
• debug ip bgp ipv6 unicast soft-reconfiguration • ipv6 prefix-list • show ipv6 prefix-list • IPv6 MBGP Commands • show ipv6 mbgproutes BGPv4 Commands Border gateway protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing (CIDR) and the aggregation of routes and AS paths.
aggregate-address To minimize the number of entries in the routing table, summarize a range of prefixes. Syntax Parameters aggregate-address ip-address mask [advertise-map map-name] [asset] [attribute-map map-name] [summary-only] [suppress-map mapname] ip-address mask Enter the IP address and mask of the route to be the aggregate address. Enter the IP address in dotted decimal format (A.B.C.D) and mask in /prefix format (/x).
If routes within the aggregate are constantly changing, do not add the as-set parameter to the aggregate as the aggregate flaps to keep track of the changes in the AS_PATH. In route maps used in the suppress-map parameter, routes meeting the deny clause are not suppress; in other words, they are allowed. The opposite is also true: routes meeting the permit clause are suppressed.
Related Commands neighbor add-path — specifies that this neighbor/peer group can send/receive multiple path advertisements. bgp always-compare-med Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different external ASs. Syntax bgp always-compare-med To disable comparison of MED, enter no bgp always-compare-med. Defaults Disabled (that is, the software only compares MEDs from neighbors within the same AS).
Usage Information Before enabling this feature, enable the enable bgp four-octet-assupportcommand. If you disable the four-octect-support command after using dot or dot+ format, the AS numbers revert to asplain text. When you apply an asnotation, it is reflected in the running-configuration. If you change the notation type, the running-config updates dynamically and the new notation shows.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you enable this command, use the clear ip bgp * command to recompute the best path. bgp bestpath as-path multipath-relax Include prefixes received from different AS paths during multipath calculation. Syntax bgp bestpath as-path multipath-relax To return to the default BGP routing process, use the no bgp bestpath as-path multipath-relax command.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the clear ip bgp * command to recompute the best path. bgp bestpath med missing-as-best During path selection, indicate preference to paths with missing MED (MULTI_EXIT_DISC) over paths with an advertised MED attribute.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Configuring this option retains the current best-path. When sessions are then reset, the oldest received path is chosen as the best-path. bgp client-to-client reflection Allows you to enable route reflection between clients in a cluster.
number Defaults Not configured. Command Modes ROUTER BGP Command History Enter a route reflector cluster ID as a number from 1 to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When a BGP cluster contains only one route reflector, the cluster ID is the route reflector’s router ID. For redundancy, a BGP cluster may contain two or more route reflectors.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To accept 4-byte formats before entering a 4-byte AS number, configure your system. All the routers in the Confederation must be 4 byte or 2 byte identified routers. You cannot mix them. The autonomous systems configured in this command are visible to the EBGP neighbors.
Usage Information All the routers in the Confederation must be 4 byte or 2 byte identified routers. You cannot mix them. The autonomous systems configured in this command are visible to the EBGP neighbors. Each autonomous system is fully meshed and contains a few connections to other autonomous systems. After specifying autonomous systems numbers for the BGP confederation, recycle the peers to update their configuration. Related Commands bgp confederation identifier — configures a confederation ID.
route-map mapname (OPTIONAL) Enter the keyword route-map then the name of a configured route map. Only match commands in the configured route map are supported. Defaults Command Modes Command History Disabled. • ROUTER BGP • ROUTER BGP-address-family Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information All routers apply the bgp default local-preference command setting within the AS. To set the local preference for a specific route, use the set local-preference command in ROUTE-MAP mode. Related Commands set metric — assigns a local preference value for a specific route.
bgp fast-external-failover Enable the fast external failover feature, which immediately resets the BGP session if a link to a directly connected external peer fails. Syntax bgp fast-external-failover To disable fast external failover, use the no bgp fast-external-failover command. Defaults Enabled Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
When creating Confederations, all the routers in the Confederation must be 4 byte or 2 byte identified routers. You cannot mix them. Where the 2-byte format is from 1 to 65535, the 4-byte format is from 1 to 4294967295. Both formats are accepted and the advertisements reflect the entered format. For more information about using the 2 byte or 4-byte format, refer to the Dell Networking OS Configuration Guide.
bgp non-deterministic-med Compare MEDs of paths from different autonomous systems. Syntax bgp non-deterministic-med To return to the default, use the no bgp non-deterministic-med command. Defaults Disabled (that is, paths/routes for the same destination but from different ASs do not have their MEDs compared). Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command is a knob to disable BGP next-hop resolution using BGP learned routes. During the next-hop resolution, only the first route that the next-hop resolves through is verified for the route’s protocol source and is checked if the route is learned from BGP or not.
expression evaluation results. This caching and reuse may be at the expensive of RP1 processor memory. Examples Dell(conf-router_bgp)#no bgp regex-eval-optz-disable Dell(conf-router_bgp)#do show ip protocols Routing Protocol is "ospf 22222" Router ID is 2.2.2.2 Area Routing for Networks 51 10.10.10.0/00 Routing Protocol is "bgp 1" Cluster Id is set to 10.10.10.0 Router Id is set to 10.10.10.
bgp soft-reconfig-backup To avoid the peer from resending messages, use this command only when route-refresh is not negotiated. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command. Defaults Off Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. capture bgp-pdu max-buffer-size — specifies a size for the capture buffer. show capture bgp-pdu neighbor — displays BGP packet capture information. capture bgp-pdu max-buffer-size Set the size of the BGP packet capture buffer. This buffer size pertains to both IPv4 and IPv6 addresses.
as-number Enter the AS number to reset all neighbors belonging to that AS. The range is from 0 to 65535 (2 byte), from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535 (dotted format). ip-address Enter an IP address in dotted decimal format to reset all prefixes from that neighbor. flap-statistics (OPTIONAL) Enter the keyword flap-statistics to reset the flap statistics on all prefixes from that neighbor.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information After you enter this command, the software deletes the history routes and returns the suppressed routes to the Active state. clear ip bgp flap-statistics Clear BGP flap statistics, which includes number of flaps and the time of the last flap.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you enter the clear ip bgp flap-statistics command without any parameters, all statistics are cleared. Related Commands show debugging — views the enabled debugging operations. show ip bgp flap-statistics — views the BGP flap statistics. undebug all — disables all debugging operations. clear ip bgp peer-group Reset a peer-group’s BGP sessions.
Command Modes Command History in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To view information on both incoming and outgoing routes, do not include the in and out parameters in the debugging command.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show debugging — view enabled debugging operations. show ip bgp dampened-paths — view BGP dampened routes. debug ip bgp events Display information on local BGP state changes and other BGP events.
debug ip bgp keepalives Display information about BGP keepalive messages. Syntax debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] command. Parameters Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group peergroup-name (OPTIONAL) Enter the keyword peer-group then the name of the peer group.
Parameters Command Modes Command History ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group peergroup-name (OPTIONAL) Enter the keyword peer-group then the name of the peer group. in (OPTIONAL) Enter the keyword in to view BGP notifications received from neighbors. out (OPTIONAL) Enter the keyword out to view BGP notifications sent to neighbors EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Usage Information This command turns on BGP soft-reconfiguration inbound debugging. If no neighbor is specified, debug turns on for all neighbors. debug ip bgp updates Allows you to view information about BGP updates. Syntax debug ip bgp updates [in | out | prefix-list prefix-list-name] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] updates [in | out] command.
default-metric Allows you to change the metric of redistributed routes to locally originated routes. Use this command with the redistribute command. Syntax default-metric number To return to the default setting, use the no default-metric command. Parameters number Defaults 0 Command Modes ROUTER BGP Command History Enter a number as the metric to be assigned to routes from other protocols. The range is from 1 to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. router bgp — enters ROUTER mode on the switch. max-paths Configure the maximum number of parallel routes (multipath support) BGP supports. Syntax max-paths {ebgp | ibgp} number To return to the default values, enter the no maximum-paths command. Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes.
To disable, use the no neighbor [ip-address | peer-group-name] activate command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. peer-group-name (OPTIONAL) Enter the name of the peer group. activate Enter the keyword activate to enable the neighbor/peer group in the new AFI/SAFI. Defaults Disabled Command Modes CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp add-path — allows the advertisement of multiple paths for the same address prefix without the new paths implicitly replacing any previous ones. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
neighbor advertisement-start To send BGP routing updates, set the minimum interval before starting. Syntax neighbor {ip-address} advertisement-start seconds To return to the default value, use the no neighbor {ip-address} advertisement-start command. Parameters ip-address (OPTIONAL) Enter the IP address of the neighbor in dotted decimal format. seconds Enter a number as the time interval, in seconds, before BGP route updates are sent. The range is from 0 to 3600 seconds.
Command Modes Command History Related Commands ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp four-octet-as-support — enables 4-byte support for the BGP process. neighbor default-originate Inject the default route to a BGP peer or neighbor.
neighbor description Assign a character string describing the neighbor or group of neighbors (peer group). Syntax neighbor {ip-address | peer-group-name} description text To delete a description, use the no neighbor {ip-address | peer-group-name} description command. Parameters ip-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. text Enter a continuous text string up to 80 characters. Defaults Not configured.
in Enter the keyword in to distribute only inbound traffic. out Enter the keyword out to distribute only outbound traffic. Defaults Not configured. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Other BGP filtering commands include: neighbor filter-list, ip as-path access-list, and neighbor route-map.
neighbor fall-over Enable or disable fast fall-over for BGP neighbors. Syntax neighbor {ipv4-address | peer-group-name} fall-over To disable, use the no neighbor {ipv4-address | peer-group-name} fallover command. Parameters ipv4-address Enter the IP address of the neighbor in dotted decimal format. peer-group-name Enter the name of the peer group. Defaults Disabled. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
restart-time seconds Enter the keyword restart-time then the maximum number of seconds to restart and bring-up all the peers. The range is from 1 to 3600 seconds. The default is 120 seconds. stale-path-time seconds Enter the keyword stale-path-time then the maximum number of seconds to wait before restarting a peer’s stale paths. The default is 360 seconds. role receiver-only Enter the keyword role receiver-only to designate the local router to support graceful restart as a receiver only.
Command Modes Command History Related Commands ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp four-octet-as-support — enables 4-byte support for the BGP process. neighbor maximum-prefix Control the number of network prefixes received.
allows, the neighbor goes down and the show ip bgp summary command displays (prfxd) in the State/PfxRcd column for that neighbor. The neighbor remains down until you enter the clear ip bgp command for the neighbor or the peer group to which the neighbor belongs or you enter the neighbor shutdown and neighbor no shutdown commands. Related Commands show ip bgp summary — displays the current BGP configuration.
Configuring a password for a neighbor causes an existing session to be torn down and a new one established. If you specify a BGP peer group by using the peer-group-name parameter, all the members of the peer group inherit the characteristic configured with this command.
• neighbor distribute-list • neighbor route-map • neighbor route-reflector-client • neighbor shutdown A neighbor may keep its configuration after it was added to a peer group if the neighbor’s configuration is more specific than the peer group’s, and the neighbor’s configuration does not affect outgoing updates. A peer group must exist before you add a peer to it. If the peer group is disabled (shutdown) the peers within the group are also disabled (shutdown).
neighbor shutdown — disables a peer or peer group. neighbor peer-group passive Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message, but responds to one. Syntax neighbor peer-group-name peer-group passive [limit sessions] To delete a passive peer-group, use the no neighbor peer-group-name peergroup passive command. Parameters peer-group-name Enter a text string up to 16 characters long as the name of the peer group.
neighbor remote-as Create and specify the remote peer to the BGP neighbor. Syntax neighbor {ip-address | peer-group-name} remote-as number To delete a remote AS entry, use the no neighbor {ip-address | peer-groupname} remote-as number command. Parameters ip-address Enter the IP address of the neighbor to enter the remote AS in its routing table. peer-group-name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the peer group.
To return to the default, use the no neighbor {ip-address | peer-groupname} remove-private-as command. Parameters ip-address Enter the IP address of the neighbor to remove the private AS numbers. peer-group-name Enter the name of the peer group to remove the private AS numbers. Defaults Disabled (that is, private AS number are not removed). Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
If the Route map is not configured, the default is deny (to drop all routes). in Enter the keyword in to filter inbound routes. out Enter the keyword out to filter outbound routes. Defaults Not configured. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information A route reflector reflects routes to the neighbors assigned to the cluster. Neighbors in the cluster do not need not to be fully meshed. By default, when you use no route reflector, the internal BGP (IBGP) speakers in the network must be fully meshed.
Usage Information Peers that are enabled within a peer group are disabled when their peer group is disabled. The neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer group. Use this command with caution as it terminates the specified BGP sessions. When a neighbor or peer group is shut down, use the show ip bgp summary command to confirm its status. Related Commands show ip bgp summary — displays the current BGP configuration.
Related Commands show ip bgp neighbors — displays routes received by a neighbor. neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group. Syntax neighbor {ip-address | peer-group-name} timers keepalive holdtime To return to the default values, use the no neighbor {ip-address | peergroup-name} timers command. Parameters Defaults Command Modes Command History ip-address Enter the IP address of the peer router in dotted decimal format.
neighbor update-source Enable the software to use Loopback interfaces for TCP connections for BGP sessions. Syntax neighbor {ip-address | peer-group-name} update-source interface To use the closest interface, use the no neighbor {ip-address | peer-groupname} update-source interface command. Parameters ip-address Enter the IP address of the peer router in dotted decimal format. peer-group-name Enter the name of the peer group to disable all routers within the peer group.
weight Defaults 0 Command Modes ROUTER BGP Command History Enter a number as the weight. The range is from 0 to 65535. The default is 0. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information In the system best path selection process, the path with the highest weight value is preferred. NOTE: In the system best-path selection process, the path with the highest weight value is preferred.
• set metric • set tag If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Although the system does not generate a route due to the backdoor config, there is an option for injecting/sourcing a local route in the presence of network backdoor config on a learned route. redistribute Redistribute routes into BGP. Syntax redistribute {connected | static} [route-map map-name] To disable redistribution, use the no redistribution {connected | static} command.
Usage Information With the Dell Networking OS version 8.3.1.0 and later, you can use the redistribute command to advertise the IGP cost as the MED on redistributed routes. When you set the route-map with metric-type internal and applied outbound to an EBGP peer/peergroup, the advertised routes corresponding to those peer/peer-groups have the IGP cost set as MED.
Usage Information With the Dell Networking OS version 8.3.1.0 and later, you can use the redistribute command to advertise the IGP cost as the MED on redistributed routes. When you set the route-map with metric-type internal and apply outbound to an EBGP peer/peergroup, the advertised routes corresponding to those peer/peer-groups have the IGP cost set as MED.
show capture bgp-pdu neighbor Display BGP packet capture information for an IPv4 address on the system. Syntax Parameters Command Modes Command History Example show capture bgp-pdu neighbor ipv4-address ipv4-address Enter the IPv4 address (in dotted decimal format) of the BGP address to display packet information for that address. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell(conf-router_bgp)#show config ! router bgp 45 neighbor suzanne peer-group neighbor suzanne no shutdown neighbor sara peer-group neighbor sara shutdown neighbor 13.14.15.20 peer-group suzanne neighbor 13.14.15.20 shutdown neighbor 123.34.55.
longer-prefixes Command Modes Command History • EXEC • EXEC Privilege (OPTIONAL) Enter the keywords longer-prefixes to view all routes with a common prefix. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason.
*> 4.24.118.16/30 *> 4.24.145.0/30 *> 4.24.187.12/30 *> 4.24.202.0/30 *> 4.25.88.0/30 3908 i *> 5.0.0.0/9 *> 5.0.0.0/10 *> 5.0.0.0/11 --More-Related Commands 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 63.114.8.33 0 0 0 0 0 63.114.8.33 63.114.8.33 63.114.8.33 0 0 0 18508 18508 18508 18508 18508 209 209 209 209 209 i i i i 3561 0 18508 ? 0 18508 ? 0 18508 ? show ip bgp community — views the BGP communities. neighbor maximum-prefix — controls the number of network prefixes received.
Example Field Description Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. Dell#show ip bgp cluster-list BGP table version is 64444683, local router ID is 120.1.1.1 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network * I 10.10.10.1/32 * I *>I * I * I * I * I 10.19.75.
local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers. no-advertise Enter the keywords no-advertise to view all routes containing the well-known community attribute of NO_ADVERTISE. All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers.
Example Field Description LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. Dell>show ip bgp community BGP table version is 3762622, local router ID is 63.114.8.
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The show ip bgp community-list command without any parameters lists BGP routes matching the Community List and the output is the same as for the show ip bgp command output. The following describes the show ip bgp community-list pass command shown in the following example.
• Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip bgp damp command shown in the following example. Example Field Description Network Displays the network ID to which the route is dampened. From Displays the IP address of the neighbor advertising the dampened route. Reuse Displays the hour:minutes:seconds until the dampened route is available.
Example Dell#show ip bgp detail Detail information for BGP Node bgpNdP 0x41a17000 : NdTmrP 0x41a17000 : NdKATmrP 0x41a17014 : NdTics 74857 : NhLocAS 1 : NdState 2 : NdRPMPrim 1 : NdListSoc 13 NdAuto 1 : NdEqCost 1 : NdSync 0 : NdDefOrg 0 NdV6ListSoc 14 NdDefDid 0 : NdConfedId 0 : NdMedConfed 0 : NdMedMissVal -1 : NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP 0x41a19088 NdASPTblP 0x41a19090 : NdCommTblP 0x41a19098 : NhOptTransTblP 0x41a190a0 : NdRRClsTblP 0x41a190a8 NdPktPA 0 : NdLocCBP 0x41a6f00
Nbr List Confed Peer List Address Family specific Information AFIndex 0 NdSpFlag 0x41a190b0 : AFRttP 0x41a0d200 : NdRTMMkrP 0x41a19d28 : NdRTMAFTblVer 0 : NdRibCtxAddr 1101110688 NdRibCtxAddrLen 255 : NdAFPrefix 0 : NdAfNLRIP 0 : NdAFNLRILen 0 : NdAFWPtrP 0 NdAFWLen 0 : NdAfNH : NdAFRedRttP 0x41a0d400 : NdRecCtxAdd 1101110868 NdRedCtxAddrLen 255 : NdAfRedMkrP 0x41a19e88 : AFAggRttP 0x41a0d600 : AfAggCtxAddr 1101111028 : AfAggrCtxAddrLen 255 AfNumAggrPfx 0 : AfNumAggrASSet 0 : AfNumSuppmap 0 : AfNumAggrValid
Usage Information To view the total number of COMMUNITY attributes found, use the show ip bgp summary command. The text line above the route table states the number of COMMUNITY attributes found. The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output. show ip bgp filter-list View the routes that match the filter lists.
Example Field Description Metric Displays the BGP route’s metric, if assigned. LocPrf Displays the BGP LOCAL_PREF attribute for the route. Weight Displays the route’s weight. Path Lists all the ASs the route passed through to reach the destination network. Dell#show ip bgp filter-list hello BGP table version is 80227, local router ID is 120.1.1.
mask (OPTIONAL) Enter the network mask (in slash prefix (/x) format) of the BGP network address. filter-list as-pathname (OPTIONAL) Enter the keyword filter-list then the name of a configured AS-PATH ACL. The range is 140 characters. regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match. The range is 256 characters. • . = (period) any single character (including a white space).
Example Field Description Reuse Displays the hours:minutes:seconds until the flapped route is available. Path Lists all the ASs the flapping route passed through to reach the destination network. Dell>show ip bgp flap-statistics BGP table version is 210851, local router ID is 63.114.8.
Example Field Description Path Lists all the ASs the route passed through to reach the destination network. Dell>show ip bgp inconsistent-as BGP table version is 280852, local router ID is 10.1.2.100 Status codes: s suppressed, d damped, h history, * valid, > best Path source: I - internal, c - confed-external, r redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next * 3.0.0.0/8 * * *> *> 3.18.135.0/24 * * * *> 4.0.0.0/8 * * * * 6.0.0.0/20 * *> * * 9.2.0.
detail (OPTIONAL) Enter the keyword detail to view neighborspecific internal information for the IPv4 Unicast address family. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to view flap statistics on the neighbor’s routes. routes (OPTIONAL) Enter the keyword routes to view only the neighbor’s feasible routes.
The Lines Beginning with: Description BGP state Displays the neighbor’s BGP state and the amount of time in hours:minutes:seconds it has been in that state.
The Lines Beginning with: Description Local host: Displays the peering address of the local router and the TCP port number. Foreign host: Displays the peering address of the neighbor and the TCP port number. Example ( ) Dell#show ip bgp neighbors BGP neighbor is 10.10.10.1, remote AS 23456, external link BGP version 4, remote router ID 10.10.10.1 BGP state ESTABLISHED, in this state for 00:00:35 . . .
Connections established 2; dropped 1 Last reset 00:18:21, due to Maximum prefix limit reached Example (AdvertisedRoutes) Dell>show ip bgp neighbors 192.14.1.5 advertised-routes BGP table version is 74103, local router ID is 33.33.33.33 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf *>r 1.10.1.0/24 0.0.0.
Related Commands show ip bgp — views the current BGP routing table. show ip bgp next-hop View all next hops (using learned routes only) with current reachability and flap status. This command only displays one path, even if the next hop is reachable by multiple paths. Syntax Command Modes Command History show ip bgp next-hop • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show ip bgp paths View all the BGP path attributes in the BGP database. Syntax Parameters show ip bgp paths [regexp regular-expression] regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (zero or more sequences). • + = (plus) the sequences in a pattern (one or more sequences).
Example Field Description Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using this path attribute. Metric Displays the MED attribute for this path attribute. Path Displays the AS path for the route, with the origin code for the route listed last. Numbers listed between braces {} are AS_SET information.
Example Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these AS-Paths. AS-Path Displays the AS paths for this route, with the origin code for the route listed last. Numbers listed between braces {} are AS_SET information.
Example Field Description Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these communities. Community Displays the community attributes in this BGP path.
Parameters Command Modes Command History ipv4 unicast (OPTIONAL) Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes. peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. detail (OPTIONAL) Enter the keyword detail to view detailed status information of the peers in that peer group. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group.
For address family: IPv4 Unicast BGP neighbor is pg1 Number of peers in this group 4 Update packing has 4_OCTECT_AS support enabled Add-path support enabled Peer-group members (* - outbound optimized): 1.1.1.5 1.1.1.6 10.10.10.2* 20.20.20.
Parameters regularexpression [character] Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (zero or more sequences). • + = (plus) the sequences in a pattern (one or more sequences). • ? = (question mark) sequences in a pattern (either zero or one sequences). NOTE: Enter an escape sequence (CTRL+v) prior to entering the ? regular expression.
Example (S4810) Dell#show ip bgp regexp ^2914+ BGP table version is 3700481, local router ID is 63.114.8.35 Status codes: s suppressed, S stale, d damped, h history, * valid, > best Path source: I - internal, a - aggregate, c - confed-external, r - redistributed, n - network Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *>I 3.0.0.0/8 1.1.1.2 0 100 0 2914 1239 80 i *>I 4.0.0.0/8 1.1.1.2 0 100 0 2914 3356 i *>I 4.17.225.0/24 1.1.1.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip bgp summary command shown in the following example. Field Description BGP router identifier Displays the local router ID and the AS number. BGP table version Displays the BGP table version and the main routing table version. network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries.
Field Description Up/Down Displays the amount of time that the neighbor is in the Established stage. If the neighbor has never moved into the Established stage, the word never is displayed. The output format is: State/Pfxrcd Time Established Display Example < 1 day 00:12:23 (hours:minutes:seconds) < 1 week 1d21h (DaysHours) > 1 week 11w2d (WeeksDays) If the neighbor is in Established stage, the number of network prefixes received.
show running-config bgp To display the current BGP configuration, use this feature. Syntax show running-config bgp Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. timers bgp Adjust the BGP Keep Alive and Hold Time timers. Syntax timers bgp keepalive holdtime To return to the default, use the no timers bgp command.
MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the internet and connecting multicast topologies between BGP and autonomous systems (ASs). MBGP is implemented as per IETF RFC 1858. debug ip bgp dampening View information on routes being dampened. Syntax debug ip bgp ipv4 multicast dampening To disable debugging, use the no debug ip bgp ipv4 multicast dampening command.
local-distance Defaults Command Modes Command History Enter a number to assign to routes learned from networks listed in the network command. The range is from 1 to 255. The default is 200. • external-distance = 20 • internal-distance = 200 • local-distance = 200 ROUTER BGP (conf-router_bgp_af) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Field Description From Displays the IP address of the neighbor advertising the dampened route. Reuse Displays the hour:minutes:seconds until the dampened route is available. Path Lists all the ASs the dampened route passed through to reach the destination network. Dell>show ip bgp dampened-paths BGP table version is 210708, local router ID is 63.114.8.
IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte community value). additive (OPTIONAL) Enter the keyword additive to add to the existing extended community. non-trans (OPTIONAL) Enter the keywords non-trans to indicate a nontransitive BGP extended community. Defaults none Command Modes ROUTE MAP (config-route-map) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
IPADDR:NN Enter the IP address specific extended community in the format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte community value). non-trans (OPTIONAL) Enter the keywords non-trans to indicate a nontransitive BGP extended community. Defaults none Command Modes ROUTE MAP (config-route-map) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Field Description Address Displays the internal address where the path attribute is stored. Hash Displays the hash bucket where the path attribute is stored. Refcount Displays the number of BGP routes using these extended communities. Community Displays the extended community attributes in this BGP path. Dell#show ip bgp paths extcommunity Total 1 Extended Communities Address 0x41d57024 Hash Refcount Extended Community 12272 1 RT:7:200 SoO:5:300 SoO:0.0.0.
IPv6 BGP Commands IPv6 Border Gateway Protocol (IPv6 BGP) is supported on the switch. Border gateway protocol (BGP) is an external gateway protocol that transmits interdomain routing information within and between autonomous systems (AS). BGP version 4 (BGPv4) supports classless interdomain routing and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange information including full routing tables and periodically send messages to update those routing tables.
clear ip bgp ipv6 unicast soft Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform BGP soft reconfiguration. Syntax Parameters clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6-neighboraddr | peer-group name} ipv6 unicast soft [in | out] * Clear and reapply an asterisk ( * ) for all BGP sessions. as-number Clear and reapply policies for all neighbors belonging to the AS.
debug ip bgp ipv6 unicast softreconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes. Syntax debug ip bgp [ipv4-address | ipv6-address | peer-group-name] ipv6 unicast soft-reconfiguration To disable debugging, use the no debug ip bgp [ipv4-address | ipv6address | peer-group-name] ipv6 unicast soft-reconfiguration command. Parameters ipv4-address | ipv6-address Enter the IP address of the neighbor on which you want to enable soft-reconfiguration debugging.
NOTE: There is a 140-character limit for prefix list names. Defaults none Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ipv6 prefix-list — View the selected IPv6 prefix-list. show ipv6 prefix-list Displays the specified IPv6 prefix list.
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). MBGP is implemented as per IETF RFC 1858. show ipv6 mbgproutes Display the selected IPv6 MBGP route or a summary of all MBGP routes in the table.
10 Content Addressable Memory (CAM) Content addressable memory (CAM) commands are supported on the Dell Networking operating software on the platform. WARNING: If you are using these features for the first time, contact Dell Networking Technical Assistance Center (TAC) for guidance.
cam-acl (Configuration) Select the default CAM allocation settings or reconfigure a new CAM allocation for Layer 2, IPv4, and IPv6 ACLs, Layer 2 and Layer 3 (IPv4) QoS, Layer 2 Protocol Tunneling (L2PT), IP and MAC source address validation for DHCP, Ethernet Connectivity Fault Management (CFM) ACLs, and Policy-based Routing (PBR).
ecfmacl number Enter the keyword ecfmacacl and then the number of FP blocks for ECFM ACL. The range is from 0 to 5. nlbclusteracl number Enter the keyword nlbclusteracl and then the number of FP blocks for nlbcluster ACL. The range is from 0 to 2. By default the value is 0 and it supports eight NLB arp entries reserved for internal functionality. NOTE: When you reconfigure CAM allocation, use the nlbclusteracl number command to change the number of NLB ARP entries. The range is from 0 to 2.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Added the keyword nlbcluster ACL. 9.4.(0.0) Added support for PBR. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Save the new CAM settings to the startup-config (write-mem or copy run start) then reload the system for the new settings to take effect. The total amount of space allowed is 16 FP Blocks.
NOTE: An ACL itself may still require more that a single FP entry, regardless of the number of interfaces. For more information, refer to the IP Access Control Lists, Prefix Lists, and Route-mapsections in the Dell Networking Operating System Configuration Guide. show cam-acl Display the details of the CAM profiles on the chassis and all stack units. Syntax show cam-acl Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
IpMacAcl : VmanQos : VmanDualQos : EcfmAcl : FcoeAcl : iscsiOptAcl : ipv4pbr : vrfv4Acl : Openflow : fedgovacl : nlbclusteracl: 0 0 0 0 0 0 0 0 0 0 0 -- stack-unit 1 -Current Settings(in block sizes) 1 block = 128 entries L2Acl : 6 Ipv4Acl : 4 Ipv6Acl : 0 Ipv4Qos : 2 L2Qos : 1 L2PT : 0 IpMacAcl : 0 VmanQos : 0 VmanDualQos : 0 EcfmAcl : 0 FcoeAcl : 0 iscsiOptAcl : 0 ipv4pbr : 0 vrfv4Acl : 0 Openflow : 0 fedgovacl : 0 nlbclusteracl: 0 show cam-acl-egress Display the details of the FP groups allocated for t
Ipv4Acl Ipv6Acl : : 1 2 -- Stack unit 0 -Current Settings(in block sizes) L2Acl : 1 Ipv4Acl : 1 Ipv6Acl : 2 Dell# Content Addressable Memory (CAM) 441
11 Control Plane Policing (CoPP) The Dell Networking OS supports the following CoPP commands. control-plane-cpuqos To manage control-plane traffic, enter control-plane mode and configure the switch. Syntax control-plane-cpuqos Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Create QoS policies prior to enabling this command. For CoPP, do not use the keywords cpu-qos when creating qos-policy-input. Related Commands qos-policy-input — creates a QoS input policy map. policy-map-input — creates an input policy map. service-policy rate-limit-protocols Apply a policy for the system to rate limit control protocols on a per-protocol basis.
show cpu-queue rate cp Display the rates for each queue. Syntax show cpu-queue rate cp Defaults Not configured. Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command applies the service-policy based on the type of protocol defined in the ACL rules. Create ACL and QoS policies prior to enabling this command.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
OSPFV3 Dell# any any _ Q9 _ _ show mac protocol-queue-mapping Display the queue mapping for the MAC protocols. Syntax show mac protocol-queue-mapping Defaults Not configured. Command Modes EXEC Privilege Supported Modes Full–Switch Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
12 Data Center Bridging (DCB) Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a single, robust, converged network to support multiple traffic types, including local area network (LAN), server, and storage traffic. The Dell Networking Operating System (OS) commands for data center bridging features include 802.1Qbb priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging exchange (DCBX) protocol.
• dcb enable pfc-queues • dcb {ets | pfc} enable • dcb-policy buffer-threshold (Interface Configuration) • dcb-policy buffer-threshold (Global Configuration) • priority-pgid • qos-policy-buffer • service-class buffer shared-threshold-weight • show qos dcb-map • show stack-unit stack-ports pfc details advertise dcbx-appln-tlv On a DCBX port with a manual role, configure the application priority TLVs advertised on the interface to DCBX peers.
advertise dcbx-tlv On a DCBX port with a manual role, configure the PFC and ETS TLVs advertised to DCBX peers. Syntax advertise dcbx-tlv {ets-conf | ets-reco | pfc} [ets-conf | etsreco | pfc] [ets-conf | ets-reco | pfc] To remove the advertised ETS TLVs, use the no advertise dcbx-tlv command. Parameters {ets-conf | etsreco | pfc} Enter the PFC and ETS TLVs advertised, where: • ets-conf: enables the advertisement of ETS configuration TLVs. • ets-reco: enables the advertisement of ETS recommend TLVs.
bandwidth-percentage Configure the bandwidth percentage allocated to priority traffic in port queues. Syntax bandwidth-percentage percentage To remove the configured bandwidth percentage, use the no bandwidthpercentage command. Parameters percentage (Optional) Enter the bandwidth percentage. The percentage range is from 1 to 100% in units of 1%. Defaults none Command Modes QOS-POLICY-OUT-ETS Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
dcb-enable Enable data center bridging. Syntax dcb enable To disable DCB, use the no dcb enable command. Defaults none Command Modes CONFIGURATION Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information DCB is not supported if you enable link-level flow control on one or more interfaces. dcb-policy buffer-threshold (Global Configuration) Assign the dcb buffer threshold policy on the stack ports.
Command History Version Description 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure up to a maximum of four lossless (PFC) queues. By configuring four lossless queues, you can configure four different priorities and assign a particular priority to each application that your network is used to process. For example, you can assign a higher priority for time-sensitive applications and a lower priority for other services, such as file transfers.
method of configuration enables you to effectively manage and administer the behavior of lossless queues. Example Dell(conf-if-te-0/0)#dcb-policy buffer-threshold test dcbx port-role Configure the DCBX port role the interface uses to exchange DCB information. Syntax dcbx port-role {config-source | auto-downstream | auto-upstream | manual} To remove DCBX port role, use the no dcbx port-role {config-source | auto-downstream | auto-upstream | manual} command.
dcbx version Configure the DCBX version used on the interface. Syntax dcbx version {auto | cee | cin | ieee-v2.5} To remove the DCBX version, use the dcbx version {auto | cee | cin | ieee-v2.5} command. Parameters auto | cee | cin | ieee-v2.5 Enter the DCBX version type used on the interface, where: • auto: configures the port to operate using the DCBX version received from a peer. • cee: configures the port to use CDD (Intel 1.01). • cin: configures the port to use Cisco-Intel-Nuova (DCBX 1.0).
Parameters {all | auto-detecttimer | configexchng | fail | mgmt | resource | sem | tlv} Defaults none Command Modes EXEC Privilege Command History Enter the type of debugging, where: • all: enables all DCBX debugging operations. • auto-detect-timer: enables traces for DCBX autodetect timers. • config-exchng: enables traces for DCBX configuration exchanges. • fail: enables traces for DCBX failures. • mgmt: enables traces for DCBX management frames.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. fcoe priority-bits Configure the FCoE priority advertised for the FCoE protocol in application priority TLVs. Syntax fcoe priority-bits priority-bitmap To remove the configured FCoE priority, use the no fcoe priority-bits command. Parameters priority-bitmap Defaults 0x8 Command Modes PROTOCOL LLDP Command History Enter the priority-bitmap range. The range is from 1 to FF. Version 9.2(0.
Usage Information This command is available at the global level only. priority Configure the priority for the PFC threshold to be allocated to the buffer space parameters.
queue for a specified priority, it sends a pause frame for the 802.1p priority traffic to the transmitting device. You can use thepriority command to set up both the administrative and peerrelated PFC priorities. For example, you can configure the intended buffer configuration for all 8 priorities. If you configure the number of lossless queues as 4 and if the administrator-configured priorities configured within the DCB input policy is applied, then the configuration for those priorities are pre-designed.
pfc no-drop queues Configure the port queues that still function as no-drop queues for lossless traffic. Syntax pfc no-drop queues queue-range To remove the no-drop port queues, use the no pfc no-drop queues command. Parameters queue-range Enter the queue range. Separate the queue values with a comma; specify a priority range with a dash; for example, pfc no-drop queues 1,3 or pfc no-drop queues 2-3. The range is from 0 to 3. Defaults No lossless queues are configured.
priority-list Configure the 802.1p priorities for the traffic on which you want to apply an ETS output policy. Syntax priority-list value To remove the priority list, use the no priority-list command. Parameters value Enter the priority list value. Separate priority values with a comma; specify a priority range with a dash; for example, priority-list 3,5-7. The range is from 0 to 7. Defaults none Command Modes PRIORITY-GROUP Command History Version Description 9.9(0.0) Introduced on the FN IOM.
Parameters Command Modes Command History policy-name Enter the policy name. The maximum is 32 characters. CONFIGURATION Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information dot1p priority traffic on the switch is scheduled to the current queue mapping. dot1p priorities within the same queue must have the same traffic properties and scheduling method. ETS-assigned scheduling applies only to data queues, not to control queues. The configuration of bandwidth allocation and strict-queue scheduling is not supported at the same time for a priority group.
show interface dcbx detail Displays the DCBX configuration on an interface. Syntax Parameters show interface port-type slot/port dcbx detail port-type Enter the port type. slot/port Enter the slot/port number. NOTE: This command also enables you to view information corresponding to a range of ports. • Command Modes Command History You can specify multiple ports as slot/port-range.
Field Description Local DCBX Compatibility mode DCBX version accepted in a DCB configuration as compatible. In auto-upstream mode, a port can only receive a DCBX version supported on the remote peer. Local DCBX Configured mode DCBX version configured on the port: CEE, CIN, IEEE v2.5, or Auto (port auto-configures to use the DCBX version received from a peer). Peer Operating version DCBX version that the peer uses to exchange DCB parameters.
Field Description PFC TLV Statistics: Output PFC TLV pkts Number of PFC TLVs transmitted. PFC TLV Statistics: Error PFC pkts Number of PFC error packets received. PFC TLV Statistics: PFC Pause Tx pkts Number of PFC pause frames transmitted. PFC TLV Statistics: PFC Pause Rx pkts Number of PFC pause frames received. PFC TLV Statistics: Input PG TLV Pkts Number of PG TLVs received. PFC TLV Statistics: Output PG TLV Pkts Number of PG TLVs transmitted.
Example Dell(conf)# show interface tengigabitethernet 0/49 dcbx detail Dell#show interface te 0/49 dcbx detail E-ETS Configuration TLV enabled e-ETS Configuration TLV disabled R-ETS Recommendation TLV enabled r-ETS Recommendation TLV disabled P-PFC Configuration TLV enabled p-PFC Configuration TLV disabled F-Application priority for FCOE enabled f-Application Priority for FCOE disabled I-Application priority for iSCSI enabled i-Application Priority for iSCSI disabled ---------------------------------------
{summary | detail} Enter the keyword summary for a summary list of results or enter the keyword detail for a full list of results. NOTE: This command also enables you to view information corresponding to a range of ports. • Command Modes Command History You can specify multiple ports as slot/port-range. For example, if you want to display information corresponding to all ports between 1 and 4, specify the port range as show interfaces interface-type 1/1 - 4. CONFIGURATION Version Description 9.9(0.
Example (Summary) Field Description Operational status (local port) Port state for current operational ETS configuration: • Init: Local ETS configuration parameters were exchanged with the peer. • Recommend: Remote ETS configuration parameters were received from the peer. • Internally propagated: ETS configuration parameters were received from the configuration source. ETS DCBX Oper status Operational status of the ETS configuration on the local port: match or mismatch.
7 12% ETS Remote Parameters: ------------------Remote is disabled Local Parameters: -----------------Local is enabled TC-grp Priority# Bandwidth TSA 0 0,1,2,3,4,5,6,7 100% ETS 1 0% ETS 2 0% ETS 3 0% ETS 4 0% ETS 5 0% ETS 6 0% ETS 7 0% ETS Priority# Bandwidth TSA 0 13% ETS 1 13% ETS 2 13% ETS 3 13% ETS 4 12% ETS 5 12% ETS 6 12% ETS 7 12% ETS Oper status is init Conf TLV Tx Status is disabled Traffic Class TLV Tx Status is disabled Example (Detail) Dell(conf)# show interfaces tengigabitethernet 0/0 ets detai
TC-grp Priority# 0 0,1,2,3,4,5,6,7 1 2 3 4 5 6 7 Bandwidth 100% 0% 0% 0% 0% 0% 0% 0% TSA ETS ETS ETS ETS ETS ETS ETS ETS Priority# Bandwidth TSA 0 13% ETS 1 13% ETS 2 13% ETS 3 13% ETS 4 12% ETS 5 12% ETS 6 12% ETS 7 12% ETS Oper status is init Conf TLV Tx Status is disabled Traffic Class TLV Tx Status is disabled 0 Input Conf TLV Pkts, 0 Output Conf TLV Pkts, 0 Error Conf TLV Pkts 0 Input Traffic Class TLV Pkts, 0 Output Traffic Class TLV Pkts, 0 Error Traffic Class TLV Pkts show interface pfc Displays
Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To clear the PFC TLV counters, use the clear pfc counters interface porttype slot/port command. The following describes the show interface pfc summary command shown in the following example. Field Description Interface Interface type with stack-unit and port number.
Example (Summary) Field Description Application Priority TLV: SCSI TLV Tx Status Status of ISCSI advertisements in application priority TLVs from the local DCBX port: enabled or disabled. Application Priority TLV: Local FCOE Priority Map Priority bitmap the local DCBX port uses in FCoE advertisements in application priority TLVs. Application Priority TLV: Local ISCSI Priority Map Priority bitmap the local DCBX port uses in ISCSI advertisements in application priority TLVs.
Dell# show interfaces tengigabitethernet 0/49 pfc detail Interface TenGigabitEthernet 0/49 Admin mode is on Admin is enabled Remote is enabled Remote Willing Status is enabled Local is enabled Oper status is recommended PFC DCBX Oper status is Up State Machine Type is Feature TLV Tx Status is enabled PFC Link Delay 45556 pause quanta Application Priority TLV Parameters : -------------------------------------FCOE TLV Tx Status is disabled ISCSI TLV Tx Status is disabled Local FCOE PriorityMap is 0x8 Local IS
Priority Rx XOFF Frames Rx Total Frames Tx Total Frames -------------------------------------------------------0 0 0 0 1 0 0 0 2 0 0 0 3 0 0 0 4 0 0 0 5 0 0 0 6 0 0 0 7 0 0 0 show qos priority-groups Displays the ETS priority groups configured on the switch, including the 802.1p priority classes and ID of each group. Syntax show qos priority-groups Command Modes EXEC Privilege Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Parameters Command Modes Command History Example stack-unit Enter the stack unit identification. port-number Enter the port number. CONFIGURATION Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
dcb pfc-shared-buffer-size Configure the maximum amount of shared buffer size for PFC packets in kilobytes. Syntax Parameters dcb pfc-shared—buffer—size KB KB Enter a number in the range of 0 to 7787. Default None. Command Modes CONFIGURATION mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. Usage Information Configure the maximum shared buffer available for PFC traffic.
Parameters KB Enter a number in the range of 0 to 7787. Default The default is 6592KB. Command Modes CONFIGURATION mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.9(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Configure the maximum buffer available for PFC traffic. You can choose to increase or decrease the buffer size that is allocated in the system by default.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. Usage Information When you enter the profile name, you enter the DCB buffer threshold configuration mode. You can specify the shared buffer threshold limit, the ingress buffer size, buffer limit for pausing the acceptance of packets, and the buffer offset limit for resuming the acceptance of received packets.
assign a higher priority for time-sensitive applications and a lower priority for other services, such as file transfers. You can configure the amount of buffer space to be allocated for each priority and the pause or resume thresholds for the buffer. This method of configuration enables you to effectively manage and administer the behavior of lossless queues. Example Dell(conf)#dcb pfc-queues 4 dcb {ets | pfc} enable Enable priority flow control or enhanced transmission selection on interface.
dcb-policy buffer-threshold (Interface Configuration) Assign the DCB policy to the DCB buffer threshold profile on interfaces. This setting takes precedence over the global buffer-threshold setting. Syntax Parameters dcb-policy buffer-threshold profile-name buffer-threshold Configure the profile name for the DCB buffer threshold profile-name Enter the name of the profile, which can be a string of up to 32 characters in length.
Parameters dcb-bufferthreshold Configure the profile name for the DCB buffer threshold. profile-name Enter the name of the profile, which can be a string of up to 32 characters in length. stack-unit all Enter the stack unit identification. Indicates the specific the stack unit or units. Entering all shows the status for all stacks. stack-port all Enter the port number of a port in a switch stack. Default None Command Modes CONFIGURATION mode Command History Version Description 9.3(0.
dot1p1_groupnum dot1p2_groupnum dot1p3_groupnum dot1p4_groupnum dot1p5_groupnum dot1p6_groupnum dot1p7_groupnum Defaults None Command Modes DCB MAP Command History Version 9.3(0.0) Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch module platform. Usage Information PFC and ETS settings are not pre-configured on Ethernet ports. You must use the dcbmap command to configure different groups of 802.1p priorities with PFC and ETS settings.
qos-policy-buffer Create a QoS policy buffer and enter the configuration mode to configure the no-drop queues, ingress buffer size, buffer limit for pausing, and buffer offset limit for resuming.
Default The default size of the ingress buffer is 45 KB. The default buffer limit at which the port sends the pause to peer and recommences the sending of packets to the peer is 10 KB. The default threshold weight of the shared buffer space is 10. Command Modes DCB-BUFFER-THRESHOLD mode Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform.
[queue4 number] || [queue5 number] || [queue6 number] || [queue7 number]} Parameters buffer Define the shared buffer settings. shared-thresholdweight Specify the weight of a queue for the shared buffer space. queue 0 to queue 7 To apply the shared-threshold weight, specify the queue number . number Enter a weight for the queue on the shared buffer as a number in the range of 1 to 11. Default The default threshold weight on the shared buffer for each queue is 9.
Example Dell(conf-if-te-1/8)#Service-class buffer shared-threshold-weight queue5 4 queue7 6 show qos dcb-map Display the DCB parameters configured in a specified DCB map. FC Flex IO Modules with MXL Syntax Parameters Command Modes Command History show qos dcb-map map-name map-name • EXEC • EXEC Privilege Version 9.3(0.0) Displays the PFC and ETS parameters configured in the specified map. Introduced on the FC Flex IO module installed in the MXL 10/40GbE Switch.
Example Field Description Priorities 802.1p priorities configured in the priority group.
13 Debugging and Diagnostics The basic debugging and diagnostic commands are supported by the Dell Networking Operating System (OS).
• You can only run offline diagnostics on a unit to which you are connected via the console. In other words, you cannot run diagnostics on a unit to which you are connected to via a stacking link. • Diagnostic results are printed to the screen. The Dell Networking OS does not write them to memory. • Diagnostics only test connectivity, not the entire data path. diag stack-unit Run offline diagnostics on a stack unit.
again without rebooting the chassis, it may cause an issue with the diagnostic results.. Defaults none Command Modes EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The system reboots when the off-line diagnostics complete. This reboot is an automatic process. A warning message appears when the offline stack-unit command is implemented. Warning - Diagnostic execution will cause stack-unit to reboot after completion of diags.
Hardware Commands These commands display information from a hardware sub-component or ASIC. clear hardware stack-unit Clear statistics from selected hardware components. Syntax Parameters clear hardware stack-unit 0–5 {counters | unit 0–1 counters | cpu data-plane statistics | cpu party-bus statistics | stack-port 0– 52} stack-unit 0–5 Enter the keywords stack-unit then 0 to 5 to select a particular stack member and then enter one of the following command options to clear a specific collection of data.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show hardware stack-unit — displays the data plane or management plane input and output statistics of the designated component of the designated stack member. clear hardware system-flow Clear system-flow statistics from selected hardware components.
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show hardware layer3 Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe. Syntax Parameters show hardware layer3 {acl | qos} stack-unit 0–5 port-set 0–0 acl | qos Enter either the keyword acl or the keyword qos to select between ACL or QoS data.
Parameters stack-unit 0–5 {commandoption} Enter the keywords stack-unit then 0 to 5 to select a particular stack member and then enter one of the following command options to display a collection of data based on the option entered. buffer Enter the keyword buffer. To display buffer statistics for a all interface, enter the keyword interface followed by the keyword all. Enter the keywords buffer unit then totalbuffer to display the buffer details per unit and mode of allocation.
| port-stats [detail] | register} Defaults Command Modes Command History Example coming up to register level: counters, details, port-stats [detail], or register. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.8(0.0) Replaced the keyword port with interface 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
txRequested noTxDesc txError txReqTooLarge txInternalError txDatapathErr txPkt(COS0) txPkt(COS1) txPkt(COS2) txPkt(COS3) txPkt(COS4) txPkt(COS5) txPkt(COS6) txPkt(COS7) txPkt(UNIT0) Dell# :1696 :0 :0 :0 :0 :0 :0 :0 :0 :0 :0 :0 :0 :0 :0 Example Dell#show hardware stack-unit 0 cpu party-bus statistics Input Statistics: 8189 packets, 8076608 bytes 0 dropped, 0 errors Output Statistics: 366 packets, 133100 bytes 0 errors Dell# Example (drop summary) Dell#show hard stack-unit 0 drops unit 0 Example (portst
xe17 xe18 xe19 xe20 Dell# !ena down !ena down 1G 1G 1G 1G FD FD FD FD SW SW SW SW Yes Yes Yes Yes Forward Forward Forward Forward Tag Tag Tag Tag F F F F GMII GMII GMII GMII 1550 1550 1550 1550 Example (register) Dell#show hardware stack-unit 0 unit 0 register 0x0f180d34 ALTERNATE_EMIRROR_BITMAP_PARITY_CONTROL.ipipe0 = 0x00000001 0x0f180d35 ALTERNATE_EMIRROR_BITMAP_PARITY_STATUS_INTR.ipipe0 = 0x00000000 0x0f180d36 ALTERNATE_EMIRROR_BITMAP_PARITY_STATUS_NACK.
Front End Link Status 0x200000000000000000000000 Front End Port Present Status0x000000000000000000000000 Back Plane Link Status 0x00000000 ************************************************ Link Status of all the ports in the Device - 0 The linkStatus of Front End Port 1 is FALSE The linkStatus of Front End Port 2 is FALSE The linkStatus of Front End Port 3 is TRUE The linkStatus of Front End Port 4 is FALSE The linkStatus of Front End Port 5 is FALSE The linkStatus of Front End Port 6 is FALSE The linkStatus
----- Buffer Stats for Interface Te 1/2 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/3 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/4 Queue Maximum Shared Limit: 7667 Default Packet Buffer allocate for the Queue: Used Packet Buffer: 0 ----- Buffer Stats for Interface Te 1/5 Queue Maximum Shared Limit: 7667 Default Packet B
show system stack-ports — Displays information about the stacking ports on all switches in the stack. show system — Displays the current status of all stack members or a specific member. show hardware buffer interface Display buffer statistics for a specific interface.
Example displaying Dell#show hardware buffer interface tengigabitethernet 1/1 priority-group 0 buffer-info priority-group ----- Buffer stats for unit: 0 port: 1 (interface Te 1/1) ----range -------------------------------------------------------------PG# PRIORITIES ALLOTED (CELLS) OUNTER (CELLS) MIN SHARED MODE HDRM MIN SHARED HDRM --------------------------------------------------------------0 61440 0 STATIC 174 0 0 0 Dell# Example displaying Dell#show hardware buffer interface tengigabitethernet 1/1 queue
RX - 128 to 255 Byte Frame Counter RX - 256 to 511 Byte Frame Counter RX - 512 to 1023 Byte Frame Counter RX - 1024 to 1518 Byte Frame Counter RX - 1519 to 1522 Byte Good VLAN Frame Counter RX - 1519 to 2047 Byte Frame Counter RX - 2048 to 4095 Byte Frame Counter RX - 4096 to 9216 Byte Frame Counter RX - Good Packet Counter RX - Packet/Frame Counter RX - Unicast Frame Counter RX - Multicast Frame Counter RX - Broadcast Frame Counter RX - Byte Counter RX - Control Frame Counter RX - Pause Control Frame Count
Command Modes buffer-statssnapshot unit number Display the historical snapshot of buffer statistical values. unit Enter the keyword unit along with a port-pipe number. resource x Buffer and traffic manager resources usage, where X can be one of the following: • All - Displays ingress and egress device, port, and queue snapshots. • Interface all queue {all} - egress queue-level snapshot for both unicast and multicast packets.
--------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 9 (interface Fo 1/152) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 13 (interface Fo 1/156) --------------------------------------Q# TYPE Q# TOTAL BUFFERED CELLS --------------------------------------MCAST 3 0 Unit 1 unit: 3 port: 17 (interface Fo 1/160) ------------------------
show hardware buffer-stats-snapshot Displays buffer statistics tracking resource information for a specific interface. Syntax Parameters Command Modes show hardware buffer-stats-snapshot resource interface interface{priority-group { id | all } | queue { ucast{id | all} { mcast {id | all} | all} buffer-statssnapshot unit number Display the historical snapshot of buffer statistical values unit Enter the keyword unit along with a port-pipe number.
for the specific interface UCAST UCAST UCAST UCAST UCAST UCAST UCAST UCAST UCAST UCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST 2 3 4 5 6 7 8 9 10 11 0 1 2 3 4 5 6 7 8 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Example displaying egress queue-level snapshot for unicast packets for the specific interface Del#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 queue ucast 10 Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------Q# TYPE Q# TOTAL BUFFERED
MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST MCAST Example displaying ingress prioritygroup level snapshot for the specific interface 0 1 2 3 4 5 6 7 8 0 0 0 0 0 0 0 0 0 Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 priority-group 7 Unit 0 unit: 0 port: 1 (interface Fo 0/0) --------------------------------------PG# SHARED CELLS HEADROOM CELLS --------------------------------------7 0 0 Dell#show hardware buffer-stats-snapshot resource interface fortyGigE 0/0 priority-group
(OPTIONAL) Enter the keyword counters to display hit counters for the selected ACL or QoS option. Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
meter=NULL, counter={idx=0, mode=0x01, entries=1} ################ FP Entry for redirecting LLDP BPDU to RSM ################ EID 2047: gid=1, slice=15, slice_idx=0x01, prio=0x7ff, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 00000000 0180c200 000e0000 00000000 00000000 , FPF4=0x00 MASK=0x00000000 00000000 00000000 ffffffff ffff0000 00000000 00000000 , 0x00 action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)},
################# FP Entry for redirecting ARP Replies to RSM ############# EID 2043: gid=1, slice=15, slice_idx=0x04, prio=0x7fb, flags=0x82, Installed tcam: color_indep=0, higig=0, higig_mask=0, KEY=0x00000000 00000000 00000000 00000000 00000000 00000806 00001600 , FPF4=0x00 MASK=0x00000000 00000000 00000000 00000000 00000000 0000ffff 00001600 , 0x00 action={act=Drop, param0=0(0x00), param1=0(0x00)}, action={act=CosQCpuNew, param0=6(0x06), param1=0(0x00)}, action={act=CopyToCpu, param0=0(0x00), param1=0(0
Version Description 9.8(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
14 Dynamic Host Configuration Protocol (DHCP) Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP addresses and other configuration parameters to network end-stations (hosts) based on the configuration policies the network administrators determine. An MXL switch can operate as a DHCP server or DHCP client. As a DHCP client, the switch requests an IP address from a DHCP server.
• clear ip dhcp client statistics • debug ip dhcp clients events • debug ip dhcp clients packets • release dhcp interface • renew dhcp interface • show ip dhcp client statistics • show ip dhcp lease • Commands to Configure Secure DHCP • arp inspection • arp inspection-trust • clear ip dhcp snooping • clear ipv6 dhcp snooping binding • ip dhcp snooping • ipv6 dhcp snooping • ip dhcp snooping database • ipv6 dhcp snooping database write-delay • ip dhcp snooping binding • IPv
Commands to Configure the System to be a DHCP Server To configure the system to be a DHCP server, use the following commands. clear ip dhcp Reset the DHCP counters. Syntax Parameters clear ip dhcp [binding {address} | conflict | server statistics] binding Enter the keyword binding to delete all entries in the binding table. address Enter the IP address to clear the binding entry for a single IP address.
Parameters events Enter the keyword events to display the DHCP state changes. packet Enter the keyword packet to display packet transmission/ reception. Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug ipv6 dhcp To enable debug logs for DHCPv6 relay agent transactions.
Command Modes Command History DHCP Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the DHCP server. Syntax disable DHCP Server is disabled by default. To enable the system to be a DHCP server, use the no disable command. Defaults Disabled Command Modes DHCP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
domain-name Assign a domain to clients based on the address pool. Syntax Parameters domain-name name name Defaults none Command Modes DHCP Command History Give a name to the group of addresses in a pool. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. excluded-address Prevent the server from leasing an address or range of addresses in the pool.
hardware-address For manual configurations, specify the client hardware address. Syntax Parameters hardware-address address address Defaults none Command Modes DHCP Command History Enter the hardware address of the client. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. host For manual (rather than automatic) configurations, assign a host to a single-address pool.
Parameters days Enter the number of days of the lease. The range is from 0 to 31. hours Enter the number of hours of the lease. The range is from 0 to 23. minutes Enter the number of minutes of the lease. The range is from 0 to 59. infinite Specify that the lease never expires. Defaults 24 hours Command Modes DHCP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters type Defaults Hybrid Command Modes DHCP Command History Enter the NETBIOS node type: • Broadcast: Enter the keyword b-node. • Hybrid: Enter the keyword h-node. • Mixed: Enter the keyword m-node. • Peer-to-peer: Enter the keyword p-node. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. network Specify the range of addresses in an address pool.
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp configuration Display the DHCP configuration. Syntax Parameters show ip dhcp configuration [global | pool name] pool name Display the configuration for a DHCP pool. global Display the DHCP configuration for the entire system. Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.
show ip dhcp server Display the DHCP server statistics. Syntax show ip dhcp server statistics Defaults none Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Commands to Configure the System to be a DHCP Client To configure the system to be a DHCP client, use the following commands. ip address dhcp Configure an Ethernet interface to acquire its IP address from a DHCP network server.
port command. If you later enter the no shutdown] command and the lease timer for the dynamic IP address has expired, the IP address is unconfigured and the interface tries to acquire a new dynamic address from DHCP server. You cannot configure a secondary (backup) IP address on an interface using the ip address dhcp command; you must use the ip address command at the interface configuration level.
• Defaults none Command Modes EXEC Privilege Command History For a 40-GigabitEthernet Ethernet interface, enter FortyGigabitEthernet then the slot/port numbers; for example, fortygigabitethernet 0/2. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters interface type slot/ port Defaults none Command Modes EXEC Privilege Command History Display log messages for DHCP packets sent and received on the specified interface. • For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3. • For a 40-GigabitEthernet Ethernet interface, enter FortyGigabitEthernet then the slot/port numbers; for example, fortygigabitethernet 0/2. Version Description 8.3.16.
renew dhcp interface Re-acquire a dynamic IP address on an Ethernet interface enabled as a DHCP client. Syntax Parameters renew dhcp interface type slot/port interface type slot/port Defaults none Command Modes EXEC Privilege Command History • For a 10-GigabitEthernet Ethernet interface, enter TenGigabitEthernet then the slot/port numbers; for example, tengigabitethernet 1/3.
• Defaults none Command Modes EXEC Privilege Command History For a 40-GigabitEthernet Ethernet interface, enter FortyGigabitEthernet then the slot/port numbers; for example, fortygigabitethernet 0/2. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp lease Display lease information about the dynamic IP address currently assigned to a DHCP client-enabled interface.
Commands to Configure Secure DHCP DHCP, as defined by RFC 2131, provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks. arp inspection Enable dynamic arp inspection (DAI) on a VLAN. Syntax arp inspection Defaults Disabled Command Modes INTERFACE VLAN Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Related Commands arp inspection — enables dynamic ARP inspection on a VLAN. clear ip dhcp snooping Clear the DHCP binding table. Syntax clear ip dhcp snooping binding Defaults none Command Modes EXEC Privilege Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip dhcp snooping — displays the contents of the DHCP binding table.
ip dhcp snooping Enable DHCP snooping globally. Syntax [no] ip dhcp snooping Defaults Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When enabled, no learning takes place until you enable snooping on a VLAN. After disabling DHCP snooping, the binding table is deleted, and Option 82, IP Source Guard, and Dynamic ARP Inspection are disabled.
ip dhcp snooping database Delay writing the binding table for a specified time. Syntax Parameters ip dhcp snooping database write-delay minutes minutes Defaults none Command Modes CONFIGURATION Command History The range is from 5 to 21600. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping database writedelay To set time interval for storing the snooping binding entries in a file.
ip dhcp snooping binding Create a static entry in the DHCP binding table. Syntax Parameters Defaults Command Modes Command History Related Commands [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ipaddress interface type slot/port lease number mac address Enter the keyword mac then the MAC address of the host to which the server is leasing the IP address. vlan-id vlan-id Enter the keywords vlan-id then the VLAN to which the host belongs. The range is from 2 to 4094.
IPv6 DHCP Snooping Binding Create a static DHCP snooping binding entry in the snooping database. Syntax [no] ipv6 dhcp snooping binding mac address vlan-id vlan-id ipv6 ipv6-address interface interface-type | interface-number lease value To delete the DHCP snooping binding entry from DHCP snooping database, use the [no] ipv6 dhcp snooping binding mac address vlan-id vlan-id ipv6 ipv6-address interface interface-type | interface-number lease valuecommand.
Version Description 9.7(0.0) Introduced on the MXL. ip dhcp snooping database renew Renew the binding table. Syntax ip dhcp snooping database renew Defaults none Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping database renew To load the binding entries from the file to DHCPv6 snooping binding database.
ip dhcp snooping trust Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 dhcp snooping trust Configure an interface as trusted for DHCP snooping. Syntax [no] ipv6 dhcp snooping trust To disable dhcp snooping trusted capability on this interface, use the no ipv6 dhcp snooping trust command.
Command Modes Command History INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Allocate at least one FP block to ipmacacl before you can enable IP+MAC Source Address Validation. 1 Use the cam-acl l2acl command from CONFIGURATION mode. 2 Save the running-config to the startup-config. 3 Reload the system. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs.
ipv6 dhcp snooping vlan Enable ipv6 DHCP Snooping on VLAN or range of VLANs. Syntax [no] ip dhcp snooping vlan vlan-id To disable the ipv6 dhcp snooping on VLAN basis or range of VLAN, use the no ipv6 dhcp snooping vlan command. Parameters vlan-id Defaults Disabled Command Modes CONFIGURATION Command History Enter the name of a VLAN id or list of the VLANs to enable DHCP Snooping. Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL.
ip dhcp relay secondary-subnet Enable DHCP relay secondary- subnet on all the interfaces. Syntax [no] ip dhcp relay seconday-subnet To disable the dhcp relay secondary- subnet, use theno ip dhcp relay secondary-subnet command. Defaults Disabled. Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Example Version Description 9.7(0.
Related Commands clear ip dhcp snooping — clears the contents of the DHCP binding table. show ipv6 DHCP snooping Display the DHCPv6 snooping database. Syntax show ipv6 dhcp snooping Defaults none Command Modes EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL. Dell#show ipv6 dhcp snooping IPv6 DHCP Snooping IPv6 DHCP Snooping Mac Verification : Enabled. : Disabled.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ipv6 DHCP snooping verify macaddress Configure to enable verify source mac-address against ipv6 DHCP packet mac address. Syntax [no] ipv6 dhcp snooping verify mac-address To disable verify source mac-address against ipv6 DHCP packet mac address, use the no ipv6 dhcp snooping verify mac-address command.
15 Equal Cost Multi-Path (ECMP) Equal cost multi-path (ECMP) is supported on the Dell Networking OS. ecmp-group Provides a mechanism to monitor traffic distribution on an ECMP link bundle. A system log is generated when the standard deviation of traffic distribution on a member link exceeds a defined threshold. Syntax ecmp-group {ecmp-group-id interface interface | link-bundlemonitor} To remove the selected interface, use the ecmp-group no interface command.
hash-algorithm Changes the hash algorithm used to distribute traffic flows across a Port Channel.
• xor4: Use CRC16_BISYNC_AND_XOR4 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor4 • xor8: Use CRC16_BISYNC_AND_XOR8 — Upper 8 bits of CRC16-BISYNC and lower 8 bits of xor8 • xor16: Use CR16 — 16 bit XOR lag hash algorithm value Enter the keyword lag then the LAG hash algorithm value. The range is from 0 to 47. nh-ecmp hash algorithm value (OPTIONAL) Enter the keyword nh-ecmp then the ECMP hash algorithm value.
hg {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} lag {crc16 | crc16cc | crc32MSB | crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} Enter the keyword hg then one of the following options available in the stack-unit and linecard provisioned devices: • crc16: Use CRC16_BISYNC — 16 bit CRC16-bisync polynomial (default) • crc16cc: Use CRC16_CCITT — 16 bit CRC16 using CRC16-CCITT polynomial • crc32MSB: Use CRC32_UPPER — MSB 16 bits of computed CRC32 • crc32LSB: Use CRC32_LOWER
linecard number (OPTIONAL) : Enter the keyword linecard then the linecard slot number. port-set number (OPTIONAL) Enter the keyword port-set then the port-set slot number. Defaults 0 for hash-algorithm value on TeraScale and ExaScale IPSA and IPDA mask value is FF for a line card. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. Added flow-based-hashing support for hashing on ECMP. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
in various test scenarios, but if the default algorithm does not provide a satisfactory distribution of traffic, use the hash-algorithm command to designate another algorithm. When a Port Channel member leaves or is added to the Port Channel, the hash algorithm is recalculated to balance traffic across the members. On TeraScale, if you do not enter the keyword ECMP or LAG, the Dell Networking OS assumes it to be common for both.
The different hash algorithms are based on the number of ECMP group members and packet values. The default hash algorithm yields the most balanced results in various test scenarios, but if the default algorithm does not provide satisfactory distribution of traffic, use this command to designate another algorithm. When a member leaves or is added to the ECMP group, the hash algorithm is recalculated to balance traffic across the members.
NOTE: While the seed is stored separately on each port-pipe, the same seed is used across all CAMs. You cannot separate LAG and ECMP but you can use different algorithms across the chassis with the same seed. If LAG member ports span multiple port-pipes and line cards, set the seed to the same value on each port-pipe to achieve deterministic behavior. If the hash algorithm configuration is removed, the hash seed does not go to the original factory default setting.
link-bundle-distribution triggerthreshold Provides a mechanism to set the threshold to trigger when traffic distribution begins being monitored on an ECMP link bundle. Syntax Parameters Command Modes Command History link-bundle-distribution trigger-threshold [percent] percent Indicate the threshold value when traffic distribution starts being monitored on an ECMP link bundle. The range is from 1 to 90%. The default is 60%. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
show config Display the ECMP configuration. Syntax show config Command Modes CONFIGURATION-ECMP-GROUP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show link-bundle distribution Display the link-bundle distribution for the interfaces in the bundle, type of bundle (LAG or ECMP), and the most recently calculated interface utilization (either bytes per second rate or maximum rate) for each interface.
16 FC FLEXIO FPORT The switch is a blade switch which is plugged into the Dell M1000 Blade server chassis.The blade module contains two slots for pluggable flexible module. With single FC Flex IO module, 4 ports are supported, whereas 8 ports are supported with both FC Flex IO modules. Each port can operate in 2G, 4G or 8G Fiber Channel speed. The topology-wise, FC Flex IOM is directly connected to a FC Storage.
• feature fc • fc zone • fc alias • fc zoneset • fcoe-map • fabric • active-zoneset • show fc ns • show fc switch • show fc zoneset • show fc zone • show fc alias • show fcoe-map feature fc Enable feature fc with FPort functionality. Syntax Parameters Command Modes Command History feature fc fport domain-id range Range Enter the range from 1 to 239. CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.
Parameters Command Modes Command History zonename Enter the zone name. member Enter the WWPN, port ID, or domain/port. ALIAS CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
Example Dell(conf)#fc alias test12 Dell(conf-fc-alias-test12)#? end Exit from configuration mode exit Exit from Alias config mode member Add Alias member no Negate a command or set its defaults show Show alias profile configuration Dell(conf-fc-alias-test12)#member ? WORD WWN(00:00:00:00:00:00:00:00), or portID(123000) Related Commands show fc alias — displays the configured alias. fc zoneset Create a zoneset.
fcoe-map Create an FCoE map which contains the parameters used to configure the links between server CNAs and a SAN fabric. Apply the FCoE map on a server-facing Ethernet port. Syntax Parameters fcoe-map map-name map-name Defaults None Command Modes CONFIGURATION Maximum: 32 alphanumeric characters. INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.0(1.3) Introduced on the S5000.
Related Commands show fcoe-map — displays the Fibre Channel and FCoE configuration parameters in FCoE maps. fabric Apply an FCoE map on a fabric-facing Fibre Channel (FC) port. Syntax Parameters fabric map-name map-name Maximum: 32 alphanumeric characters. Defaults None Command Modes INTERFACE FIBRE_CHANNEL Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.0(1.3) Introduced on the S5000.
show fcoe-map — displays the Fibre Channel and FCoE configuration parameters in FCoE maps. active-zoneset Activate the zoneset. Syntax active-zoneset zoneset_name To change to the default zone behavior, use the no active-zoneset zoneset_name command. Parameters Command Modes Command History zoneset_name Enter the zoneset name. FC FABRIC CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.
• Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000. Dell#show fc ns switch Total number of devices = 1 Switch Name 10:00:5c:f9:dd:ef:0a:00 Domain Id 1 Switch Port 53 Port Id 01:35:00 Port Name 10:00:8c:7c:ff:17:f8:01 Node Name 20:00:8c:7c:ff:17:f8:01 Class of Service 8 IP Address Symbolic Port Name Brocade-1860 | 3.0.3.
IP Address Symbolic Port Name Symbolic Node Name Port Type Registered with NameServer Registered for SCN Switch Name Domain Id Switch Port Port Id Port Name Node Name Class of Service IP Address Symbolic Port Name SERVER2 | | Symbolic Node Name Port Type Registered with NameServer Registered for SCN Dell# Dell#show fc ns fabric brief Total number of devices = 2 Intf# Domain FC-ID Enode-WWNN 9 2 02:09:00 22:11:0e:fc:00:00:00:88 11 2 02:0b:00 21:11:0e:fc:00:00:00:77 Dell# (NULL) (NULL) Node port No No 10:00:
Usage Information The following table describes the show fc switch output shown in the following example. Example Switch Mode Fibre Channel mode of operation of an MXL switch. Switch WWN Factory-assigned worldwide node (WWN) name of the MXL. The MXL WWN name is not user-configurable. Dell(conf)#do show fc switch Switch Mode : FPORT Switch WWN : 10:00:aa:00:00:00:00:ac Dell(conf)# show fc zoneset Display the configured and active zoneset.
ZoneName ZoneMember ======================================================= brcd_sanb 10:00:8c:7c:ff:21:5f:8d 20:02:00:11:0d:03:00:00 Dell# Dell#show fc zoneset active Active Zoneset: fcoe_srv_fc_tgt ZoneName ZoneMember ======================================================= brcd_sanb 10:00:8c:7c:ff:21:5f:8d 20:02:00:11:0d:03:00:00 Dell# Related Commands fc zone — creates a zone. fc zoneset — creates a zoneset. active-zoneset — activates the zoneset. show fc zone Display the configured zone.
brcd_cna1_wwpn1 sanb_p2tgt1_wwpn Dell# Related Commands fc zone — creates a zone. show fc alias Display the configured alias. Syntax Parameters Command Modes Command History Example show fc alias [ZoneAliasName ] ZoneAliasName • EXEC • EXEC Privilege Enter the zone alias name to display the details. Version Description 9.9(0.0) Introduced on the FN IOM. 9.7(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1(1.0) Introduced on the S5000.
• Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 9.1.1.0 Introduced on the S5000. Usage Information Use the show fcoe-map command to display the FC and FCoE parameters used to configure server-facing Ethernet (FCoE) and fabric-facing FC ports in all FCoE maps on the switch.
17 FIPS Cryptography To configure federal information processing standards (FIPS) cryptography, use the following commands on the switch. Topics: • fips mode enable • show fips status • show ip ssh • ssh fips mode enable Enable the FIPS cryptography mode on the platform. Syntax fips mode enable To disable the FIPS cryptography mode, use the no fips mode enable command. Default Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.
show fips status Displays the status of the FIPS mode. Syntax show fips status Defaults None Command Modes EXEC Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
sha1-96, hmac-md5, hmac-md5-96. SSH server kex algorithms : diffie-hellman-group14-sha1. Password Authentication : enabled. Hostbased Authentication : disabled. RSA Authentication : disabled. Vty Encryption HMAC Remote IP ssh Open an SSH connection specifying the hostname, username, port number, and version of the SSH client.
• hmac-md5: Force ssh to use the hmac-md5 HMAC algorithm. • hmac-md5–96: Force ssh to use the hmac-md5–96 HMAC algorithm. With the FIPS mode enabled: -p port-number • hmac-sha1: Force ssh to use the hmac-sha1 HMAC algorithm. • hmac-sha1–96: Force ssh to use the hmac-sha1–96 HMAC algorithm. (OPTIONAL) Enter the keyword —p then the port number. The range is 1 to 65536 The default is 22 -v {1|2} (OPTIONAL) Enter the keyword —v then the SSH version 1 or 2.
-m HMAC algorithm to use (for v2 clients only) -p SSH server port option (default 22) Dell#ssh 10.11.8.12 -c ? aes128-cbc Force ssh to use aes128-cbc encryption cipher aes256-cbc Force ssh to use aes256-cbc encryption cipher Dell#ssh 10.11.8.
18 FIP Snooping In a converged Ethernet network, the switch can operate as an intermediate Ethernet bridge to snoop on Fibre Channel over Ethernet initialization protocol (FIP) packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a transit FIP snooping bridge, the switch uses dynamically-created ACLs to permit only authorized FCoE traffic to be transmitted between an FCoE end-device and an FCF.
Command Modes Command History enode-macaddress Enter the ENode MAC address to be cleared of FIP snooping information. fcf-mac-address Enter the FCF MAC address to be cleared of FIP snooping information. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To disable the FCoE transit feature, use the no feature fip-snooping command. Defaults Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. fip-snooping enable Enable FIP snooping on all VLANs or on a specified VLAN.
To return the configured FM-MAP value to the default value, use the no fipsnooping fc-map command. Parameters Defaults Command Modes Command History fc-map-value Enter the FC-MAP value FIP snooping uses. The range is from 0EFC00 to 0EFCFF. 0x0EFC00 • CONFIGURATION • VLAN INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show fip-snooping config Display the FIP snooping status and configured FC-MAP values. Syntax Command Modes Command History Example show fip-snooping config • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module Usage Information The following describes the show fip-snooping enode command shown in the following example. Example Field Description ENode MAC MAC address of the ENode. ENode Interface Slot/ port number of the interface connected to the ENode. FCF MAC MAC address of the FCF. VLAN VLAN ID number the session uses. FC-ID Fibre Channel session ID the FCF assigns.
Example Field Description VLAN VLAN ID number the session uses. FC-MAP FC-Map value the FCF advertises. ENode Interface Slot/ number of the interface connected to the ENode. FKA_ADV_PERIO D Time (in milliseconds) during which FIP keep-alive advertisements transmit. No of ENodes Number of ENodes connected to the FCF. FC-ID Fibre Channel session ID the FCF assigns. Dell# show fip-snooping fcf FCF MAC FCF Interface VLAN FC-MAP FKA_ADV_PERIOD No.
Example Field Description FCF Interface Slot/ port number of the interface to which the FCF is connected. VLAN VLAN ID number the session uses. FCoE MAC MAC address of the FCoE session the FCF assigns. FC-ID Fibre Channel ID the FCF assigns. Port WWPN Worldwide port name of the CNA port. Port WWNN Worldwide node name of the CNA port.
• Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show fip-snooping statistics command shown in the following example. Field Description Number of VLAN Requests Number of FIP-snoop VLAN request frames received on the interface. Number of VLAN Notifications Number of FIP-snoop VLAN notification frames received on the interface.
Example Field Description Number of FDISC Accepts Number of FIP FDISC accept frames received on the interface. Number of FDISC Rejects Number of FIP FDISC reject frames received on the interface. Number of FLOGO Accepts Number of FIP FLOGO accept frames received on the interface. Number of FLOGO Rejects Number of FIP FLOGO reject frames received on the interface. Number of CVLs Number of FIP clear virtual link frames received on the interface.
Number Number Number Number Number Number Number Number Number Number Number Number Number Number Number Example (Port Channel) of of of of of of of of of of of of of of of FLOGO :0 Enode Keep Alive :4416 VN Port Keep Alive :3136 Multicast Discovery Advertisement :0 Unicast Discovery Advertisement :0 FLOGI Accepts :0 FLOGI Rejects :0 FDISC Accepts :0 FDISC Rejects :0 FLOGO Accepts :0 FLOGO Rejects :0 CVL :0 FCF Discovery Timeouts :0 VN Port Session Timeouts :0 Session failures due to Hardware Config :0 D
8.3.16.1 Example Introduced on the MXL 10/40GbE Switch IO Module. Dell# show fip-snooping system Global Mode : Enabled FCOE VLAN List (Operational) : FCFs : Enodes : Sessions : 1, 100 1 2 17 show fip-snooping vlan Display information on the FCoE VLANs on which FIP snooping is enabled. Syntax Command Modes Command History Example show fip-snooping vlan • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
19 Force10 Resilient Ring Protocol (FRRP) FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run the spanning tree protocol (STP). The resilient ring protocol is an efficient protocol that transmits a high-speed token across a ring to verify the link status. All the intelligence is contained in the master node with practically no intelligence required of the transit mode. Important Points to Remember • FRRP is media- and speed-independent.
clear frrp Clear the FRRP statistics counters. Syntax Parameters clear frrp [ring-id] ring-id Defaults none Command Modes EXEC Command History (Optional) Enter the ring identification number. The range is from 1 to 255. Version Description 9.9(0.0) Introduced on the FN MXL. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Executing this command without the optional ring-id command clears the statistics counters on all the available rings.
To disable debugging, use the no debug frrp {event | packet | detail} {ring-id} [countnumber] command. Parameters event Enter the keyword event to display debug information related to ring protocol transitions. packet Enter the keyword packet to display brief debug information related to control packets. detail Enter the keyword detail to display detailed debug information related to the entire ring protocol packets. ring-id (Optional) Enter the ring identification number.
9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. disable Disable the resilient ring protocol. Syntax disable To enable the Resilient Ring Protocol, use the no disable command. Defaults Disabled Command Modes CONFIGURATION (conf-frrp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. interface Configure the primary, secondary, and control-vlan interfaces.
secondary interface control-vlan vlanid Enter the keyword secondary to configure the secondary interface then one of the following interfaces and slot/port information: • Fast Ethernet interface: enter the keyword FastEthernet then the slot/port information. • Port Channel interface: enter the keyword portchannel then a number. The range is from 1 to 128.
Defaults none Command Modes CONFIGURATION (conf-frrp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. mode Set the Master or Transit mode of the ring. Syntax mode {master | transit} To reset the mode, use the no mode {master | transit} command. Parameters master Enter the keyword master to set the Ring node to Master mode. transit Enter the keywordtransit to set the Ring node to Transit mode.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command places you into the resilient ring protocol. After executing this command, the command line prompt changes to conf-frrp. show frrp Display the resilient ring protocol configuration. Syntax Parameters show frrp [ring-id [summary]] | [summary] ring-id Enter the ring identification number.
Ring Protocol Interface: Primary : TenGigabitEthernet 0/6 State: Forwarding Secondary: Port-channel 100 State: Blocking Control Vlan: 1 Ring protocol Timers: Hello-Interval 50 msec Dead-Interval 150 msec Ring Master's MAC Address is 00:01:e8:13:a3:19 Topology Change Statistics: Tx:110 Rx:45 Hello Statistics: Tx:13028 Rx:12348 Number of state Changes: 34 Member Vlans: 1000-1009 Dell# Example (2 Summary) Dell#show frrp 2 summary Ring-ID State Mode Ctrl_Vlan Member_Vlans --------------------------------------
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The hello interval command is the interval at which ring frames are generated from the primary interface of the master node. The dead interval command is the time that elapses before a time-out occurs.
20 GARP VLAN Registration (GVRP) The Dell Networking Operating System (OS) supports the basic GVRP commands. The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP participant to propagate through a network quickly. A GARP participant registers or de-registers its attributes with other participants by making or withdrawing declarations of attributes. At the same time, based on received declarations or withdrawals, GARP handles attributes of other participants.
• VLANs created dynamically with GVRP exist only as long as a GVRP-enabled device is sending updates. If the devices no longer send updates, or GVRP is disabled, or the system is rebooted, all dynamic VLANs are removed. • GVRP manages the active topology, not non-topological data such as VLAN protocols. If a local bridge must classify and analyze packets by VLAN protocols, manually configure protocol-based VLANs, and simply rely on GVRP for VLAN updates.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show gvrp statistics — displays the GVRP statistics. debug gvrp Enable debugging on GVRP. Syntax debug gvrp {config | events | pdu} To disable debugging, use the no debug gvrp {config | events | pdu} command. Parameters config Enter the keyword config to enable debugging on the GVRP configuration.
disable Globally disable GVRP. Syntax disable To re-enable GVRP, use the no disable command. Defaults Enabled. Command Modes CONFIGURATION-GVRP Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. gvrp enable — enables GVRP on physical interfaces and LAGs. protocol gvrp — access GVRP protocol. garp timers Set the intervals (in milliseconds) for sending GARP messages.
leave-all Enter the keywords leave-all then the number of milliseconds to configure the leave-all time. The range is from 100 to 2147483647 milliseconds. The default is 1000 milliseconds. NOTE: Designate the milliseconds in multiples of 100. Defaults As above. Command Modes CONFIGURATION-GVRP Command History Usage Information Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable — globally disables GVRP. gvrp registration Configure the GVRP register type. Syntax gvrp registration {fixed | normal | forbidden} To return to the default, use the gvrp register normal command. Parameters fixed Enter the keyword fixed then the VLAN range in a commaseparated VLAN ID set. normal Enter the keyword normal then the VLAN range in a commaseparated VLAN ID set.
protocol gvrp Access GVRP protocol — (config-gvrp)#. Syntax protocol gvrp Defaults Disabled. Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable — globally disables GVRP. show config Display the global GVRP configuration. Syntax show config Command Modes CONFIGURATION-GVRP Command History Related Commands Version Description 9.9(0.
Defaults Command Modes Command History none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show garp timers GARP Timers Value (milliseconds) ---------------------------------------Join Timer 200 Leave Timer 600 LeaveAll Timer 10000 Dell# Related Commands garp timers — sets the intervals (in milliseconds) for sending GARP messages. show gvrp Display the GVRP configuration.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If no ports are GVRP participants, the message output changes from GVRP Participants running on to GVRP Participants running on no ports. Example R3#show gvrp brief GVRP Feature is currently enabled.
• Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Invalid messages/attributes skipped can occur in the following cases: • The incoming GVRP PDU has an incorrect length. • “End of PDU” was reached before the complete attribute could be parsed. • The Attribute Type of the attribute that was being parsed was not the GVRP VID Attribute Type (0x01).
Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
21 Internet Group Management Protocol (IGMP) The IGMP commands are supported by the Dell Networking Operating System (OS). IGMP Snooping Commands The Dell Networking OS supports IGMP Snooping version 2 and 3 on all Dell Networking systems. Important Points to Remember for IGMP Snooping • The Dell Networking OS supports version 1, version 2, and version 3 hosts.
• When enabled, IGMP snooping Querier starts after one query interval in case no IGMP general query (with IP SA lower than its VLAN IP address) is received on any of its VLAN members. • When enabled, IGMP snooping Querier periodically sends general queries with an IP source address of the VLAN interface. If it receives a general query on any of its VLAN member, it checks the IP source address of the incoming frame.
Command Modes Command History CONFIGURATION (conf-if-interface-slot/port) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip igmp querier-timeout Change the interval that must pass before a multicast router decides that there is no longer another multicast router that should be the querier. Syntax ip igmp querier-timeout seconds To return to the default value, use the no ip igmp querier-timeout command.
Command Modes Command History INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip igmp query-max-resp-time Set the maximum query response time advertised in general queries. Syntax ip igmp query-max-resp-time seconds To return to the default values, use the no ip igmp query-max-resp-time command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip igmp snooping enable Enable IGMP snooping on all or a single VLAN. This command is the master on/off switch to enable IGMP snooping. Syntax ip igmp snooping enable To disable IGMP snooping, use the no ip igmp snooping enable command. Defaults Command Modes Command History Disabled. • CONFIGURATION • INTERFACE VLAN Version Description 9.9(0.
Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Queriers normally send some queries when a leave message is received prior to deleting a group from the membership database. There may be situations when you require a fast deletion of a group.
ip igmp snooping last-member-queryinterval The last member query interval is the maximum response time inserted into Group-Specific queries sent in response to Group-Leave messages. Syntax ip igmp snooping last-member-query-interval milliseconds To return to the default value, use the no ip igmp snooping last-memberquery-interval command. Parameters milliseconds Defaults 1000 milliseconds Command Modes INTERFACE VLAN Command History Enter the interval in milliseconds.
• For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. Defaults Not configured. Command Modes INTERFACE VLAN — (conf-if-vl-n) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The Dell Networking OS provides the capability of statically configuring the interface to which a multicast router is attached.
show ip igmp snooping mrouter Display multicast router interfaces. Syntax Parameters Command Modes Command History Example show ip igmp snooping mrouter [vlan number] vlan number • EXEC • EXEC Privilege Enter the keyword vlan then the VLAN number. The range is from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
22 Interfaces The commands in this chapter are supported by Dell Networking Operating System (OS).
• show interfaces • show interfaces configured • show interfaces dampening • show interfaces description • show interfaces stack-unit • show interfaces status • show interfaces switchport • show interfaces transceiver • show range • shutdown • speed (for 1000/10000/auto interfaces) • stack-unit portmode • wavelength • Port Channel Commands • channel-member • group • interface port-channel • minimum-links • port-channel failover-group • show config • show interfaces p
clear counters Clear the counters used in the show interfaces commands for all virtual router redundancy protocol (VRRP) groups, virtual local area networks (VLANs), and physical interfaces, or selected ones.
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM and added support to clear the interface configurations corresponding to a range of ports. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
On the switch, after you enter the clear counters command and verify the results with the show interfaces command, the line rate is not reset to 0.00%. Example Dell#clear dampening tengigabitethernet 1/2 Clear dampening counters on tengig 1/2 [confirm] y Dell# Related Commands show interfaces dampening — displays interface dampening information. dampening — configures dampening on an interface. cx4-cable-length Configure the length of the cable to be connected to the selected CX4 port.
Dell(conf-if-te-0/26)#cx4-cable-length medium % Error: Unsupported command. Dell(conf-if-te-0/26)#cx4-cable-length long % Error: Unsupported command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information With each flap, the Dell Networking OS penalizes the interface by assigning a penalty (1024) that decays exponentially depending on the configured half-life. After the accumulated penalty exceeds the suppress threshold value, the interface moves to the Error-Disabled state.
ports between 1 and 4, specify the port range as show interfaces interface-type 1/1 - 4. Defaults None Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.9(0.0) Introduced on the MXL and FN IOM.
To delete a description, use the no description command. Parameters desc_text Defaults none Command Modes INTERFACE Command History Enter a text string up to 240 characters long. To use special characters as a part of the description string, you must enclose the whole string in double quotes. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command applies to any physical interface with speed set to 1000/10000. NOTE: Starting with the Dell Networking OS version 7.8.1.0, when you use a copper SFP2 module with catalog number GP-SFP2-1T in the S25P module, you can manually set its speed with the speed command.
Defaults Command Modes Command History • rx off • tx off INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Added support for the negotiate feature on the M I/O Aggregator. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The globally assigned 48-bit Multicast address 01-80-C2-00-00-01 is used to send and receive pause frames.
• You cannot configure half duplex when the flow control configuration is on (default is rx on tx on). The following error is returned: Cannot configure half duplex when flowcontrol is on, config ignored NOTE: The flow control must be off (rx off tx off) before configuring the half duplex. Example (partial) Dell(conf-if-tengig-0/1)#show config ! interface TenGigabitEthernet 0/1 no ip address switchport no negotiation auto flowcontrol rx off tx on no shutdown ...
on on Related Commands on on on on on on show running-config — displays the flow configuration parameters (non-default values only). show interfaces — displays the negotiated flow control parameters. interface Configure a physical interface on the switch. Syntax Parameters interface interface interface Defaults Not configured.
interface as the next hop to the tunnel destination, the tunnel interface does not operate as an ECMP. Example Dell(conf)#interface tengig 0/1 Dell(conf-if-tengig-0/1)#exit# Related Commands interface port-channel — configures a port channel. interface vlan — configures a VLAN. show interfaces — displays the interface configuration. interface loopback Configure a Loopback interface. Syntax interface loopback number To remove a loopback interface, use the no interface loopback number command.
interface ManagementEthernet Configure the Management port on the system. Syntax Parameters interface ManagementEthernet slot/port slot/port Defaults Not configured. Command Modes CONFIGURATION Command History Enter the keyword ManagementEthernet, then the slot number (0 or 1) and port number zero (0). Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You cannot delete the Null interface. The only configuration command possible in a Null interface is ip unreachables. Example Dell(conf)#interface null 0 Dell(conf-if-nu-0)# Related Commands interface — configures a physical interface. interface loopback — configures a Loopback interface. interface port-channel — configures a port channel.
Defaults none Command Modes CONFIGURATION Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When creating an interface range, interfaces appear in the order they are entered; they are not sorted.
interface range command. You cannot create virtual interfaces (VLAN, Portchannel) using the interface range command. NOTE: If a range has VLAN, physical, port-channel, and SONET interfaces, only commands related to physical interfaces can be bulk configured. To configure commands specific to VLAN or port-channel, only those respective interfaces should be configured in a particular range. Example (Single Range) This example shows a single range bulk configuration.
interface, interface,... Enter the keywords interface range and one of the interfaces — slot/port, port-channel, or VLAN number. Select the range of interfaces for bulk configuration. You can enter up to six comma-separated ranges. Spaces are not required between the commas. Comma-separated ranges can include VLANs, port-channels, and physical interfaces. Slot/Port information must contain a space before and after the dash.
interface range macro name Run the interface-range macro to automatically configure the pre-defined range of interfaces. Syntax Parameters interface range macro name name Defaults none Command Modes CONFIGURATION Command History Example (Single Range) Enter the name of an existing macro. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information For more information about VLANs and the commands to configure them, refer to the Virtual LAN (VLAN) Commands. FTP, TFTP, and SNMP operations are not supported on a VLAN. MAC/IP ACLs are not supported.
interface port-channel — configures a port channel group. keepalive Send keepalive packets periodically to keep an interface alive when it is not transmitting data. Syntax keepalive [seconds] To stop sending keepalive packets, use the no keepalive command. Parameters seconds Defaults Enabled. Command Modes INTERFACE Command History (OPTIONAL) For interfaces with PPP encapsulation enabled, enter the number of seconds between keepalive packets. The range is from 0 to 23767.
Parameters ip-selection {dest-ip | sourceip} Enter the keywords to distribute IP traffic based on the following criteria: NOTE: The hashing mechanism returns a 3-bit index indicating which port the packet should be forwarded. dest-ip — Uses destination IP address and destination port fields to hash. source-ip — Uses source IP address and source port fields to hash.
• TCP/UDP source port • TCP/UDP destination port load-balance hg Choose the traffic flow parameters the hash calculation uses while distributing the traffic across internal higig links.
module-id | vlan | ethertype | source-destmac ] tunnel [ipv4-overipv4 | ipv4-overgre-ipv4 | macin-mac] • source-module-id — Use src-module-id field in hash calculation. • dest-mac — Use dest-mac field in hash calculation. • dest-port-id — Use dest-port-id field in hash calculation. • dest-module-id — Use dest-module-id field in hash calculation. • vlan — Use vlan field in hash calculation . • ethertype — Use Ethertype field in hash calculation.
Command Modes Command History • EXEC • EXEC Privilege • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information In the Example, the delta column displays changes since the last screen refresh.
Input packets: Output packets: 64B packets: Over 64B packets: Over 127B packets: Over 255B packets: Over 511B packets: Over 1023B packets: Error statistics: Input underruns: Input giants: Input throttles: Input CRC: Input IP checksum: Input overrun: Output underruns: Output throttles: m l T q - 54001 9401589 67 49166 350 1351 286 2781 0 0 0 0 0 0 0 0 pps pps pps pps pps pps pps pps 1 1 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 pps pps pps pps pps pps pps pps 0 0 0 0 0 0 0 0 Change mode Page up I
• The IP MTU is adjusted automatically when you configure the Layer 2 MTU with the mtu command. When you enter the no mtu command, The Dell Networking OS reduces the IP MTU value to 1536 bytes. Link MTU and IP MTU considerations for port channels and VLANs are as follows. port channels: • All members must have the same link MTU value and the same IP MTU value. • The port channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members.
To disable auto-negotiation, use the no negotiation auto command. Defaults Enabled. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The no negotiation auto command is only available if you first manually set the speed of a port to 10Mbits or 100Mbits.
Hardware is Dell Force10Eth, address is 00:01:e8:05:f7:fc Current address is 00:01:e8:05:f7:fc Interface index is 474791997 Internet address is 1.1.1.1/24 MTU 1554 bytes, IP MTU 1500 bytes LineSpeed 1000 Mbit, Mode full duplex, Master ARP type: ARPA, ARP Timeout 04:00:00 Last clearing of "show interfaces" counters 00:12:42 Queueing strategy: fifo Input Statistics: ... User Information Both sides of the link must have auto-negotiation enabled or disabled for the link to come up.
portmode hybrid To accept both tagged and untagged frames, set a physical port or port-channel. A port configured this way is identified as a hybrid port in report displays. Syntax portmode hybrid To return a port to accept either tagged or untagged frames (non-hybrid), use the no portmode hybrid command. Defaults non-hybrid Command Modes INTERFACE (conf-if-interface-slot/port) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.
Dell(conf-if-vl-10)#tag tengig 0/2 Dell(conf-if-vl-10)#int vlan 20 Dell(conf-if-vl-20)#untag tengig 0/2 Dell(conf-if-vl-20)# Example (tagged hybrid) Dell(conf)#interface tengig 0/2 Dell(conf-if-te-0/2)#no shut Dell(conf-if-te-0/2)#portmode hybrid Dell(conf-if-te-0/2#sw Dell(conf-if-te-0/2)#int vlan 10 Dell(conf-if-vl-10)#int tengig 0/2 Dell(conf-if-vl-20)# untag tengig 0/2 Dell (conf-if-vl-20)# Dell(conf)#do show interfaces switchport tengigabitethernet 3/2 Codes: U x G i untagged, V - Untagged, T - Tagge
Parameters seconds Enter the number of seconds for which to collect traffic data. The range is from 5 to 299 seconds. NOTE: For 0 to 5 seconds, polling occurs every 5 seconds. For 6 to 10 seconds, polling occurs every 10 seconds. For any other value, polling occurs every 15 seconds. Defaults 299 seconds Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell(conf-if-te-1/3)#remote-fault-signaling rx ? on Enable off Disable show config Display the interface configuration. Syntax show config Command Modes INTERFACE Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
switchport no shutdown ! interface TenGigabitEthernet 1/2 no ip address switchport no shutdown Dell(conf-if-range-te-1/1-2)# show interfaces Display information on a specific physical interface or virtual interface. Syntax Parameters show interfaces interface interface Enter one of the following keywords and slot/port or number information: • For a Loopback interface, enter the keyword loopback then a number from 0 to 16383.
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Starting with Dell Networking OS Release 9.3(0.0), you can also view the configuration of 40-Gigabit Ethernet interfaces by using the fortyGigE keyword with the show interface interface-type brief command.
Line Description ARP type:... Displays the ARP type and the ARP timeout value for the interface. Last clearing... Displays the time when the show interfaces counters where cleared. Queuing strategy... States the packet queuing strategy. FIFO means first in first out.
Line Description Rate information... Estimate of the input and output traffic rate over a designated interval (30 to 299 seconds). Traffic rate is displayed in bits, packets per second, and percent of line rate. Time since... Elapsed time since the last interface status change (hh:mm:ss format).
Last clearing of "show interface" counters 21:14:32 Queueing strategy: fifo Input Statistics: 94322888 packets, 6036664832 bytes 94322888 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 94322888 Broadcasts 0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output Statistics: 180384 packets, 11926850 bytes, 0 underruns 172622 64-byte pkts, 7762 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over
show inventory — displays the MXL switch type, components (including media), Dell Networking OS version including hardware identification numbers, and configured protocols. show ip interface — displays Layer 3 information about the interfaces. show memory — displays the stack unit(s) status. show range — displays all interfaces configured using the interface range command. show interfaces configured Display any interface with a non-default configuration.
Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Time since last interface status change: 00:04:59 Dell# Related Commands show interfaces — displays information on a specific physical interface or virtual interface. show interfaces dampening Display interface dampening information.
Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show interfaces dampening Interface Supp Flaps Penalty Half-Life Reuse Suppress Max-Sup State Te 3/2 Up 0 0 20 800 4500 120 Te 3/8 Up 0 0 5 750 2500 20 Dell# Related Commands dampening — configures dampening on an interface.
NOTE: This command also enables you to view information corresponding to a range of ports. However, for Open Networking (ON) platforms the notation for specifying port range in the command is different from how you specify in non-ON platforms. Command Modes Command History • EXEC • EXEC Privilege • For non-ON platforms, you can specify multiple ports as slot/port-range.
TenGigabitEthernet 0/6 TenGigabitEthernet 0/7 TenGigabitEthernet 0/8 Related Commands NO admin down NO up YES up down down up show interfaces – displays information on a specific physical interface or virtual interface. show interfaces stack-unit Display information on all interfaces on a specific MXL switch stack member. Syntax Parameters Command Modes Command History Example show interfaces stack-unit stack-unit-number stack-unitnumber • EXEC • EXEC Privilege Enter the stack unit number.
0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 collisions Rate info (interval 299 seconds): Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate Output 00.00 Mbits/sec, 0 packets/sec, 0.
Defaults Command Modes Command History none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM and added support to display the interface configurations corresponding to a range of ports. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: This command also enables you to view information corresponding to a range of ports. stack-unit stackunit-number Command Modes Command History • EXEC • EXEC Privilege • For physical interfaces, you can specify multiple ports as slot/port-range. For example, if you want to display information corresponding to all ports between 1 and 4, specify the port range as show interfaces interface-type 1/1 - 4. • For port–channel interfaces, you can specify multiple ports as port-range.
T 10 Native VlanId: 20. Name: TenGigabitEthernet 5/2 802.1QTagged: False Vlan membership: Q Vlans U 1 Name: TenGigabitEthernet 5/3 802.1QTagged: False Vlan membership: Q Vlans U 1 Name: TenGigabitEthernet 5/49 (Port-channel 128) 802.1QTagged: True Vlan membership: Q Vlans G 10 Name: Port-channel 128 802.1QTagged: True Vlan membership: Q Vlans Dell# Related Commands interface — configures a physical interface on the switch. show ip interface — displays Layer 3 information about the interfaces.
NOTE: This command also enables you to view information corresponding to a range of ports. However, for Open Networking (ON) platforms the notation for specifying port range in the command is different from how you specify in non-ON platforms. fortyGigE Command Modes Command History • EXEC • EXEC Privilege • For non-ON platforms, you can specify multiple ports as slot/port-range.
Line Description Temp Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Voltage Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. Bias Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. TX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+. RX Power Low Alarm threshold Factory-defined setting. Value can differ between SFP and SFP+.
Line Description Tx Power Present Tx power of the SFP. If this crosses Tx power alarm/ warning thresholds, the Tx power high alarm/warning flag is set to true. If it falls below the low alarm/warning thresholds, the Tx power low alarm/ warning flag is set to true. Rx Power Present receiving (Rx) power of the SFP. This value is either average Rx power or OMA. This depends on the Rx Power measurement type displayed above.
Example Line Description Rx Power Low Alarm Flag This can be either true or false, depending on the Current Rx power value displayed above. Temperature High Warning Flag This can be either true or false, depending on the Current Temperature value displayed above. Voltage High Warning Flag This can be either true or false, depending on the Current Voltage value displayed above. Tx Bias High Warning Flag This can be either true or false, depending on the Tx bias current value displayed above.
SFP 1 Diagnostic Information =================================== SFP 1 Rx Power measurement type = Average =================================== SFP 1 Temp High Alarm threshold = 95.000C SFP 1 Voltage High Alarm threshold = 3.900V SFP 1 Bias High Alarm threshold = 17.000mA SFP 1 TX Power High Alarm threshold = 0.631mW SFP 1 RX Power High Alarm threshold = 1.259mW SFP 1 Temp Low Alarm threshold = -25.000C SFP 1 Voltage Low Alarm threshold = 2.700V SFP 1 Bias Low Alarm threshold = 1.
show inventory — displays the switch type, components (including media), the Dell Networking OS version including hardware identification numbers, and configured protocols. show range Display all interfaces configured using the interface range command. Syntax show range Command Modes INTERFACE RANGE (config-if-range) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The shutdown command marks a physical interface as unavailable for traffic. To discover if an interface is disabled, use the show ip interface brief command. Disabled interfaces are listed as down. Disabling a VLAN or a port channel causes different behavior. When you disable a VLAN, the Layer 3 functions within that VLAN are disabled. Layer 2 traffic continues to flow.
Command Modes Command History INTERFACE Version Description 9.10(0.0) Added support for fanned–out 1 Gigabit SFP port. 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command is found on the 1000/10000 Base-T Ethernet interfaces. When you enable auto, the system performs an automatic discovery to determine the optics installed and configure the appropriate speed.
Defaults Disabled Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Splitting a 40G port into 4x10G port is supported on standalone and stacked units. • You cannot use split ports as stack-link to stack a switch. • The split ports switch unit cannot be a part of any stacked system.
Usage Information The wavelength can be configured only on a tunable 10–Gigabit SFP+ optic. The wavelength range is from 1528.3 nm to 1568.77nm. If you configure the wavelength on a non-tunable optic, there is no change to the existing wavelength. The configured wavelength is saved in the running configuration and is applicable, when a tunable optic is used. If you do not configure the wavelength on an inserted tunable optic, the existing wavelength is used.
• For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Defaults Not configured. Command Modes INTERFACE PORTCHANNEL Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands description — assigns a descriptive text string to the interface. interface port-channel — creates a Port Channel interface. shutdown — disables/enables the port channel. group Group two LAGs in a supergroup (“fate-sharing group” or “failover group”). Syntax group group_number port-channel number port-channel number To remove an existing LAG supergroup, use the no group group_number command.
interface port-channel Create a Port Channel interface, which is a link aggregation group (LAG) containing 16 physical interfaces on the MXL switch. Syntax interface port-channel channel-number To delete a Port Channel, use the no interface port-channel channel-number command. Parameters channel-number Defaults Not configured. Command Modes CONFIGURATION Command History For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. Version Description 9.
interface — configures a physical interface. interface vlan — configures a VLAN. shutdown — disables/enables the port channel. minimum-links Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up” status for the LAG to be also in “oper up” status. Syntax Parameters minimum-links number number Defaults 1 Command Modes INTERFACE Command History Enter the number of links in a LAG that must be in “oper up” status. The range is from 1 to 16. The default is 1.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This feature groups two LAGs to work in tandem as a supergroup. For example, if one LAG goes down, the other LAG is taken down automatically, providing an alternate path to reroute traffic, avoiding oversubscription on the other LAG. You can use both static and dynamic (LACP) LAGs to configure failover groups.
Parameters channel-number For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. NOTE: This command also enables you to view information corresponding to a range of ports. • brief Command Modes Command History For port-channel interfaces, you can specify multiple ports as port-range. For example, if you want to display information corresponding to all ports between 1 and 4, specify the port range as show interfaces port-channel 1 - 4.
Example (EtherScale) Field Description Last clearing... Displays the time when the show interfaces counters were cleared. Queueing strategy. States the packet queuing strategy. FIFO means first in first out. packets input... Displays the number of packets and bytes into the interface. Input 0 IP packets... Displays the number of packets with IP headers, VLAN tagged headers, and MPLS headers.
0 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 collisions User Information The following describes the show interfaces port-channel brief command shown in the following example. Field Description LAG Lists the port channel number. Mode Lists the mode: Status Example (brief) • L3 — for Layer 3 • L2 — for Layer 2 Displays the status of the port channel.
Time Domain Reflectometer (TDR) TDR is useful for troubleshooting an interface that is not establishing a link; either it is flapping or not coming up at all. TDR detects open or short conditions of copper cables on 100/1000 Base-T modules. Important Points to Remember • The interface and port must be enabled (configured — refer to the interface command) before running TDR. An error message is generated if you have not enabled the interface.
show tdr Display the TDR test results. Syntax Parameters show tdr interface interface Defaults none Command Modes EXEC Command History Enter the keyword TenGigabitEthernet then the slot/port information for the 100/1000 Ethernet interface. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
UDP Broadcast The user datagram protocol (UDP) broadcast feature is a software-based method to forward low throughput (not to exceed 200 pps) IP/UDP broadcast traffic arriving on a physical or VLAN interface. Important Points to Remember • Routing information protocol (RIP) is not supported with the UDP Broadcast feature. • If you configure this feature on an interface using the ip udp-helper udp-port command, the ip directed-broadcast command becomes ineffective on that interface.
ip udp-helper udp-port — enables the UDP broadcast feature on an interface. show ip udp-helper — displays the configured UDP helper(s) on all interfaces. ip udp-broadcast-address Configure an IP UDP address for broadcast. Syntax ip udp-broadcast-address address To delete the configuration, use the no ip udp-broadcast-address address command. Parameters address Enter an IP broadcast address in dotted decimal format (A.B.C.D). Defaults Not configured.
Parameters udp-port-list (OPTIONAL) Enter up to 16 comma-separated UDP port numbers. NOTE: If you do not use this option, all UDP ports are considered by default. Defaults none Command Modes INTERFACE (config-if) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example Dell#show ip udp-helper -------------------------------------------------Port UDP port list -------------------------------------------------Te 1/1 656, 658 Te 1/2 All Related Commands debug ip udp-helper — enables debug and displays the debug information on a console. ip udp-broadcast-address — configures a UDP IP address for broadcast.
23 IPv4 Routing The basic IPv4 commands are supported by Dell Networking Operating System (OS).
• show arp retries • show hosts • show ip cam stack-unit • show ip fib stack-unit • show ip interface • show ip management-route • show ip protocols • show ip route • show ip route list • show ip route summary • show ip traffic • show tcp statistics arp To associate an IP address with a multicast MAC address in the switch when you configure multicast mode of the network load balancing (NLB), use the address resolution protocol (ARP).
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Added the support for association of an IP address with multicast MAC address on the MXL platform. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters number Defaults 5 Command Modes CONFIGURATION Command History Enter the number of retries. The range is from 5 to 20. The default is 5. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Retries are 20 seconds apart. Related Commands show arp retries — displays the configured number of ARP retries. arp timeout Set the time interval for an ARP entry to remain in the ARP cache.
Parameters interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For the Management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is from 0 to 1 and the port range is 0. • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip fib stack-unit Clear all forwarding information base (FIB) entries in the specified stack unit (use this command with caution, refer to Usage Information.) Syntax Parameters Command Modes clear ip fib stack-unit unit-number unit-number Enter the number of the stack unit. The range is from 0 to 5. EXEC EXEC Privilege Command History Version Description 9.
Command Modes Command History Related Commands EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip route — assigns an IP route to the switch. show ip route — views the routing table. show ip route summary — views a summary of the routing table. clear tcp statistics Clear TCP counters. Syntax clear tcp statistics Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM.
count value Defaults none Command Modes EXEC Privilege Command History • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. (OPTIONAL) Enter the keyword count then the count value. The range is from 1 to 65534. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
20:7B:8C, giaddr = 0.0.0.0 00:12:26 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for 00:60:CF:20:7B:8C to 14.4.4.2 00:12:40 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received at interface 113.3.3.17 BOOTP Request, hops = 0, XID = 0xda4f9503, secs = 0, hwaddr = 00:60:CF: 20:7B:8C, giaddr = 0.0.0.0 00:12:40 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for 00:60:CF:20:7B:8C to 14.4.4.2 00:12:42 : %RELAY-I-PACKET: BOOTP REPLY (Unicast) received at interface 14.4.4.
count value Command Modes Command History Example • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. (OPTIONAL) Enter the keyword count then the count value. The range is from 1 to 65534. The default is Infinity. EXEC Privilege Version Description 9.9(0.
Command Modes Command History • For the Management interface, enter the keyword ManagementEthernet then the slot/port information. The slot range is from 0 to 1 and the port range is 0. • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
TCP src=0, dst=0, seq=0, ack=0, win=0 IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 226, sending TCP src=23, dst=40869, seq=2112994896, ack=606901739, win=8192 ACK PUSH IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.255, len 78, rcvd UDP src=0, dst=0 IP: s=10.1.2.62 (local), d=10.1.2.3 (Ma 0/0), len 1500, sending fragment IP Fragment, Ident = 4741, fragment offset = 0 ICMP type=0, code=0 IP: s=10.1.2.62 (local), d=10.1.2.
off Dell# ip address Assign a primary and secondary IP address to the interface. Syntax ip address ip-address mask [secondary] To delete an IP address from an interface, use the no ip address [ip-address] command. Parameters ip-address Enter an IP address in dotted decimal format. mask Enter the mask of the IP address in slash prefix format (for example, /24). secondary (OPTIONAL) Enter the keyword secondary to designate the IP address as the secondary address. Defaults Not configured.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip domain-list Configure names to complete unqualified host names. Syntax ip domain-list name To remove the name, use the no ip domain-list name command. Parameters name Defaults Disabled. Command Modes CONFIGURATION Command History Enter a domain name to be used to complete unqualified names (that is, incomplete domain names that cannot be resolved).
ip domain-lookup To address resolution (that is, DNS), enable dynamic host-name. Syntax ip domain-lookup To disable DNS lookup, use the no ip domain-lookup command. Defaults Disabled. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To fully enable DNS, also specify one or more domain name servers with the ip nameserver command.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can only configure one domain name with the ip domain-name command. To configure more than one domain name, configure the ip domain-list command up to six times.
The Dell Networking OS uses standard DHCP ports, that is UDP ports 67 (server) and 68 (client) for DHCP relay services. It listens on port 67 and if it receives a broadcast, the software converts it to unicast, and forwards to it to the DHCP-server with source port=68 and destination port=67. The server replies with source port=67, destination port=67 and the system forwards to the client with source port=67, destination port=68.
To remove an IP host, use the no ip host name [ip-address] command. Parameters name Enter a text string to associate with one IP address. ip-address Enter an IP address, in dotted decimal format, to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• Defaults Not configured. Command Modes CONFIGURATION Command History For a VLAN interface, enter the keyword vlan. The range is from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform.
NOTE: When you configure the capability to enable the loopback IP address to be sent for easy debugging and diagnosis (IP addresses of the devices for which the ICMP source interface is configured), the source IP address of the outgoing ICMP error message is modified, although the packets are not sent out using the configured interface.
Example Dell(conf)#ipv6 icmp source-interface tengigabitethernet 0/1 Dell(conf)# ip max-frag-count Set the maximum number of fragments allowed in one packet for packet re-assembly. Syntax ip max-frag-count count To place no limit on the number of fragments allowed, use the no ip max-fragcount command. Parameters count Enter a number for the number of fragments allowed for reassembly. The range is from 2 to 256. Defaults No limit is set on number of fragments allowed.
Defaults No name servers are configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The system does not support sending DNS queries over a VLAN. DNS queries are sent out on all other interfaces, including the Management port. ip proxy-arp Enable proxy ARP on an interface. Syntax ip proxy-arp To disable proxy ARP, use the no ip proxy-arp command. Defaults Enabled.
Parameters destination Enter the IP address in dotted decimal format of the destination device. mask Enter the mask in the slash prefix format (/x) of the destination IP address. ip-address Enter the IP address of the forwarding router in dotted decimal format. interface Enter the keyword interface then the slot/port number. For a Loopback interface, enter the keyword loopback then a number from zero (0) to 16383. • For the null interface, enter the keyword null then zero (0).
• Related Commands When the interface goes down, the system withdraws the route. • When the interface comes up, the system re-installs the route. • When recursive resolution is “broken,” the system withdraws the route. • When recursive resolution is satisfied, the system re-installs the route. show ip route — views the switch routing table. ip source-route Enable the system to forward IP packets with source route information in the header.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL platform. Usage Information You can configure the amount of time for which the device must wait before it attempts to establish a TCP connection. Using this capability, you can limit the wait times for TCP connection requests.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. management route Configure a static route that points to the Management interface or a forwarding router. Syntax management route {{ipv4-address]/mask | {forwarding-router-address | managementethernet} To remove a static route, use the no management route{{ip-address mask | {ipv6-address prefix-length}}{forwarding-router-address | managementethernet} command.
show arp Display the ARP table. Syntax Parameters Command Modes Command History show arp [interface interface | ip ip-address [mask] | macaddress mac-address [mac-address mask]] [static | dynamic][summary] interface interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For the Management interface, enter the keyword managementethernet then the slot/port information. • For a Port Channel interface, enter the keyword portchannel then a number.
Usage Information The following example shows two VLANs that are associated with a private VLAN (PVLAN) (refer to Private VLAN (PVLAN). If you have entered the 'clear arp-cache' command to remove a large number of ARP entries and the command is still being processed in the background, an error message is displayed as follows if you attempt to enter the 'show arp’ command: "Clear arp in-progress.Please try after sometime! The following describes the show arp command shown in the following example.
Usage Information The following describes the show arp summary command shown in the following example. Row Heading Description Total Entries Lists the total number of ARP entries in the ARP table. Static Entries Lists the total number of configured or static ARP entries. Dynamic Entries Lists the total number of learned or dynamic ARP entries. CPU Lists which CPU the entries are stored on.
show hosts View the host table and DNS configuration. Syntax Command Modes Command History show hosts • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show hosts command in the following example. Field Description Default domain... Displays the domain name (if configured). Name/address lookup... States if DNS is enabled on the system.
Example Related Commands Field Description Type Displays IP as the type of entry. Address Displays the IP addresses assigned to the host. Dell#show hosts Default domain is not set Name/address lookup uses static Name servers are not set Host Flags TTL Type -------- -------- ---ks (perm, OK) IP 4200-1 (perm, OK) IP 1230-3 (perm, OK) IP ZZr (perm, OK) IP Z10-3 (perm, OK) IP Dell# mappings Address ------2.2.2.2 192.68.69.2 192.68.99.2 192.71.18.2 192.71.23.1 traceroute — views the DNS resolution.
summary Command Modes Command History • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword summary to view a table listing route prefixes and the total number routes which can be entered in to CAM. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip cam command shown in the following example. Example Field Description Destination Displays the destination route of the index.
Example (ECMPGroup) Field Description Prefix Length Displays the prefix-length or mask for the IP address configured on the linecard 0 port pipe 0. Current Use Displays the number of routes currently configured for the corresponding prefix or mask on the linecard 0 port pipe 0. Initial Size Displays the CAM size the system allocates for the corresponding mask. The system adjusts the CAM size if the number of routes for the mask exceeds the initial allocation.
summary Command Modes Command History • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword summary to view the total number of prefixes in the FIB. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip fib stack-unit command shown in the following example. Example Field Description Destination Lists the destination IP address.
Parameters Command Modes Command History interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a Loopback interface, enter the keyword Loopback then a number from 0 to 16383. • For the Management interface, enter the keyword ManagementEthernet then zero (0). • For the Null interface, enter the keyword null then zero (0). • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.
Example Lines Description Poison Reverse... States whether poison for RIP is enabled on the interface. ICMP redirects... States if ICMP redirects are sent. ICMP unreachables... States if ICMP unreachable messages are sent.
show ip management-route View the IP addresses assigned to the Management interface. Syntax Parameters Command Modes Command History Example show ip management-route [all | connected | summary | static] all (OPTIONAL) Enter the keyword all to view all IP addresses assigned to all Management interfaces on the switch. connected (OPTIONAL) Enter the keyword connected to view only routes directly connected to the Management interface.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show ip protocols Routing Protocol is "bgp 1" Cluster Id is set to 20.20.20.3 Router Id is set to 20.20.20.
Command Modes Command History static (OPTIONAL) Enter the keyword static to view only routes the ip route command configures. summary (OPTIONAL) Enter the keyword summary. For more information, refer to the show ip route summary command. • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip route all command in the following example.
Example Field Description Last Change Identifies when the route was last changed or configured.
• Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information The following describes the show ip route summary shown in the following example. Example Column Heading Description Route Source Identifies how the route is configured in the system. Active Routes Identifies the best route if a route is learned from two protocol sources. Non-active Routes Identifies the back-up routes when a route is learned by two different protocols. If the best route or active route goes down, the non-active route becomes the best route.
Keyword Definition unknown protocol... No receiver for these packets. Counts packets whose protocol type field is not recognized by the system. not a gateway... Packets can not be routed; the host/network is unreachable. security failures...
Example • ARP Statistics: Rcvd: Replies: Object = f10ArpReplyRecv, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.3 • ARP Statistics: Sent: Request: Object = f10ArpReqSent, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.2 • ARP Statistics: Sent: Replies: Object = f10ArpReplySent, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.4 • ARP Statistics: Sent: Proxy: Object = f10ArpProxySent, OIDs = 1.3.6.1.4.1.6027.3.3.5.2.
Usage Information The following describes the show tcp statistics cp command shown in the following example. Field Description Rcvd: Displays the number and types of TCP packets received by the switch. 0 checksum error... • Total = total packets received • no port = number of packets received with no designated port Displays the number of packets received with the following: • checksum errors • bad offset to data • too short 329 packets...
Example Field Description 7 Connections initiated... Displays the number of TCP connections initiated, accepted, and established. 14 Connections closed... Displays the number of TCP connections closed, dropped. 20 Total rxmt... Displays the number of times the switch tried to re-send data and the number of connections dropped during the TCP retransmit timeout period. 0 Keepalive....
24 Internet Protocol Security (IPSec) Internet protocol security (IPSec) is an end-to-end security scheme for securing IP communications by authenticating and encrypting all packets in a session. Use IPSec between hosts, gateways, or hosts and gateways. IPSec uses a series of protocol functions to achieve information security: • Authentication Headers (AH) — Connectionless integrity and origin authentication for IP packets.
crypto ipsec transform-set Create a transform set, or combination of security algorithms and protocols, of cryptos. Syntax crypto ipsec transform-set name {ah-authentication {md5|sha1|null} | esp-authentication {md5|sha1|null} | esp-encryption {3des|cbc| des|null}} To delete a transform set, use the no crypto ipsec transform-set name {ahauthentication {md5|sha1|null} | esp-authentication {md5|sha1| null} | esp-encryption {3des|cbc|des|null}} command. Parameters name Enter the name for the transform set.
Command History Usage Information Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • Both sides of the link must specify the same transform set. • You can create up to 64 transform sets. Dell(conf)#int ten 0/4 Dell(conf-if-te-0/4)#ipv6 address 200:1::/64 eui64 Dell(conf)#int ten 0/6 Dell(conf-if-te-0/6)#ipv6 address 801:10::/64 eui64 crypto ipsec policy Create a crypto policy used by ipsec.
management crypto-policy Apply the crypto policy to management traffic. Syntax management crypto-policy name To remove the management traffic crypto policy, use the no management cryptopolicy name command. Parameters name Defaults none Command Modes CONFIGURATION Command History Enter the name for the crypto policy. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
dest-port-num Enter the destination port number. The range is from 0 to 65535. Defaults none Command Modes CONFIG-CRYPTO-POLICY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information UDP is not supported. Only TCP 23 telnet and 21 FTP are supported.
encrypt Indicates the ESP encryption transform set key string. auth Indicates the ESP authentication transform set key string. Defaults none Command Modes CONF-CRYPTO-POLICY Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. • This command is only available in the ipsec-manual model.
show crypto ipsec policy Display the crypto policy configuration. Syntax Parameters Command Modes Command History Example show crypto ipsec policy name name Enter the name for the crypto policy set. EXEC Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
transform-set Specify the transform set the crypto policy uses. Syntax transform-set transform-set-name To delete a transform set from the crypto policy, use the no transform-set transform-set-name command. Parameters transform-setname Enter the name for the crypto policy transform set. Defaults none Command Modes CONFIG-CRYPTO-POLICY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
25 IPv6 Access Control Lists (IPv6 ACLs) IPv6 ACLs and IPv6 Route Map commands are supported on Dell Networking switch. NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter. Important Points to Remember • Certain platforms require manual CAM usage space allotment. For more information, refer to the cam-acl (Configuration) command. • Egress IPv6 ACL and IPv6 ACL on the Loopback interface is not supported. • Reference to an empty ACL permits any traffic.
cam-acl Allocate space for IPv6 ACLs. Syntax Parameters cam-acl {default | l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10} default l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos 1-10 l2qos 1-10 Command Modes Command History Use the default CAM profile settings, and set the CAM as follows: • L3 ACL (ipv4acl): 6 • L2 ACL(l2acl): 5 • IPv6 L3 ACL (ipv6acl): 0 • L3 QoS (ipv4qos): 1 • L2 QoS (l2qos): 1 Allocate space to support IPv6 ACLs. Enter all of the profiles and a range.
cam-acl-egress Allocate space for IPv6 egress ACLs. Syntax Parameters cam-acl-egress {default | l2acl 1-4 ipv4acl 1-4 ipv6acl 0-4} default l2acl 1-4 ipv4acl 1- 4 ipv6acl 0-4 Command Modes Command History Use the default CAM profile settings, and set the CAM as follows: • L2 ACL(l2acl): 1 • L3 ACL (ipv4acl: 1 • IPv6 L3 ACL (ipv6acl): 2 Allocate space to support IPv6 ACLs. Enter all of the profiles and a range. Enter the CAM profile name then the amount to be allotted.
<0-4> Number of FP blocks for IPV6 (multiples of 2) Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ipv6acl 2 ipv6 access-list Configure an access list based on IPv6 addresses or protocols. Syntax ipv6 access-list access-list-name cpu-qos {permit | deny} ospfv3 To delete an access list, use the no ipv6 access-list access-list-name command. Parameters access-list-name Enter the access list name as a string, up to 140 characters.
ipv6 control-plane egress-filter Enable egress Layer 3 ACL lookup for IPv6 CPU traffic. Syntax ipv6 control-plane egress-filter Defaults Not enabled. Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. permit To configure a filter that matches the filter criteria, select an IPv6 protocol number, ICMP, IPv6, TCP, or UDP.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter processes. dscp (OPTIONAL) Enter the keyword dcsp to match to the IP DCSCP values. order (OPTIONAL) Enter the keyword order to specify the QoS priority for the ACL entry. The range is from 0 to 254 (where 0 is the highest priority and 254 is the lowest; lower-order numbers have a higher priority). If you do not use the keyword order, the ACLs have the lowest order by default (255).
permit icmp To allow all or specific internet control message protocol (ICMP) messages, configure a filter. Syntax permit icmp {source address mask | any | host ipv6-address} {destination address | any | host ipv6-address} [message-type] [count [byte]] | [log] [interval minutes] [threshold-in-msgs [count]][monitor] To remove this filter, you have two choices: Parameters • Use the no seq sequence-number command if you know the filter’s sequence number.
threshold-inmsgs count (OPTIONAL) Enter the threshold-in-msgs keyword followed by a value to indicate the maximum number of ACL logs that can be generated, exceeding which the generation of ACL logs is terminated with the seq, permit, or deny commands. The threshold range is from 1 to 100. interval minutes (OPTIONAL) Enter the keyword interval followed by the time period in minutes at which ACL logs must be generated. The interval range is from 1 to 10 minutes.
egress traffic. You may specify traffic using standard or extended access-lists. This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the monitoring port (MG). show cam-acl Show space allocated for IPv6 ACLs. Syntax Command Modes Command History Example show cam-acl • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
L2PT IpMacAcl VmanQos VmanDualQos EcfmAcl FcoeAcl iscsiOptAcl ipv4pbr vrfv4Acl Openflow fedgovacl : : : : : : : : : : : 0+F394 0 0 0 0 0 0 0 0 0 0 Dell# Related Commands cam-acl — configures CAM profiles to support IPv6 ACLs. show cam-acl-egress Show information on FP groups allocated for egress ACLs. Syntax Command Modes Command History Example show cam-acl-egress • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
26 IPv6 Basics This chapter describes IPv6 basic commands.
unit-number Command Modes Command History Enter the stack member number. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ipv6 route Clear (refresh) all or a specific route from the IPv6 routing table. Syntax Parameters clear ipv6 route {* | ipv6-address prefix-length} * Enter the * to clear (refresh) all routes from the IPv6 routing table.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 address autoconfig Configure IPv6 address auto-configuration for the management interface. Syntax ipv6 address autoconfig To disable the address autoconfig operation on the management interface, use the no ipv6 address autoconfig command. Default Disabled Command Modes INTERFACE (management interface only) Command History Usage Infomation Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
ipv6 address Configure an IPv6 address to an interface. Syntax ipv6 address {ipv6-address prefix-length} To remove the IPv6 address, use the no ipv6 address {ipv6-address prefixlength} command. Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
ipv6 address eui64 Configure IPv6 EUI64 address configuration on the interface. Syntax ipv6 address {ipv6-address prefix-length} eui64 To disable IPv6 EUI64 address autoconfiguration, use the no ipv6 address {ipv6address prefix-length} eui64 command. Parameters ipv6-address prefix-length Enter the IPv6 prefix in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Parameters pps Default 100 pps Command Modes CONFIGURATION Command History Enter the maximum number of error packets generated per second. The range is from 1 to 200, where 0 disables the ratelimiting. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 flowlabel-zero Configure system to set the flow label field in the packets to zero.
Parameters name Enter a text string to associate with one IP address. ipv6-address Enter the IPv6 address (X:X:X:X::X) to be mapped to the name. Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 name-server Enter up to six IPv6 addresses of name servers. The order you enter the addresses determines the order of their use.
ipv6 nd dad attempts To perform duplicate address detection (DAD) on the management interface, configure the number of neighbor solicitation messages that are sent. Syntax ipv6 nd dad attempts {number of attempts} To restore the default value, use the no ipv6 nd dad attempts command. Parameters number of attempts Enter the number of attempts to be made to detect a duplicate address. The range is from 0 to 15. Setting the value to 0 disables DAD on the interface.
infinite Enter the keyword infinite to specify that the RDNSS lifetime does not expire. Defaults Not Configured Command Modes INTERFACE CONFIG Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.
Command Modes Command History off-link Enter the keywords off-link to advertise the prefix without stating to recipients that the prefix is either on-link or off-link. valid-lifetime | infinite Enter the amount of time that the prefix is advertised, or enter infinite for an unlimited amount of time. The range is from 0 to 4294967295. The default is 2592000. The maximum value means that the preferred lifetime does not expire for the validlife time parameter.
• For a loopback interface, enter the keyword loopback then a number from zero (0) to 16383. • For the null interface, enter the keyword null then zero (0). • For a port channel interface, enter the keyword portchannel then the port channel number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
Usage Information When the interface goes down, the system withdraws the route. The route is reinstalled by the system when the interface comes back up. When a recursive resolution is “broken,” the system withdraws the route. The route is re-installed by the system when the recursive resolution is satisfied. After an IPv6 static route interface is created, if an IP address is not assigned to a peer interface, the peer must be manually pinged to resolve the neighbor information.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Because this command is enabled by default, it does not appear in the running configuration. When you disable unicast routing, the no ipv6 unicast-routing command is included in the running configuration. Whenever unicast routing is disabled or re-enabled, the system generates a syslog message indicating the action.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information NOTE: If a route has a mask greater than 64, no output is displayed and no output is displayed for show ipv6 cam stack-unit unit-number portset {0-1} ipv6-address, but an equivalent /64 entry would be listed in the show ipv6 cam stack-unit unit-number port-set {0-0} output.
ipv6-address Enter the IPv6 address in the x:x:x:x::x/n format to display networks that have more specific prefixes. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Host tables are not stored in CAM tables.
interface-number] [managementethernet slot/port] [port-channel number] [tengigabitethernet slot | slot/port] [fortyGigE slot | slot/port] [vlan vlan-id] Parameters Defaults Command Modes interface (OPTIONAL) Enter the following keywords and slot/port or number information: • For a Loopback interface, enter the keyword Loopback then a number from 0 to 16383. • For the Null interface, enter the keyword null then zero (0).
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The Management port is enabled by default (no shutdown). If necessary, use the ipv6 address command to assign an IPv6 address to the Management port.
2002:1:2::3/96 TenGigabitEthernet 0/8 fe80::201:e8ff:fea7:497e 100::2/64 ManagementEthernet 0/0 fe80::201:e8ff:fea7:497e 300::1/64 Dell# Example (tunnel) [up/up] [up/up] Dell#show ipv6 int tun 1 Tunnel 1 is up, line protocol is up IPV6 is enabled Link Local address: fe80::201:e8ff:fea7:497e Global Unicast address(es): 400::1, subnet is 400::/64 (MANUAL) Remaining lifetime: infinite Global Anycast address(es): Joined Group address(es): ff02::1 ff02::2 ff02::1:ff00:1 ff02::1:ffa7:497e ND MTU is 0 ICMP redir
Example Field Description Valid MLD Packets The total number of packets received and sent from the last time the elapsed time was cleared. Reports The total number of reports (queries and unsolicited reports generated from joins or leaves) that have been received or sent. Leaves The number of Multicast leaves that have been sent. MLDv1 queries The number of MLDv1 queries that have been received. MLDv2 queries The number of MLDv2 queries that have been received.
Defaults Command Modes Command History ospf (OPTIONAL) View information for all IPv6 OSPF routes. rip (OPTIONAL) View information for all IPv6 RIP routes. static (OPTIONAL) View only routes configured by the ipv6 route command. summary (OPTIONAL) View a brief list of the configured IPv6 routes. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Field Description Destination Identifies the route’s destination IPv6 address. Gateway Identifies whether the route is directly connected and on which interface the route is configured. Dist/Metric Identifies if the route has a specified distance or metric. Last Change Identifies when the route was last changed or configured.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you configure trust IPv6 diffserv, matched bytes/packets counters are not incremented in the show qos statistics command. Trust diffserv (IPv4) can co-exist with trust ipv6-diffserv in an Input Policy Map.
27 IPv6 Border Gateway Protocol (IPv6 BGP) IPv6 Border Gateway Protocol (IPv6 BGP) is supported on Dell Networking platforms.
• clear ip bgp ipv6-address • clear ip bgp peer-group • clear ip bgp ipv6 dampening • clear ip bgp ipv6 flap-statistics • clear ip bgp ipv6 unicast soft • debug ip bgp • debug ip bgp events • debug ip bgp ipv6 dampening • debug ip bgp ipv6 unicast soft-reconfiguration • debug ip bgp keepalives • debug ip bgp notifications • debug ip bgp updates • default-metric • description • distance bgp • maximum-paths • neighbor activate • neighbor advertisement-interval • neighbor a
• network backdoor • redistribute • redistribute isis • redistribute ospf • router bgp • show capture bgp-pdu neighbor • show config • show ip bgp ipv6 unicast • show ip bgp ipv6 unicast cluster-list • show ip bgp ipv6 unicast community • show ip bgp ipv6 unicast community-list • show ip bgp ipv6 unicast dampened-paths • show ip bgp ipv6 unicast detail • show ip bgp ipv6 unicast extcommunity-list • show ip bgp ipv6 unicast filter-list • show ip bgp ipv6 unicast flap-statistics
• neighbor maximum-prefix • neighbor next-hop-self • neighbor remove-private-as • neighbor route-map • neighbor route-reflector-client • network • redistribute • show ip bgp ipv6 unicast • show ip bgp ipv6 unicast cluster-list • show ip bgp ipv6 unicast community • show ip bgp ipv6 unicast community-list • show ip bgp ipv6 unicast dampened-paths • show ip bgp ipv6 unicast detail • show ip bgp ipv6 unicast filter-list • show ip bgp ipv6 unicast flap-statistics • show ip bgp ipv
Defaults IPv6 Unicast Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information After this command is executed, all subsequent commands apply to this address family. You can exit from this AFI/SAFI to the IPv6 Unicast (the default) family by entering the exit command and returning to the Router BGP context.
Command Modes Command History • ROUTER BGP ADDRESS FAMILY • ROUTER BGP ADDRESS FAMILY IPv6 Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information At least one of the routes included in the aggregate address must be in the BGP routing table for the configured aggregate to become active.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Any update without a MED attribute is the least preferred route. If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path. bgp bestpath as-path ignore Ignore the AS PATH in BGP best path calculations.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The software compares the MEDs only if the path contains no external autonomous system numbers. If you enable this command, use the capture bgp-pdu max-buffer-size * command to recompute the best path.
Defaults Enabled when a route reflector is configured. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Route reflection to clients is not necessary if all client routers are fully meshed. Related Commands bgp cluster-id — assigns and ID to a BGP cluster with two or more route reflectors. neighbor route-reflector-client — configures a route reflector and clients.
Related Commands bgp client-to-client reflection — enables route reflection between the route reflector and the clients. neighbor route-reflector-client — configures a route reflector and clients. show ip bgp ipv6 unicast cluster-list — views paths with a cluster ID. bgp confederation identifier Configure an identifier for a BGP confederation. Syntax bgp confederation identifier as-number To delete a BGP confederation identifier, use the no bgp confederation identifier as-number command.
To remove bgp confederation peers, use the no bgp confederation peer command. Parameters as-number Enter the AS number. The range is 1 to 65535. ...as-number (OPTIONAL) Enter up to 16 confederation numbers. The range is from 1 to 65535. Defaults Not configured. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
suppress (OPTIONAL) Enter a number as the suppress value, which is compared to the flapping route’s Penalty value. If the Penalty value is greater than the suppress value, the flapping route is no longer advertised (that is, it is suppressed). The range is from 1 to 20000. The default is 2000. max-suppresstime (OPTIONAL) Enter the maximum number of minutes a route can be suppressed. The default is four times the half-life value. The range is from 1 to 255. The default is 60 minutes.
Command Modes Command History ROUTER BGP Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. bgp enforce-first-as Disable (or enable) enforce-first-as check for updates received from EBGP peers. Syntax bgp enforce-first-as To turn off the default, use the no bgp enforce-first-as command. Defaults Enabled. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
To disable fast external fallover, use the no bgp fast-external-fallover command. Defaults Enabled. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The bgp fast-external-fallover command appears in the show config command output. bgp four-octet-as-support Enable 4-byte support for the BGP process.
bgp graceful-restart Enable graceful restart on a BGP neighbor, a BGP node, or designate a local router to support graceful restart as a receiver only. Syntax bgp graceful-restart [restart-time seconds] [stale-path-time seconds] [role receiver-only] To return to the default, enter the no bgp graceful-restart command.
bgp log-neighbor-changes Enable logging of BGP neighbor resets. Syntax bgp log-neighbor-changes To disable logging, use the no bgp log-neighbor-changes command. Defaults Enabled. Command Modes ROUTER BGP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The bgp log-neighbor-changes command appears in the show config command output. Related Commands show config — views the current configuration.
may or may not get compared between adjacent paths. In Deterministic mode (no bgp non-deterministic-med), the system compares MED between adjacent paths within an AS group because all paths in the AS group are from the same AS. When you change the path selection from Deterministic to Non-Deterministic mode, the path selection for existing paths remains Deterministic until you enter the capture bgp-pdu max-buffer-size command to clear existing paths.
To re-enable optimization engine, use the no bgp regex-eval-optz-disable command. Defaults Enabled. Command Modes ROUTER BGP (conf-router_bgp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information BGP uses regular expressions (regex) to filter route information. In particular, the use of regular expressions to filter routes based on AS-PATHs and communities is quite common.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Peering sessions are reset when you change the router ID of a BGP router. bgp soft-reconfig-backup Use this command only when route-refresh is not negotiated between peers to avoid having a peer re-send BGP updates. Syntax bgp soft-reconfig-backup To return to the default setting, use the no bgp soft-reconfig-backup command.
Parameters Defaults Command Modes Command History Related Commands ipv6-address Enter the IPv6 address of the target BGP neighbor. direction {both | rx | tx} Enter the keyword direction and a direction — either rx for inbound, tx for outbound, or both. Not configured. • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
clear ip bgp * (asterisk) Reset all BGP sessions in the specified category. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting the TCP connection. Syntax Parameters clear ip bgp * [ipv4 multicast soft [in | out] | ipv6 unicast soft [in | out] | soft [in | out]] * Enter an asterisk ( * ) to reset all BGP sessions. ipv4 multicast soft [in | out] (OPTIONAL) Enter the keywords ipv4 multicast soft [in | out] to set options within the specified IPv4 address family.
Parameters as-number Enter an autonomous system (AS) number to reset neighbors belonging to that AS. If used without a qualifier, the keyword resets all neighbors belonging to that AS. The range is from 1 to 65535. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to clear all flap statistics belonging to that AS or a specified address family within that AS. ipv4 (OPTIONAL) Enter the keyword ipv4 to select options for that address family.
soft {in | out}} | ipv6 unicast {flap-statistics | soft {in | out}| soft [in | out] Parameters ipv6-address Enter an IPv6 address to reset neighbors belonging to that IP. Used without a qualifier, the keyword ipv6–address resets all neighbors belonging to that IP. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to clear all flap statistics belonging to that AS or a specified address family within that IP. ipv4 (OPTIONAL) Enter the keyword ipv4 to select options for that address family.
Parameters Command Modes Command History peer-group-name Enter the peer group name to reset the BGP sessions within that peer group. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. clear ip bgp ipv6 dampening Clear information on route dampening and return suppressed route to active state.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History filter-list as-pathname (OPTIONAL) Enter the keywords filter-list then the name of a configured AS-PATH list. regexp regularexpression (OPTIONAL) Enter the keyword regexp then the regular expressions. Use one or a combination of the following: • .
as-number Clear and reapply policies for all neighbors belonging to the AS. The range is from 0 to 65535 (2 Byte), from 1 to 4294967295 (4 Byte), or from 0.1 to 0.65535.65535 (Dotted format). ipv4-neighboraddr | ipv6neighbor-addr Clear and reapply policies for a neighbor. peer-group name Clear and reapply policies for all BGP routers in the specified peer group. ipv6 unicast Clear and reapply policies for all IPv6 unicast routes. in Reapply only inbound policies.
Command Modes Command History in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To view information on both incoming and outgoing routes, do not include the in and out parameters in the debugging command.
Command Modes Command History peer-group peergroup-name Enter the keywords peer-group then the name of the peer group. in (OPTIONAL) Enter the keyword in to view only information on inbound BGP routes. out (OPTIONAL) Enter the keyword out to view only information on outbound BGP routes. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Related Commands show ip bgp ipv6 unicast dampened-paths — views BGP dampened routes. debug ip bgp ipv6 unicast softreconfiguration Enable soft-reconfiguration debugging for IPv6 unicast routes. Syntax debug ip bgp [ipv4-address | ipv6-address | peer-group-name] ipv6 unicast soft-reconfiguration To disable debugging, use the no debug ip bgp [ipv4-address | ipv6address | peer-group-name] ipv6 unicast soft-reconfiguration command.
debug ip bgp keepalives Allows you to view information about BGP keepalive messages. Syntax debug ip bgp [ipv6-address | peer-group peer-group-name] keepalives [in | out] To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] keepalives [in | out] command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is /0 to /128.
To disable debugging, use the no debug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out] command. Parameters ipv6-address (OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History peer-group peergroup-name (OPTIONAL) Enter the keywords peer-group then the name of the peer group.
Command Modes Command History peer-group peergroup-name (OPTIONAL) Enter the keywords peer-group then the name of the peer group. ipv6 unicast [ipv6address] (OPTIONAL) Enter the keywords ipv6 unicast, and, optionally, an ipv6 address. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Related Commands bgp always-compare-med — enables comparison of all BGP MED attributes. redistribute — redistributes routes from other routing protocols into BGP. description Enter a description of the BGP routing protocol. Syntax description {description} To remove the description, use the no description {description} command. Parameters description Defaults none Command Modes ROUTER BGP Command History Related Commands Enter a description to identify the BGP protocol (80 characters maximum).
local-distance Defaults Command Modes Command History Enter a number to assign to routes learned from networks listed in the network command. The range is from 1 to 255. The default is 200. • external-distance = 20 • internal-distance = 200 • local-distance = 200 ROUTER BGPV6-ADDRESS FAMILY Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you enable this command, use the capture bgp-pdu max-buffer-size command to recompute the best path. neighbor activate This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI. Syntax neighbor {ipv6-address | peer-group-name} activate To disable, use the no neighbor {ipv6-address | peer-group-name} activate command.
neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group. Syntax neighbor {ipv6-address | peer-group-name} advertisement-interval seconds To return to the default value, use the no neighbor {ipv6-address | peergroup-name} advertisement-interval command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
Parameters ip-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to set the advertisement interval for all routers in the peer group. number Enter a number of times to allow this neighbor ID to use the AS path. The range is from 1 to 10. Defaults Not configured. Command Modes ROUTER BGP Command History Related Commands Version Description 9.9(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you apply a route map to a BGP peer or neighbor with the neighbor defaultoriginate command configured, the software does not apply the set filters in the route map to that BGP peer or neighbor. neighbor description Assign a character string describing the neighbor or group of neighbors (peer group).
To delete a neighbor distribution list, use the no neighbor {ipv6-address | peer-group-name} distribute-list prefix-list-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. prefix-list-name Enter the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes).
ttl Defaults Disabled. Command Modes ROUTER BGP Command History (OPTIONAL) Enter the number of hops as the time to live (ttl) value. The range is from 1 to 255. The default is 255. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To prevent loops, the neighbor ebgp-multihop command does not install default routes of the multihop peer.
neighbor filter-list Configure a BGP filter based on the AS-PATH attribute. Syntax neighbor {ipv6-address | peer-group-name} filter-list as-path-name {in | out} To delete a BGP filter, use the no neighbor {ipv6-address | peer-groupname} filter-list as-path-name {in | out} command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. maximum Enter a number as the maximum number of prefixes allowed for this BGP router. The range is from 1 to 4294967295. threshold (OPTIONAL) Enter a number to be used as a percentage of the maximum value. When the number of prefixes reaches this percentage of the maximum value, the software sends a message. The range is from 1 to 100 percent. The default is 75.
clear-pass Enter the clear text password. Defaults Disabled. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The TCP session is authentication and prevents the data from being compromised. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. (This command is used for IBGP).
neighbor peer-group (assigning peers) Allows you to assign one peer to a existing peer group. Syntax neighbor ipv6-address peer-group peer-group-name To delete a peer from a peer group, use the no neighbor ipv6-address peergroup peer-group-name command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group peergroup-name Defaults Not configured.
A peer group must exist before you add a peer to it. If the peer group is disabled (shutdown) the peers within the group are also disabled (shutdown). Related Commands capture bgp-pdu max-buffer-size — resets BGP sessions. neighbor peer-group (creating group) — creates a peer group. show ip bgp ipv6 unicast peer-group — views BGP peers. show ip bgp ipv6 unicast neighbors — views BGP neighbors configurations. neighbor peer-group (creating group) Allows you to create a peer group and assign it a name.
neighbor peer-group passive Enable passive peering on a BGP peer group; that is, the peer group does not send an OPEN message, but does respond to one. Syntax neighbor peer-group-name peer-group passive To delete a passive peer-group, use the no neighbor peer-group-name peergroup passive command. Parameters peer-group-name Defaults Not configured. Command Modes ROUTER BGP Command History Enter a text string up to 16 characters long as the name of the peer group. Version Description 9.9(0.
number Defaults Not configured. Command Modes ROUTER BGP Command History Enter a number of the AS. The range is from 1 to 65535. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If the number parameter is the same as the AS number used in the router bgp command, the remote AS entry in the neighbor is considered an internal BGP peer entry.
If the AS-PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor, the private AS numbers are not removed. If a confederation contains private AS numbers in its AS-PATH, the software removes the private AS numbers only if they follow the confederation numbers in the AS path. Private AS numbers are from 64512 to 65535. neighbor route-map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group.
address, the Route map overwrites either the inbound or outbound policies on that peer. neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster. Syntax neighbor {ipv6-address | peer-group-name} route-reflector-client To indicate that the neighbor is not a route reflector client or to delete a route reflector configuration, use the no neighbor {ipv6-address | peer-group-name} route-reflector-client command.
To disable sending a COMMUNITY attribute, use the no neighbor {ipv6-address | peer-group-name} send-community command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. All routers in the peer group receive routes from a route reflector. Defaults Not configured and COMMUNITY attributes are not sent to neighbors.
Usage Information Peers that are enabled within a peer group are disabled when their peer group is disabled. The neighbor shutdown command terminates all BGP sessions on the BGP neighbor or BGP peer group. Use this command with caution as it terminates the specified BGP sessions. When a neighbor or peer group is shutdown, use the show ip bgp ipv6 unicast summary command to confirm its status. Related Commands show ip bgp ipv6 unicast summary — displays the current BGP configuration.
neighbor subnet Enable passive peering so that the members of the peer group are dynamic. Syntax neighbor peer-group-name subnet subnet-number mask To remove passive peering, use the no neighbor peer-group-name subnet subnet-number mask command. Parameters subnet-number Enter a subnet number in dotted decimal format (A.B.C.D.) as the allowable range of addresses included in the Peer group. To allow all addresses, enter 0::0/0. mask Enter a prefix mask in / prefix-length format (/x).
Defaults Command Modes Command History keepalive Enter a number for the time interval, in seconds, between keepalive messages sent to the neighbor routers. the range is from 1 to 65535. the default is 60 seconds. holdtime Enter a number for the time interval, in seconds, between the last keepalive message and declaring the router dead. The range is from 3 to 65535. The default is 180 seconds. • keepalive = 60 seconds • holdtime = 180 seconds ROUTER BGP Version Description 9.9(0.
loopback interface Defaults Not configured. Command Modes ROUTER BGP Command History Enter the keyword loopback then a number of the loopback interface. The range is from 0 to 16383. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Loopback interfaces are up constantly and the BGP session may need one interface constantly up to stabilize the session.
NOTE: To apply the weight to the connection and recompute the best path, reset the neighbor connection (the capture bgp-pdu max-buffer-size * command). network Specify the networks for the BGP process and enter them in the BGP routing table. Syntax network ipv6-address prefix-length [route-map map-name] To remove a network, use the no network ip-address mask [route-map mapname] command.
network backdoor Specify this IGP route as the preferred route. Syntax network ipv6-address prefix-length backdoor To remove a network, use the no network ipv6-address prefix-length backdoor command. Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. Defaults Not configured.
route-map mapname (OPTIONAL) Enter the keywords route-map then the name of an established route map. If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
route-map mapname (OPTIONAL) Enter the keywords route-map then the name of an established route map. If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. redistribute ospf Redistribute OSPFv3 routes into BGP.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enter the redistribute ospf process-id command without any other parameters, the system redistributes all OSPF internal routes, external type 1 routes, and external type 2 routes. router bgp Enter ROUTER BGP mode to configure and enable BGP. Syntax router bgp as-number To disable BGP, use the no router bgp as-number command. Parameters as-number Defaults Not enabled.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Related Command capture bgp-pdu neighbor (ipv6) — enables capture of an IPv6 BGP neighbor packet. capture bgp-pdu max-buffer-size — specifies a size for the capture buffer. show config View the current ROUTER BGP configuration. Syntax show config Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Example Version Description 9.9(0.
show ip bgp ipv6 unicast View the current BGP information. Syntax Parameters Command Modes Command History show ip bgp ipv6 unicast [network [network-mask] [longerprefixes]] network (OPTIONAL) Enter the network address (in dotted decimal format) of the BGP network to view information only on that network. network-mask (OPTIONAL) Enter the keywords network mask (in slash prefix format) of the BGP network address.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast community View information on all routes with community attributes or view specific BGP community groups.
show ip bgp ipv6 unicast communitylist View routes that are affected by a specific community list. Syntax Paramters Command Modes Command History show ip bgp ipv6 unicast community-list community-list-name [exact-match] community-listname Enter the name of a configured IP community list. exact-match (OPTIONAL) Enter the keywords exact-match to display only for an exact match of the communities. • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
show ip bgp ipv6 unicast detail Display BGP internal information for IPv6 Unicast address family. Syntax show ip bgp ipv6 unicast detail Defaults none Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast extcommunity-list View information on all routes with Extended Community attributes.
The show ip bgp ipv6 unicast community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp ipv6 unicast command output. show ip bgp ipv6 unicast filter-list View the routes that match the filter lists. Syntax Parameters Command Modes Command History show ip bgp ipv6 unicast filter-list as-path-name as-path-name • EXEC • EXEC Privilege Enter the name of an AS-PATH. Version Description 9.9(0.
• + = (plus) the sequences in a pattern (1 or more sequences). • ? = (question mark) sequences in a pattern (either 0 or 1 sequences). NOTE: You must enter an escape sequence (CTRL +v) prior to entering the ? regular expression. Command Modes Command History • EXEC • EXEC Privilege • [ ] = (brackets) a range of single-character patterns. • ^ = (caret) the beginning of the input string.
show ip bgp ipv6 unicast neighbors Displays information on IPv6 unicast routes exchanged by BGP neighbors. Syntax Parameters show ip bgp ipv6 unicast neighbors [ipv4-neighbor-addr | ipv6neighbor-addr] [advertised-routes | dampened-routes | detail | flap-statistics | routes | received-routes [network [networkmask]] | denied-routes [network [network-mask]]] ipv6 unicast Enter the keywords ipv6 unicast to view information only related to IPv6 unicast routes.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip bgp ipv6 unicast neighbors command shown in the Example below. Lines Beginning With Description BGP neighbor Displays the BGP neighbor address and its AS number. The last phrase in the line indicates whether the link between the BGP router and its neighbor is an external or internal one.
Example Lines Beginning With Description For address family: Displays IPv6 Unicast as the address family. BGP table version Displays which version of the primary BGP routing table the router and the neighbor are using. Prefixes accepted Displays the number of network prefixes accepted by the router and the amount of memory used to process those prefixes. Prefixes advertised Displays the number of network prefixes advertised, the number rejected, and the number withdrawn from the BGP routing table.
Prefixes advertised 0, rejected 0, withdrawn 0 from peer Connections established 3; dropped 2 Last reset 00:00:39, due to Closed by neighbor Notification History 'OPEN error/Bad AS' Sent : 0 Recv: 1 Local host: 5ffe:10::4, Local port: 179 Foreign host: 5ffe:10::3, Foreign port: 35470 Notification History 'Connection Reset' Sent : 1 Recv: 0 BGP neighbor is 5ffe:11::3, remote AS 1, external link BGP version 4, remote router ID 5.5.5.
Command Modes Command History Example detail (OPTIONAL) Enter the keyword detail to view peer-groupspecific information for the IPv6 address family. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group. The output is the same as that found in the show ip bgp ipv6 unicast summary command. • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell# show ip bgp summary BGP router identifier 55.55.55.
9000::6:2 9000::7:2 9000::8:2 9000::9:2 9000::a:2 Dell# 9000::6:2, 9000::7:2, 9000::8:2, 9000::9:2, 9000::a:2, Gi Gi Gi Gi Gi 8/38 8/38 8/38 8/38 8/38 2 2 2 6000 2 0 0 0 0 0 0 0 0 0 0 00:23:22 00:23:22 00:23:22 00:23:16 00:23:22 show ip bgp paths View all the BGP path attributes in the BGP database. Syntax Parameters show ip bgp paths [regexp regular-expression] regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • .
show ip bgp paths as-path View all unique AS-PATHs in the BGP database. Syntax Command Modes Command History show ip bgp paths as-path • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp paths community View all unique COMMUNITY numbers in the BGP database. Syntax Command Modes Command History show ip bgp paths community • EXEC • EXEC Privilege Version Description 9.9(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp regexp Allows you to view the subset of BGP routing table matching the regular expressions specified. Syntax Parameters show ip bgp regexp regular-expression [character] regularexpression [character] Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space).
timers bgp Allows you to adjust the BGP network timers for all neighbors. Syntax timers bgp keepalive holdtimer To return to the default values, use the no timers bgp command. Parameters Defaults Command Modes Command History Related Commands keepalive Enter the time interval (in seconds) between which the system sends keepalive messages. The range is from 1 to 65535. The default is 60 seconds.
IPv6 MBGP Commands Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the Internet and connecting multicast topologies between BGP and autonomous systems (AS). The Dell Networking MBGP is implemented as per IETF RFC 1858. address family This command changes the context to subsequent address family identifier (SAFI). Syntax address family ipv6 unicast To remove SAFI context, use the no address family ipv6 unicast command.
Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the / x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. advertise-map map-name (OPTIONAL) Enter the keywords advertise-map then the name of a configured route map to set filters for advertising an aggregate route. as-set (OPTIONAL) Enter the keywords as-set to generate path attribute information and include it in the aggregate.
The summary-only parameter suppresses all advertisements. If you want to suppress advertisements to only specific neighbors, use the neighbor distribute-list command. bgp dampening Enable MBGP route dampening. Syntax bgp dampening [half-life time] [route-map map-name] To disable route dampening, use the no bgp dampening [half-life time] [route-map map-name] command. Parameters half-life time (OPTIONAL) Enter the number of minutes after which the Penalty is decreased.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. Command Modes Command History dampening (OPTIONAL) Enter the keyword dampening to clear route flap dampening information. flap-statistics (OPTIONAL) Enter the keywords flap-statistics to reset the flap statistics on all prefixes from that neighbor. peer-group (OPTIONAL) Enter the keywords peer-group to clear all members of a peer-group. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Parameters Command Modes Command History network (OPTIONAL) Enter the IPv6 network address in x:x:x:x::x format to clear flap statistics. filter-list list (OPTIONAL) Enter the keywords filter-list then the name of a configured AS-PATH list (maximum 16 characters). regexp regexp (OPTIONAL) Enter the keyword regexp then regular expressions. Use one or a combination of the following: • . (period) matches on any single character, including white space.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the S4820T. debug ip bgp ipv6 unicast peer-group updates View information about BGP peer-group updates. Syntax debug ip bgp ipv6 unicast peer-group peer-group-name updates [in | out] To disable debugging, use the no debug ip bgp ipv6 unicast peer-group peer-group-name updates [in | out] command.
Parameters ipv6-address prefix-length Enter the IPv6 address in the x:x:x:x::x format then the prefix length in the /x format. The range is from /0 to /128. NOTE: The :: notation specifies successive hexadecimal fields of zeros. updates Enter the keyword updates to view BGP update information. in (OPTIONAL) Enter the keyword in to view only BGP updates received from neighbors. out (OPTIONAL) Enter the keyword out to view only BGP updates sent to neighbors. Defaults Disabled.
Command History Usage Information Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. CAUTION: Dell Networking recommends that you do not change the administrative distance of internal routes. Changing the administrative distances may cause routing table inconsistencies. The higher the administrative distance assigned to a route means that your confidence in that route is low.
Usage Information By default, when a neighbor/peer group configuration is created in the Router BGP context, it is enabled for the IPv6/Unicast AFI/SAFI. By using activate in the new context, the neighbor/peer group is enabled for AFI/SAFI. Related Command address family — changes the context to SAFI. neighbor advertisement-interval Set the advertisement interval between BGP neighbors or within a BGP peer group.
neighbor default-originate Inject the default route to a BGP peer or neighbor. Syntax neighbor {ipv6-address | peer-group-name} default-originate [route-map map-name] To remove a default route, use the no neighbor {ipv6-address | peer-groupname} default-originate command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group. prefix-list-name Enter the name of an established prefix list. If the prefix list is not configured, the default is permit (to allow all routes). in Enter the keyword in to distribute only inbound traffic. out Enter the keyword out to distribute only outbound traffic. Defaults Not configured.
out Enter the keyword out to filter outbound BGP routes. Defaults Not configured. Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor maximum-prefix Control the number of network prefixes received.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. neighbor next-hop-self Allows you to configure the router as the next hop for a BGP neighbor. Syntax neighbor {ipv6-address | peer-group-name} next-hop-self To return to the default setting, use the no neighbor {ipv6-address | peergroup-name} next-hop-self command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros.
NOTE: The :: notation specifies successive hexadecimal fields of zeros. peer-group-name Enter the name of the peer group to remove the private AS numbers. Defaults Disabled (that is, the private AS number are not removed). Command Modes ROUTER BGPV6-ADDRESS FAMILY Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information When you apply a route map to outbound routes, only routes that match at least one section of the route map are permitted. If you identify a peer group by name, the peers in that peer group inherit the characteristics in the Route map used in this command. If you identify a peer by IP address, the Route map overwrites either the inbound or outbound policies on that peer. neighbor route-reflector-client Configure a neighbor as a member of a route reflector cluster.
network Specify the networks for the BGP process and enter them in the BGP routing table. Syntax network ipv6-address [route-map map-name] To remove a network, use the no network ipv6-address [route-map mapname] command. Parameters ipv6-address Enter the IPv6 address in the x:x:x:x::x format. NOTE: The :: notation specifies successive hexadecimal fields of zeros. route-map mapname (OPTIONAL) Enter the keywords route-map then the name of an established route map.
Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces. static Enter the keyword static to redistribute manually configured routes. These routes are treated as incomplete routes. route-map mapname (OPTIONAL) Enter the keywords route-map then the name of an established route map. If the route map is not configured, the default is deny (to drop all routes). Defaults Not configured.
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you enable the bgp non-deterministic-med command, the show ip bgp command output for a BGP route does not list the INACTIVE reason. show ip bgp ipv6 unicast cluster-list View BGP neighbors in a specific cluster.
Command Modes Command History local-AS Enter the keywords local-AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED. All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03) community attribute must not be advertised to external BGP peers. no-advertise Enter the keywords no-advertise to view all routes containing the well-known community attribute of NO_ADVERTISE. All routes with the NO_ADVERTISE (0xFFFFFF02) community attribute must not be advertised to other BGP peers.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast dampenedpaths View BGP routes that are dampened (non-active). Syntax Command Modes Command History show ip bgp ipv6 unicast dampened-paths • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip bgp ipv6 unicast detail Display detailed BGP information.
NdMedMissVal -1 : NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP 0x41a19088 NdASPTblP 0x41a19090 : NdCommTblP 0x41a19098 : NhOptTransTblP 0x41a190a0 : NdRRClsTblP 0x41a190a8 NdPktPA 0 : NdLocCBP 0x41a6f000 : NdTmpPAP 0x419efc80 : NdTmpASPAP 0x41a25000 : NdTmpCommP 0x41a25800 NdTmpRRClP 0x41a4b000 : NdTmpOptP 0x41a4b800 : NdTmpNHP : NdOrigPAP 0 NdOrgNHP 0 : NdModPathP 0x419efcc0 : NdModASPAP 0x41a4c000 : NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 : NdModNHP : NdComSortBufP 0x41a19110 : NdComSortHdP
NOTE: The :: notation specifies successive hexadecimal fields of zeros. filter-list as-pathname (OPTIONAL) Enter the keywords filter-list then the name of a configured AS-PATH ACL. regexp regularexpression Enter a regular expression then use one or a combination of the following characters to match: • . = (period) any single character (including a white space). • * = (asterisk) the sequences in a pattern (0 or more sequences). • + = (plus) the sequences in a pattern (1 or more sequences).
show ip bgp ipv6 unicast inconsistentas View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are announced from the same neighbor AS but with a different AS-Path. Syntax Command Modes Command History show ip bgp ipv6 unicast inconsistent-as • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
routes Command Modes Command History • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword routes to view only the neighbor’s feasible routes. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip bgp ipv6 unicast neighbors command shown in the Example below. Lines Beginning With Description BGP neighbor Displays the BGP neighbor address and its AS number.
Example Lines Beginning With Description (List of inbound and outbound policies) Displays the policy commands configured and the names of the Route map, AS-PATH ACL, or Prefix list configured for the policy. For address family: Displays IPv6 Unicast as the address family. BGP table version Displays which version of the primary BGP routing table the router and the neighbor are using.
BGP table version 12, neighbor version 12 2 accepted prefixes consume 32 bytes Prefixes accepted 1 (consume 4 bytes), withdrawn 0 by peer Prefixes advertised 0, rejected 0, withdrawn 0 from peer Connections established 3; dropped 2 Last reset 00:00:39, due to Closed by neighbor Notification History 'OPEN error/Bad AS' Sent : 0 Recv: 1 Local host: 5ffe:10::4, Local port: 179 Foreign host: 5ffe:10::3, Foreign port: 35470 Notification History 'Connection Reset' Sent : 1 Recv: 0 BGP neighbor is 5ffe:11::3, remo
Parameters Command Modes Command History Related Commands peer-group-name (OPTIONAL) Enter the name of a peer group to view information about that peer group only. summary (OPTIONAL) Enter the keyword summary to view status information of the peers in that peer group. The output is the same as that found in the show ip bgp ipv6 unicast summary command. • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Field Description network entries Displays the number of network entries, route paths, and the amount of memory used to process those entries. BGP path attribute entries Displays the number of BGP path attributes and the amount of memory used to process them. BGP AS-PATH entries Displays the number of BGP AS_PATH attributes processed and the amount of memory used to process them.
Example Dell#show ip bgp ipv6 unicast summary BGP router identifier 5.5.10.4, local AS number 100 BGP table version is 12, main routing table version 12 2 network entrie(s) and 4 paths using 536 bytes of memory 1 BGP path attribute entrie(s) using 112 bytes of memory 1 BGP AS-PATH entrie(s) using 39 bytes of memory Dampening enabled.
28 iSCSI Optimization Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment for iSCSI storage traffic. To configure and verify the iSCSI optimization feature, use the following Dell Networking Operating System (OS) commands.
Usage Information You can configure iSCSI TLVs to send either globally or on a specified interface. The interface configuration takes priority over global configuration. iscsi aging time Set the aging time for iSCSI sessions. Syntax iscsi aging time time To remove the iSCSI session aging time, use the no iscsi aging time command. Parameters time Defaults 10 minutes Command Modes CONFIGURATION Command History Enter the aging time for the iSCSI session. The range is from 5 to 43,200 minutes.
The default is the dot1p value in ingress iSCSI frames is not changed and is the same priority is used in iSCSI TLV advertisements if you did not enter the iscsi priority-bits command. dscp dscp-value Enter the DSCP value assigned to the incoming packets in an iSCSI session. The valid range is from 0 to 63. The default is: the DSCP value in ingress packets is not changed. remark Marks the incoming iSCSI packets with the configured dot1p or DSCP value when they egress to the switch.
iscsi priority-bits Configure the priority bitmap that advertises in the iSCSI application TLVs. Syntax iscsi priority-bits To remove the configured priority bitmap, use the no iscsi priority-bits command. Defaults 4 (0x10 in the bitmap) Command Modes PROTOCOL LLDP (only on the global, not on the interface) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To remove the configured iSCSI target ports or IP addresses, use the no iscsi target port command. Parameters tcpport-2...tcpport16 Enter the tcp-port number of the iSCSI target ports. The tcpport-n is the TCP port number or a list of TCP port numbers on which the iSCSI target listens to requests. Separate port numbers with a comma. The default is 860, 3260. ip-address (Optional) Enter the ip-address that the iSCSI monitors. The ipaddress specifies the IP address of the iSCSI target.
Session aging time: 10 Maximum number of connections is 256 -----------------------------------------------iSCSI Targets and TCP Ports: -----------------------------------------------TCP Port Target IP Address 3260 860 Related Commands • show iscsi sessions — displays information about active iSCSI sessions on the switch. • show iscsi sessions detailed — displays detailed information about active iSCSI sessions on the switch. • show run iscsi — shows run iscsi.
• show run iscsi — shows run iscsi. show iscsi session detailed Display detailed information on active iSCSI sessions on the switch. Syntax Parameters Command Modes Command History Example Related Commands show iscsi session detailed [session isid] isid Enter the session’s iSCSi ID to display detailed information about the specified iSCSi session. • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show run iscsi Display all globally configured non-default iSCSI settings in the current session. Syntax show run iscsi Command Modes EXEC Privilege Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • show iscsi — displays the currently configured iSCSI settings. • show iscsi sessions — show iscsi session — displays detailed information about active iSCSI sessions on the switch.
29 Intermediate System to Intermediate System (IS-IS) The Dell Networking OS supports the intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6. IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the communication between open systems, supporting routers passing both IP and OSI traffic. A router is considered an intermediate system. Networks are partitioned into manageable routing domains, called areas.
• graceful-restart ietf • graceful-restart interval • graceful-restart t1 • graceful-restart t2 • graceful-restart t3 • graceful-restart restart-wait • hello padding • hostname dynamic • ignore-lsp-errors • ip router isis • ipv6 router isis • isis circuit-type • isis csnp-interval • isis csnp-interval • isis hello-multiplier • isis hello padding • isis ipv6 metric • isis metric • isis network point-to-point • isis password • isis priority • is-type • log-adjacenc
• show isis neighbors • show isis protocol • show isis traffic • spf-interval adjacency-check Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router. Syntax adjacency-check To disable adjacency check, use the no adjacency-check command. Defaults Command Modes Command History Enabled. • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
prefix-list-name Defaults Command Modes Command History Enter the name of a configured IP prefix list. Routes meeting the criteria of the IP Prefix list are leaked. level1-into-level2 (Level 1 to Level 2 leaking enabled.) • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To prevent the link state database from receiving incorrect routing information from unauthorized routers, use the area-password command on routers within an area. The configured password injects into Level 1 LSPs, CSNPs, and PSNPs. Related Commands • domain-password — allows you to set the authentication password for a routing domain.
Command Modes Command History * Enter the keyword * to clear all IS-IS information and restart the IS-IS process. This command removes IS-IS neighbor information and IS-IS LSP database information and the full SPF calculation is done. database Clears IS-IS LSP database information. traffic Clears IS-IS counters. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
debug isis Enable debugging for all IS-IS operations. Syntax debug isis To disable debugging of IS-IS, use the no debug isis command. Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Entering debug isis enables all debugging parameters. To display all debugging information in one output, use this command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. debug isis local-updates To debug IS-IS local update packets, enable debugging on a specific interface and provides diagnostic information. Syntax debug isis local-updates [interface] To turn off debugging, use the no debug isis local-updates [interface] command.
Parameters Command Modes Command History interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Parameters Command Modes Command History interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you use this command to redistribute routes into a routing domain, the router becomes an autonomous system (AS) boundary router. An AS boundary router does not always generate a default route into a routing domain. The router still requires its own default route before it can generate one. How a metric value assigned to a default route advertises depends on the metricstyle command configuration.
distance Define the administrative distance for learned routes. Syntax distance weight [ip-address mask [prefix-list]] To return to the default values, use the no distance weight command. Parameters Defaults Command Modes Command History weight The administrative distance value indicates the reliability of a routing information source. The range is from 1 to 255. (A higher relative value indicates lower reliability. Routes with smaller values are given preference.) The default is 115.
Parameters Defaults Command Modes Command History Related Commands prefix-list-name Specify the prefix list to filter prefixes in routing updates. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Defaults Command Modes Command History bgp as number (OPTIONAL) Enter the BGP then the AS Number. The range is from 1 to 65535. rip (OPTIONAL) Enter the keyword rip for RIP routes. static (OPTIONAL) Enter the keyword static for user-configured routing process. Not configured. • ROUTER ISIS (for IPv4) • CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6) Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information When you execute this command, IS-IS does not download the route to the routing table if the same route was redistributed into IS-IS routing protocol on the same router. domain-password Set the authentication password for a routing domain. Syntax domain-password [hmac-md5 | encryption-type] password To disable the password, use the no domain-password command. Parameters hmac-md5 (OPTIONAL) Enter the keywords hmac-md5 to encrypt the password using MD5.
Parameters ietf Enter ietf to enable graceful restart on the IS-IS router. Defaults Graceful restart disabled. Command Modes ROUTER ISIS Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Every graceful restart enabled router’s HELLO PDUs includes a restart TLV. This restart enables (re)starting as well as the existing ISIS peers to detect the GR capability of the routers on the connected network.
graceful-restart t1 Set the graceful restart wait time before unacknowledged restart requests are generated. This wait time is the interval before the system sends a restart request (an IIH with RR bit set in Restart TLV) until the CSNP is received from the helping router. Syntax graceful-restart t1 {interval seconds | retry-times value} To return to the default, use the no graceful-restart t1 command. Parameters interval Enter the keyword interval to set the wait time.
Command Modes Command History ROUTER ISIS Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart t3 Configure the overall wait time before graceful restart completes. Syntax graceful-restart t3 {adjacency | manual} seconds To return to the default, use the no graceful-restart t3 command.
graceful-restart restart-wait Enable the graceful restart maximum wait time before a restarting peer comes up. Syntax NOTE: Set the t3 timer to adjacency on the restarting router when implementing this command. graceful-restart restart-wait seconds To return to the default, use the no graceful-restart restart-wait command. Parameters seconds Defaults 30 seconds Command Modes ROUTER ISIS Command History Related Commands Enter the graceful restart time in seconds. The range is from 5 to 300 seconds.
Command Modes Command History ROUTER ISIS Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information IS-IS hellos are padded to the full maximum transmission unit (MTU) size. Padding IS-IS Hellos (IIHS) to the full MTU provides early error detection of large frame transmission problems or mismatched MTUs on adjacent interfaces. Related Commands isis hello padding — turns ON or OFF hello padding on an interface basis.
Defaults In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsperrors). Command Modes ROUTER ISIS Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information IS-IS normally purges LSPs with an incorrect data link checksum causing the LSP source to regenerate the message.
ipv6 router isis Enable the IPv6 IS-IS routing protocol and specify an IPv6 IS-IS process. Syntax ipv6 router isis [tag] To disable IS-IS routing, use the no router isis [tag] command. Parameters tag (OPTIONAL) This parameter is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router. Defaults Not configured. Command Modes ROUTER ISIS Command History Version Description 9.9(0.
Parameters level-1 You can form a Level 1 adjacency if there is at least one common area address between this system and neighbors. You cannot form Level 2 adjacencies on this interface. level-1-2 You can form a Level 1 and Level 2 adjacencies when the neighbor is also configured as Level-1-2 and there is at least one common area, if not, a Level 2 adjacency is established. This setting is the default.
level-2 (OPTIONAL) Independently configures the interval of time between transmission of CSNPs for Level 2. Defaults seconds = 10; level-1 (if not otherwise specified) Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The default values of this command are typically satisfactory transmission times for a specific interface on a designated intermediate system.
Usage Information The default values of this command are typically satisfactory transmission times for a specific interface on a designated intermediate system. To maintain database synchronization, the designated routers send CSNPs. You can configure Level 1 and Level 2 CSNP intervals independently. isis hello-multiplier Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency down.
isis hello padding Turn ON or OFF padding of hello PDUs from INTERFACE mode. Syntax isis hello padding To return to the default, use the no isis hello padding command. Defaults Padding of hello PDUs is enabled (ON). Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Hello PDUs are “padded” only when both the global and interface padding options are ON.
Defaults default-metric = 10; level-1 (if not otherwise specified) Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Dell Networking recommends configuring metrics on all interfaces. Without configuring this command, the IS-IS metrics are similar to hop-count metrics. isis metric Assign a metric to an interface.
isis network point-to-point Enable the software to treat a broadcast interface as a point-to-point interface. Syntax isis network point-to-point To disable the feature, use the no isis network point-to-point command. Defaults Not enabled. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. isis password Configure an authentication password for an interface.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To protect your network from unauthorized access, use this command to prevent unauthorized routers from forming adjacencies. You can assign different passwords for different routing levels by using the keywords level-1 and level-2.
NOTE: Routers with a priority of 0 cannot be a designated router. Setting the priority to 0 lowers the chance of this system becoming the DIS, but does not prevent it. If all the routers have priority 0, one with highest MAC address becomes DIS even though its priority is 0. is-type Configure IS-IS operating level for a router. Syntax is-type {level-1 | level-1-2 | level-2-only} To return to the default values, use the no is-type command. Parameters level-1 Allows a router to act as a Level 1 router.
To disable this function, use the no log-adjacency-changes command. Defaults Adjacency changes are not logged. Command Modes ROUTER ISIS Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command allows you to monitor adjacency state changes, which are useful when you monitor large networks. Messages are logged in the system’s error message facility.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information LSP throttling slows down the frequency at which LSPs are generated during network instability. Even though throttling LSP generations slows down network convergence, no throttling can result in a network not functioning as expected.
lsp-refresh-interval Set the link state PDU (LSP) refresh interval. LSPs must be refreshed before they expire. When the LSPs are not refreshed after a refresh interval, they are kept in a database until their max-lsp-lifetime reaches zero and then LSPs is purged. Syntax lsp-refresh-interval seconds To restore the default refresh interval, use the no lsp-refresh-interval command. Parameters seconds Defaults 900 seconds Command Modes ROUTER ISIS Command History The LSP refresh interval, in seconds.
Parameters number Defaults 3 addresses Command Modes ROUTER ISIS Command History Set the maximum number of manual area addresses. The range is from 3 to 6. The default is 3. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To configure the number of area addresses on router, use this command. This value must be consistent with routers in the same area, otherwise the router forms only Level 2 adjacencies.
Related Commands lsp-refresh-interval — sets the link-state packet (LSP) refresh interval. maximum-paths Allows you to configure the maximum number of equal cost paths allowed in a routing table. Syntax maximum-paths number To return to the default values, use the no maximum-paths command. Parameters Defaults Command Modes Command History number Enter a number as the maximum number of parallel paths an IP routing installs in a routing table. The range is from 1 to 16. The default is 4.
wide Allows you to generate and accept only new-style TLVs. The metric range is from 0 to 16777215. level-1 Enables the metric style on Level 1. level-2 Enables the metric style on Level 2. Defaults narrow; if no Level is specified, Level-1 and Level-2 are configured. Command Modes ROUTER ISIS Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
net To configure an IS-IS network entity title (NET) for a routing process, use this mandatory command. If you did not configure a NET, the IS-IS process does not start. Syntax net network-entity-title To remove a net, use the no net network-entity-title command. Parameters network-entitytitle Defaults Not configured. Command Modes ROUTER ISIS Command History Specify the area address and system ID for an IS-IS routing process. The first 1 to 13 bytes identify the area address.
Defaults Not configured. Command Modes ROUTER ISIS Command History • For a SONET interface, enter the keyword sonet then the slot/port information. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a VLAN, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
• Defaults Command Modes Command History internal level-1 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 1 routes. level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This setting is the default. route-map mapname (OPTIONAL) If you do not enter the route-map argument, all routes are redistributed.
• distribute-list out — suppresses networks from being advertised in updates. This command filters redistributed routing information. redistribute bgp Redistribute routing information from a BGP process. (New command in Release 6.3.1.) Syntax redistribute bgp AS number [level-1| level-1-2 | level-2] [metric metric-value] [metric-type {external| internal}] [route-map mapname] To return to the default values, use the no redistribute bgp command with the appropriate parameters.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information BGP to IS-IS redistribution supports “match” options using route maps. You can set the metric value, level, and metric-type of redistributed routes by the redistribution command. You can “set” more advanced options using route maps.
level-1-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level-1-2 routes. level-2 (OPTIONAL) Routes are independently redistributed into IS-IS as Level 2 routes. This setting is the default. match {external | internal} (OPTIONAL) The command used for OSPF to route and redistribute into other routing domains. The values are route-map mapname • internal • external map-name is an identifier for a configured route map.
Parameters tag (OPTIONAL) This is a unique name for a routing process. A null tag is assumed if the tag option is not specified. The tag name must be unique for all IP router processes for a given router. Defaults Not configured. Command Modes ROUTER ISIS Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Set the overload bit when a router experiences problems, such as a memory shortage due to an incomplete link state database which can result in an incomplete or inaccurate routing table. If you set the overload bit in its LSPs, other routers ignore the unreliable router in their SPF calculations until the router has recovered. show config Display the changes you made to the IS-IS configuration.
spf-interval level-2 120 20 25 exit-address-family show isis database Display the IS-IS link state database. Syntax Parameters Command Modes Command History show isis database [level-1 | level-2] [local] [detail | summary] [lspid] level-1 (OPTIONAL) Displays the Level 1 IS-IS link-state database. level-2 (OPTIONAL) Displays the Level 2 IS-IS link-state database. local (OPTIONAL) Displays local link-state database information.
Field Description LSP describes system links. If this byte is zero (0), the LSP describes the state of the originating router. The designated router for a LAN creates and floods a pseudonode LSP and describes the attached systems. The last octet is the LSP number. An LSP is divided into multiple LSP fragments if there is more data than cannot fit in a single LSP. Each fragment has a unique LSP number. An * after the LSPID indicates that the system originates an LSP where this command was issued.
ISIS.00-00 * 0x0000002B 0x853B 1075 Area Address: 49.0000.0001 NLPID: 0xCC 0x8E IP Address: 10.1.1.1 IPv6 Address: 1011::1 Topology: IPv4 (0x00) IPv6 (0x8002) Metric: 10 IS OSPF.00 Metric: 10 IS (MT-IPv6) OSPF.00 Metric: 10 IP 15.1.1.0 255.255.255.0 Metric: 10 IPv6 (MT-IPv6) 1511::/64 Metric: 10 IPv6 (MT-IPv6) 2511::/64 Metric: 10 IPv6 (MT-IPv6) 1011::/64 Metric: 10 IPv6 1511::/64 Metric: 10 IP 10.1.1.0 255.255.255.
Example Dell#show isis graceful-restart detail Configured Timer Value ====================== Graceful Restart : Enabled T3 Timer : Manual T3 Timeout Value : 30 T2 Timeout Value : 30 (level-1), 30 (level-2) T1 Timeout Value : 5, retry count: 1 Adjacency wait time : 30 Operational Timer Value ====================== Current Mode/State : T3 Time left : T2 Time left : Restart ACK rcv count : Restart Req rcv count : Suppress Adj rcv count : Restart CSNP rcv count : Database Sync count : Dell# Normal/RUNNING 0 0
Parameters Command Modes Command History Example interface • EXEC • EXEC Privilege (OPTIONAL) Enter the following keywords and slot/port or number information: • For Loopback interface, enter the keyword loopback then a number from 0 to 16383. • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
show isis neighbors Display information about neighboring (adjacent) routers. Syntax Parameters Command Modes Command History show isis neighbors [level-1 | level-2] [detail] [interface] level-1 (OPTIONAL) Displays information about Level 1 IS-IS neighbors. level-2 (OPTIONAL) Displays information about Level 2 IS-IS neighbors. detail (OPTIONAL) Displays detailed information about neighbors.
Example Field Description Priority IS-IS priority the neighbor advertises. The neighbor with highest priority becomes the designated router for the interface. Uptime Displays the interfaces uptime. Circuit Id The neighbor’s interpretation of the designated router for the interface. The bold sections below identify that Multi-Topology IS-IS is enabled. Dell#show isis neighbors System Id Interface State Type Priority Uptime Circuit Id TEST Gi 7/1 Up L1L2(M) 127 09:28:01 TEST.
Interfaces supported by IS-IS: GigabitEthernet 1/0 - IP - IPv6 GigabitEthernet 1/1 - IP - IPv6 GigabitEthernet 1/10 - IP - IPv6 Loopback 0 - IP - IPv6 Redistributing: Distance: 115 Generate narrow metrics: level-1-2 Accept narrow metrics: level-1-2 Generate wide metrics: none Accept wide metrics: none Multi Topology Routing is enabled in transition mode. Dell# show isis traffic This command allows you to display IS-IS traffic interface information.
Example Item Description Level-1/Level-2 LSPs sourced (new/refresh) Displays the number of new and refreshed LSPs. Level-1/Level-2 LSPs flooded (sent/rcvd) Displays the number of flooded LSPs sent and received. Level-1/Level-2 LSPs CSNPs (sent/ rcvd) Displays the number of CSNP LSPs sent and received. Level-1/Level-2 LSPs PSNPs (sent/ rcvd) Displays the number of PSNP LPSs sent and received. Level-1/Level-2 DR Elections Displays the number of times designated router elections ran.
spf-interval Specify the minimum interval between shortest path first (SPF) calculations. Syntax spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] To restore default values, use the no spf-interval [level-l | level-2] interval seconds [initial_wait_interval seconds [second_wait_interval seconds]] command.
network convergence, not throttling can result in a network not functioning as expected. If network topology is unstable, throttling slows down the scheduling of route calculations until the topology regains its stability. The first route calculation is controlled by the initial wait interval and the second calculation is controlled by the second wait interval.
30 Link Aggregation Control Protocol (LACP) This chapter contains commands for Dell Networks’s implementation of the link aggregation control protocol (LACP) for creating dynamic link aggregation groups (LAGs) — known as port-channels in the Dell Networking Operating System (OS). NOTE: For static LAG commands, refer to theInterfaces chapter), based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision detection (CSMA/CD) access method and physical layer specifications.
Related Commands show lacp — displays the LACP configuration. debug lacp Debug LACP (configuration, events, and so on). Syntax debug lacp [config | events | pdu [interface [in | out]]] To disable LACP debugging, use the no [config | events | pdu [interface [in | out]]] command. Parameters config (OPTIONAL) Enter the keyword config to debug the LACP configuration. events (OPTIONAL) Enter the keyword events to debug the LACP event information.
lacp long-timeout Configure a long timeout period (30 seconds) for an LACP session. Syntax lacp long-timeout To reset the timeout period to a short timeout (1 second), use the no lacp longtimeout command. Defaults 1 second Command Modes INTERFACE (conf-if-po-number) Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command applies to dynamic port-channel interfaces only.
lacp system-priority Configure the LACP system priority. Syntax Parameters lacp system-priority priority-value priority-value Defaults 32768 Command Modes INTERFACE Command History Enter the port-priority value. The higher the value number, the lower the priority. The range is from 1 to 65535. The default is 32768. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. port-channel mode Configure the LACP port channel mode.
Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information LACP Modes Mode Function active An interface is in an active negotiating state in this mode. LACP runs on any link configured in the active state and also automatically initiates negotiation with other ports by initiating LACP packets. passive An interface is not in an active negotiating state in this mode.
show lacp Display the LACP matrix. Syntax Parameters Defaults show lacp port-channel-number [sys-id | counters] port-channelnumber Enter a port-channel number. The range is from 1 to 128. sys-id (OPTIONAL) Enter the keywords sys-id and the value that identifies a system. counters (OPTIONAL) Enter the keyword counters to display the LACP counters. Without a Port Channel specified, the command clears all Port Channel counters.
Example (Counter) Dell#show lacp 1 counters ---------------------------------------------------LACP PDU Marker PDU Unknown Illegal Port Xmit Recv Xmit Recv Pkts Rx Pkts Rx ----------------------------------------------------Gi 10/6 200 200 0 0 0 0 Dell# Related Commands clear lacp counters — clears the LACP counters. show interfaces port-channel — displays information on configured Port Channel groups.
31 Layer 2 This chapter describes commands to configure Layer 2 features.
clear mac-address-table Clear the MAC address table. Syntax Parameters clear mac-address-table dynamic {address mac-address | all | interface interface | vlan vlan-id} address macaddress Enter the keyword address then a MAC address in nn:nn:nn:nn:nn:nn format. all Enter the keyword all to delete all MAC address entries in the MAC address table.
Defaults 1800 seconds Command Modes CONFIGURATION Command History Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mac-address-table disable-learning Disable MAC address learning from LACP or LLDP BPDUs. Syntax Parameters mac-address-table disable-learning [lacp | lldp] lacp Enter lacp to disable MAC address learning from LACP BPDUs. lldp Enter LLDP to disable MAC address learning from LLDP BPDUs.
Parameters mac-address Enter the 48-bit hexadecimal address in nn:nn:nn:nn:nn:nn format. output interface Enter the keyword output then one of the following interfaces for which traffic is forwarded: vlan vlan-id Defaults Not configured. Command Modes CONFIGURATION Command History • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
mac learning-limit Limit the maximum number of MAC addresses (static + dynamic) learned on a selected interface. Syntax Parameters Defaults mac learning-limit address_limit [dyanmic] [no-station-move| station-move][sticky] address_limit Enter the maximum number of MAC addresses that can be learned on the interface. The range is from 1 to 1000000. dynamic (OPTIONAL) Enter the keyword dynamic to allow aging of MACs even though a learning limit is configured.
After the MAC address learning limit is reached, the MAC addresses do not age out unless you add the dynamic option. To clear statistics on MAC address learning, use the clear counters command with the learning-limit parameter. When a channel member is added to a port-channel and there is not enough ACL CAM space, the MAC limit functionality on that port-channel is undefined. When this occurs, un-configure the existing configuration first and then reapply the limit with a lower value.
mac learning-limit station-moveviolation Specify the actions for a station move violation. Syntax mac learning-limit station-move-violation {log | shutdown-both | shutdown-offending | shutdown-original} To disable a configuration, use the no mac learning-limit station-moveviolation command, then the configured keyword. Parameters log Enter the keyword log to generate a syslog message on a station move violation.
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show cam mac stack-unit Display the content addressable memory (CAM) size and the portions allocated for MAC addresses and for MAC ACLs.
vlan vlan-id Command Modes Command History • EXEC • EXEC Privilege Version 8.3.16.1 (OPTIONAL) Enter the keyword vlan then the VLAN ID to display the MAC address assigned to the VLAN. The range is 1 to 4094. Introduced on the MXL 10/40GbE Switch IO Module. show mac-address-table Display the MAC address table.
Command Modes Command History vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID to display the MAC address assigned to the VLAN. The range is 1 to 4094. count (OPTIONAL) Enter the keyword count, then optionally, by an interface or VLAN ID, to display total or interface-specific static addresses, dynamic addresses, and MAC addresses in use. • EXEC • EXEC Privilege Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Column Heading Description Mac Address Displays the MAC address in nn:nn:nn:nn:nn:nn format. Type Lists whether the MAC address was manually configured (Static), learned (Dynamic), or associated with a specific port (Sticky). An (N) indicates that the specified MAC address has been learnt by a neighbor and is synced to the node. Interface Displays the interface type and slot/port information.
Parameters Command Modes Command History Example vlan vlan-id • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword vlan then the VLAN ID to display the MAC address assigned to the VLAN. The range is from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show mac learning-limit Interface Learning Dynamic Slot/port Limit MAC count Dell# Static Unknown MAC count SA Drops Virtual LAN (VLAN) Commands The following commands configure and monitor virtual LANs (VLANs). VLANs are a virtual interface and use many of the same commands as physical interfaces.
default vlan-id Specify a VLAN as the Default VLAN. Syntax default vlan-id vlan-id To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the no default vlan-id vlan-id syntax. Parameters vlan-id Enter the VLAN ID number of the VLAN to become the new Default VLAN. The range is from 1 to 4094. The default is 1. Defaults The Default VLAN is VLAN 1. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Usage Information The no default vlan disable command is not listed in the running-configuration, but when the default VLAN is disabled, default-vlan disable is listed in the running-configuration. name Assign a name to the VLAN. Syntax name vlan-name To remove the name from the VLAN, use the no name command. Parameters vlan-name Defaults Not configured. Command Modes INTERFACE VLAN Command History Enter up to 32 characters as the name of the VLAN. Version Description 9.9(0.
Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vl-100)#show config ! interface Vlan 1 description a no ip address mtu 2500 shutdown Dell(conf-if-vl-100)# show vlan Display the current VLAN configurations on the switch.
Column Heading (Column 1 — no heading) • asterisk symbol (*) = Default VLAN • G = GVRP VLAN • P = primary VLAN • C = community VLAN • I = isolated VLAN • O = OpenFlow NUM Displays existing VLAN IDs. Status Displays the word Inactive for inactive VLANs and the word Active for active VLANs.
1002 Active Dell# T Te 0/3,13,55-56 Example (VLAN ID) Dell# show vlan id 40 Codes: * - Default VLAN, G - GVRP VLANs, R - Remote Port Mirroring VLANs, P - Primary, C - Community, I - Isolated Q: U - Untagged, T - Tagged x - Dot1x untagged, X - Dot1x tagged G - GVRP tagged, M - Vlan-stack, H - VSN tagged i - Internal untagged, I - Internal tagged, v - VLT untagged, V - VLT tagged NUM Status Description Q Ports 1 Inactive a Dell# Example (Brief) Dell#show vlan brief VLAN Name STG MAC Aging IP Address ---- -
Parameters interface Enter the following keywords and slot/port or number information: • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Defaults All interfaces in Layer 2 mode are untagged.
Defaults Not configured. Command Modes INTERFACE VLAN Command History • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Defaults All interfaces in Layer 2 mode are untagged. Command Modes INTERFACE VLAN Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Untagged interfaces can only belong to one VLAN. In the Default VLAN, you cannot use the no untagged interface command.
32 Link Layer Discovery Protocol (LLDP) Link layer discovery protocol (LLDP) advertises connectivity and management from the local station to the adjacent stations on an IEEE 802 LAN. LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make available a physical topology for network management. The Dell Networking operating software implementation of LLDP is based on IEEE standard 801.1ab.
• advertise med streaming-video • advertise med video-conferencing • advertise med voice-signaling • advertise med voice • advertise med voice-signaling advertise dot1-tlv Advertise dot1 TLVs (Type, Length, Value). Syntax advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id | vlanname} To remove advertised dot1-tlv, use the no advertise dot1-tlv {portprotocol-vlan-id | port-vlan-id | vlan-name} command.
advertise dot3-tlv Advertise dot3 TLVs (Type, Length, Value). Syntax advertise dot3-tlv {max-frame-size} To remove advertised dot3-tlv, use the no advertise dot3-tlv {max-framesize} command. Parameters max-frame-size Enter the keywords max-frame-size to advertise the dot3 maximum frame size. Defaults none Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The command options system-capabilities, system-description, and system-name can be invoked individually or together, in any sequence. clear lldp counters Clear LLDP transmitting and receiving counters for all physical interfaces or a specific physical interface.
• Defaults none Command Modes EXEC Privilege Command History For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface To display timer events, neighbor additions or deletions, and other information about incoming and outgoing packets, enable LLDP debugging.
rx (OPTIONAL) Enter the keyword rx to display receive-only packet information. both (OPTIONAL) Enter the keyword both to display both receive and transmit packet information. Defaults none Command Modes EXEC Privilege Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Enable or disable LLDP. Syntax disable To enable LLDP, use the no disable command. Defaults Enabled, that is no disable.
Parameters seconds Enter the rate, in seconds, at which the control packets are sent to its peer. The rate is from 5 to 180 seconds. The default is 30 seconds. Defaults 30 seconds Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. mode To receive or transmit, set LLDP.
multiplier Set the number of consecutive misses before LLDP declares the interface dead. Syntax multiplier integer To return to the default, use the no multiplier integer command. Parameters integer Enter the number of consecutive misses before the LLDP declares the interface dead. The range is from 2 to 10. Defaults 4 x hello Command Modes CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp) Command History Version 9.2(0.0) Introduced on the M I/O Aggregator. Version 8.3.16.
To return to the global LLDP configuration mode, use the no protocol lldp command from Interface mode. Defaults LLDP is not enabled on the interface. Command Modes INTERFACE (conf-if-interface-lldp) Command History Version 8.3.16.1 Usage Information Before LLDP can be configured on an interface, it must be enabled globally from CONFIGURATION mode. This command places you in LLDP mode on the interface; it does not enable the protocol.
Gi 1/21 Gi 1/31 R2 R3 GigabitEthernet GigabitEthernet 2/11 3/11 00:01:e8:06:95:3e 00:01:e8:09:c2:4a show lldp statistics Display the LLDP statistical information. Syntax show lldp statistics Defaults none Command Modes EXEC Privilege Command History Example Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
no disable Dell# LLDP-MED Commands The following are the LLDP-MED (Media Endpoint Discovery) commands. The LLDP-MED commands are an extension of the set of LLDP TLV advertisement commands. As defined by ANSI/TIA-1057, LLDP-MED provides organizationally specific TLVs (Type Length Value), so that endpoint devices and network connectivity devices can advertise their characteristics and configuration information.
Defaults Unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol lldp (Configuration) — enables LLDP globally. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration.
show running-config lldp — displays the LLDP running configuration. advertise med location-identification To advertise a location identifier, configure the system. Syntax advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} To return to the default, use the no advertise med location-identification {coordinate-based value | civic-based value | ecs-elin value} command.
advertise med power-via-mdi To advertise the Extended Power via MDI TLV, configure the system. Syntax advertise med power-via-mdi To return to the default, use the no advertise med power-via-mdi command. Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Advertise the Extended Power via MDI on all ports that are connected to an 802.
Version 8.3.16.1 Related Commands Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration. advertise med streaming-video To advertise streaming video services for broadcast or multicast-based video, configure the system. This command does not include video applications that rely on TCP buffering.
advertise med video-conferencing To advertise dedicated video conferencing and other similar appliances that support real-time interactive video, configure the system. Syntax advertise med video-conferencing {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med video-conferencing {vlan-id} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094.
Defaults unconfigured. Command Modes CONFIGURATION (conf-lldp) Command History Related Commands 9.9(0.0) Introduced on the FN IOM. Version 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug lldp interface — debugs LLDP. show lldp neighbors — displays the LLDP neighbors. show running-config lldp — displays the LLDP running configuration. advertise med voice To advertise a dedicated IP telephony handset or other appliances supporting interactive voice services, configure the system.
advertise med voice-signaling To advertise when voice control packets use a separate network policy than voice data, configure the system. Syntax advertise med voice-signaling {vlan-id} | {priority-tagged number} To return to the default, use the no advertise med voice-signaling {vlanid} | {priority-tagged number} command. Parameters vlan-id Enter the VLAN ID. The range is from 1 to 4094. priority-tagged number Enter the keywords priority-tagged then the Layer 2 priority. The range is from 0 to 7.
33 Microsoft Network Load Balancing Network Load Balancing (NLB) is a clustering functionality that is implemented by Microsoft on Windows 2000 Server and Windows Server 2003 operating systems. NLB uses a distributed methodology or pattern to equally split and balance the network traffic load across a set of servers that are part of the cluster or group.
• With NLB feature enabled, after learning the NLB ARP entry, all the subsequent traffic is flooded on all ports in VLAN1. With NLB, the data frame is forwarded to all the servers for them to perform load-balancing. NLB Multicast Mode Scenario Consider a sample topology in which four servers, namely S1 through S4, are configured as a cluster or a farm. This set of servers is connected to a Layer 3 switch, which in turn is connected to the end-clients.
registers only the last received ARP reply, and the switch learns one server’s actual MAC address; the virtual MAC address is never learned. Because the virtual MAC address is never learned, traffic is forwarded to only one server rather than the entire cluster, and failover and balancing are not preserved. To preserve failover and balancing, the switch forwards the traffic destined for the server cluster to all member ports in the VLAN connected to the cluster.
Syntax mac-address-table static multicast-mac-address multicast vlan vlan-id range-output {single-interface | interface-list | interface-range} To remove a MAC address, use the no mac-address-table static multicastmac-address output interface vlan vlan-id command. Parameters multicast-macaddress Enter the 48-bit hexadecimal address in nn:nn:nn:nn:nn:nn format. multicast Enter a vlan port to where L2 multicast MAC traffic is forwarded.
ip vlan-flooding Enable unicast data traffic flooding on VLAN member ports. Syntax ip vlan-flooding To disable, use the no ip vlan-flooding command. Command Modes Command History Default CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL Switch . Disabled Usage Information By default this command is disabled.
34 Multicast Source Discovery Protocol (MSDP) Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains together. MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP connections.
Command Modes Command History EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.3(0.0) Introduced on the MXL Switch . clear ip msdp sa-cache Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected, or local source-active entries. Syntax Parameters clear ip msdp sa-cache [group-address | rejected-sa | local] group-address Enter the group IP address in dotted decimal format (A.B.C.D.).
rejected-sa Enter the keyword rejected-sa to clear the cache sourceactive entries that are rejected because the RPF check failed, an SA filter or limit is configured, the RP or MSDP peer is unreachable, or because of a format error. local Enter the keyword local to clear out local PIM advertised entries. It applies the redistribute filter (if present) while adding the local PIM SA entries to the SA cache. Defaults Without any options, this command clears the entire source-active cache.
ip msdp cache-rejected-sa Enable an MSDP cache for the rejected source-active entries. Syntax ip msdp cache-rejected-sa {number} To clear the MSDP rejected source-active entries, use the no ip msdp cacherejected-sa {number} command then the ip msdp cache-rejected-sa {number} command. Parameters number Enter the number of rejected SA entries to cache. The range is from 0 to 32766. Defaults none Command Modes CONFIGURATION Version 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If a list is not specified, all SA messages received from the default peer are accepted. You can enter multiple default peer commands. ip msdp log-adjacency-changes Enable logging of MSDP adjacency changes.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information An MSDP mesh group is a mechanism for reducing SA flooding, typically in an intradomain setting. When some subset of a domain’s MSDP speakers are fully meshed, they can be configured into a mesh-group.
Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip msdp peer Configure an MSDP peer. Syntax ip msdp peer peer address [connect-source] [description] [sa-limit number] To remove the MSDP peer, use the no ip msdp peer peer address [connectsource interface] [description name] [sa-limit number] command. Parameters peer address Enter the peer address in a dotted decimal format (A.B.C.D.).
Usage Information The connect-source option is used to supply a source IP address for the TCP connection. When an interface is specified using the connect-source option, the primary configured address on the interface is used. If the total number of SA messages received from the peer is already larger than the limit when this command is applied, those SA messages continue to be accepted. To enforce the limit in such situation, use the clear ip msdp peer command to reset the peer.
ip msdp sa-filter Permit or deny MSDP source active (SA) messages based on multicast source and/or group from the specified peer. Syntax ip msdp sa-filter {in | out} peer-address list [access-list name] Remove this configuration using the no ip msdp sa-filter {in | out} peer address list [access-list name] command. Parameters in Enter the keyword in to enable incoming SA filtering. out Enter the keyword out to enable outgoing SA filtering.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The system counts the SA messages originated by itself and those messages received from the MSDP peers. When the total SA messages reach this limit, the subsequent SA messages are dropped (even if they pass RPF checking and policy checking).
To exit MSDP, use the no ip multicast-msdp command. Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip msdp Display the MSDP peer status, SA cache, or peer summary.
Example (Sacache) Dell#show ip msdp sa-cache MSDP Source-Active Cache - 1 entries GroupAddr SourceAddr RPAddr 224.1.1.1 172.21.220.10 172.21.3.254 Dell# Example (Summary) Dell#show ip msdp summary Peer Addr Local Addr Down Description 5.5.5.32 6.6.6.32 00:07:17 Peer1 Dell# LearnedFrom Expire UpTime 172.21.3.254 102 00:02:52 State Source Established Lo 32 SA Up/ 20 show ip msdp sa-cache rejected-sa Display the rejected SAs in the SA cache.
00:00:13 225.1.2.19 10.1.1.3 Dell# 110.1.1.1 13.1.1.
35 Multiple Spanning Tree Protocol (MSTP) Multiple spanning tree protocol (MSTP), as implemented by the Dell Networking Operating System (OS), conforms to IEEE 802.1s.
bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug bridge protocol data units (BPDU). (OPTIONAL) Enter the interface keyword along with the type slot/port of the interface you want displayed. Type slot/port options are the following: • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree mstp — enters MULTIPLE SPANNING TREE mode on the switch. disable Globally disable the multiple spanning tree protocol on the switch. Syntax disable To enable MSTP, enter the no disable command. Defaults disabled. Command Modes MULTIPLE SPANNING TREE Command History Related Commands Version Description 9.9(0.
Version Description 8.3.16.1 Introduced on MXL 10/40GbE Switch IO Module forward-delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. Syntax forward-delay seconds To return to the default setting, use the no forward-delay command. Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learning State before transiting to the Forwarding State. The range is from 4 to 30.
Defaults 2 seconds Command Modes MULTIPLE SPANNING TREE Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. edge-port bpdufilter default — the amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State. max-age — changes the wait time before MSTP refreshes protocol configuration information.
max-hops Configure the maximum hop count. Syntax max-hops number To return to the default values, use the no max-hops command. Parameters range Enter a number for the maximum hop count. The range is from 1 to 40. The default is 20. Defaults 20 hops Command Modes MULTIPLE SPANNING TREE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
bridge-priority priority Enter the keywords bridge-priority then a value in increments of 4096 as the bridge priority. The range is from zero (0) to 61440. Valid priority values are: 0, 4096, 8192, 12288, 16384, 20480, 24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248, 57344, and 61440. All other values are rejected. Defaults default bridge-priority is 32768. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
revision — assigns the revision number to the MST configuration. protocol spanning-tree mstp To enable and configure the multiple spanning tree group, enter MULTIPLE SPANNING TREE mode. Syntax protocol spanning-tree mstp To disable the multiple spanning tree group, use the no protocol spanning-tree mstp command. Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults 0 Command Modes MULTIPLE SPANNING TREE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information For two MSTP switches to be within the same MST region, the switches must share the same revision number. Related Commands msti — maps the VLAN(s) to an MST instance. name — assigns the region name to the MST region. show config View the current configuration for the mode.
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Enable the multiple spanning tree protocol prior to using this command. Example Dell#show spanning-tree mst configuration MST region name: CustomerSvc Revision: 2 MSTI VID 10 101-105 Dell# show spanning-tree msti View the multiple spanning tree instance.
Root Bridge hello time 2, max age 20, forward delay 15, max hops 20 Bridge ID Priority 32768, Address 0001.e800.0204 We are the root of MSTI 0 (CIST) Configured hello time 2, max age 20, forward delay 15, max hops 20 Bpdu filter disabled globally CIST regional root ID Priority 32768, Address 0001.e800.0204 CIST external path cost 0 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID ---------- -------- ---- ------- ----------- -------------------------Te 0/41 128.
We are the root of MSTI 0 (CIST) Current root has priority 32768, Address 0001.e801.6aa8 CIST regional root ID Priority 32768, Address 0001.e801.6aa8 CIST external path cost 0 Number of topology changes 1, last change occured 00:00:15 ago on Gi 0/0 Port 257 (GigabitEthernet 0/0) is LBK_INC Discarding Port path cost 20000, Port priority 128, Port Identifier 128.257 Designated root has priority 32768, address 0001.e801.6aa8 Designated bridge has priority 32768, address 0001.e801.
Defaults Enable. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. spanning-tree msti Configure multiple spanning tree instance cost and priority for an interface. Syntax Parameters spanning-tree msti instance {cost cost | priority priority} msti instance Enter the keyword msti and the MST instance number. The range is from zero (0) to 63.
spanning-tree mstp Configures a Layer 2 MSTP interface as an edge port with (optionally) a bridge protocol data unit (BPDU) guard, or enables the root guard or loop guard feature on the interface. Syntax Parameters spanning-tree mstp {edge-port [bpduguard [shutdown-on-violation]] | bpdufilter| rootguard} edge-port Enter the keywords edge-port to configure the interface as a multiple spanning tree edge port.
When used in an MSTP network, if root guard blocks a boundary port in the CIST, the port is also blocked in all other MST instances. Enabling Portfast BPDU guard and loop guard at the same time on a port results in a port that remains in a blocking state and prevents traffic from flowing through it.
36 Multicast The multicast commands are supported by Dell Networking Operating System (OS). This chapter contains the following sections: • IPv4 Multicast Commands • IPv6 Multicast Commands Topics: • IPv4 Multicast Commands • clear ip mroute • ip mroute • ip multicast-limit • ip multicast-routing • show ip mroute • show ip rpf • IPv6 Multicast Commands • debug ipv6 mld_host • ip multicast-limit IPv4 Multicast Commands The following section contains the IPv4 multicast commands.
snooping Command Modes Command History Related Commands Enter the keyword snooping to delete multicast snooping route table entries. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2.(0.0) Introduced on the MXL 10/40GbE Switch IO Module. show ip pim tib — shows the PIM tree information base. ip mroute Assign a static mroute.
static ip-address (OPTIONAL) Enter the Static IP address in dotted decimal format of the RPF neighbor. ip-address (OPTIONAL) Enter the IP address in dotted decimal format of the RPF neighbor. distance (OPTIONAL) Enter a number as the distance metric assigned to the mroute. The range is from 0 to 255. Defaults Not configured. Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
exhausted at the time the system-wide route limit set by the ip multicast-limit command is reached. ip multicast-routing Enable IP multicast forwarding. Syntax ip multicast-routing To disable multicast forwarding, use the no ip multicast-routing command. Defaults Disabled. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
count (OPTIONAL) Enter the keyword count to view the number of multicast routes and packets. snooping [vlan vlan-id] [groupaddress [sourceaddress]] Enter the keyword snooping to display information on the multicast routes PIM-SM snooping discovers. Enter a VLAN ID to limit the information displayed to the multicast routes PIM-SM snooping discovers on a specified VLAN. The VLAN ID range is from 1 to 4094.
(*, 225.1.2.1), uptime 00:04:16 Incoming vlan: Vlan 2 Outgoing interface list: TenGigabitEthernet 0/4 TenGigabitEthernet 1/5 (165.87.1.7, 225.1.2.1), uptime 00:03:17 Incoming vlan: Vlan 2 Outgoing interface list: TenGigabitEthernet 0/3 TenGigabitEthernet 0/4 TenGigabitEthernet 0/5 Example Dell#show ip mroute IP Multicast Routing Table (*, 224.10.10.1), uptime 00:05:12 Incoming interface: TenGigabitEthernet 0/2 Outgoing interface list: TenGigabitEthernet 0/13 (1.13.1.100, 224.10.10.
TenGigabitEthernet 3/13 (1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: TenGigabitEthernet 1/4 Outgoing interface list: TenGigabitEthernet 0/2 TenGigabitEthernet 0/3 (*, 224.20.20.1), uptime 00:05:12 Incoming interface: TenGigabitEthernet 1/2 Outgoing interface list: TenGigabitEthernet 1/4 show ip rpf View reverse path forwarding. Syntax Command Modes Command History show ip rpf • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2.(0.
debug ipv6 mld_host Enable the collection of debug information for MLD host transactions. Syntax [no] debug ipv6 mld_host [int-count | interface type] [slot/portrange] To discontinue collection of debug information for the MLD host transactions, use the no debug ipv6 mld_host command. Parameters int-count Enter the keyword count to indicate the number of required debug messages.
ip multicast-limit To limit the number of multicast entries on the system, use this feature. Syntax Parameters ip multicast-limit limit limit Defaults 15000 routes. Command Modes CONFIGURATION Command History Enter the desired maximum number of multicast entries on the system. The range is from 1 to 50000. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
37 Neighbor Discovery Protocol (NDP) The Dell Networking Operating System (OS) supports the network discovery protocol for IPv6. The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4.
NOTE: The :: notation specifies successive hexadecimal fields of zero. interface interface Command Modes Command History • EXEC • EXEC Privilege To remove all neighbor entries learned on a specific interface, enter the keyword interface then the interface type and slot/ port or number information of the interface: • For a Fast Ethernet interface, enter the keyword fastEthernet then the slot/port information. • For a Port Channel interface, enter the keywords portchannel then a number.
hardware_address Defaults none Command Modes CONFIGURATION Command History • For a Fast Ethernet interface, enter the keyword fastEthernet then the slot/port information. • For a Port Channel interface, enter the keywords portchannel then a number. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
• Defaults Command Modes Command History Example For a VLAN, enter the keyword vlan then the VLAN ID. The range is from 1 to 4094. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell# show ipv6 neighbors IPv6 Address Expires(min) Hardware Address State Interface VLAN CPU -----------------------------------------------------------------100::1 0.
38 Object Tracking Object Tracking supports IPv4 and IPv6, and is available on the Dell Networking platforms. Object tracking allows you to define objects of interest, monitor their state, and report to a client when a change in an object’s state occurs.
Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.7(0.0) Introduced on the MXL. Dell#debug track all 04:35:04: %RPM0-P:RP2 %OTM-5-STATE: track 6 - Interface TenGigabitEthernet 1/2 line-protocol DOWN 04:35:04: %RPM0-P:RP2 %OTM-5-NOTIF: VRRP notification: resource ID 6 DOWN delay Configure the time delay used before communicating a change in the status of a tracked object to clients.
a tracked object is detected. The time delay in communicating a state change is specified in seconds. description Enter a description of a tracked object. Syntax description {text} To remove the description, use the no description {text} command. Parameters text Enter a description to identify a tracked object (80 characters maximum). Defaults none Command Modes OBJECT TRACKING (conf_track_object-id) Command History Related Commands Version Description 9.7(0.0) Introduced on the MXL.
Example Dell#show running-config track track 1 ip route 23.0.0.0/8 reachability track 2 ipv6 route 2040::/64 metric threshold delay down 3 delay up 5 threshold metric up 200 track 3 ipv6 route 2050::/64 reachability track 4 interface TenGigabitEthernet 1/2 ip routing track 5 ip route 192.168.0.0/24 reachability vrf red track resolution ip route isis 20 track resolution ip route ospf 10 Example (Objectid) Related Commands Dell#show running-config track 300 track 300 ip route 10.0.0.
brief Command Modes Command History (OPTIONAL) Display a single line summary of the tracking information for a specified object, object type, or all tracked objects. EXEC Privilege Version Description 9.7(0.0) Introduced on the MXL. Usage Information The following describes the show track command shown in the Example below. Example Output Description Track object-id Displays the number of the tracked object.
Tracked by: VRRP TenGigabitEthernet 2/3 IPv6 VRID 1 Usage Information The following describes the show track brief command shown in the Example below. Example (Brief) Output Description ResID Number of the tracked object. Resource Type of tracked object. Parameter Detailed description of the tracked object. State Up or Down state of the tracked object. Last Change Time since the last change in the state of the tracked object.
Usage Information Use this command to configure the UP and/or DOWN threshold for the scaled metric of a tracked IPv4 or IPv6 route. Determine the UP/DOWN state of a tracked route by the threshold for the current value of the route metric in the routing table. To provide a common tracking interface for different clients, route metrics are scaled in the range 0 to 255, where 0 is connected and 255 is inaccessible.
• Defaults none Command Modes CONFIGURATION Command History For a VLAN interface, enter the keyword vlan then a number from 1 to 4094. Version Description 9.7(0.0) Introduced on the MXL. Added support for tunnel interface. Usage Information Use this command to create an object that tracks the routing state of an IPv4 Layer 2 interface: • The status of the IPv4 interface is UP only if the Layer 2 status of the interface is UP and the interface has a valid IP address.
Command History Version Description 9.7(0.0) Introduced on the MXL. Usage Information Use this command to create an object that tracks the line-protocol state of a Layer 2 interface by monitoring its operational status (UP or DOWN). When the link-level status goes down, the tracked object status is considered to be DOWN; if the link-level status is up, the tracked object status is considered to be UP. track ip route metric threshold Configure object tracking on the threshold of an IPv4 route metric.
higher value. The resulting scaled value is compared against the configured threshold values to determine the state of a tracked route as follows: • If the scaled metric for a route entry is less than or equal to the UP threshold, the state of a route is UP. • If the scaled metric for a route is greater than or equal to the DOWN threshold or the route is not entered in the routing table, the state of a route is DOWN.
Usage Information Use this command to create an object that tracks the reachability of an IPv4 route. In order for a route’s reachability to be tracked, the route must appear as an entry in the routing table. A tracked IPv4 route is considered to match an entry in the routing table only if the exact IPv4 address and prefix length match a table entry. For example, when configured as a tracked route, 10.0.0.0/24 does not match the routing table entry 10.0.0.0/8.
Usage Information Use this command to configure the protocol-specific resolution value that converts the actual metric of an IPv4 route in the routing table to a scaled metric in the range 0 to 255. The UP/DOWN state of a tracked IPv4 route is determined by a user-configurable threshold (the threshold metric command) for the route’s metric in the routing table.
Command History Version Description 9.7(0.0) Introduced on the MXL. Usage Information The following describes the show track ipv6 route command shown in the Example below. Example Output Description Track object-id Displays the number of the tracked object. Interface type slot/port, IP route ip-address, IPv6 route ipv6address Displays the interface type and slot/port number or address of the IPv4/IPv6 route that is being tracked.
Example (Brief) Ouput Description State Up or Down state of the tracked object. Last Change Time since the last change in the state of the tracked object. Dell#show track ipv6 route brief ResId Resource Parameter State LastChange 2 IPv6 route metric threshold 2040::/64 Up 00:02:36 3 IPv6 route reachability 2050::/64 Up 00:02:36 track interface ipv6 routing Configure object tracking on the routing status of an IPv6 Layer 3 interface.
Related Commands • The Layer 3 status of an IPv6 interface goes DOWN when its Layer 2 status goes down (for a Layer 3 VLAN, all VLAN ports must be down) or the IP address is removed from the routing table. • show track ipv6 route – displays information about tracked IPv6 routes, including configuration, current state, and clients which track the route. • track interface ip routing - configures object tracking on the routing status of an IPv4 Layer 3 interface.
higher value. The resulting scaled value is compared against the configured threshold values to determine the state of a tracked route as follows: • If the scaled metric for a route entry is less than or equal to the UP threshold, the state of a route is UP. • If the scaled metric for a route is greater than or equal to the DOWN threshold or the route is not entered in the routing table, the state of a route is DOWN.
3333:100:200:300::/64. If no route-table entry has the exact IPv6 address and prefix length, the tracked route is considered to be DOWN. When you configure IPv6 route reachability as a tracked object, the UP/DOWN state of the tracked route is also determined by the entry of the next-hop address in the ARP cache. A tracked route is considered to be reachable if there is an ARP cache entry for the route's next-hop address.
To provide a common tracking interface for different clients, route metrics are scaled in the range 0 to 255, where 0 is connected and 255 is inaccessible. The protocol-specific resolution value calculates the scaled metric by dividing a route's cost by the resolution value set for the route protocol: Related Commands • For ISIS, you can set the resolution in the range 1 to 1000, where the default is 10. • For OSPF, you can set the resolution in the range 1 to 1592, where the default is 1.
39 Open Shortest Path First (OSPFv2 and OSPFv3) The Switch supports open shortest path first version 2 (OSPFv2) for IPv4 and version 3 (OSPFv3) for IPv6. Up to 16 OSPF instances can be run simultaneously on the Switch. OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain forwarding tables derived from information about their links to their neighbors.
• graceful-restart mode • graceful-restart role • ip ospf auth-change-wait-time • ip ospf authentication-key • ip ospf cost • ip ospf dead-interval • ip ospf hello-interval • ip ospf message-digest-key • ip ospf mtu-ignore • ip ospf network • ip ospf priority • ip ospf retransmit-interval • ip ospf transmit-delay • log-adjacency-changes • maximum-paths • mib-binding • network area • passive-interface • redistribute • redistribute bgp • redistribute isis • router-id
• timers spf • timers throttle lsa all • timers throttle lsa arrival • OSPFv3 Commands • area authentication • area encryption • auto-cost • clear ipv6 ospf process • debug ipv6 ospf bfd • debug ipv6 ospf • default-information originate • graceful-restart grace-period • graceful-restart mode • ipv6 ospf area • ipv6 ospf authentication • ipv6 ospf bfd all-neighbors • ipv6 ospf cost • ipv6 ospf dead-interval • ipv6 ospf encryption • ipv6 ospf graceful-restart helper-reje
OSPFv2 Commands The Dell Networking implementation of OSPFv2 is based on IETF RFC 2328. area default-cost Set the metric for the summary default route the area border router (ABR) generates into the stub area. Use this command on the border routers at the edge of a stub area. Syntax area area-id default-cost cost To return default values, use the no area area-id default-cost command. Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535.
Parameters area-id Specify the OSPF area in dotted decimal format (A.B.C.D.) or enter a number from zero (0) to 65535. no-redistribution (OPTIONAL) Specify that the redistribute command does not distribute routes into the NSSA. Only use this command in an NSSA area border router (ABR). defaultinformationoriginate (OPTIONAL) Allows external routing information to be imported into the NSSA by using Type 7 default. no-summary (OPTIONAL) Specify that no summary LSAs should be sent into the NSSA.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Only the routes within an area are summarized, and that summary is advertised to other areas by the ABR. External routes are not summarized. Related Commands area stub — creates a stub area. router ospf — enters ROUTER OSPF mode to configure an OSPF instance. area stub Configure a stub area, which is an area not connected to other areas.
auto-cost Specify how the OSPF interface cost is calculated based on the reference bandwidth method. Syntax auto-cost [reference-bandwidth ref-bw] To return to the default bandwidth or to assign cost based on the interface type, use the no auto-cost [reference-bandwidth] command. Parameters ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. The range is from 1 to 4294967. The default is 100 megabits per second. Defaults 100 megabits per second.
clear ip ospf statistics Clear the packet statistics in interfaces and neighbors. Syntax Parameters clear ip ospf process-id statistics [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to clear a specific process. If no Process ID is entered, all OSPF processes are cleared.
debug ip ospf Display debug information on OSPF. Entering the debug ip ospf commands enables OSPF debugging for the first OSPF process. Syntax debug ip ospf process-id [bfd |event | packet | spf | databasetimer rate-limit] To cancel the debug command, use the no debug ip ospf command. Parameters Command Modes Command History process-id Enter the OSPF Process ID to clear a specific process. If no Process ID is entered, all OSPF processes are cleared.
Field Description • 4 - link state update • 5 - link state acknowledgement l: Displays the packet length. rid: Displays the OSPF router ID. aid: Displays the Autonomous System ID. chk: Displays the OSPF checksum. aut: States if OSPF authentication is configured.
Example Field Description bdr: Displays the IP address of the Border Area Router. Dell#debug ip ospf 1 packet OSPF process 90, packet debugging is on Dell# 08:14:24 : OSPF(100:00): Xmt. v:2 t:1(HELLO) l:44 rid:192.1.1.1 aid:0.0.0.1 chk:0xa098 aut:0 auk: keyid:0 to:Gi 4/3 dst: 224.0.0.5 netmask:255.255.255.0 pri:1 N-, MC-, E+, T-, hi:10 di:40 dr:90.1.1.1 bdr:0.0.0.0 default-information originate To generate a default external route into an OSPF routing domain, configure the system.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. redistribute — redistributes routes from other routing protocols into OSPF. default-metric Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the redistribute command. Syntax default-metric number To return to the default values, use the no default-metric [number] command. Parameters number Defaults Disabled.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip ospf asbr — displays the VLAN configuration. distance Define an administrative distance for particular routes to a specific IP address. Syntax distance weight [ip-address mask access-list-name] To delete the settings, use the no distance weight [ip-address mask accesslist-name] command. Parameters weight Specify an administrative distance.
To delete these settings, use the no distance ospf command. Parameters Defaults Command Modes Command History external dist3 (OPTIONAL) Enter the keyword external then a number to specify a distance for external type 5 and 7 routes. The range is from 1 to 255. The default is 110. inter-area dist2 (OPTIONAL) Enter the keywords inter-area then a number to specify a distance metric for routes between areas. The range is from 1 to 255. The default is 110.
Defaults Not configured. Command Modes ROUTER OSPF Command History • For a VLAN, enter the keyword vlan then a number from 1 to 4094. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. distribute-list out To restrict certain routes destined for the local routing table after the SPF calculation, apply a filter.
Version Description heading 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The distribute-list out command applies to routes autonomous system boundary routers (ASBRs) redistributes into OSPF. It can be applied to external type 2 and external type 1 routes, but not to intra-area and inter-area routes. fast-convergence This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route computation so that convergence takes less time.
flood-2328 Enable RFC-2328 flooding behavior. Syntax flood-2328 To disable, use the no flood-2328 command. Defaults Disabled. Command Modes ROUTER OSPF Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information In OSPF, flooding is the most resource-consuming task.
Parameters seconds Defaults Not Configured Command Modes ROUTER OSPF Command History Time duration, in seconds, that specifies the duration of the restart process before OSPF terminates the process. The range is from 40 to 1800 seconds. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. graceful-restart helper-reject Specify the OSPF router to not act as a helper during graceful restart.
Parameters planned-only (OPTIONAL) Enter the keywords planned-only to indicate graceful restart is supported in a planned restart condition only. unplanned-only (OPTIONAL) Enter the keywords unplanned-only to indicate graceful restart is supported in an unplanned restart condition only. Defaults Support for both planned and unplanned failures. Command Modes ROUTER OSPF Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
ip ospf auth-change-wait-time OSPF provides a grace period while OSPF changes its interface authentication type. During the grace period, OSPF sends out packets with new and old authentication scheme until the grace period expires. Syntax ip ospf auth-change-wait-time seconds To return to the default, use the no ip ospf auth-change-wait-time command. Parameters seconds Defaults zero (0) seconds. Command Modes INTERFACE Command History Enter the seconds. The range is from 0 to 300.
Usage Information All neighboring routers in the same network must use the same password to exchange OSPF information. ip ospf cost Change the cost associated with the OSPF traffic on an interface. Syntax ip ospf cost cost To return to default value, use the no ip ospf cost command. Parameters cost Enter a number as the cost. The range is from 1 to 65535. Defaults The default cost is based on the reference bandwidth. Command Modes INTERFACE Command History Version Description 9.9(0.
Command Modes Command History INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information By default, the dead interval is four times the default hello-interval. Related Commands ip ospf hello-interval — sets the time interval between the hello packets. ip ospf hello-interval Specify the time interval between the hello packets sent on the interface.
Parameters keyid Enter a number as the key ID. The range is from 1 to 255. key Enter a continuous character string as the password. Defaults No MD5 authentication is configured. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can configure a maximum of six digest keys on an interface. Of the available six digest keys, the switches select the MD5 key that is common.
ip ospf network Set the network type for the interface. Syntax ip ospf network {broadcast | point-to-point} To return to the default, use the no ip ospf network command. Parameters broadcast Enter the keyword broadcast to designate the interface as part of a broadcast network. point-to-point Enter the keywords point-to-point to designate the interface as part of a point-to-point network. Defaults Not configured. Command Modes ROUTER OSPF Command History Version Description 9.9(0.
Usage Information Setting a priority of 0 makes the router ineligible for election as a designated router or backup designated router. Use this command for interfaces connected to multi-access networks, not point-topoint networks. ip ospf retransmit-interval Set the retransmission time between lost link state advertisements (LSAs) for adjacencies belonging to the interface. Syntax ip ospf retransmit-interval seconds To return to the default values, use the no ip ospf retransmit-interval command.
Parameters seconds Enter the number of seconds as the interval between retransmission. The range is from 1 to 3600. The default is 1 second. This value must be greater than the transmission and propagation delays for the interface. Defaults 1 second Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters number Specify the number of paths. The range for OSPFv2 is from 1 to 16. The default for OSPFv2 is 4 paths. The range for OSPFv3 is from 1 to 64. The default for OSPFv3 is 8 paths. Defaults 4 Command Modes ROUTER OSPF for OSPFv2 ROUTER OSPFv3 for OSPFv3 Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
network area Define which interfaces run OSPF and the OSPF area for those interfaces. Syntax network ip-address mask area area-id To disable an OSPF area, use the no network ip-address mask area area-id command. Parameters ip-address Specify a primary or secondary address in dotted decimal format. The primary address is required before adding the secondary address. mask Enter a network mask in /prefix format. (/x) area-id Enter the OSPF area ID as either a decimal value or in a valid IP address.
To enable both the receiving and sending routing, use the no passive-interface interface command. To return all OSPF interfaces (current and future) to active, use the no passiveinterface default command. Parameters Command Modes Command History default Enter the keyword default to make all OSPF interfaces (current and future) passive.
• Any adjacency is explicitly terminated from all OSPF interfaces. • All previous passive-interface interface commands are removed from the running configuration. • All previous no passive-interface interface commands are removed from the running configuration. no passive-interface interface • Remove the interface from the passive list. • The ABR status for the router is updated. • If passive-interface default is specified, then save no passiveinterface interface into the running configuration.
tag tag-value Defaults Not configured. Command Modes ROUTER OSPF Command History (OPTIONAL) Enter the keyword tag then a number. The range is from 0 to 4294967295. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To redistribute the default route (0.0.0.0/0), configure the default-information originate command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. redistribute isis Redistribute IS-IS routing information throughout the OSPF instance.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. router-id To configure a fixed router ID, use this command. Syntax router-id ip-address To remove the fixed router ID, use the no router-id ip-address command. Parameters ip-address Defaults none. Command Modes ROUTER OSPF Command History Enter the router ID in the IP address format. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
router ospf To configure an OSPF instance, enter ROUTER OSPF mode. Syntax router ospf process-id To clear an OSPF instance, use the no router ospf process-id command. Parameters process-id Defaults Not configured. Command Modes CONFIGURATION Command History Enter a number for the OSPF instance. The range is from 1 to 65535. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
passive-interface FastEthernet 0/1 Dell(conf-router_ospf)# show ip ospf Display information on the OSPF process configured on the switch. Syntax Parameters Command Modes Command History show ip ospf process-id process-id • EXEC • EXEC Privilege Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Convergence Level 0 Min LSA origination 0 msec, Min LSA arrival 1000 msec Min LSA hold time 5000 msec, Max LSA wait time 5000 msec Number of area in this router is 1, normal 1 stub 0 nssa 0 Area BACKBONE (0) Number of interface in this area is 1 SPF algorithm executed 205 times Area ranges are Dell# Related Commands show ip ospf database — displays information about the OSPF routes configured. show ip ospf interface — displays the OSPF interfaces configured.
1.1.1.1 is in a directly connected area since the Flag is E/-/-/. For remote ASBRs, the E flag is clear (-/-/-/). Example Dell#show ip ospf 1asbr RouterID 3.3.3.3 1.1.1.1 Dell# Flags -/-/-/ E/-/-/ Cost Nexthop 2 10.0.0.2 0 0.0.0.0 Interface Area Gi 0/1 1 0 show ip ospf database Display all LSA information. If you do not enable OSPF on the switch, no output is generated.
Example Field Description Link count Displays the number of interfaces for that router. Dell>show ip ospf 1 database OSPF Router with ID (11.1.2.1) (Process ID 1) Router (Area 0.0.0.0) Link ID ADV Router Age Seq# Checksum 11.1.2.1 11.1.2.1 673 0x80000005 0x707e 13.1.1.1 13.1.1.1 676 0x80000097 0x1035 192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd Link ID 10.2.3.2 10.2.4.2 Link ID 0.0.0.0 1.1.1.1 10.1.1.0 10.1.2.0 10.2.2.0 10.2.3.0 10.2.4.0 11.1.1.0 11.1.2.0 12.1.2.0 13.1.1.0 13.1.2.0 172.16.1.
adv-router ipaddress Command Modes Command History • EXEC • EXEC Privilege • the router’s OSPF router ID for Type 1 LSAs or Type 4 LSAs • the default destination (0.0.0.0) for Type 5 LSAs (OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that router. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
LS age: 1437 Options: (No TOS-capability, No DC, E) LS type: Summary Asbr Link State ID: 103.1.50.1 Advertising Router: 1.1.1.10 LS Seq Number: 0x8000000f Checksum: 0x8221 Length: 28 Network Mask: /0 TOS: 0 Metric: 2 LS age: 473 Options: (No TOS-capability, No DC, E) LS type: Summary Asbr Link State ID: 104.1.50.1 Advertising Router: 1.1.1.10 LS Seq Number: 0x80000010 Checksum: 0x4198 Length: 28 --More-Related Commands show ip ospf database — displays OSPF database information.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip ospf process-id database external command shown in the following example. Example Field Description LS Age Displays the LSA’s age. Options Displays the optional capabilities available on router.
Type-5 AS External LS age: 612 Options: (No TOS-capability, No DC, E) LS type: Type-5 AS External Link State ID: 12.12.12.2 Advertising Router: 20.31.3.1 LS Seq Number: 0x80000007 Checksum: 0x4cde Length: 36 Network Mask: /32 Metrics Type: 2 TOS: 0 Metrics: 25 Forward Address: 0.0.0.0 External Route Tag: 43 LS age: 1868 Options: (No TOS-capability, DC) LS type: Type-5 AS External Link State ID: 24.216.12.0 Advertising Router: 20.20.20.
• adv-router ipaddress Command Modes Command History • EXEC • EXEC Privilege the default destination (0.0.0.0) for Type 5 LSAs (OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that router. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip ospf process-id database network command shown in the following example.
Link State ID: 202.10.10.2 Advertising Router: 20.20.20.8 LS Seq Number: 0x80000006 Checksum: 0xa35 Length: 36 Network Mask: /24 Attached Router: 20.20.20.8 Attached Router: 20.20.20.9 Attached Router: 20.20.20.7 Network (Area 0.0.0.1) LS age: 252 Options: (TOS-capability, No DC, E) LS type: Network Link State ID: 192.10.10.2 Advertising Router: 192.10.10.2 LS Seq Number: 0x80000007 Checksum: 0x4309 Length: 36 Network Mask: /24 Attached Router: 192.10.10.2 Attached Router: 20.20.20.1 Attached Router: 20.20.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show ip ospf database — displays OSPF database information. show ip ospf database opaque-area Display the opaque-area (type 10) LSA information. Syntax Parameters show ip ospf process-id database opaque-area [link-state-id] [advrouter ip-address] process-id Enter the OSPF Process ID to show a specific process.
Example Item Description Options Displays the optional capabilities available on router. The following options can be found in this item: • TOS-capability or No TOS-capability is displayed depending on whether the router can support Type of Service. • DC or No DC is displayed depending on whether the originating router can support OSPF over demand circuits. • E or No E is displayed on whether the originating router can accept AS External LSAs. LS Type Displays the LSA’s type.
show ip ospf database opaque-as Display the opaque-as (type 11) LSA information. Syntax Parameters show ip ospf process-id database opaque-as [link-state-id] [advrouter ip-address] process-id Enter the OSPF process ID to show a specific process. If you do not enter the process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Parameters process-id Enter the OSPF process ID to show a specific process. If you do not enter the process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
• adv-router ipaddress Command Modes Command History • EXEC • EXEC Privilege the default destination (0.0.0.0) for Type 5 LSAs (OPTIONAL) Enter the keywords adv-router then the IP address of an Advertising Router to display only the LSA information about that router. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Example Item Description Number of TOS Metric Lists the number of TOS metrics. TOS 0 Metric Lists the number of TOS 0 metrics. Dell#show ip ospf 100 database router OSPF Router with ID (1.1.1.10) (Process ID 100) Router (Area 0) LS age: 967 Options: (No TOS-capability, No DC, E) LS type: Router Link State ID: 1.1.1.10 Advertising Router: 1.1.1.
show ip ospf database summary Display the network summary (type 3) LSA routing information. Syntax Parameters show ip ospf process-id database summary [link-state-id] [advrouter ip-address] process-id Enter the OSPF process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process. link-state-id (OPTIONAL) Specify LSA ID in dotted decimal format.
Item Description • Example E or No E is displayed on whether the originating router can accept AS External LSAs. LS Type Displays the LSA type. Link State ID Displays the Link State ID. Advertising Router Identifies the router ID of the LSA’s originating router. LS Seq Number Displays the link state sequence number. This number allows you to identify old or duplicate LSAs. Checksum Displays the Fletcher checksum of an LSA’s complete contents. Length Displays the length in bytes of the LSA.
# Related Commands show ip ospf database — displays OSPF database information. show ip ospf interface Display the OSPF interfaces configured. If OSPF is not enabled on the switch, no output is generated. Syntax Parameters Command Modes Command History show ip ospf process-id interface [interface] process-id Enter the OSPF process ID to show a specific process. If you do not enter a process ID, the command applies only to the first OSPF process.
Example Item Description TenGigabitEthern et... This line identifies the interface type slot/port and the status of the OSPF protocol on that interface. Internet Address... This line displays the IP address, network mask and area assigned to this interface. Process ID... This line displays the OSPF Process ID, Router ID, Network type and cost metric for this interface. Transmit Delay... This line displays the interface’s settings for Transmit Delay, State, and Priority.
Hello due in 00:00:08 Neighbor Count is 3, Adjacent neighbor count is 2 Adjacent with neighbor 192.168.253.5 (Designated Router) Adjacent with neighbor 192.168.253.3 (Backup Designated Router) Loopback 0 is up, line protocol is up Internet Address 192.168.253.2/32, Area 0.0.0.1 Process ID 1, Router ID 192.168.253.2, Network Type LOOPBACK, Cost: 1 Loopback interface is treated as a stub Host. Dell> show ip ospf neighbor Display the OSPF neighbors connected to the local router.
20.20.20.7 1 FULL/DR 00:00:32 182.10.10.3 Gi 0/0 0.0.0.2 192.10.10.2 1 FULL/DR 00:00:37 192.10.10.2 Gi 0/1 0.0.0.1 20.20.20.1 1 FULL/DROTHER00:00:36 192.10.10.4 Gi 0/1 0.0.0.1 Dell# show ip ospf routes Display routes OSPF calculates and stores in OSPF RIB. Syntax Parameters Defaults Command Modes Command History show ip ospf process-id routes process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process.
show ip ospf statistics Display OSPF statistics. Syntax Parameters show ip ospf process-id statistics global | [interface name {neighbor router-id}] process-id Enter the OSPF Process ID to show a specific process. If no Process ID is entered, command applies only to the first OSPF process. global Enter the keyword global to display the packet counts received on all running OSPF interfaces and packet counts OSPF neighbors receive and transmit.
Row Heading Description Total Displays the total number of packets the OSPF process receives/ transmits. Error Displays the error count while receiving and transmitting packets by the OSPF process. Hello Number of OSPF Hello packets. DDiscr Number of database description packets. LSReq Number of link state request packets. LSUpd Number of link state update packets. LSAck Number of link state acknowledgement packets. TxQ-Len The transmission queue length.
Example Error Type Description Version Version mismatch AreaMismatch Area mismatch Conf-Issue The received hello packet has a different hello or dead interval than the configuration. No-Buffer Buffer allocation failure. Seq-no A sequence no errors occurred during the database exchange process. Socket Socket Read/Write operation error. Q-overflow Packets dropped due to queue overflow. Unknown-Pkt Received packet is not an OSPF packet.
• The LSU Q length and its highest mark for each neighbor • The LSR Q length and its highest mark for each neighbor Example (Statistics) Dell#show ip ospf 10 statistics Interface TenGigabitEthernet 4/45 Error packets (Receive statistics) Intf-Down 0 Non-Dr 0 Self-Org Wrong-Len 0 Invld-Nbr 0 Nbr-State Auth-Error 0 MD5-Error 0 Cksum-Err Version 0 AreaMisMatch 0 Conf-Issue SeqNo-Err 0 Unknown-Pkt 0 Bad-LsReq RtidZero 0 Neighbor ID 3.1.1.
Example Dell#show ip ospf 10 timers rate-limit List of LSAs in rate limit Queue LSA id: 1.1.1.0 Type: 3 Adv Rtid: 3.3.3.3 Expiry time: 00:00:09.111 LSA id: 3.3.3.3 Type: 1 Adv Rtid: 3.3.3.3 Expiry time: 00:00:23.96 Dell# show ip ospf topology Display routers in directly connected areas. Syntax Parameters Defaults Command Modes Command History show ip ospf process-id topology process-id Enter the OSPF Process ID to show a specific process.
summary-address To advertise one external route, set the OSPF ASBR. Syntax summary-address ip-address mask [not-advertise] [tag tag-value] To disable summary address, use the no summary-address ip-address mask command. Parameters ip-address Specify the IP address in dotted decimal format of the address to summarize. mask Specify the mask in dotted decimal format of the address to summarize. not-advertise (OPTIONAL) Enter the keywords not-advertise to suppress that match the network prefix/mask pair.
timers spf Set the time interval between when the switch receives a topology change and starts a shortest path first (SPF) calculation. Syntax timers spf delay holdtime To return to the default, use the no timers spf command. Parameters Defaults Command Modes Command History delay Enter a number as the delay. The range is from 0 to 4294967295. The default is 5 seconds. holdtime Enter a number as the hold time. The range is from 0 to 4294967295. The default is 10 seconds.
timers throttle lsa all Configure LSA transmit intervals. Syntax timers throttle lsa all {start-interval | hold-interval | maxinterval} To return to the default, use the no timers throttle lsa command. Parameters Defaults Command Modes Command History start-interval Set the minimum interval between initial sending and resending the same LSA. The range is from 0 to 600,000 milliseconds. hold-interval Set the next interval to send the same LSA.
To return to the default, use the no timers throttle lsa command. Parameters arrival-time Defaults 1000 msec Command Modes ROUTER OSPF Command History Set the interval between receiving the same LSA repeatedly, to allow sufficient time for the system to accept the LSA. The range is from 0 to 600,000 milliseconds. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
MD5 | SHA1 Authentication type: Message Digest 5 (MD5) or Secure Hash Algorithm 1 (SHA-1). key-encryptiontype (OPTIONAL) Specifies if the key is encrypted. The values are 0 (key is not encrypted) or 7 (key is encrypted). key Text string used in authentication. For MD5 authentication, the key must be 32 hex digits (nonencrypted) or 64 hex digits (encrypted). For SHA-1 authentication, the key must be 40 hex digits (nonencrypted) or 80 hex digits (encrypted). Defaults Not configured.
To remove an IPsec encryption policy from an interface, use the no area area-id encryption spi number command. Parameters area area-id Area for which OSPFv3 traffic is to be encrypted. For area-id, enter a number. The range is from 0 to 4294967295. ipsec spi number Security Policy index (SPI) value that identifies an IPsec security policy. The range is from 256 to 4294967295. esp encryptionalgorithm Encryption algorithm used with ESP. Valid values are: 3DES, DES, AES-CBC, and NULL.
For SHA-1 authentication, the key must be 40 hex digits (nonencrypted) or 80 hex digits (encrypted). null Defaults Not configured. Command Modes ROUTER OSPFv3 Command History Causes an encryption policy configured for the area to not be inherited on the interface. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Before you enable IPsec encryption on an OSPFv3 interface, first enable OSPFv3 globally on the router.
Parameters ref-bw (OPTIONAL) Specify a reference bandwidth in megabits per second. The range is from 1 to 4294967. The default is 100 megabits per second. Defaults 100 megabits per second. Command Modes ROUTER OSPFv3 Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.9(0.
debug ipv6 ospf bfd Display debug information and interface types for BFD on OSPF IPv6 packets. Syntax [no] debug ipv6 ospf bfd [interface] To cancel the debug command, use the no debug ipv6 ospf command. Parameters Command Modes Command History interface (OPTIONAL) Enter one of the following keywords and slot/port or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
Session 00:59:27 : OSPFv3INFO: Enabling BFD for NBRIP fe80:0000:0000:0000:0201:e8ff:fe8b:7720 00:59:27 : OSPFv3INFO: Completed Enabling BFD on interface Te 0/2 00:59:27 : OSPFv3INFO: Completed Interface mode BFD configuration on Te 0/2!! 00:59:27 : OSPFv3INFO: Enabling BFD for NBRIP fe80:0000:0000:0000:0201:e8ff:fe8b:7720 00:59:27 : OSPFv3INFO: Ospf3_register_bfd ospf key 27648 00:59:27 : OSPFv3INFO: OSPFV3 Enabling BFD for NBRIP fe80:0000:0000:0000:0201:e8ff:fe8b:7720 Interface Te 0/2 IfIndex 34145282 00:5
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. default-information originate Configure the system to generate a default external route into an OSPFv3 routing domain. Syntax default-information originate [always] [metric metric-value] [metric-type type-value] [route-map map-name] To return to the default values, use the no default-information originate command.
graceful-restart grace-period Enable OSPFv3 graceful restart globally by setting the grace period (in seconds) that an OSPFv3 router’s neighbors continues to advertise the router as adjacent during a graceful restart. Syntax graceful-restart grace-period seconds To disable OSPFv3 graceful restart, enter no graceful-restart grace-period. Parameters seconds Time duration, in seconds, that specifies the duration of the restart process before OSPFv3 terminates the process.
To disable graceful restart mode, enter no graceful-restart mode. Parameters planned-only (OPTIONAL) Enter the keywords planned-only to indicate graceful restart is supported in a planned restart condition only. unplanned-only (OPTIONAL) Enter the keywords unplanned-only to indicate graceful restart is supported in an unplanned restart condition only. Defaults OSPFv3 graceful restart supports both planned and unplanned failures. Command Modes ROUTER OSPFv3 Command History Version Description 9.
Command Modes Command History INTERFACE Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 ospf authentication Enable IPv6 OSPF on an interface. Syntax ipv6 ospf authentication {null | ipsec spi number {MD5 | SHA1} [key-encryption-type] key}} To remove an IPsec authentication policy from an interface, use the no ipv6 ospf authentication spi number command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Before you enable IPsec authentication on an OSPFv3 interface, first enable IPv6 unicast routing globally, configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area. An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router.
The default is Active. Defaults See Parameters. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command provides the flexibility to fine-tune the timer values based on individual interface needs when you configure the ipv6 ospf bfd command in CONFIGURATION mode. Any timer values specified with this command overrides timers set using the bfd all-neighbors command.
Using this formula, the default path cost is calculated as: • TenGigabitEthernet—Default cost is 1 • FortygigEthernet — Default cost is 1 • Ethernet—Default cost is 10 ipv6 ospf dead-interval Set the time interval since the last hello-packet was received from a router. After the time interval elapses, the neighboring routers declare the router down. Syntax Parameters ipv6 ospf dead-interval seconds seconds Enter the time interval in seconds. The range is from 1 to 65535 seconds.
To remove null authentication on an interface to allow the interface to inherit the authentication policy configured for the OSPFv3 area, use the no ipv6 ospf encryption null command. Parameters null Causes an encryption policy configured for the area to not be inherited on the interface. ipsec spi number Security Policy index (SPI) value that identifies an IPsec security policy. The range is from 256 to 4294967295. esp encryptionalgorithm Encryption algorithm used with ESP.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Before you enable IPsec encryption on an OSPFv3 interface, first enable IPv6 unicast routing globally, configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area. An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router.
ipv6 ospf hello-interval Specify the time interval between the hello packets sent on the interface. Syntax Parameters ipv6 ospf hello—interval seconds seconds Enter the time interval in seconds as the time between hello packets. The range is from 1 to 65525 seconds. Defaults 10 seconds (Ethernet). Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Setting a priority of 0 makes the router ineligible for election as a Designated Router or Backup Designated Router. Use this command for interfaces connected to multi-access networks, not point-topoint networks. ipv6 router ospf Enable OSPF for IPv6 router configuration. Syntax ipv6 router ospf process-id To exit OSPF for IPv6, use the no ipv6 router ospf process-id command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. passive-interface Disable (suppress) sending routing updates on an interface. Syntax passive—interface {default | interface} To enable sending routing updates on an interface, use the no passive-interface interface command. To return all OSPF interfaces (current and future) to active, use the no passiveinterface default command.
Usage Information By default, no interfaces are passive. Routing updates are sent to all interfaces on which the routing protocol is enabled. If you disable the sending of routing updates on an interface, the particular address prefix continues to be advertised to other interfaces, and updates from other routers on that interface continue to be received and processed. OSPFv3 for IPv6 routing information is not sent or received through the specified router interface.
The default is 2. route-map mapname (OPTIONAL) Enter the keywords route-map then the name of an established route map. If the route map is not configured, the default is deny (to drop all routes). tag tag-value (OPTIONAL) Enter the keyword tag to set the tag for routes redistributed into OSPFv3. The range is from 0 to 4294967295 The default is 0. Defaults Not configured. Command Modes ROUTER OSPF for OSPFv2 ROUTER OSPFv3 for OSPFv3 Command History Version Description 9.9(0.
Defaults The router ID is selected automatically from the set of IPv4 addresses configured on a router. Command Modes ROUTER OSPFv3 for OSPFv3 Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Added support for OSPFv3. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can configure an arbitrary value in the IP address for each router. However, each router ID must be unique.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The show crypto ipsec policy command output displays the AH and ESP parameters configured in IPsec security policies, including the SPI number, keys, and algorithms used. When configured in a helper-reject role, an OSPFv3 router ignores the Grace LSAs that it receives from a restarting OSPFv3 neighbor.
Usage Information The show crypto ipsec sa ipv6 command output displays security associations set up for OSPFv3 links in IPsec authentication and encryption policies on the router. show ipv6 ospf database Display information in the OSPFv3 database, including link-state advertisements (LSAs). Syntax Parameters show ipv6 ospf database [database-summary | grace-lsa] databasesummary (OPTIONAL) Enter the keywords database-summary to view a summary of database LSA information.
Parameters interface Defaults none Command Modes EXEC Command History (OPTIONAL) Enter one of the following keywords and slot/port or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet and the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE and the slot/port information. • For a Port Channel interface, enter the keywords portchannel and a number. The range is from 1 to 128.
show ipv6 ospf neighbor Display the OSPF neighbor information on a per-interface basis. Syntax Parameters show ipv6 ospf neighbor [interface] interface Defaults none Command Modes EXEC (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
holdtime Defaults Enter a number as the hold time. The range is from 0 to 4294967295. The default is 10 seconds. • delay = 5 seconds • holdtime = 10 seconds Command Modes ROUTER OSPFv3 for OSPFv3 Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.9(0.
40 Policy-based Routing (PBR) Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR, create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic passing through the interface is subject to the rules defined in the redirect list. PBR is supported by the Dell Networking operating software (OS).
Related Commands Version Description 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ip redirect-list – enables an IP Redirect List. ip redirect-group Apply a redirect list (policy-based routing) on an interface. You can apply multiple redirect lists to an interface by entering this command multiple times. Syntax ip redirect-group redirect-list-name To remove a redirect list from an interface, use the no ip redirect-group name command.
Related Commands • show cam pbr – displays the content of the PBR CAM. • show ip redirect-list – displays the redirect-list configuration. ip redirect-list Configure a redirect list and enter REDIRECT-LIST mode. Syntax ip redirect-list redirect-list-name To remove a redirect list, use the no ip redirect-list command. Parameters redirect-list-name Defaults none Command Modes CONFIGURATION Command History Enter the name of a redirect list. Version Description 9.9(0.
• Parameters You can also use the no permit {ip-protocol-number | protocol-type} {source mask | any | host ip-address} {destination mask | any | host ip-address} [bit] [operators] command. ip-protocolnumber Enter a number from 0 to 255 for the protocol identified in the IP protocol header.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Introduced on the MXL 10/40GbE Switch IO Module. 8.4.2.1 Introduced on the C-Series and S-Series. 8.4.2.0 Introduced on the E-Series TeraScale. 7.5.1.0 Introduced on the E-Series ExaScale. redirect Configure a rule for the redirect list.
• bit (OPTIONAL) For the TCP protocol type only, enter one or a combination of the following TCP flags: • ack = acknowledgement • fin = finish (no more data from the user) • psh = push function • rst = reset the connection • syn = synchronize sequence number • urg = urgent field source Enter the IP address of the network or host from which the packets were sent. mask Enter a network mask in /prefix format (/x). any Enter the keyword any to specify that all traffic is subject to the filter.
seq Configure a filter with an assigned sequence number for the redirect list.
host ip-address Enter the keyword host then the IP address to specify a host IP address. destination Enter the IP address of the network or host to which the packets are sent.
show cam pbr Displaysthe PBR CAM content. Syntax Parameters show cam pbr {[interface interface] | stack—unit slot-number portset number]} [summary] interface interface Enter the keyword interface then the name of the interface. stack–unit number Enter the keyword stack-unit then the slot number. The range is from 0 to 11 . port-set number Enter the keywords port-set then the port-pipe number. The range is from 0 to 0. summary Enter the keyword summary to view only the total number of CAM entries.
show ip redirect-list View the redirect list configuration and the interfaces it is applied to. Syntax Parameters Command Modes Command History Example show ip redirect-list redirect-list-name redirect-list-name • EXEC • EXEC Privilege Enter the name of a configured Redirect list. Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for removing the Sonet interface on the MXL. 7.4.1.0 Introduced.
41 PIM-Sparse Mode (PIM-SM) The protocol-independent multicast (PIM) commands are supported by the Dell Networking Operating System (OS).
• ipv6 pim bsr-border • ipv6 pim bsr-candidate • ipv6 pim dr-priority • ipv6 pim join-filter • ipv6 pim query-interval • ipv6 pim neighbor-filter • ipv6 pim register-filter • ipv6 pim rp-address • ipv6 pim rp-candidate • ipv6 pim sparse-mode • ipv6 pim spt-threshold • show ipv6 pim bsr-router • show ipv6 pim interface • show ipv6 pim neighbor • show ipv6 pim rp • show ipv6 pim tib IPv4 PIM-Sparse Mode Commands The following describes the IPv4 PIM-sparse mode (PIM-SM) commands
clear ip pim tib Clear PIM tree information from the PIM database. Syntax Parameters Command Modes Command History clear ip pim tib [group] group (OPTIONAL) Enter the multicast group address in dotted decimal format (A.B.C.D). EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
packet [in | out] • in: to view incoming packets • out: to view outgoing packets register (OPTIONAL) Enter the keyword register to view PIM register address in dotted decimal format (A.B.C.D). state (OPTIONAL) Enter the keyword state to view PIM state changes. timer [assert | hello | joinprune | register] (OPTIONAL) Enter the keyword timer to view PIM timers. Enter one of the optional parameters: Defaults Disabled.
Usage Information This command is applied to the subsequent PIM-BSR. Existing BSR advertisements are cleaned up by time-out. To clean the candidate RP advertisements, use the clear ip pim rp-mapping command. ip pim bsr-candidate To join the Bootstrap election process, configure the PIM router. Syntax ip pim bsr-candidate interface [hash-mask-length] [priority] To return to the default value, use the no ip pim bsr-candidate command.
ip pim dr-priority Change the designated router (DR) priority for the interface. Syntax ip pim dr-priority priority-value To remove the DR priority value assigned, use the no ip pim dr-priority command. Parameters priority-value Defaults 1 Command Modes INTERFACE Command History Enter a number. Preference is given to larger/higher number. The range is from 0 to 4294967294. The default is 1. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Example Dell(conf)# ip access-list extended iptv-channels Dell(config-ext-nacl)# permit ip 10.1.2.3/24 225.1.1.0/24 Dell(config-ext-nacl)# permit ip any 232.1.1.0/24 Dell(config-ext-nacl)# permit ip 100.1.1.
To remove the restriction, use the no ip pim neighbor-filter {access-list} command. Parameters access-list Defaults none Command Modes CONFIGURATION Command History Enter the name of a standard access list. Maximum 16 characters. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Do not enter this command before creating the access-list. ip pim query-interval Change the frequency of PIM Router-Query messages.
ip pim register-filter To prevent a PIM source DR from sending register packets to an RP for the specified multicast source and group, use this feature. Syntax ip pim register-filter access-list To return to the default, use the no ip pim register-filter access-list command. Parameters access-list Defaults Not configured. Command Modes CONFIGURATION Command History Enter the name of an extended access list. Maximum 16 characters. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
override Enter the keyword override to override the BSR updates with static RP. The override takes effect immediately during enable/ disable. NOTE: This option is applicable to multicast group range. Defaults Not configured. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information First-hop routers use this address by to send register packets on behalf of source multicast hosts.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Priority is stored at BSR router when receiving a Candidate-RP-Advertisement. ip pim sparse-mode Enable PIM sparse mode and IGMP on the interface. Syntax ip pim sparse-mode To disable PIM sparse mode and IGMP, use the no ip pim sparse-mode command. Defaults Disabled.
access-list name (OPTIONAL) Enter the name of a previously configured Extended ACL to enable the expiry time to specified S,G entries. Defaults Disabled. The default expiry timer (with no times configured) is 210 sec. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command configures an expiration timer for all S.
no ip pim snooping dr-flood Disable the flooding of multicast packets to the PIM designated router. Syntax no ip pim snooping dr-flood To re-enable the flooding of multicast packets to the PIM designated router, use the ip pim snooping dr-flood command. Defaults Enabled. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
• Command History Example EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. E600-7-rpm0#show ip pim bsr-router PIMv2 Bootstrap information This system is the Bootstrap Router (v2) BSR address: 7.7.7.7 (?) Uptime: 16:59:06, BSR Priority: 0, Hash mask length: 30 Next bootstrap message in 00:00:08 This system is a candidate BSR Candidate BSR address: 7.7.7.
Example Field Description Nbr Count Displays the number of PIM neighbors discovered over this interface. Query Intvl Displays the query interval for Router Query messages on that interface (configured with ip pim query-interval command). DR Prio Displays the Designated Router priority value configured on the interface (use the ip pim dr-priority command). DR Displays the IP address of the Designated Router for that interface.
Field Description Uptime/expires Displays the amount of time the neighbor has been up then the amount of time until the neighbor is removed from the multicast routing table (that is, until the neighbor hold time expires). Ver Displays the PIM version number. • DR prio/Mode Example v2 = PIM version 2 Displays the Designated Router priority and the mode.
224.3.3.3 225.1.2.1 225.1.2.2 229.1.2.1 229.1.2.2 Dell# 165.87.20.4 165.87.20.4 165.87.20.4 165.87.20.4 165.87.20.4 Example (Mapping) Dell#sh ip pim rp mapping Group(s): 224.0.0.0/4 RP: 165.87.20.4, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:02:46 RP: 165.87.20.3, v2 Info source: 165.87.20.5, via bootstrap, priority 0 Uptime: 00:03:11, expires: 00:03:03 Dell# Example (Address) Dell#sh ip pim rp 229.1.2.1 Group RP 229.1.2.1 165.87.20.
Example (#2) Field Description Ver/Mode Displays the PIM version number for each VLAN interface with PIM-SM snooping enabled: • v2 = PIM version 2 • S = PIM Sparse mode Nbr Count Displays the number of neighbors learned through PIM-SM snooping on the interface. DR Prio Displays the Designated Router priority value configured on the interface (ip pim dr-priority command). DR Displays the IP address of the Designated Router for that interface.
Field Description Interface Displays the VLAN ID number and slot/port on which the PIMSM-enabled neighbor was discovered. Uptime/expires Displays the amount of time the neighbor has been up then the amount of time until the neighbor is removed from the multicast routing table (that is, until the neighbor hold time expires).
Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip pim snooping tib commands shown in the following example. Example Field Description (S, G) Displays the entry in the PIM multicast snooping database. uptime Displays the amount of time the entry has been in the PIM multicast route table.
Flags: J/P - (*,G) Join/Prune, j/p - (S,G) Join/Prune SGR-P - (S,G,R) Prune Timers: Uptime/Expires * : Inherited port (*, 225.1.2.1), uptime 00:00:01, expires 00:02:59, RP 165.87.70.1, flags: J Incoming interface: Vlan 2, RPF neighbor 0.0.0.0 Outgoing interface list: TenGigabitEthernet 4/5 RPF 165.87.32.2 00:00:01/00:02:59 TenGigabitEthernet 4/6 Upstream Port -/Dell#show ip pim snooping tib vlan 2 225.1.2.1 165.87.1.
0 passive PIM interfaces 3 active PIM neighbors TIB summary: 1/1 (*,G) entries in PIM-TIB/MFC 1/1 (S,G) entries in PIM-TIB/MFC 0/0 (S,G,Rpt) entries in PIM-TIB/MFC 0 0 0 0 PIM nexthops RPs sources Register states Message summary: 2582/2583 Joins sent/received 5/0 Prunes sent/received 0/0 Candidate-RP advertisements sent/received 0/0 BSR messages sent/received 0/0 State-Refresh messages sent/received 0/0 MSDP updates sent/received 0/0 Null Register messages sent/received 0/0 Register-stop messages sent/rec
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip pim tib command shown in the following example. Example Field Description (S, G) Displays the entry in the multicast PIM database. uptime Displays the amount of time the entry has been in the PIM route table. expires Displays the amount of time until the entry expires and is removed from the database.
M- MSDP created entry, A- Candidate for MSDP Advertisement, K- Ack-Pending State Timers: Uptime/Expires Interface state: Interface, next-Hop, State/Mode (*, 226.1.1.1), uptime 01:29:19, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: TenGigabitEthernet 0/2, RPF neighbor 10.211.1.2 Outgoing interface list: TenGigabitEthernet 0/8 (*, 226.1.1.2), uptime 00:18:08, expires 00:00:52, RP 10.211.2.1, flags: SCJ Incoming interface: TenGigabitEthernet 1/2, RPF neighbor 10.211.1.
IPv6 PIM-Sparse Mode Commands The following describes the IPv6 PIM-sparse mode (PIM-SM) commands. ipv6 pim bsr-border Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface. Syntax ipv6 pim bsr-border Defaults Disabled. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command is applied to the subsequent PIM-BSR messages.
• hash-mask-length (OPTIONAL) Enter the hash mask length for RP selection. The range is from 0 to 128. The default is 126. priority (OPTIONAL) Enter the priority value for Bootstrap election process. The range is from 0 to 255. The default is 0. Defaults Refer to Parameters. Command Modes CONFIGURATION Command History For a VLAN, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.
ipv6 pim join-filter Permit or deny PIM Join/Prune messages on an interface using an access list. This command prevents the PIM-SM router from creating state based on multicast source and/or group. Syntax Parameters ipv6 pim join-filter access-list access-list Enter the name of an extended access list. in Enter the keyword in to apply the access list to inbound traffic. out Enter the keyword out to apply the access list to outbound traffic.
Parameters seconds Defaults 30 seconds Command Modes INTERFACE Command History Enter a number as the number of seconds between router query messages. The range is from 0 to 65535. The default is 30 seconds. Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. ipv6 pim neighbor-filter Prevent the system from forming a PIM adjacency with a neighboring system.
Defaults none Command Modes CONFIGURATION Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf)#ipv6 pim register-filter REG-FIL_ACL Dell(conf)#ipv6 access-list REG-FIL_ACL Dell(conf-ipv6-acl)#deny ipv6 165:87:34::10/128 ff0e:: 225:1:2:0/112 Dell(conf-ipv6-acl)#permit ipv6 any any Dell(conf-ipv6-acl)#exit ipv6 pim rp-address Configure a static PIM rendezvous point (RP) address for a group.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The RP addresses are stored in the order in which they are entered. RP addresses learned via BSR take priority over static RP addresses. Without the override option, the BSR-advertised RPs updates take precedence over the statically configured RPs. ipv6 pim rp-candidate Specify an interface as an RP candidate.
ipv6 pim sparse-mode Enable IPv6 PIM sparse mode on the interface. Syntax ipv6 pim sparse-mode To disable IPv6 PIM sparse mode, use the no ipv6 pim sparse-mode command. Defaults Disabled. Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Enable the interface (use the no shutdown command) and not have the switchport command configured. Also enable Multicast globally.
Usage Information PIM leaf routers join the shortest path tree immediately after the first packet arrives from a new source. show ipv6 pim bsr-router View information on the Bootstrap router (v2). Syntax Command Modes Command History Example show ipv6 pim bsr-router • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell#show ipv6 pim interface Interface Ver/ Nbr Query DR Mode Count Intvl Prio Te 0/3 v2/S 1 30 1 Address : fe80::201:e8ff:fe02:140f DR : this router Te 0/1 v2/S 0 30 1 Address : fe80::201:e8ff:fe02:1417 DR : this router Dell# show ipv6 pim neighbor Displays IPv6 PIM neighbor information. Syntax Parameters Command Modes Command History Example show ipv6 pim neighbor [detail] detail • EXEC • EXEC Privilege (OPTIONAL) Enter the keyword detail to displayed PIM neighbor detailed information.
Parameters Command Modes Command History Example mapping (OPTIONAL) Enter the keyword mapping to display the multicast groups-to-RP mapping and information on how RP is learnt. group-address (OPTIONAL) Enter the multicast group address mask in dotted decimal format to view RP for a specific group. • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
NOTE: The :: notation specifies successive hexadecimal fields of zero. Command Modes Command History Example • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
42 Port Monitoring The port monitoring feature allows you to monitor network traffic by forwarding a copy of each incoming or outgoing packet from one port to another port. Important Points to Remember • Port monitoring is supported on physical ports and logical interfaces, such as Port Channels and virtual local area networks (VLANs). • The monitoring (destination, “MG”) and monitored (source, “MD”) ports must be on the same switch.
To remove the description, use the no description {description} command. Parameters description Defaults none Command Modes CONFIGURATION Command History Related Commands Enter a description regarding this session (80 characters maximum). Version Description 9.9(0.0) Introduced on the FN IOM. 9.4(0.0) Added support for the RPM / ERPM. 8.3.16.1 Introduced on the M I/O Aggregator. monitor session — enables a monitoring session. flow-based enable Enable flow-based monitoring.
Related Commands monitor session – enables a monitoring session. monitor session Create a session for monitoring traffic with port monitoring. Syntax monitor session session-ID (type { rpm | erpm }) [drop] To delete a session, use the no monitor session session-ID command. To delete all monitor sessions, use the no monitor session all command. Parameters session-ID Enter a session identification number. The range is from 0 to 65535.
rate-limit Configure the rate-limit to limit the mirrored packets. Syntax rate-limit limit To remove the limit, use the no rate-limit limit command. Parameters limit Enter the rate-limit value. The range is from 0 to 40000 Megabits per second. Defaults 60 Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide.
Example Dell(conf-mon-sess-1)#show config ! monitor session 1 source TenGigabitEthernet 0/1 destination Port-channel 1 direction rx show monitor session Display the monitor information of a particular session or all sessions. Syntax show monitor session {session-ID} To display monitoring information for all sessions, use the show monitor session command. Parameters Defaults Command Modes Command History Example Related Commands session-ID (OPTIONAL) Enter a session identification number.
To display the running configuration for all monitor sessions, use the show runningconfig monitor session command. Parameters Defaults Command Modes Command History session-ID (OPTIONAL) Enter a session identification number. The range from 0 to 65535. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the M I/O Aggregator.
• For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For a VLAN interface enter the keyword VLAN then by a number range from 1 to 4094. • For a port channel interface, enter the keyword LAG then port channel and the port-channel id . range Enter the keyword range to specify a list of interfaces. any Enter the keyword any to specify all interfaces. NOTE: This option is applicable only with drop monitor session.
Example 9.4(0.0) Added support for Source and destination. 8.3.16.1 Introduced on the M I/O Aggregator.
43 Private VLAN (PVLAN) Private VLANs extend the Dell Networking OS security suite by providing Layer 2 isolation between ports within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair. The Dell Networking OS private VLAN implementation is based on RFC 3069. For more information, refer to the following commands. The command output is augmented in the Dell Networking OS version 7.8.1.
• Isolated port: An isolated port is a port that, in Layer 2, can only communicate with promiscuous ports that are in the same PVLAN. • Promiscuous port: A promiscuous port is a port that is allowed to communicate with any other port type. • Trunk port: A trunk port carries VLAN traffic across switches: • A trunk port in a PVLAN is always tagged. • A trunk port in Tagged mode carries primary or secondary VLAN traffic. The tag on the packet helps identify the VLAN to which the packet belongs.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. private-vlan mode — sets the mode of the selected VLAN to community, isolated, or primary. private-vlan mapping secondary-vlan — maps secondary VLANs to the selected primary VLAN. show arp — displays the ARP table. show interfaces private-vlan — displays the type and status of the PVLAN interfaces. show vlan private-vlan — displays the PVLANs and/or interfaces that are part of a PVLAN.
• Related Commands Amended by specifying the new secondary VLAN to be added to the list. private-vlan mode — sets the mode of the selected VLAN to community, isolated, or primary. show interfaces private-vlan — displays the type and status of the PVLAN interfaces. show vlan private-vlan — displays the PVLANs and/or interfaces that are part of a PVLAN. show vlan private-vlan mapping — displays the primary-secondary VLAN mapping. switchport mode private-vlan — sets PVLAN mode of the selected port.
• must not have a port in it when VLAN mode is being set. Only ports (and port channels) configured as promiscuous, host, or PVLAN trunk ports (as previously described) can be added to the PVLAN. No other regular ports can be added to the PVLAN. After using this command to configure a VLAN as a primary VLAN, use the privatevlan mapping secondary-vlan command to map secondary VLANs to this VLAN. Related Commands private-vlan mapping secondary-vlan — maps secondary VLANs to the selected primary VLAN.
Example (All) Field Description Interface Displays the type of interface and associated slot and port number. Vlan Displays the VLAN ID of the designated interface. PVLAN-Type Displays the type of VLAN in which the designated interface resides. Interface Type Displays the PVLAN port type of the designated interface. Status States whether the interface is operationally up or down.
Defaults Command Modes Command History isolated (OPTIONAL) Enter the keyword isolated to display VLANs configured as isolated VLANs, along with their interfaces. primary (OPTIONAL) Enter the keyword primary to display VLANs configured as primary VLANs, along with their interfaces. primary_vlan (OPTIONAL) Enter a private VLAN ID or secondary VLAN ID to display interface details about the designated PVLAN.
201 202 community No community Yes Gi 3/11-12 Example (Primary) Dell# show vlan private-vlan primary Primary Secondary Type Active Ports ------- --------- --------- ------ ------10 primary Yes Gi 2/1,3 20 primary Yes Gi 3/1,3 Example (Isolated) Dell# show vlan private-vlan isolated Primary Secondary Type Active Ports ------- --------- --------- ------ ---------10 primary Yes Gi 2/1,3 100 isolated Yes Gi 2/2,4-6 200 isolated Yes Gi 3/2,4-6 Example (Community) Dell# show vlan private-vlan community Pr
switchport mode private-vlan — sets PVLAN mode of the selected port. show vlan private-vlan mapping Display primary-secondary VLAN mapping. Syntax show vlan private-vlan mapping Defaults none Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced the on MXL 10/40GbE Switch IO Module.
To remove PVLAN mode from the selected port, use the no switchport mode private-vlan command. Parameters host Enter the keyword host to configure the selected port or port channel as an isolated interface in a PVLAN. promiscuous Enter the keyword promiscuous to configure the selected port or port channel as an promiscuous interface. trunk Enter the keyword trunk to configure the selected port or port channel as a trunk port in a PVLAN. Defaults Disabled.
44 Per-VLAN Spanning Tree Plus (PVST +) The Dell Networking Operating System (OS) implementation of per-VLAN spanning tree plus (PVST+) is based on the IEEE 802.1w standard spanning tree protocol, but it creates a separate spanning tree for each VLAN configured. NOTE: For easier command line entry, the plus (+) sign is not used at the command line.
Command Modes Command History Related Commands SPANNING TREE PVST+ (The prompt is “config-pvst”.) Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree pvst — enter SPANNING TREE mode on the switch. disable Disable PVST+ globally. Syntax disable To enable PVST+, use the no disable command. Defaults Disabled. Command Modes CONFIGURATION (conf-pvst) Command History Related Commands Version Description 9.9(0.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. extend system-id To augment the Bridge ID with a VLAN ID so that PVST+ differentiate between BPDUs for each VLAN, use extend system ID. If the VLAN receives a BPDU meant for another VLAN, PVST+ does not detect a loop, and both ports can remain in Forwarding state.
Te 5/50 Desg No Related Commands 128.459 128 2000 FWD 0 P2P No protocol spanning-tree pvst — enter SPANNING TREE mode on the switch. protocol spanning-tree pvst To enable PVST+ on a device, enter the PVST+ mode. Syntax protocol spanning-tree pvst To disable PVST+, use the disable command. Defaults none Command Modes CONFIGURATION Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show spanning-tree pvst View the Per-VLAN spanning tree configuration. Syntax Parameters show spanning-tree pvst [vlan vlan-id] [brief] [guard] vlan vlan-id (OPTIONAL) Enter the keyword vlan then the VLAN ID. The range is 1 to 4094. brief (OPTIONAL) Enter the keyword brief to view a synopsis of the PVST+ configuration information.
Field Description Bpdu Filter Yes - Bpdu filter Enabled No - Bpdu filter Disabled Example (Brief) Dell# show spanning-tree pvst vlan 2 brief VLAN 2 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 32768, Address 001e.c9f1.00f3 Root Bridge hello time 2, max age 20, forward delay 15 Bridge ID Priority 32768, Address 001e.c9f1.
Port 459 (TenGigabitEthernet 0/5) is designated Forwarding Port path cost 2000, Port priority 128, Port Identifier 128.459 Designated root has priority 32768, address 001e.c9f1.00:f3 Designated bridge has priority 32768, address 001e.c9f1.00:f3 Designated port id is 128.
spanning-tree pvst Configure a PVST+ interface with one of these settings: edge port with optional bridge port data unit (BPDU) guard, port disablement if an error condition occurs, port priority or cost for a VLAN range, loop guard, or root guard.
rootguard Defaults Not configured. Command Modes INTERFACE Command History Enter the keyword rootguard to enable root guard on a PVST+ port or port-channel interface. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The BPDU guard option prevents the port from participating in an active STP topology in case a BPDU appears on a port unintentionally, or is misconfigured, or is subject to a DOS attack.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Some non-Dell Networking systems which have hybrid ports participating in PVST+ transmit two kinds of BPDUs: an 802.1D BPDU and an untagged PVST+ BPDU. Dell Networking systems do not expect PVST+ BPDU on an untagged port. If this happens, the system places the port in the Error-Disable state. This behavior might result in the network not converging.
vlan bridge-priority Set the PVST+ bridge-priority for a VLAN or a set of VLANs. Syntax vlan vlan-id bridge-priority value To return to the default value, use the no vlan bridge-priority command. Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094. bridge-priority value Enter the keywords bridge-priority then the bridge priority value in increments of 4096. The range is from 0 to 61440. The default is 32768.
Parameters vlan vlan-range Enter the keyword vlan then the VLAN numbers. The range is from 1 to 4094. forward-delay seconds Enter the keywords forward-delay then the time interval, in seconds, that the system waits before transitioning PVST+ to the forwarding state. The range is from 4 to 30 seconds. The default is 15 seconds. Defaults 15 seconds Command Modes CONFIGURATION (conf-pvst) Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. vlan bridge-priority — sets the bridge-priority value. vlan forward-delay — changes the time interval before the system transitions to the forwarding state. vlan max-age — changes the time interval before PVST+ refreshes. show spanning-tree pvst — displays the PVST+ configuration.
show spanning-tree pvst — displays the PVST+ configuration.
45 Quality of Service (QoS) The Dell Networking Operating System (OS) commands for quality of service (QoS) include traffic conditioning and congestion control.
• qos-policy-input • qos-policy-output • rate police • rate shape • service-policy input • service-policy output • service-queue • set • show qos class-map • show qos policy-map • show qos policy-map-input • show qos policy-map-output • show qos qos-policy-input • show qos qos-policy-output • show qos statistics • show qos wred-profile • test cam-usage • trust • wred • wred ecn • wred-profile • dscp • qos dscp-color-map • qos dscp-color-policy • show qos dscp
Parameters overhead-bytes Include a specified number of bytes of packet overhead to include in rate limiting, policing, and shaping calculations. The range is from 1 to 31. Defaults QoS rate adjustment is disabled by default, and no qos-rate-adjust is listed in the running-configuration Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. service-class dot1p-mapping This command maps an 802.
To delete the IEEE 802.1p configuration on the interface, use the no dot1p-priority command. Parameters priority-value Defaults none Command Modes INTERFACE Command History Enter a value from 0 to 7. dot1p Queue Number 0 0 1 0 2 0 3 1 4 2 5 3 6 3 7 3 Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). committed-rate Enter the bandwidth in Mbps. The range is from 0 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is from 16 to 200000. The default is 50. peak peak-rate (OPTIONAL) Enter the keyword peak then a number to specify the peak rate in Mbps.
Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). rate Enter the outgoing rate in multiples of 10 Mbps. The range is from 10 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is from 0 to 10000. The default is 50. Defaults Granularity for rate is Mbps unless you use the kbps option.
Command Modes Command History dot1p Queue ID 6 3 7 3 • INTERFACE • CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To honor all incoming 802.1p markings on incoming switched traffic on the interface, enter this command. By default, this facility is not enabled (that is, the 802.1p markings on incoming traffic are not honored).
Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Guarantee a minimum bandwidth to different queues globally using the serviceclass bandwidth-percentage command from CONFIGURATION mode. The command is applied in the same way as the bandwidth-percentage command in an output QoS policy. The bandwidth-percentage command in QOS-POLICY-OUT mode supersedes the service-class bandwidth-percentage command.
egress queues are superseded by ETS configurations. This is to provide compatibility with DCBX. Therefore, Dell Networking OS recommends disabling ETS when you wish to apply these features exclusively. After you disable ETS on an interface, the configured parameters are applied. Policy-Based QoS Commands Policy-based traffic classification is handled with class maps. These maps classify unicast traffic into one of four classes.
class-map Create/access a class map. Class maps differentiate traffic so that you can apply separate quality-of-service policies to each class. Syntax Parameters class-map {match-all | match-any} class-map-name [layer2] match-all Determines how packets are evaluated when multiple match criteria exist. Enter the keywords match-all to determine that the packets must meet all the match criteria in order to be a member of the class.
match ip dscp configures the match criteria based on the DSCP value. match ip access-group — configures a match criterion for a class map based on the contents of the designated MAC ACL. match mac dot1p — configures a match criterion for a class map based on a dot1p value. match mac vlan — configures a match criterion for a class map based on VLAN ID. service-queue — assigns a class map and QoS policy to different queues. show qos class-map — views the current class map information.
crypto key zeroize rsa Removes the generated RSA host keys and zeroize the key storage location. Syntax crypto key zeroize rsa Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.
Command Modes CONFIGURATION mode Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.
Related Commands class-map — identifies the class map. match ip vlan Uses a VLAN as the match criterion for an L3 class map. Syntax match ip vlan vlan-id To remove VLAN as the match criterion, use the no match ip vlan vlan-id command. Parameters vlan vlan-id Enter the keyword vlan and then the ID of the VLAN. The range is from 1 to 4094. Defaults none Command Modes CONF-CLASS-MAP Command History This guide is platform-specific.
To remove VRF as the match criterion, use the no match ip vrf vrf-id command. Parameters vlan vlan-id Enter the keyword vrf and then the ID of the VRF. The range is from 1 to 63. Defaults none Command Modes CONF-CLASS-MAP Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command. Version Description 9.9(0.
Related Commands Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. policy-map-output — creates an output policy map. qos-policy-output — creates an output QoS-policy on the router. match ip dscp Use a differentiated services code point (DSCP) value as a match criteria.
The match ip dscp and match ip precedence commands are mutually exclusive. Up to 64 IP DSCP values can be matched in one match statement. For example, to indicate IP DCSP values 0 1 2 3 4 5 6 7, enter either the match ip dscp 0,1,2,3,4,5,6,7 or match ip dscp 0-7 command. NOTE: Only one of the IP DSCP values must be a successful match criterion, not all of the specified IP DSCP values must match. Related Commands class-map — identifies the class map.
Usage Information To access this command, enter the class-map command. After the class map is identified, you can configure the match criteria. The match ip precedence command and the match ip dscp command are mutually exclusive. Up to eight precedence values can be matched in one match statement. For example, to indicate the IP precedence values 0 1 2 3, enter either the match ip precedence 0-3 or match ip precedence 0,1,2,3 command.
match mac dot1p Configure a match criterion for a class map based on a dot1p value. Syntax Parameters match mac dot1p {dot1p-list} dot1p-list Defaults none Command Modes CLASS-MAP Command History Enter a dot1p value. The range is from 0 to 7. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To access this command, enter the class-map command.
Related Commands class-map — identifies the class map. policy-aggregate Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part of the policy map (input/output) applied on an interface. Syntax policy-aggregate qos-policy-name To remove a policy aggregate configuration, use the no policy-aggregate qospolicy-name command. Parameters qos-policy-name Enter the name of the policy map in character format (32 characters maximum).
Parameters policy-map-name Enter the name of the policy map in character format (32 characters maximum). layer2 (OPTIONAL) Enter the keyword layer2 to specify a Layer 2 Class Map. The default is Layer 3. Defaults Layer 3 Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To assign traffic to different flows using QoS policy, use the Output Policy map. This command enables Policy-Map-Output Configuration mode (conf-policy-map-out). Related Commands service-queue — assigns a class map and QoS policy to different queues. policy-aggregate — allows an aggregate method of configuring per-port QoS using policy maps.
As a result, the Matched Packets value shown in the show qos statistics command is reset. Related Commands rate police — incoming traffic policing function. qos-policy-output Create a QoS output policy. Syntax qos-policy-output qos-policy-name To remove an existing output QoS policy, use the no qos-policy-output qospolicy-name command. Parameters qos-policy-name Defaults none Command Modes CONFIGURATION Command History Enter your output QoS policy name in character format (32 characters maximum).
Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second (Kbps). Make the following value a multiple of 64. The range is from 0 to 40000000. The default granularity is Megabits per second (Mbps). committed-rate Enter the bandwidth in Mbps. The range is from 0 to 10000. burst-KB (OPTIONAL) Enter the burst size in KB. The range is from 16 to 200000. The default is 100. peak peak-rate (OPTIONAL) Enter the keyword peak then a number to specify the peak rate in Mbps.
Command Modes Command History QOS-POLICY-OUT Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you apply rate-shape in QoS policy both on the Queue Level and in Aggregate mode, the queue-based shaping occurs first then aggregate rate shaping. service-policy input Apply an input policy map to the selected interface.
Related Commands policy-map-input — creates an input policy map. service-policy output Apply an output policy map to the selected interface. Syntax service-policy output policy-map-name To remove the output policy map from the interface, use the no service-policy output policy-map-name command. Parameters policy-map-name Defaults none Command Modes INTERFACE Command History Enter the name for the policy map in character format (16 characters maximum).
Parameters queue-id Enter the value used to identify a queue. The range is from 0 to 3 (four queues per interface; four queues are reserved for control traffic). class-map classmap-name (OPTIONAL) Enter the keyword class-map then the class map name assigned to the queue in character format (32 character maximum). NOTE: This option is available under policy-mapinput only.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information After the IP DSCP bit is set, other QoS services can then operate on the bit settings. show qos class-map View the current class map information.
Parameters summary interface detail interface Defaults Command Modes Command History Example (IPv4) To view a policy map interface summary, enter the keyword summary and optionally one of the following keywords and slot/ port or number information: • For a 40 Gigabit Ethernet interface, enter the keyword FortyGigabitEthernet then the slot/port information. • For a 10 Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
show qos policy-map-input View the input QoS policy map details. Syntax Parameters Defaults Command Modes Command History Example show qos policy-map-input [policy-map-name] [class class-map-name] [qos-policy-input qos-policy-name] policy-map-name Enter the policy map name. class class-mapname Enter the keyword class then the class map name. qos-policy-input qos-policy-name Enter the keyword qos-policy-input then the QoS policy name. none • EXEC • EXEC Privilege Version Description 9.9(0.
qos-policy-output qos-policy-name Defaults Command Modes Command History Example Enter the keyword qos-policy-output then the QoS policy name. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell#show qos policy-map-output Policy-map-output PolicyMapOutput Aggregate Qos-policy-name AggPolicyOut Queue# Qos-policy-name 0 qosPolicyOutput Dell# show qos qos-policy-input View the input QoS policy details.
show qos qos-policy-output View the output QoS policy details. Syntax Parameters Defaults Command Modes Command History Example show qos qos-policy-output [qos-policy-name] qos-policy-name Enter the QoS policy name. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• wred-profile interface interface Defaults Command Modes Command History Example For a 10–Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. Enter the keywords wred-profile and optionally one of the following keywords and slot/port or number information: • For a 40–Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
Parameters Defaults Command Modes Command History Example wred-profilename Enter the WRED profile name to view the profile details. none • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information This feature allows you to determine if the CAM has enough space available before applying the configuration on an interface. An input policy map with both Trust and Class-map configuration, the Class-map rules are ignored and only the Trust rule is programmed in the CAM. In such an instance, the Estimated CAM output column contains the size of the CAM space required for the Trust rule and not the Class-map rule.
1 Exception 0 Allowed (5) 1 1 Exception 13 1 Allowed (2) Dell# L2ACL 1000 200 L2ACL 0 200 … … … L2ACL 400 200 trust Specify dynamic classification (DSCP) or dot1p to trust. Syntax Parameters trust {diffserv [fallback]| dot1p [fallback]} diffserv Enter the keyword diffserv to specify trust of DSCP markings. dot1p Enter the keyword dot1p to specify trust dot1p configuration.
Table 2.
ecn When you configure wred ecn command, instead of droppping the packets exponentially, Explicit Congestion Notification (ECN) marking is made on the packets. Defaults none Command Modes CONFIGURATION (conf-qos-policy-out) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To assign drop precedence to green or yellow traffic, use this command.
Usage Information When you enable wred ecn, and the number of packets in the queue is below the minimum threshold, packets are transmitted per the usual WRED treatment.
Version Description 9.2(0.0) Introduced on the M I/O Aggregator. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Use the default pre-defined profiles or configure your own profile. You cannot delete the pre-defined profiles or their default values. This command enables WRED configuration mode — (conf-wred). dscp Sets the number of specific DSCP values for a color map profile to yellow or red.
Version Description 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence). The default setting for each DSCP value (0-63) is green (low drop precedence). This command allows setting the number of specific DSCP values to yellow or red.
Version Description 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.5(0.1) Introduced on the Z9500. 9.7(0.0) Introduced on the S6000-ON. 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information A color map outlines the codepoint mappings to the appropriate color mapping (green, yellow, red) for the traffic.
Version Description 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.5(0.1) Introduced on the Z9500. Version 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Usage Information If the specified color-map does not exist, the Diffserv Manager (DSM) creates a color map and sets all the DSCP values to green (low drop precedence).
Version Description 9.7(0.0) Introduced on the S6000-ON. 9.5.0.0 Introduced on the Z9000, S6000, S4820T, S4810, and MXL. Example Related Commands • show qos dscp-color-map — displays DSCP color maps. show qos dscp-color-map Display the DSCP color map for one or all interfaces. Syntax Parameters show qos dscp-color-map map-name map-name Enter the name of the color map. Defaults None Command Modes EXEC Command History This guide is platform-specific.
yellow 16,55 Dell# Quality of Service (QoS) 1260
46 Routing Information Protocol (RIP) Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking Operating System (OS) supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2). The implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more information about configuring RIP, refer to the Dell Networking OS Configuration Guide.
auto-summary Restore the default behavior of automatic summarization of subnet routes into network routes. This command applies only to RIP version 2. Syntax auto-summary To send sub-prefix routing information, use the no auto-summary command. Defaults Enabled. Command Modes ROUTER RIP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip rip Update all the RIP routes in the routing table.
To turn off debugging output, use the no debug ip rip command. Parameters Command Modes Command History interface (OPTIONAL) Enter the interface type and ID as one of the following: • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
route-map mapname Defaults Disabled. Metric: 1. Command Modes ROUTER RIP Command History (OPTIONAL) Enter the keywords route-map then the name of a configured route-map. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The default route must be present in the switch routing table for the defaultinformation originate command to take effect. default-metric Change the default metric for routes.
description Enter a description of the RIP routing protocol. Syntax description {description} To remove the description, use the no description {description} command. Parameters description Defaults none Command Modes ROUTER RIP Command History Related Commands Enter a description to identify the RIP protocol (80 characters maximum). Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. router rip — enters ROUTER mode on the switch.
Defaults weight = 120 Command Modes ROUTER RIP Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default-metric — assigns one distance metric to all routes learned using the redistribute command. distribute-list in Configure a filter for incoming routing updates. Syntax distribute-list prefix-list-name in [interface] To delete the filter, use the no distribute-list prefix-list-name in command.
distribute-list out Configure a filter for outgoing routing updates. Syntax distribute-list prefix-list-name out [interface | bgp | connected | ospf | static] To delete the filter, use the no distribute-list prefix-list-name out command. Parameters prefix-list-name Enter the name of a configured prefix list. interface (OPTIONAL) Identifies the interface type slot/port as one of the following: • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information.
ip poison-reverse Set the prefix of the RIP routing updates to the RIP infinity value. Syntax ip poison-reverse To disable poison reverse, use the no ip poison-reverse command. Defaults Disabled. Command Modes INTERFACE Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip split-horizon — sets the RIP routing updates to exclude routing prefixes.
Related Commands ip rip send version — sets the RIP version for sending RIP traffic on an interface. version — sets the RIP version the switch software uses. ip rip send version To send a specific version of RIP, set the interface. The version you set on the interface overrides the version command in ROUTER RIP mode. Syntax ip rip send version [1] [2] To return to the default value, use the no ip rip send version command. Parameters 1 (OPTIONAL) Enter the number 1 for RIP version 1.
Defaults Enabled Command Modes INTERFACE Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip poison-reverse — sets the prefix for RIP routing updates. maximum-paths Set RIP to forward packets over multiple paths. Syntax maximum-paths number To return to the default values, use the no maximum-paths commands.
Parameters ip-address Defaults Not configured. Command Modes ROUTER RIP Command History Enter the IP address, in dotted decimal format, of a router with which to exchange information. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When a neighbor router is identified, unicast data exchanges occur. Multiple neighbor routers are possible.
RIP operates over interfaces configured with any address the network command specifies. offset-list Specify a number to add to the incoming or outgoing route metrics learned using RIP. Syntax offset-list prefix-list-name {in | out} offset [interface] To delete an offset list, use the no offset-list prefix-list-name {in | out} offset [interface] command. Parameters prefix-list-name Enter the name of an established Prefix list to determine which incoming routes are modified.
output-delay Set the interpacket delay of successive packets to the same neighbor. Syntax output-delay delay To return to the switch software defaults for interpacket delay, use the no outputdelay command. Parameters delay Defaults Not configured. Command Modes ROUTER RIP Command History Specify a number of milliseconds as the delay interval. The range is from 8 to 50. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults Not configured. Command Modes ROUTER RIP Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Although the passive interface does not send or receive routing updates, the network on that interface still includes in RIP updates sent using other interfaces. Related Commands neighbor — enables RIP for a specified network. network — defines a neighbor.
redistribute ospf Redistribute routing information from an OSPF process. Syntax redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [route-map map-name] To disable redistribution, use the no redistribute ospf process-id [match external {1 | 2} | match internal | metric metric-value] [routemap map-name] command. Parameters process-id Enter a number that corresponds to the OSPF process ID to redistribute. The range is from 1 to 65355.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable RIP, assign a network address using the network command. Example Dell(conf)#router rip Dell(conf-router_rip)# Related Commands network — enables RIP. show config Display the changes you made to the RIP configuration. The default values are not shown.
mask Command Modes Command History (OPTIONAL) Specify a mask, in /network format, for the IP address. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip rip database command shown in the following example. Example Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database. 100.10.10.
show running-config rip Display the current RIP configuration. Syntax show running-config rip Defaults none Command Modes EXEC Privilege Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. show running-config rip ! router rip distribute-list Test1 in distribute-list Test21 out network 10.0.0.0 passive-interface TenGigabitEthernet 1/4 neighbor 20.20.20.
update timer value. The range is from zero (0) to 4294967295. The default is 180 seconds. flush Defaults Command Modes Command History Enter the number of seconds to specify the time interval during which the route is advertised as unreachable. When this interval expires, the route is flushed from the routing table. The flush value should be greater than the update value. The range is from zero (0) to 4294967295. The default is 240 seconds.
Related Commands ip rip receive version — sets the RIP version the interface receives. ip rip send version — sets the RIP version the interface sends.
47 Remote Monitoring (RMON) The Dell Networking Operating System (OS) remote monitoring (RMON) is based on IEEE standards, providing both 32-bit and 64-bit monitoring and long-term statistics collection.
rmon alarm Set an alarm on any MIB object. Syntax rmon alarm number variable interval {delta | absolute} risingthreshold value event-number falling-threshold value event-number [owner string] To disable the alarm, use the no rmon alarm number command. Parameters number Enter the alarm integer number from 1 to 65535. The value must be unique in the RMON alarm table. variable Enter the MIB object to monitor. The variable must be in the SNMP OID format; for example, 1.3.6.1.2.1.1.3.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. rmon collection history Enable the RMON MIB history group of statistics collection on an interface. Syntax rmon collection history {controlEntry integer} [owner name] [buckets number] [interval seconds] To remove a specified RMON history group of statistics collection, use the no rmon collection history {controlEntry integer} command.
rmon collection statistics Enable RMON MIB statistics collection on an interface. Syntax rmon collection statistics {controlEntry integer} [owner name] To remove RMON MIB statistics collection on an interface, use the no rmon collection statistics {controlEntry integer} command. Parameters controlEntry integer Enter the keyword controlEntry to specify the RMON group of statistics using a value. Then enter an integer value from 1 to 65535 that identifies the RMON Statistic Table.
keyword sets either snmp-trap or log-and-trap. The default is public. description string (OPTIONAL) Enter the keyword description then a string describing the event. owner name (OPTIONAL) Enter the keyword owner then the name of the owner of this event. Defaults As noted in the Parameters section. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
alarmTable of the RMON MIB. If there is no corresponding rising-threshold event, the value is zero. falling-threshold value eventnumber Enter the keywords falling-threshold then the value (64 bit) the falling-threshold alarm is either triggered or reset. Then enter the event-number to trigger when the falling threshold exceeds its limit. This value is the same as the alarmFallingEventIndex or the alarmTable of the RMON MIB. If there is no corresponding falling-threshold event, the value is zero.
show rmon alarms Display the contents of the RMON alarm table. Syntax Parameters show rmon alarms [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON alarm table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
17 18 19 20 21 22 Dell# 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 1.3.6.1.2.1.1.3 show rmon events Display the contents of the RMON event table. Syntax Parameters show rmon events [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON event table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version Description 9.9(0.
12 13 14 15 16 17 18 19 20 21 22 Dell# 12 13 14 15 16 17 18 19 20 21 22 show rmon hc-alarm Display the contents of RMON High-Capacity alarm table. Syntax Parameters show rmon hc-alarm [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON High-Capacity alarm table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.
---------------------------------1 1.3.6.1.2.1.1.3 2 1.3.6.1.2.1.1.3 3 1.3.6.1.2.1.1.3 4 1.3.6.1.2.1.1.3 5 1.3.6.1.2.1.1.3 Dell# show rmon history Display the contents of the RMON Ethernet history table. Syntax Parameters show rmon history [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry.
show rmon log Display the contents of the RMON log table. Syntax Parameters show rmon log [index] [brief] index (OPTIONAL) Enter the table index number to display just that entry. brief (OPTIONAL) Enter the keyword brief to display the RMON log table in an easy-to-read format. Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
brief Defaults none Command Modes EXEC Command History (OPTIONAL) Enter the keyword brief to display the RMON Ethernet statistics table in an easy-to-read format. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example (Index) Dell#show rmon statistics 6001 RMON statistics entry 6001 interface: ifIndex.
6004 9001 9002 9003 9004 Dell# 101236775 134529054 134529054 134791198 134791198 GigabitEthernet GigabitEthernet GigabitEthernet GigabitEthernet GigabitEthernet 2/1 3/0 3/0 3/1 3/1 Remote Monitoring (RMON) 1293
48 Rapid Spanning Tree Protocol (RSTP) The Dell Networking Operating System (OS) implementation of rapid spanning tree protocol (RSTP) is based on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges. bridge-priority Set the bridge priority for RSTP. Syntax bridge-priority priority-value To return to the default value, use the no bridge-priority command.
Parameters all (OPTIONAL) Enter the keyword all to debug all spanning tree operations. bpdu interface {in | out} (OPTIONAL) Enter the keyword bpdu to debug the bridge protocol data units. (OPTIONAL) Enter the keyword interface along with the type slot/port of the interface you want displayed. Type slot/port options are the following: • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.
Parameters description Enter a description to identify the rapid spanning tree (80 characters maximum). Defaults none Command Modes SPANNING TREE (The prompt is “config-rstp”.) Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp — enters SPANNING TREE mode on the switch. disable Disable RSTP globally on the system.
Parameters seconds Enter the number of seconds that the system waits before transitioning RSTP to the forwarding state. The range is from 4 to 30. The default is 15 seconds. Defaults 15 seconds Command Modes CONFIGURATION RSTP (conf-rstp) Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. hello-time — changes the time interval between BPDUs.
Millisecond hello times are encoded using values less than 256; the millisecond hello time equals (x/1000)*256. When you configure millisecond hellos, the default hello interval of 2 seconds is still used for edge ports; the millisecond hello interval is not used. Related Commands forward-delay — changes the wait time before RSTP transitions to the Forwarding state. max-age — changes the wait time before RSTP refreshes the protocol configuration information.
To disable global bpdu filter default, use the no edge-port bpdufilter default command. Parameters priority-value Enter a number as the bridge priority value in increments of 4096. The range is from 0 to 61440. The default is 32768. Defaults Disabled Command Modes CONFIGURATION (conf-rstp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. protocol spanning-tree rstp To configure RSTP, enter RSTP mode.
show config View the current configuration for the mode. Only non-default values are displayed. Syntax show config Command Modes CONFIGURATION RSTP (conf-rstp) Command History Example Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
bpduguard (OPTIONAL) Enter the keyword portfast to enable Portfast to move the interface into Forwarding mode immediately after the root fails. Enter the keyword bpduguard to disable the port when it receives a BPDU. shutdown-onviolation (OPTIONAL) Enter the keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled.
Example • If a BPDU is received from a remote device, BPDU guard places the port in an ErrDisabled Blocking state and no traffic is forwarded on the port. • If no BPDU is received from a remote device, loop guard places the port in a Loop-Inconsistent Blocking state and no traffic is forwarded on the port.
shutdown-onviolation (OPTIONAL) Enter the keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. bpdufilter (OPTIONAL) Enter the keyword bpdufilter to enable BPDU Filter to stop sending and receiving BPDUs on port enabled interfaces. priority priority Enter keyword priority then a value in increments of 16 as the priority. The range is from 0 to 240. The default is 128.
interface GigabitEthernet 4/0 no ip address switchport spanning-tree rstp edge-port no shutdown Dell# tc-flush-standard Enable the MAC address flushing after receiving every topology change notification. Syntax tc-flush-standard To disable, use the no tc-flush-standard command. Defaults Disabled Command Modes CONFIGURATION (conf-rstp) Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
49 Security This chapter contains various types of security commands offered in the Dell Networking Operating System (OS). The commands are listed in the following sections: • AAA Accounting Commands • Authorization and Privilege Commands • Authentication and Password Commands • RADIUS Commands • TACACS+ Commands • SSH Server and SCP Commands • Secure DHCP Commands For configuration details, refer to the Security chapter in the Dell Networking OS Configuration Guide.
• enable secret • enable sha256-password • login authentication • password • password-attributes • service password-encryption • show privilege • show users • timeout login response • username • RADIUS Commands • debug radius • ip radius source-interface • radius-server deadtime • radius-server host • radius-server key • radius-server retransmit • radius-server timeout • role • TACACS+ Commands • debug tacacs+ • ip tacacs source-interface • tacacs-server host •
• show ip ssh • show ip ssh client-pub-keys • show ip ssh rsa-authentication • show role • show users • show userroles • ssh • Secure DHCP Commands • clear ip dhcp snooping • ip dhcp relay • ip dhcp snooping • ip dhcp snooping database • ip dhcp snooping binding • ip dhcp snooping database renew • ip dhcp snooping trust • ip dhcp source-address-validation • ip dhcp snooping vlan • show ip dhcp snooping • username • userrole AAA Accounting Commands AAA Accounting enabl
Parameters system Enter the keyword system to send accounting information of any other AAA configuration. exec Enter the keyword exec to send accounting information when a user has logged in to EXEC mode. commands {level| role role-name} Enter the keyword command then a privilege level for accounting of commands executed at that privilege level or enter the keyword role then the role name for accounting of commands executed by a user with that user role.
Example Dell(conf)# aaa accounting exec default start-stop tacacs+ Dell(conf)# aaa accounting command 15 default start-stop tacacs+ Dell(config)# Related Commands enable password — changes the password for the enable command. login authentication — enables AAA login authentication on the terminal lines. password — creates a password. tacacs-server host — specifies a TACACS+ server host. aaa accounting suppress Prevent the generation of accounting records of users with the user name value of NULL.
Parameters exec Enter the keyword exec to apply an EXEC level accounting method list. commands {level| role role-name} Enter the keywords commands level to apply an EXEC and CONFIGURATION level accounting method list. Enter the keyword role and then the role name for accounting of commands executed by a user with that user role. method-list Enter a method list that you defined using the aaa accounting exec or aaa accounting commands.
Version Description 9.5(0.0) Introduced on the Z9000, S6000, S4820T, S4810, MXL show accounting Display the active accounting sessions for each online user. Syntax show accounting Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions.
Authorization and Privilege Commands To set command line authorization and privilege levels, use the following commands. authorization Apply an authorization method list to terminal lines. Syntax Parameters authorization {exec | commands {level | role role-name} methodlist exec Enter the keyword exec to apply an EXEC level accounting method list.
aaa authorization commands Set parameters that restrict (or permit) a user’s access to EXEC and CONFIGURATION level commands. Syntax aaa authorization commands {level | role role-name}{name | default} {local | tacacs+ | none} Undo a configuration with the no aaa authorization commands {level | role role-name}{name | default} {local | tacacs+ | none} command. Parameters commands level Enter the keyword commands then the command privilege level for command level authorization.
Parameters name Enter a text string for the name of the user up to 63 characters. It cannot be one of the system defined roles (sysadmin, secadmin, netadmin, netoperator). inherit existingrole-name Enter the inherit keyword then specify the system defined role to inherit permissions from (sysadmin, secadmin, netadmin, netoperator). Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific.
aaa authorization config-commands Set parameters that restrict (or permit) a user’s access to EXEC level commands. Syntax aaa authorization config-commands Disable authorization checking for CONFIGURATION level commands using the no aaa authorization config-commands command. Defaults Enabled when you configure aaa authorization commands command. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Command Modes Command History CONFIGURATION Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. privilege level (CONFIGURATION mode) Change the access or privilege level of one or more commands. Syntax privilege mode {level level command | reset command} To delete access to a level and command, use the no privilege mode level level command command.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To define a password for the level to which you are assigning privilege or access, use the enable password command. privilege level (LINE mode) Change the access level for users on the terminal lines. Syntax privilege level level To delete access to a terminal line, use the no privilege level level command. Parameters level level Enter the keyword level then a number for the access level.
Authentication and Password Commands To manage access to the system, use the following the commands. aaa authentication enable Configure AAA Authentication method lists for user access to EXEC privilege mode (the “Enable” access). Syntax aaa authentication enable {default | method-list-name} method [... method2] To return to the default setting, use the no aaa authentication enable {default | method-list-name} method [... method2] command.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information By default, the Enable password is used. If you configure aaa authentication enable default, the system uses the methods defined for Enable access instead. Methods configured with the aaa authentication enable command are evaluated in the order they are configured.
... method4 • line: use the password the password command defines in LINE mode. Not available if role-only is in use. • none: no authentication. Not available if role-only is in use. • radius: use the RADIUS servers configured with the radius-server host command. • tacacs+: use the TACACS+ servers configured with the tacacs-server host command. (OPTIONAL) Enter up to four additional methods.
radius-server host — specifies a RADIUS server host. tacacs-server host — specifies a TACACS+ server host. access-class Restrict incoming connections to a particular IP address in a defined IP access control list (ACL). Syntax access-class access-list-name To delete a setting, use the no access-class command. Parameters access-list-name Defaults Not configured. Command Modes LINE Command History Related Commands Enter the name of an established IP Standard ACL. Version Description 9.9(0.
encryption-type (OPTIONAL) Enter the number 7 or 0 as the encryption type. Enter a 7 then a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router. Use this parameter only with a password that you copied from the show running-config file of another Dell Networking router. password Enter a text string, up to 32 characters long, as the clear text password. Defaults No password is configured. level = 15.
To disallow access to restricted commands, use the no enable restricted command. Parameters encryption-type (OPTIONAL) Enter the number 7 as the encryption type. Enter 7 followed a text string as the hidden password. The text string must be a password that was already encrypted by a Dell Networking router. Use this parameter only with a password that you copied from the show running-config file of another Dell Networking router.
Use this parameter only with a password that you copied from the show running-config file of another Dell Networking router. password Enter a text string, up to 32 characters long, as the clear text password. Defaults No password is configured. level = 15. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
level level (OPTIONAL) Enter the keyword level then a number as the level of access. The range is from 1 to 15. encryption-type (OPTIONAL) Enter the number 8 or 0 as the encryption type. Enter 8 to enter the sha256–based hashed password. password Enter a text string, up to 32 characters long, as the clear text password. Defaults No password is configured. level = 15. Command Modes CONFIGURATION Command History This guide is platform-specific.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you configure the aaa authentication login default command, the login authentication default command automatically is applied to all terminal lines. Related Commands aaa authentication login — selects the login authentication methods. password Specify a password for users on terminal lines.
service password-encryption — encrypts all passwords configured in the system. radius-server key — configures a key for all RADIUS communications between the switch and the RADIUS host server. tacacs-server key — configures a key for communication between a TACACS+ server and client. username — establishes an authentication system based on user names. password-attributes Configure the password attributes (strong password).
special-char number (OPTIONAL) Enter the keywords special-char then the number of special characters permitted. The range is from 0 to 31. The following special characters are supported: !"#%&'();<=>?[\]*+,-./:^_{|}~@$ Defaults none Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 9.6(0.0) Introduced the special-characters on the MXL Switch. 9.5(0.0) Introduced thelockout-period option on the MXL 10/40GbE Switch. 8.3.16.
To keep unauthorized people from viewing passwords in the switch configuration file, use the service password-encryption command. This command encrypts the clear-text passwords created for user name passwords, authentication key passwords, the privileged command password, and console and virtual terminal line access passwords. To view passwords, use the show running-config command. show privilege View your access level.
Parameters Command Modes Command History all (OPTIONAL) Enter the keyword all to view all terminal lines in the switch. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show user command shown in the following example.
Parameters seconds Enter a number of seconds the software waits before logging you out. The range is: • VTY: the range is from 1 to 30 seconds, the default is 30 seconds. • Console: the range is from 1 to 300 seconds, the default is 0 seconds (no timeout). • AUX: the range is from 1 to 300 seconds, the default is 0 seconds (no timeout). Defaults See the defaults settings shown in Parameters. Command Modes LINE Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
secret Enter the keyword secret then the encryption-type or the password. encryption-type Enter an encryption type for the password that you enter. • 0 directs the system to store the password as clear text. It is the default encryption type when using the password option. • 8 to indicate that a password encrypted using a sha256 hashing algorithm follows. This encryption type is available with the sha256-password option only, and is the default encryption type for this option.
RADIUS Commands The following RADIUS commands are supported by Dell Networking operating system. debug radius View RADIUS transactions to assist with troubleshooting. Syntax debug radius To disable debugging of RADIUS, use the no debug radius command. Defaults Disabled. Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults Not configured. Command Modes CONFIGURATION Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For VLAN interface, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. radius-server deadtime Configure a time interval during which non-responsive RADIUS servers to authentication requests are skipped.
radius-server host Configure a RADIUS server host. Syntax Parameters radius-server host {hostname | ipv4-address} [auth-port portnumber] [retransmit retries] [timeout seconds] [key [encryptiontype] key] hostname Enter the name of the RADIUS server host. ipv4-address Enter the IPv4 address (A.B.C.D) of the RADIUS server host. auth-port portnumber (OPTIONAL) Enter the keywords auth-port then a number as the port number. The range is from zero (0) to 65535. The default port-number is 1812.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To configure any number of RADIUS server hosts for each server host that is configured, use this command. The system searches for the RADIUS hosts in the order they are configured in the software.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The key configured on the switch must match the key configured on the RADIUS server daemon. If you configure the key parameter in the radius-server host command, the key configured with the radius-server key command is the default key for all RADIUS communications. Related Commands radius-server host — configures a RADIUS host.
radius-server timeout To reply to a request, configure the amount of time the RADIUS client (the switch) waits for a RADIUS host server . Syntax radius-server timeout seconds To return to the default value, use the no radius-server timeout command. Parameters seconds Defaults 5 seconds Command Modes CONFIGURATION Command History Related Commands Enter the number of seconds between an unsuccessful attempt and the system times out. The range is from zero (0) to 1000 seconds.
route-map for Route-map mode router for Router mode addrole Enter the keyword addrole to add permission to the command. You cannot add or delete rights for the sysadmin role. deleterole Enter the keyword deleterole to remove access to the command. You cannot add or delete rights for the sysadmin role. role-name Enter a text string for the name of the user role up to 63 characters. These are 3 system defined roles you can modify: secadmin, netadmin, and netoperator.
TACACS+ Commands The Dell Networking OS supports TACACS+ as an alternate method for login authentication. debug tacacs+ To assist with troubleshooting, view TACACS+ transactions. Syntax debug tacacs+ To disable debugging of TACACS+, use the no debug tacacs+ command. Defaults Disabled. Command Modes EXEC Privilege Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Defaults Not configured. Command Modes CONFIGURATION Command History • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information. • For VLAN interface, enter the keyword vlan then a number from 1 to 4094. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. tacacs-server host Specify a TACACS+ host.
Usage Information To list multiple TACACS+ servers to be used by the aaa authentication login command, configure this command multiple times. If you are not configuring the switch as a TACACS+ server, you do not need to configure the port, timeout and key optional parameters. If you do not configure a key, the key assigned in the tacacs-server key command is used. Related Commands aaa authentication login — specifies the login authentication method.
SSH Server and SCP Commands The Dell Networking OS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for secure remote login over an insecure network. SSH sessions are encrypted and use authentication. crypto key generate Generates keys for the SSH server. Syntax Parameters Defaults Command History crypto key generate {rsa | rsa1} rsa Enter the keyword rsa then the key size to generate a SSHv2 RSA host keys.
Generating 1024-bit SSHv1 RSA key. ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! Dell(conf)# Related Commands ip ssh server — enables the SSH server. show crypto — displays the SSH host public keys. debug ip ssh Enables collecting SSH debug information. Syntax debug ip ssh {client | server} To disable debugging, use the no debug ip ssh {client | server} command. Parameters client Enter the keyword client to enable collecting debug information on the client.
Defaults The internal flash (flash:) is the default directory. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To configure the switch as an SCP server, use the ip ssh server command. Related Commands ip ssh server — enables the SSH and SCP server on the switch.
Parameters Defaults cipher cipher-list Enter the keyword cipher and then a space-delimited list of ciphers that the SSH client supports. The following ciphers are available.
ip ssh connection-rate-limit Configure the maximum number of incoming SSH connections per minute. Syntax Parameters ip ssh connection-rate-limit 1-10 1-10 Defaults 10 per minute Command Modes CONFIGURATION Command History Enter the number of maximum numbers of incoming SSH connections allowed per minute. The range is from 1 to 10 per minute. The default is 10 per minute. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
• rhost-authentication is done with the file specified in the ip ssh rhostfile command. • checking client host-keys is done with the file specified in the ip ssh pub-keyfile command. NOTE: Administrators must specify the two files (rhosts and pub-key-file) to configure host-based authentication. Related Commands ip ssh pub-key-file — public keys of trusted hosts from a file. ip ssh rhostsfile — trusted hosts and users for rhost authentication.
When FIPS mode is enabled: • hmac-sha2–256 • hmac-sha1 • hmac-sha1–96 When FIPS mode is disabled: Defaults • hmac-sha2-256 • hmac-sha1 • hmac-sha1–96 • hmac-md5 • hmac-md5-96 The default list of MAC algorithm is in the order as shown below: When FIPS mode is enabled: • hmac-sha2–256 • hmac-sha1 • hmac-sha1–96 When FIPS mode is disabled: • hmac-sha2-256 • hmac-sha1 • hmac-sha1–96 • hmac-md5 • hmac-md5-96 Command Modes CONFIGURATION Command History This guide is platform-s
ip ssh password-authentication Enable password authentication for the SSH server. Syntax ip ssh password-authentication enable To disable password-authentication, use the no ip ssh passwordauthentication enable command. Parameters enable Defaults Enabled Command Modes CONFIGURATION Command History Enter the keyword enable to enable password-authentication for the SSH server. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information This command specifies the file used for the host-based authentication. The creates/ file overwrites the flash://ADMIN_DIR/ssh/knownhosts file and deletes the userspecified file. Even though this command is a global configuration command, it does not appear in the running configuration because you only need to run this command once. The file contains the OpenSSH-compatible public keys of the host for which hostbased authentication is allowed. An example known host file format: poclab4,123.
Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000–ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.
ip ssh rsa-authentication (Config) Enable RSA authentication for the SSHv2 server. Syntax ip ssh rsa-authentication enable To disable RSA authentication, use the no ip ssh rsa-authentication enable command. Parameters enable Defaults Disabled. Command Modes CONFIGURATION Command History Enter the keyword enable to enable RSA authentication for the SSHv2 server. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command Modes Command History EXEC Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If you want to log in without being prompted for a password, log in through RSA authentication. To do that, first add the SSHv2 RSA public keys to the list of authorized keys.
• aes256-ctr The default cipher list is used. mac hmacalgorithm • 3des-cbc • aes128-cbc • aes192-cbc • aes256-cbc • aes128-ctr • aes192-ctr • aes256-ctr Enter the keyword mac then a space-delimited list of hash message authentication code (HMAC) algorithms supported by the SSH server for keying hashing for the message authentication. The following HMAC algorithms are available: • hmac-sha1 • hmac-sha1-96 • hmac-sha2-256 When FIPS is enabled, the default HMAC algorithm is hmacsha1-96.
When FIPS is not enabled, the default key-exchange-algorithms are the following: • diffie-hellman-group-exchange-sha1 • diffie-hellman-group1-sha1, • diffie-hellman-group14-sha1 port port-number (OPTIONAL) Enter the keyword port then the port number of the listening port of the SSH server. The range is from 1 to 65535. The default is 22. [version {1 | 2}] (OPTIONAL) Enter the keyword version then the SSH version 1 or 2 to specify only SSHv1 or SSHv2.
Defaults none Command Modes EXEC Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command is useful if the remote SSH client implements Strict Host Key Checking. You can copy the host key to your list of known hosts.
Example Dell#show ip ssh SSH server : enabled. SSH server version : v1 and v2. SSH server vrf : default. SSH server ciphers : 3des-cbc,aes128-cbc,aes192-cbc,aes256cbc,aes128-ctr,aes192-ctr,aes256-ctr. SSH server macs : hmac-sha2-256, hmac-sha1, hmacsha1-96, hmac-md5, hmac-md5-96. SSH server kex algorithms : diffie-hellman-group-exchangesha1,diffie-hellman-group1-sha1,diffie-hellman-group14-sha1. Password Authentication : enabled. Hostbased Authentication : disabled. RSA Authentication : disabled.
FXict61jWs84Co1UTsAgRzDJ9a USS75TVac= root@dt-maa-linux-1.force10networks.com 10.16.151.48 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAu5NoTbmnLxBknaeXZmUJMupNwNUoGlo1 /yLPI5eehQTyaldRPHtGyPlcmMbCH +QJkqtyiwDPmH4njyDMYDCXY85vc55ibWsN9qalagklnh2cj2q4nY j5x8+8OOhYeFPaHiygd8U/FXict61jWs84Co1UTsAgRzDJ9aUSS75TVac= Dell# Related Commands ip ssh pub-key-file — configures the filename for the host-based authentication. show ip ssh rsa-authentication Display the authorized-keys for the RSA authentication.
show role Display information on permissions assigned to a command, including user role and/or permission level. Syntax Parameters show role mode {mode} {command} command Enter the command’s keywords to assign the command to a certain access level. You can enter one or all of the keywords. mode mode Enter keyword then one of the following modes.
Related Commands • userrole — create user roles. show users Allows you to view information on all users logged in to the switch. Syntax Parameters Command Modes Command History show users [all] all (OPTIONAL) Enter the keyword all to view all terminal lines in the switch. EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 9.5(0.0) Introduced the support for roles on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show userroles Display information on all defined user roles. Syntax show userroles Example Dell# show userroles Role Inheritance netoperator netadmin secadmin sysadmin netoperator testadmin netadmin Modes Exec Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Exec Config Interface Line Router IP Route-map Protocol MAC Exec Config Interface Line Router IP Route-map Protocol MAC Command Modes EXEC Privilege Command History This guide is platform-specific.
ssh Open an SSH connection specifying the host name, username, port number and version of the SSH client. Syntax Parameters ssh {hostname | ipv4 address} [-l username | -p port-number | -v {1 | 2}] hostname (OPTIONAL) Enter the IP address or the host name of the remote device. ipv4 address (OPTIONAL) Enter the IP address in dotted decimal format A.B.C.D. -l username (OPTIONAL) Enter the keyword -l then the user name used in this SSH session.
Secure DHCP Commands The dynamic host configuration protocol (DHCP) as defined by RFC 2131 provides no authentication or security mechanisms. Secure DHCP is a suite of features that protects networks that use dynamic address allocation from spoofing and attacks. clear ip dhcp snooping Clear the DHCP binding table. Syntax clear ip dhcp snooping binding Defaults none Command Modes EXEC Privilege Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.
Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping Enable DHCP Snooping globally. Syntax [no] ip dhcp snooping Defaults Disabled. Command Modes CONFIGURATION Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When enabled, no learning takes place until you enable snooping on a VLAN.
ip dhcp snooping binding Create a static entry in the DHCP binding table. Syntax Parameters Defaults Command Modes Command History Related Commands [no] ip dhcp snooping binding mac address vlan-id vlan-id ip ipaddress interface type slot/port lease number mac address Enter the keyword mac then the MAC address of the host to which the server is leasing the IP address. vlan-id vlan-id Enter the keywords vlan-id then the VLAN to which the host belongs. The range is from 2 to 4094.
ip dhcp snooping database renew Renew the binding table. Syntax ip dhcp snooping database renew Defaults none Command Modes Command History • EXEC • EXEC Privilege Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.19.0 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping trust Configure an interface as trusted. Syntax [no] ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version Description 9.9(0.0) Introduced on the FN IOM.
Command History Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs. Syntax Parameters [no] ip dhcp snooping vlan name name Defaults Disabled. Command Modes CONFIGURATION Command History Enter the name of a VLAN on which to enable DHCP Snooping. Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Command History Related Commands Version Description 9.9(0.0) Introduced on the FN IOM. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. clear ip dhcp snooping — clears the contents of the DHCP binding table. username Establish an authentication system based on user names.
with the secret option only, and is the default encryption type for this option. password Enter a string up to 32 characters long. privilege level Enter the keyword privilege then a number from zero (0) to 15. role role-name Enter the keyword role followed by the role name to associate with that user ID. secret Enter the keyword secret then the encryption type. sha256-password Enter the keyword sha256-password then the encryptiontype or the password.
inherit existingrole-name Enter the inherit keyword then specify the system defined role to inherit permissions from (sysadmin, secadmin, netadmin, netoperator). Defaults none Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.8(1.0) Introduced on the Z9100-ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.
Related Commands • role mode { { { addrole | deleterole } role-name } | reset } command — modifies (adds or deletes) command permissions for newly created user roles and system defined roles.
50 sFlow sFlow monitoring system includes an sFlow Agent and an sFlow Collector. • The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and forwards them to the sFlow Collector. • The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces a network-wide view of traffic flows.
• sflow polling-interval (Global) • sflow polling-interval (Interface) • sflow sample-rate (Global) • sflow sample-rate (Interface) • show sflow • show sflow stack-unit sflow collector Configure a collector device to which sFlow datagrams are forwarded.
agent, which provides invariance. The agent address is carried as a field in the payload of the sFlow packets. As part of the sFlow-MIB, if the SNMP request originates from a configured collector, the system returns the corresponding configured agent IP in the MIB requests. The system checks to ensure that two entries are not configured for the same collector IP with a different agent IP.
The following is a list of the Dell Networking OS version history for this command. Version Description 9.7(0.0) Introduced on the MXL switch. Usage Information When you enable ingress sFlow on an interface, flow sampling is done on any incoming traffic. NOTE: After a physical port is a member of a LAG, it inherits the sFlow configuration from the LAG port. Related Commands sflow enable (Global) — turns sFlow globally. sflow extended-switch enable Enable packing information on a switch only.
sflow max-header-size extended Set the maximum header size of a packet to 256 bytes. Syntax sflow max-header-size extended To reset the maximum header size of a packet, use the[no] sflow max-headersize extended command. Parameters extended Defaults 128 bytes Command Modes CONFIGURATION Enter the keyword extended to copy 256 bytes from the sample packets to sFlow datagram. INTERFACE Command History This guide is platform-specific.
Command Modes Command History CONFIGURATION Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The polling interval for an interface is the maximum number of seconds between successive samples of counters sent to the collector. This command changes the global default counter polling (20 seconds) interval. You can configure an interface to use a different polling interval.
Parameters value Defaults 32768 packets Command Modes CONFIGURATION Command History Enter the sampling rate value. The range is from 256 to 8388608 packets. Enter values in powers of 2 only; for example, 4096, 8192, 16384, and so on. The default is 32768 packets. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Sample-rate is the average number of packets skipped before the sample is taken. This command changes the global default sampling rate.
Related Commands sflow sample-rate (Global) — changes the sampling rate globally. show sflow Display the current sFlow configuration. Syntax Parameters Command Modes Command History show sflow [interface] interface • EXEC • EXEC Privilege (OPTIONAL) Enter the following keywords and slot/port or number information: • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
! interface TenGigabitEthernet 0/1 no ip address sflow enable sflow sample-rate 256 no shutdown show sflow stack-unit Display the sFlow information on a stack unit. Syntax Parameters Command Modes Command History show sflow stack-unit {unit number} unit number • EXEC • EXEC Privilege (OPTIONAL) Enter a unit number to view information on the stack unit in that slot. The range is from 0 to 5. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
51 Service Provider Bridging Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol Tunneling, and Provider Backbone Bridging as described in the Dell Networking OS Configuration Guide. This chapter includes commands for the Dell Networking operating software Layer 2 Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel. For more information, see VLAN Stacking, Spanning Tree Protocol (STP), and GARP VLAN Registration (GVRP).
To disable debugging, use the no debug protocol-tunnel interface {in | out | both} [vlan vlan-id] [count value] command. Parameters interface • For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128. • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.
Command History Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Dell#conf Dell(conf)#interface vlan 2 Dell(conf-if-vl-2)#vlan-stack compatible Dell(conf-if-vl-2)#member Gi1/2-3 Dell(conf-if-vl-2)#protocol-tunnel stp Dell(conf-if-vl-2)#protocol-tunnel enable Related Command show protocol-tunnel — displays tunneling information for all VLANs. protocol-tunnel destination-mac Overwrite the BPDU destination MAC address with a specific value.
Command History Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The system must have the default CAM profile with the default microcode before you enable L2PT. protocol-tunnel rate-limit Enable traffic rate limiting per box. Syntax protocol-tunnel rate-limit rate To reset the rate limit to the default, use the no protocol-tunnel rate-limit rate command. Parameters rate Enter the rate in frames per second. The range is from 75 to 3000.
Parameters vlan vlan-id Defaults none Command Modes EXEC Command History (OPTIONAL) Enter the keyword vlan then the VLAN ID to display information for the one VLAN. The range is from 1 to 4094. Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
52 Simple Network Management Protocol (SNMP) and Syslog This chapter contains commands to configure and monitor the simple network management protocol (SNMP) v1/v2/v3 and Syslog.
• default logging trap • logging • logging buffered • logging console • logging facility • logging history • logging history size • logging monitor • logging on • logging source-interface • logging synchronous • logging trap • logging version • show logging • show logging driverlog stack-unit • show logging auditlog • terminal monitor SNMP Commands The following SNMP commands are available in the Dell Networking OS.
clear logging auditlog Clears audit log. Syntax clear logging auditlog Defaults None Command Modes EXEC Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Example Related Commands Version Description 9.10(0.0) Introduced on the S6100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the MXL.
0 0 0 96988 0 31681 968 0 61727 0 9 0 0 32649 29078 Dell# Related Commands Unknown community name Illegal operation for community name supplied Encoding errors Number of requested variables Number of altered variables Get-request PDUs Get-next PDUs Set-request PDUs SNMP packets output Too big errors (Maximum packet size 1500) No such name errors Bad values errors General errors Response PDUs Trap PDUs snmp-server community — enables the SNMP and set community string.
show snmp group Display the group name, security model, status, and storage type of each group. Syntax Command Modes Command History show snmp group • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following Example displays a group named ngroup.
Engine ID: 0000178B02000001E80214A8 storage-type: nonvolatile active Authentication Protocol: None Privacy Protocol: None Dell# snmp ifmib ifalias long Display the entire description string through the Interface MIB, which would be truncated otherwise to 63 characters. Syntax snmp ifmib ifalias long Defaults Interface description truncated beyond 63 characters. Command Modes CONFIGURATION Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
To remove access to a community, use the no snmp-server community community-string {ro | rw} [security-name name [access-list-name] command. Parameters community-name Enter a text string (up to 20 characters long) to act as a password for SNMP. ro Enter the keyword ro to specify read-only permission. rw Enter the keyword rw to specify read-write permission. security-name name (Optional) Enter the keywords security-name then the security name as defined by the community MIB.
NOTE: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP; TCP and ICMP rules are not valid for SNMP. In IPv6 ACLs, port rules are not valid for SNMP. Example Dell#config Dell(conf)# snmp-server community public ro Dell(conf)# snmp-server community guest ro security-name guestuser Dell(conf)# Example Dell(conf)# ip access-list standard snmp-ro-acl Dell(config-std-nacl)#seq 5 permit host 10.10.10.
snmp-server enable traps Enable SNMP traps. Syntax snmp-server enable traps [notification-type] [notification-option] To disable traps, use the no snmp-server enable traps [notification-type] [notification-option] command. Parameters notification-type notificationoption Enter the type of notification from the following list: • ecfm — Notification of changes to ECFM. • entity — Notification of changes to entity.
Command Modes Command History CONFIGURATION Version Description 9.8(0.0) Added the following two SNMP notification options: syslogreachable and syslog-unreachable. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The system supports up to 16 SNMP trap receivers. If you do not configure this command, no traps controlled by this command are sent. If you do not specify a notification-type and notification-option, all traps are enabled.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Changing the value of the SNMP Engine ID has important side effects. A user’s password (entered on the command line) is converted to a message digest algorithm (MD5) or secure hash algorithm (SHA) security digest. This digest is based on both the password and the local Engine ID. The command line password is then destroyed, as required by RFC 2274.
• 3 is the most secure of the security modes. • 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. The default is 1. auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption. noauth (OPTIONAL) Enter the keyword noauth to specify no authentication of a packet. priv (OPTIONAL) Enter the keyword priv to specify both authentication and then scrambling of the packet.
snmp-server host Configure the recipient of an SNMP trap operation. Syntax snmp-server host ip-address [traps | informs] [version 1 | 2c | 3] [auth | no auth | priv] [community-string] [udp-port port-number] [notification-type] To remove the SNMP host, use the no snmp-server host ip-address [traps | informs] [version 1 | 2c | 3] [auth | noauth | priv] [communitystring] [udp-port number] [notification-type] command.
NOTE: For version 1 and version 2c security models, this string represents the name of the SNMP community. The string can be set using this command; however, Dell Networking OS recommends setting the community string using the snmp-server community command before executing this command. For version 3 security model, this string is the USM user security name. udp-port portnumber (OPTIONAL) Enter the keywords udp-port then the port number of the remote host to use. The range is from 0 to 65535.
command. Only the last snmp-server host command is in effect. For example, if you enter an snmp-server host inform command for a host and then enter another snmp-server host inform command for the same host, the second command replaces the first command. The snmp-server host command is used with the snmp-server enable command. Use the snmp-server enable command to specify which SNMP notifications are sent globally.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. snmp-server packetsize Set the largest SNMP packet size permitted. Wen the SNMP server is receiving a request or generating a reply, use the snmp-server packetsize global configuration command. Syntax Parameters snmp-server packetsize byte-count byte-count Defaults 8 Command Modes CONFIGURATION Command History Enter one of the following values 8, 16, 24 or 32.
Command Modes Command History CONFIGURATION Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information To enable this snmp-server trap-source command, configure an IP address on the interface and enable the interface configured as an SNMP trap source. Related Commands snmp-server community — sets the community string. snmp-server user Configure a new user to an SNMP group.
• 1 is the least secure version. • 3 is the most secure of the security modes. • 2c allows transmission of informs and counter 64, which allows for integers twice the width of what is normally allowed. The default is 1. encrypted (OPTIONAL) Enter the keyword encrypted to specify the password appear in encrypted format (a series of digits, masking the true characters of the string). auth (OPTIONAL) Enter the keyword auth to specify authentication of a packet without encryption.
Usage Information No default values exist for authentication or privacy algorithms and no default password exists. If you forget a password, you cannot recover it; the user must be reconfigured. You can specify either a plain-text password or an encrypted cypher-text password. In either case, the password is stored in the configuration in an encrypted form and displayed as encrypted in the show running-config command.
To remove a user from the SNMP group, use the no snmp-server user name {group_name remote ip-address udp-port port-number} [1 | 2c | 3] [encrypted] [auth {md5 | sha} auth-password] [priv {des56 | aes128–cfb} priv-password] [access access-list-name | ipv6 accesslist-name | access-list-name ipv6 access-list-name] command. Parameters auth-password (OPTIONAL) Enter a text string (up to 20 characters long) password that enables the agent to receive packets from the host and to send packets to the host.
snmp-server view Configure an SNMPv3 view. Syntax snmp-server view view-name oid-tree {included | excluded} To remove an SNMPv3 view, use the no snmp-server view view-name oid-tree {included | excluded} command. Parameters view-name Enter the name of the view (not to exceed 20 characters). oid-tree Enter the OID sub tree for the view (not to exceed 20 characters). included (OPTIONAL) Enter the keyword included to include the MIB family in the view.
Defaults Enabled. Command Modes INTERFACE Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If the interface is expected to flap during normal usage, you could disable this command. Syslog Commands The following commands allow you to configure logging functions on all Dell Networking switches. clear logging Clear the messages in the logging buffer.
Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. default logging buffered — sets the logging buffered parameters. default logging console Return the default settings for messages logged to the console. Syntax default logging console Defaults level = 7 or debugging Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Version Description 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the S4810, S4820T, S6000, Z9000, and MXL. Usage Information This command is available with or without RBAC enabled. When RBAC is enabled you can restrict access to audit and security logs based on the CLI sessions’ user roles. If extended logging is disabled, you can only view system events, regardless of RBAC user role.
default logging trap Return to the default settings for logging messages to the Syslog servers. Syntax default logging trap Defaults level = 6 or informational Command Modes CONFIGURATION Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging trap — limit messages logged to the Syslog servers based on severity. logging Configure an IP address or host name of a Syslog server where logging messages are sent.
Command History Related Commands Version Description 9.5(0.0) Introduced udp and tcp keywords on the MXL 10/40GbE Switch. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. logging on — enables the logging asynchronously to logging buffer, console, Syslog server, and terminal lines. logging trap — enables logging to the Syslog server based on severity. logging buffered Enable logging and specify which messages are logged to an internal buffer.
default logging buffered — returns the logging buffered parameters to the default setting. show logging — displays the logging setting and system messages in the internal buffer. logging console Specify which messages are logged to the console. Syntax logging console [level] To return to the default values, use the default logging console command. To disable logging to the console, use the no logging console command.
Parameters facility-type (OPTIONAL) Enter one of the following parameters: • auth (authorization system) • cron (Cron/at facility) • deamon (system deamons) • kern (kernel) • local0 (local use) • local1 (local use) • local2 (local use) • local3 (local use) • local4 (local use) • local5 (local use) • local6 (local use) • local7 (local use) • lpr (line printer system) • mail (mail system) • news (USENET news) • sys9 (system use) • sys10 (system use) • sys11 (system use) •
logging history Specify which messages are logged to the history table of the switch and the SNMP network management station (if configured). Syntax logging history level To return to the default values, use the no logging history command. Parameters level Defaults warnings or 4 Command Modes CONFIGURATION Command History Indicate a value from 0 to 7 or enter one of the following equivalent words: emergencies, alerts, critical, errors, warnings, notifications, informational, or debugging.
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When the number of messages reach the limit you set with the logging history size command, older messages are deleted as newer ones are added to the table. Related Commands show logging — displays information logged to the history buffer. logging monitor Specify which messages are logged to Telnet applications.
Defaults Enabled. Command Modes CONFIGURATION Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you use the no logging on command, messages are logged only to the console. Related Commands logging — enables logging to the Syslog server. logging buffered — sets the logging buffered parameters. logging console — sets the logging console parameters. logging monitor — sets the logging parameters for the terminal connections.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Syslog messages contain the IP address of the interface used to egress the router. By configuring the logging source-interface command, the Syslog packets contain the IP address of the interface configured. Related Commands logging — enables logging to the Syslog server. logging synchronous Synchronize unsolicited messages and output.
Related Commands logging on — enables logging. logging trap Specify which messages are logged to the Syslog server based the message severity. Syntax logging trap [level] To return to the default values, use the default logging trap command. To disable logging, use the no logging trap command.
Version Description 9.10(0.0) Introduced on the S6100–ON. 9.8(1.0) Introduced on the Z9100–ON. 9.8(0.0P5) Introduced on the S4048-ON. 9.8(0.0P2) Introduced on the S3048-ON. 9.7(0.0) Introduced on the S6000-ON. 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the S4810, S4820T, S6000, Z9000, and MXL. Usage Information To display syslog messages in a RFC 3164 or RFC 5424 format, use the log version command in configuration mode. By default, the system log version is set to 0.
Command Modes Command History • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Example (Partial) Dell#show logging Syslog logging: enabled Console logging: level debugging Monitor logging: level debugging Buffer logging: level debugging, 311 Messages Logged, Size (40960 bytes) Trap logging: level informational Logging to 172.16.1.162 Logging to 10.10.10.4 Logging to 10.1.2.4 Logging to 172.31.1.4 Logging to 133.33.33.
show logging driverlog stack-unit Display the driver log for the specified stack member. Syntax Parameters defaults Command Modes Command History show logging driverlog stack-unit unit# stack-unit unit# Enter the keywords stack-unit then the stack member ID of the switch for which you want to display the driver log. The range is from 0 to 1. none • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module..
Example Related Commands Version Description 9.5(0.1) Introduced on the Z9500. 9.5(0.0) Introduced on the S4810, S4820T, S6000, Z9000, and MXL. Dell(conf)# show logging auditlog • clear logging auditlog — clear the audit log. terminal monitor Configure the system to display messages on the monitor/terminal. Syntax terminal monitor To return to default settings, use the terminal no monitor command. defaults Command Modes Command History Related Commands Disabled.
53 Stacking For more information about using the Switch stacking feature, see the Stacking MXL 10/40GbE Switches chapter in the Dell Networking OS Configuration Guide. redundancy disable-auto-reboot Prevent the switch stack management unit from rebooting if it fail. Syntax redundancy disable-auto-reboot stack-unit [0–5 | members] To return to the default, use the no redundancy disable-auto-reboot stackunit [0–5 | members] command. Defaults Disabled (the failed switch is automatically rebooted).
redundancy force-failover stack-unit Force the standby unit in the stack to become the management unit. Syntax redundancy force-failover stack-unit Defaults Not enabled. Command Modes EXEC Privilege Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. reset stack-unit Reset any designated stack member except the management unit (master unit).
Stack MAC : 00:1e:c9:f1:00:7b Reload Type : jump-start [Next boot : normal-reload] -- Stack Info -Unit UnitType Status ReqTyp CurTyp Version Ports -----------------------------------------------------------------0 Management online MXL-10/40GbE MXL-10/40GbE 9-1-0-853 56 1 Standby online MXL-10/40GbE MXL-10/40GbE 9-1-0-853 56 2 Member online MXL-10/40GbE MXL-10/40GbE 9-1-0-853 56 3 Member online MXL-10/40GbE MXL-10/40GbE 9-1-0-853 56 4 Member online MXL-10/40GbE MXL-10/40GbE 9-1-0-853 56 5 Member online MXL-
Mgmt ID: Stack-unit ID: Stack-unit Redundancy Role: Stack-unit State: Stack-unit SW Version: Link to Peer: Peer Stack-unit: 0 0 Primary Active E8-3-16-160 Down not present -- Stack-unit Redundancy Configuration ------------------------------------------------Primary Stack-unit: mgmt-id 0 Auto Data Sync: Full Failover Type: Hot Failover Auto reboot Stack-unit: Enabled Auto failover limit: 3 times in 60 minutes -- Stack-unit Failover Record ------------------------------------------------Failover Count: 0 L
• Command History EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show interfaces command shown in the following example. Example Field Description Topology Lists the topology of stack ports connected: Ring, Daisy chain, or Standalone. Interface The unit/port ID of the connected stack port on this unit. Link Speed Link Speed of the stack port (10 or 40) in Gb/s.
Example (Topology) Dell# show system stack-ports Topology: Ring Interface Connection Trunk Group 0/33 1/37 0/37 2/33 0/41 1/49 0/45 2/53 1/33 2/37 1/37 0/33 1/49 0/41 1/53 2/49 2/33 0/37 2/37 1/33 2/49 1/53 2/53 0/45 Related Commands • redundancy disable-auto-reboot — resets the designated stack member. • show hardware stack-unit — displays the data plane or management plane input and output statistics of the designated component of the designated stack member.
stack-unit stack-group Configure a 40GbE port for stacking mode. Syntax Parameters Command Modes Command History stack-unit unit number stack-group group number unit number <0– 5> Number of the member stack unit. The valid values are from 0 to 5. group number <0–5> Number of the stacked port on the unit. The valid values are from 0 to 5. CONFIGURATION 8.3.16.1 Related Commands Introduced on the MXL 10/40GbE Switch IO Module. • reload — reboots the system.
Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. • reload — reboots the system. • show system — displays the status of all stack members or a specific member. stack-unit provision Preconfigure a logical stacking ID of a switch that joins the stack. This is an optional command that is executed on the management unit.
The second instance of this value is the desired new unit identifier number. Defaults none Command Modes EXEC Privilege Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can renumber any switch, including the management unit or a stand-alone unit. You cannot renumber a unit to a number of an active member in the stack. When executing this command on the master, the stack reloads.
54 Storm Control The Dell Networking Operating System (OS) storm control feature allows you to limit or suppress traffic during a traffic storm. Storm control is supported on the Dell Networking OS. Important Points to Remember • Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs] and link aggregation group [LAG] interfaces are not supported). • An INTERFACE-level command only supports storm control configuration on ingress.
Defaults Command Modes Command History Example • For a 10-Gigabit Ethernet interface, enter the keyword TenGigabitEthernet then the slot/port information. • For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/ port information. none • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
8.3.16.1 Example Introduced on the MXL 10/40GbE Switch IO Module. Dell#show storm-control multicast gigabitethernet 1/1 Multicast storm control configuration Interface Direction Packets/Second ----------------------------------------Gi 1/0 Ingress 5 Dell# show storm-control unknown-unicast Display the storm control unknown-unicast configuration.
storm-control broadcast (Configuration) Configure the percentage of broadcast traffic allowed in the network. Syntax storm-control broadcast [packets_per_second in] To disable broadcast rate-limiting, use the no storm-control broadcast [packets_per_second in] command. Parameters packets_per_seco nd Enter the packets per second of broadcast traffic allowed into the network. The range is from 0 to 33554368. Defaults none Command Modes CONFIGURATION (conf) Command History Version Description 8.3.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. storm-control PFC/LLFC Shut down the port if it receives the PFC/LLFC frames more than the configured rate. Syntax Parameters storm-control pfc-llfc [pps]in shutdown pfc-llfc in Enter the keyword pfc-llfc to get the flow control traffic. The range is from 0 to 33554368 packets per second. shutdown Enter the keyword shutdown to shut down the port when the rate exceeds.
Defaults none Command Modes CONFIGURATION (conf) Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Broadcast traffic (all 0xFs) should be counted against the broadcast storm control meter, not against the multicast storm control meter. It is possible, however, that some multicast control traffic may get dropped when storm control thresholds are exceeded.
Parameters packets_per_seco nd Defaults none Command Modes CONFIGURATION Command History Enter the packets per second of broadcast traffic allowed into the network. The range is from 0 to 33554368. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information Unknown Unicast Storm-Control is valid for Layer 2 and Layer 2/Layer 3 interfaces.
55 Spanning Tree Protocol (STP) The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP). Topics: • bridge-priority • debug spanning-tree • description • disable • forward-delay • hello-time • max-age • portfast bpdufilter default • protocol spanning-tree • show config • show spanning-tree 0 • spanning-tree 0 bridge-priority Set the bridge priority of the switch in an IEEE 802.1D spanning tree.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. debug spanning-tree Enable debugging of the spanning tree protocol and view information on the protocol. Syntax debug spanning-tree {stp-id [all | bpdu | events | exceptions] | protocol} To disable debugging, use the no debug spanning-tree command. Parameters Command Modes Command History stp-id Enter zero (0). The switch supports one spanning tree group with a group ID of 0.
Parameters description Enter a description to identify the spanning tree (80 characters maximum). Defaults none Command Modes SPANNING TREE (The prompt is “config-stp”.) Command History Related Commands Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. portfast bpdufilter default — enters SPANNING TREE mode on the switch. disable Disable the spanning tree protocol globally on the switch. Syntax disable To enable Spanning Tree Protocol, use the no disable command.
Parameters seconds Defaults 15 seconds Command Modes SPANNING TREE Command History Related Commands Enter the number of seconds that the system waits before transitioning STP to the Forwarding state. The range is from 4 to 30. The default is 15 seconds. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. max-age — changes the wait time before STP refreshes protocol configuration information. hello-time — changes the time interval between BPDUs.
max-age To maintain configuration information before refreshing that information, set the time interval for the spanning tree bridge. Syntax max-age seconds To return to the default values, use the no max-age command. Parameters seconds Defaults 20 seconds Command Modes SPANNING TREE Command History Related Commands Enter a number of seconds the system waits before refreshing configuration information. The range is from 6 to 40. The default is 20 seconds. Version Description 8.3.16.
protocol spanning-tree To enable and configure the spanning tree group, enter SPANNING TREE mode. Syntax protocol spanning-tree stp-id To disable the Spanning Tree group, use the no protocol spanning-tree stp-id command. Parameters stp-id Defaults Not configured. Command Modes CONFIGURATION Command History Enter zero (0). The system supports one spanning tree group, group 0. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
show spanning-tree 0 Display the spanning tree group configuration and status of interfaces in the spanning tree group. Syntax Parameters Command Modes Command History show spanning-tree 0 [active | brief | guard | interface interface | root | summary] 0 Enter 0 (zero) to display information about that specific spanning tree group. active (OPTIONAL) Enter the keyword active to display only active interfaces in spanning tree group 0.
Example Field Description “Bridge Identifier...” Lists the bridge priority and the MAC address for this STP bridge. “Configured hello...” Displays the settings for hello time, max age, and forward delay. “We are...” States whether this bridge is the root bridge for the STG. “Current root...” Lists the bridge priority and MAC address for the root bridge. “Topology flag...” States whether the topology flag and the detected flag were set. “Number of...
Number of transitions to forwarding state 1 BPDU: sent:18, received 0 The port is not in the portfast mode Port 27 (GigabitEthernet 1/2) is Forwarding Port path cost 4, Port priority 8, Port Identifier 8.27 Designated root has priority 32768, address 0001.e800.0a56 Designated bridge has priority 32768, address 0001.e800.0a56 Designated port id is 8.
Example (Guard) Field Description Interface Name STP interface. Instance STP 0 instance. Sts Port state: root-inconsistent (INCON Root), forwarding (FWD), listening (LIS), blocking (BLK), or shut down (EDS Shut). Guard Type Type of STP guard configured (Root, Loop, or BPDU guard).
viol ation] | bpdufilter] Enter the optional keyword bpduguard to disable the port when it receives a BPDU. Enter the optional keywords shutdown-on-violation to hardware disable an interface when a BPDU is received and the port is disabled. Enter the keyword bpdufilter to enable on an interface; it should stop sending and receiving BPDUs on the port fast enabled ports. priority priority Enter keyword priority then a number as the priority. The range is zero (0) to 15. The default is 8.
56 SupportAssist SupportAssist sends troubleshooting data securely to Dell. SupportAssist in this Dell Networking OS release does not support automated email notification at the time of hardware fault alert, automatic case creation, automatic part dispatch, or reports. SupportAssist requires Dell Networking OS 9.9(0.0) and SmartScripts 9.7 or later to be installed on the Dell Networking device. For more information on SmartScripts, see Dell Networking Open Automation guide.
reject Enter the keyword reject to reject the EULA for the specified service. Defaults None Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Usage Information Example Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
that the provision of SupportAssist may involve international transfers of data from you to Dell and/or to Dells affiliates, subcontractors or business partners. When making such transfers, Dell shall ensure appropriate protection is in place to safeguard the Collected Data being transferred in connection with SupportAssist.
Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. Usage Information You are guided through a series of queries to configure SupportAssist.
SupportAssist Commands Dell Networking OS supports the following SupportAssist mode commands. activity Move to the SupportAssist Activity mode for an activity. Allow the user to configure customized details for a specific activity. Syntax activity {activity-name} To remove all customized detail for a specific activity, use the no activity {activity-name} command.
To remove the contact company information, use the no contact-company command. Parameters company-name Enter the name for the company. If there are multiple words in the name, use optional additional fields. company-nextname (OPTIONAL) Enter the next components of the company name, up to 5 components are allowed. Command Modes SUPPORTASSIST Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide.
Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. Usage Information Each contact person must be unique by their name. You can configure only one contact person.
server Configure the name of the remote SupportAssist Server and move to SupportAssist Server mode. Syntax server {default | server-name} To delete a server, use the no server server-name command. Parameters default Enter the keyword default for the default server. server-name Enter the name of the remote SupportAssist Server. To include a space, enter a space within double quotes. Defaults Default server has URL stor.g3.ph.dell.
action-manifest get Copy an action-manifest file for an activity to the system. Syntax Parameters action-manifest get tftp | ftp | flash file-specification local-file-name Enter the full file specification for the action-manifest file. For example: • tftp://hostip/filepath • ftp://userid:password@hostip/filepath • scp://userid:password@hostip/filepath Enter the name of the local action-manifest file, up to 32 characters long.
To revert to the default action-manifest file, use the action-manifest install default command. Parameters default Enter the keyword default to revert back to the default set of actions for an activity. local-file-name Enter the name of the local action-manifest file. Allowable characters are: a to z, A to Z, 0 to 9, -, _, and space. Defaults Default Command Modes SUPPORTASSIST ACTIVITY Command History This guide is platform-specific.
Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. Usage Information To revert to the default action-manifest file, use the action-manifest install command. If necessary, you can then remove the custom action-manifest file. Related Commands • action-manifest get — copy an action-manifest file for an activity to the system.
enable Enable a specific SupportAssist activity. Syntax enable To disable a particular SupportAssist activity, use the no enable command. Defaults Enabled Command Modes SUPPORTASSIST ACTIVITY Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Related Commands Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
Parameters city company-city (OPTIONAL) Enter the keyword city then the city or town for the company site. To include a space, enter a space within double quotes. province | region | state name (OPTIONAL) Enter the keyword province, region or state then the name of province, region or state for the company site. To include a space, enter a space within double quotes. country company-country (OPTIONAL) Enter the keyword country then the country for the company site.
Parameters address1 Enter the street address for the company. address2..address 8 (OPTIONAL) Enter the street address of the company site. Up to 8 fields are allowed. Command Modes SUPPORTASSIST COMPANY Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
SupportAssist Person Commands Dell Networking OS supports the following SupportAssist Person mode commands. email-address Configure the email addresses to reach the contact person. Syntax email-address primary email-address [alternate email-address] To remove an email address, use either the no email-address primary or no email-address alternate commands. Parameters primary emailaddress Enter the keyword primary then the primary email address for the person.
phone Configure phone numbers to reach the contact person. Syntax phone primary phone [alternate phone] To remove a phone number, use either the no phone primary or no phone alternate commands. Parameters primary phone Enter the keyword primary then the primary phone number for the person. alternate phone Enter the keyword alternate then the alternate phone number for the person. Command Modes SUPPORTASSIST PERSON Command History This guide is platform-specific.
phone Enter the keyword phone to specify phone as preferred method. Defaults no-contact Command Modes SUPPORTASSIST PERSON Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Related Commands Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL.
Version Description 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL. Usage Information This command is optional for SupportAssist service configuration. SupportAssist Server Commands Dell Networking OS supports the following SupportAssist Server mode commands. proxy-ip-address Configure a proxy for reaching the SupportAssist remote server.
• password 7 indicates that the password is encrypted using a DES hashing algorithm. Enter a string up to 32 characters long. Defaults encryption-type for the password is 0. Command Modes SUPPORTASSIST SERVER Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.
url Configure the URL to reach the SupportAssist remote server. Syntax url uniform-resource-locator To delete the URL for the server, use the no url command. Parameters uniformresource-locator Enter a text string for the URL using one of the following formats: • http://[username:password@]:/ • https://[username:password@]:/ NOTE: The host IP for the server may be specified as an IPv4 address, an IPv6 address or as a DNS hostname.
Command History Example This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.9(0.0) Introduced on the S4810, S4820T, S3048–ON, S4048–ON, S5000, S6000, S6000–ON, Z9500, MXL.
of a company or other legal entity, you are further certifying to Dell that you have appropriate authority to provide this consent on behalf of that entity. If you do not consent to the collection, transmission and/or use of the Collected Data, you may not download, install or otherwise use SupportAssist. Dell# show running-config Display the current configuration and changes from the default values.
show support-assist status Display information on SupportAssist feature status including any activities, status of communication, last time communication sent, and so on. Syntax show support-assist status Command Modes EXEC Privilege Command History This guide is platform-specific. For command information about other platforms, see the relevant Dell Networking OS Command Line Reference Guide. Example Version Description 9.10(0.0) Introduced on the C9010, Z9100–ON, S6100–ON, and S3100 series. 9.
57 System Time and Date The commands in this chapter configure time values on the system, either using the Dell Networking Operating System (OS), or the hardware, or using the network time protocol (NTP). With NTP, the switch can act only as a client to an NTP clock host. For more information, refer to the “Network Time Protocol” section of the Management chapter in the Dell Networking OS Configuration Guide.
month Enter the name of one of the 12 months, in English. You can enter the number of a day and change the order of the display to time day month year. day Enter the number of the day. The range is from 1 to 31. You can enter the name of a month to change the order of the display to time month day year. year Enter a four-digit number as the year. The range is from 1993 to 2035. Defaults Not configured. Command Modes EXEC Privilege Command History Version Description 9.9(0.
start-month Enter the name of one of the 12 months in English. You can enter the name of a day to change the order of the display to time day month year. start-day Enter the number of the day. The range is from 1 to 31. You can enter the name of a month to change the order of the display to time day month year. start-year Enter a four-digit number as the year. The range is from 1993 to 2035. start-time Enter the time in hours:minutes.
clock summer-time recurring Set the software clock to convert to daylight saving time on a specific day each year. Syntax clock summer-time time-zone recurring [start-week start-day startmonth start-time end-week end-day end-month end-time [offset]] To delete a daylight saving time zone configuration, use the no clock summer-time command. Parameters time-zone Enter the three-letter name for the time zone. This name is displayed in the show clock output. You can enter up to eight characters.
end-time Enter the time in hours:minutes:seconds. For the hour variable, use the 24-hour format; example, 17:15:00 is 5:15 pm. offset (OPTIONAL) Enter the number of minutes to add during the summer-time period. The range is from 1 to 1440. The default is 60 minutes. Defaults Not configured. Command Modes CONFIGURATION Command History Related Commands Version Description 9.9(0.0) Introduced on the FN MXL. 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Coordinated universal time (UTC) is the time standard based on the International Atomic Time standard, commonly known as Greenwich Mean time. When determining system time, include the differentiator between UTC and your local timezone. For example, San Jose, CA is the Pacific Timezone with a UTC offset of -8. debug ntp Display network time protocol (NTP) transactions and protocol messages for troubleshooting.
ntp authenticate Enable authentication of NTP traffic between the switch and the NTP time serving hosts. Syntax ntp authenticate To disable NTP authentication, use the no ntp authentication command. Defaults Not enabled. Command Modes CONFIGURATION Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You also must configure an authentication key for NTP traffic using the ntp authentication-key command.
Defaults NTP authentication is not configured by default. If you do not specify the option [0 | 7], 0 is selected by default. Command Modes CONFIGURATION Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information After configuring the ntp authentication-key command, configure the ntp trusted-key command to complete NTP authentication. The Dell Networking OS versions 8.2.1.
ntp disable Prevent an interface from receiving NTP packets. Syntax ntp disable To re-enable NTP on an interface, use the no ntp disable command. Defaults Disabled (that is, if you configure an NTP host, all interfaces receive NTP packets) Command Modes INTERFACE Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. ntp multicast client To receive NTP information from the network via multicast, configure the switch.
ntp master Configure the switch as NTP Server. Syntax Parameters ntp master ntp master Enter the keyword stratum number to identify the NTP Server's hierarchy. Defaults Not configured. Command Modes CONFIGURATION Command History This guide is platform-specific. For command information about other platforms, refer to the relevant Dell Networking OS Command Line Reference Guide. The following is a list of the Dell Networking OS version history for this command.
Version Description 9.10(0.0) Introduced on the S3038–ON, S4048-ON, S3100 Series, S4810P, S4820T, S5000, S6000, S6000–ON, S6100–ON, Z9500, and Z9100–ON. Usage Information The ntp offset-threshold command does not time synchronization. Example Dell(config)# ntp offset-threshold 4 ntp server Configure an NTP time-serving host.
Because many polls to NTP hosts can impact network performance, Dell Networking OS recommends limiting the number of hosts configured. Related Commands show ntp associations — displays the NTP servers configured and their status. ntp source Specify an interface’s IP address to be included in the NTP packets. Syntax ntp source interface To delete the configuration, use the no ntp source command. Parameters interface Defaults Not configured.
Parameters number Defaults Not configured. Command Modes CONFIGURATION Command History Enter a number as the trusted key ID. The range is from 1 to 4294967295. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The number parameter in the ntp trusted-key command must be the same number as the number parameter in the ntp authentication-key command. If you change the ntp authentication-key command, you must also change the ntp trustedkey command.
Summer time ends 00:00:00 pacific Wed Nov 7 2012 Dell# Related Commands clock summer-time recurring — displays the time and date from the switch hardware clock. show ntp associations Display the NTP master and peers. Syntax Command Modes Command History show ntp associations • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ntp associations command shown in the following example.
Field Description offset Displays the relative time of the NTP peer’s clock to the switch clock (in milliseconds). disp Displays the dispersion. Example Dell#show ntp associations remote ref clock st when poll reach delay offset disp ============================================================= 10.10.120.5 0.0.0.0 16 256 0 0.00 0.000 16000.0 *172.16.1.33 127.127.1.0 11 6 16 377 -0.08 -1499.9 104.16 172.31.1.33 0.0.0.0 16 256 0 0.00 0.000 16000.0 192.200.0.2 0.0.0.0 16 256 0 0.00 0.000 16000.
Command Modes Command History • EXEC • EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ntp status command shown in the following example. Field Description “Clock is...” States whether the switch clock is synchronized, which NTP stratum the system is assigned and the IP address of the NTP peer. “frequency is...
58 Tunneling Tunneling is supported on the Dell Networking OS. tunnel-mode Enable a tunnel interface. Syntax tunnel mode {ipip | ipv6 | ipv6ip}[decapsulate-any] To disable an active tunnel interface, use the no tunnel mode command. Parameters ipip Enable tunnel in RFC 2003 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv4 tunnel. ipv6 Enable tunnel in RFC 2473 mode and encapsulate IPv4 and/or IPv6 datagrams inside an IPv6 tunnel.
tunnel source Set a source address for the tunnel. Syntax tunnel source {ip-address | ipv6–address | interface-type-number} To delete the current tunnel source address, use the no tunnel source command. Parameters ip-address Enter the source IPv4 address in A.B.C.D format. ipv6–address Enter the source IPv6 address in X:X:X:X::X format. interface-typenumber • For a 100/1000 Ethernet interface, enter the keyword GigabitEthernet then the slot/port information.
Use the no tunnel keepalive command to disable tunnel keepalive probes. Parameters ip-address ipv6 address Enter the IPv4 or IPv6 address of the peer to which the keepalive probes will be sent. interval seconds Enter the keyword interval followed by the interval time, in seconds, after which the restart process to keepalive probe packets. The range is from 5- 255. Default range is 5. count (OPTIONAL) Enter the keyword count to count packets processed by the filter.
Parameters ip-address Enter the source IPv4 address in A.B.C.D format. ipv6–address Enter the source IPv6 address in X:X:X:X::X format. mask (OPTIONAL) Enter a network mask in /prefix format (/x) or A.B.C.D to match a range of remote addresses. The default mask is /32 for IPv4 addresses and /128 for IPv6 addresses, which match only the specified address. Defaults If no tunnel allow remote is configured, all traffic which is destined to tunnel source address will be decapsulated.
Defaults 0 (Mapped) Command Modes INTERFACE TUNNEL (conf-if-tu) Command History Version Description 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command configures the method used to set the high 6 bits (the differentiated services codepoint) of the IPv4 TOS or the IPv6 traffic class in the outer IP header. A value of 0 copies original packet DSCP (IPv4)/Traffic Class (IPv6) to the tunnel header DSCP (IPv4)/Traffic Class (IPv6) depending on the mode of tunnel.
tunnel flow-label Configure the method to set the IPv6 flow label value in the outer tunnel header. Syntax tunnel flow-label value To return to the default value of 0, use the no tunnel flow-label value command. Parameters value Enter a value to set the IPv6 flow label value in the tunnel header. The range is from 0 to 1048575. The default value is 0.
Usage Information A value of 0 copies the inner packet hop limit (ipv6) or time-to-live (ipv4) in the encapsulated packet to the tunnel header hop limit (ipv6) or time-to-live (ipv4) value. ip unnumbered Configure a tunnel interface to operate without a unique explicit IPv4 address and select the interface from which the tunnel will borrow its address. Syntax ip unnumbered {interface-type interface-number} Use the no ip unnumbered command to set the tunnel back to default logical address.
ipv6 unnumbered Configure a tunnel interface to operate without a unique explicit IPv6 address and select the interface from which the tunnel will borrow its address. Syntax ipv6 unnumbered {interface-type interface-number} Use the no ipv6 unnumbered command to set the tunnel back to default logical address. If the tunnel was previously operational, this will make the tunnel interface operationally down, unless the tunnel also has an IPv4 address configured.
59 u-Boot All commands in this chapter are in u-Boot mode. These commands are supported on the Dell Networking Operating System (OS) MXL 10/40GbE Switch Module platform. To access this mode, press any key when the following line appears on the console during a system boot. Hit any key to stop autoboot: Enter u-Boot immediately, as the BOOT_USER# prompt. NOTE: This chapter describes only a few commands available in u-Boot mode. NOTE: You cannot use the Tab key to complete commands in this mode.
boot change Change the operating system boot parameters. Syntax boot change [primary | secondary | default] Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. boot selection Change the ROM bootstrap bootflash partition. Syntax boot selection [a | b] Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
boot write net config retries Set the number of retries for network boot configuration failure. Syntax boot write net config retries Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # boot write net config retries 2 Updated number of Network Boot Config retries to 2. BOOT_USER # boot zero Clears the primary, secondary, or default boot parameters.
enable Change the access privilege level. Syntax enable [user | admin] Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. help Display the help menu. Syntax help Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
ignore enable password Ignore the enabled password. Syntax ignore enable-password Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. enable sha256-password Configure SHA-256 based password for the enable command. Syntax enable sha256-password [level level] [encryption-type] password To delete a password, use the no enable sha256-password [encryption-type] password [level level] command.
Related Commands Version Description 9.10(0.0) Introduced on the S6100–ON, S6000, S6000–ON, S5000, S4810, S4820T, S3048–ON, S4048–ON, MXL, FN IOM, C9010, S3100, and Z9100-ON. • show running-config — views the current configuration. • privilege level (CONFIGURATION mode) — controls access to the command modes within the switch. ignore startup config Ignore the system startup configuration. Syntax ignore startup-config Command Modes uBoot Command History Version Description 8.3.16.
no default-gateway Clear the default gateway IP address. Syntax no default-gateway Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. no interface management ethernet ip address Clear the management port IP address and mask. Syntax no interface management ethernet ip address Command Modes uBoot Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. reload Reload the MXL switch.
show boot blc Show the boot loop counter value. Syntax show boot blc Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show boot blc ? Total 1 possible command found. Possible command list: show boot blc show the boot loop counter value BOOT_USER # show boot blc Boot Loop Counter : 10 BOOT_USER # show boot selection Display the ROM bootstrap bootflash partition.
show bootflash Show summary of boot flash information. Syntax show bootflash Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show bootflash GENERAL BOOTFLASH INFO ====================== Bootflash Partition A: Dell Force10 Networks System Boot Official IOM_LP_IMG_BOOT_LOADER, BSP Release 4.0.1.
boot device file name Management Etherenet IP address Server IP address Default Gateway IP address Management Etherenet MAC address : : : : : : tftp premnath 10.16.130.134/16 10.16.127.35 15.0.0.1 00:01:E8:43:DE:DF SECONDARY OPERATING SYSTEM BOOT PARAMETERS: ======================================== No Operating System boot parameters specified! DEFAULT OPERATING SYSTEM BOOT PARAMETERS: ======================================== boot device : tftp file name : FTOS-XL-8-3-16-99.
8.3.16.1 Example Introduced on the MXL 10/40GbE Switch IO Module. BOOT_USER # show interface management ethernet Management ethernet IP address: 10.16.130.134/16 BOOT_USER # show interface management port config Show the management port boot characteristics. Syntax show interface management port config Command Modes uBoot Command History Example Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Current access level: USER LEVEL Use "syntax help" for more information on syntax.
60 Uplink Failure Detection (UFD) Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if you use this with network interface controller (NIC) teaming, automatic recovery from a failed link.
channels in any order; for example: gigabitethernet 1/1-2,5,9,11-12 port-channel 1-3,5. A comma is required to separate each port and port-range entry. uplink-stategroup group-id Command Modes Command History Related Commands Re-enables all UFD-disabled downstream interfaces in the group. The valid group-id values are from 1 to 16. EXEC Mode Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
description Enter a text description of an uplink-state group. Syntax Parameters description text text Text description of the uplink-state group. The maximum length is 80 alphanumeric characters. Defaults none Command Modes UPLINK-STATE-GROUP Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
channels in any order; for example: gigabitethernet 1/1-2,5,9,11-12 port-channel 1-3,5. A comma is required to separate each port and port-range entry. Defaults none Command Modes UPLINK-STATE-GROUP Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can assign physical port or port-channel interfaces to an uplink-state group. You can assign an interface to only one uplink-state group.
Related Commands • downstream — assigns a port or port-channel to the uplink-state group as a downstream interface. • upstream — assigns a port or port-channel to the uplink-state group as an upstream interface. • uplink-state-group — creates an uplink-state group and enables the tracking of upstream links. downstream disable links Configure the number of downstream links in the uplink-state group that are disabled if one upstream link in an uplink-state group goes down.
enable Re-enable upstream-link tracking for an uplink-state group after it has been disabled. Syntax enable To disable upstream-link tracking without deleting the uplink-state group, use the no enable command. Parameters group-id Enables debugging on the specified uplink-state group. The valid group-id values are from 1 to 16. Defaults Upstream-link tracking is automatically enabled in an uplink-state group.
8.3.16.1 Example Related Commands Introduced on the MXL 10/40GbE Switch IO Module. Dell#show running-config uplink-state-group ! uplink-state-group 3 no enable description Testing UFD feature downstream disable links 2 downstream TenGigabitEthernet 0/1-2,5,9,11-12 upstream TenGigabitEthernet 0/3-4 • show uplink-state-group — displays the status information on a specified uplinkstate group or all groups. • uplink-state-group — creates an uplink-state group and enables the tracking of upstream links.
(Up): Interface up (Dwn): Interface down (Dis): Interface disabled Uplink State Group : 1 Status: Enabled, Up Upstream Interfaces : Downstream Interfaces : Uplink State Group Upstream Interfaces Downstream Interfaces 13/5(Up) Te 13/6(Up) : 3 Status: Enabled, Up : Gi 0/46(Up) Gi 0/47(Up) : Te 13/0(Up) Te 13/1(Up) Te 13/3(Up) Te Uplink State Group : 5 Status: Enabled, Down Upstream Interfaces : Gi 0/0(Dwn) Gi 0/3(Dwn) Gi 0/5(Dwn) Downstream Interfaces : Te 13/2(Dis) Te 13/4(Dis) Te 13/11(Dis) Te 13/12(Dis)
Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.. Usage Information After you enter the command, to assign upstream and downstream interfaces to the group, enter Uplink-State-Group Configuration mode. An uplink-state group is considered to be operationally up if at least one upstream interface in the group is in the Link-Up state. An uplink-state group is considered to be operationally down if no upstream interfaces in the group are in the Link-Up state.
1/1-2,5,9,11-12 port-channel 1-3,5. A comma is required to separate each port and port-range entry. Defaults none Command Modes UPLINK-STATE-GROUP Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You can assign physical port or port-channel interfaces to an uplink-state group. You can assign an interface to only one uplink-state group.
61 VLAN Stacking With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you can “stack” VLANs into one tunnel and switch them through the network transparently. For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in the Layer 2 chapter.
dei enable Make packets eligible for dropping based on their drop eligible indicator (DEI) value. Syntax dei enable Defaults Packets are colored green; no packets are dropped. Command Modes CONFIGURATION Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. dei honor Honor the incoming DEI value by mapping it to a system drop precedence. Enter the command once for 0 and once for 1.
dei mark Set the DEI value on egress according to the color currently assigned to the packet. Syntax Parameters dei mark {green | yellow} {0 | 1} 0|1 Enter the bit value you want to map to a color. green | yellow Choose a color: • Green: High priority packets that are the least preferred to be dropped. • Yellow: Lower priority packets that are treated as besteffort. Defaults All the packets on egress are marked with DEI 0. Command Modes INTERFACE Command History Version Description 8.3.16.
• Defaults Not configured. Command Modes conf-if-vl--stack Command History For a 40-Gigabyte Ethernet interface, enter the keyword fortyGigE then the slot/ port information. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information You must enable the stackable VLAN (using the vlan-stack compatible command) on the VLAN prior to adding a member to the VLAN. Related Commands vlan-stack compatible — enables stackable VLAN on a VLAN.
Related Commands dei honor — honors the incoming DEI value. show interface dei-mark Display the dei mark configuration. Syntax Parameters Command Modes Command History Example show interface dei-mark [interface slot/port] interface slot/port Enter the interface type then the line card slot and port number. EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information Prior to enabling this command, to place the interface in Layer 2 mode, enter the switchport command. To remove the access port designation, remove the port (using the no member interface command) from all stackable VLAN enabled VLANs. vlan-stack compatible Enable the stackable VLAN feature on a VLAN. Syntax vlan-stack compatible To disable the Stackable VLAN feature on a VLAN, use the no vlan-stack compatible command. Defaults Not configured.
vlan-stack dot1p-mapping Map C-Tag dot1p values to an S-Tag dot1p value. You can separate the C-Tag values by commas and dashed ranges are permitted. Dynamic mode CoS overrides any Layer 2 QoS configuration if there is conflicts. Syntax Parameters vlan-stack dot1p-mapping c-tag-dot1p values sp-tag-dot1p value c-tag-dot1p value Enter the keyword c-tag-dot1p then the customer dot1p value that is mapped to a service provider do1p value. The range is from 0 to 5.
Usage Information For specific interoperability limitations regarding the S-Tag TPID, refer to the Dell Networking OS Configuration Guide. Related Commands portmode hybrid — sets a port (physical ports only) to accept both tagged and untagged frames. A port configured this way is identified as a hybrid port in report displays. vlan-stack trunk — specifies a Layer 2 port or port channel as a trunk port to the Stackable VLAN network.
30 traffic, the native VLAN feature is required, by executing the portmode hybrid command. Refer to portmode hybrid in the Interfaces chapter.
Dell(config)#interface vlan 20 Dell(conf-if-vlan)#untagged TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)# Dell(config)#interface vlan 40 Dell(conf-if-vlan)#tagged TenGi 8/0 Dell(conf-if-vlan)#exit Dell(config)# VLAN Stacking 1530
62 Virtual Link Trunking (VLT) VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG) terminations on two separate distribution or core switches, and by supporting a loop-free topology.
back-up destination Configure the IP address of the management interface on the remote VLT peer to be used as the endpoint of the VLT backup link for sending out-of-band hello messages. Syntax Parameters back-up destination ip-address [interval seconds]} ip–address Enter the IPv4 or IPv6 address of the backup destination. interval seconds Enter the keyword interval to specify the time interval to send hello messages. The range is from 1 to 5 seconds. The default is 1 second. Defaults Not configured.
clear ip pim tib Clear PIM tree information from the PIM database. Syntax Parameters Command Modes Command History clear ip pim tib [group] group (OPTIONAL) Enter the multicast group address in dotted decimal format (A.B.C.D). EXEC Privilege Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Parameter Version Description 9.7(0.0) Introduced on Supported on the MXL 10/40GbE Switch IO Module. Enter the value (in seconds) to specify the time interval for delay restore timer to abort. This timer is applicable only during reload/boot-up and not in other scenarios (example, ICL flap). The range is from 1 to 1800 seconds.
Parameters value Enter the timeout value in seconds. The range is from 1 to 1200. The default is 150. Default Not configured. Command Modes VLT DOMAIN (conf-vlt-domain) Command History Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. peer-link port-channel Configure the specified port channel as the chassis interconnect trunk between VLT peers in the domain. Syntax Parameters peer-link port-channel id-number id-number Defaults Not configured.
9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. peer-routing-timeout Configure the timeout for the software to wait before connecting to a VLT peer with a Down status. This command is applicable for both IPV6/ IPV4. Syntax peer-routing-timeout value To restore the default value, use the no peer-routing-timeout command. Parameters Command Modes Command History value Enter the timeout value in seconds. The range is from 1 to 65535. The default value is 0 (no timeout).
Usage Information After you configure the VLT domain on each peer switch on both sides of the interconnect trunk, by default, the software elects a primary and secondary VLT peer device. To reconfigure the primary role of VLT peer switches, use the priority command. show ip mroute View the multicast routing table.
count Command Modes Command History • EXEC • EXEC Privilege Enter the keyword count to display VLT route and packet data. Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information The following describes the show ip mroute command shown in the examples. Field Description (S, G) Displays the forwarding entry in the multicast route table. uptime Displays the amount of time the entry has been in the multicast forwarding table.
Example (detail) Dell#show ip mroute IP Multicast Routing Table (*, 224.10.10.1), uptime 00:05:12 Incoming interface: GigabitEthernet 3/12 Outgoing interface list: GigabitEthernet 3/13 (1.13.1.100, 224.10.10.1), uptime 00:04:03 Incoming interface: GigabitEthernet 3/4 Outgoing interface list: GigabitEthernet 3/12 GigabitEthernet 3/13 (*, 224.20.20.
show vlt brief Displays summarized status information about VLT domains currently configured on the switch. Syntax show vlt brief Default Not configured. Command Modes EXEC Command History Example (Brief) Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Example Dell# show vlt detail Local LAG Id Peer LAG Id Local Status Peer Status Active VLANs ------------ ----------- ------------ ----------- ------------128 128 UP UP 1000 Dell# show vlt inconsistency Display deviations in VLT multicast traffic. Syntax show vlt inconsistency ip mroute Command Modes EXEC Command History Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
System-Mac 00:00:00:0a:0a:0a Vlan-config -----------Vlan-ID Local Mode --------- -----------2000 -3000 L3 Dell# Example for Q-inQ Implementation over VLT 00:00:00:00:00:00 Peer Mode ---------L2 -- Dell#show vlt mismatch Domain -----Parameters Local -------------PB for stp Enabled Peer ---Disabled Vlan-type-config ---------------Codes:: P - Primary, C - Community, I - Isolated, N - Normal vlan, M - Vlan-stack Vlan-ID ------100 Local ----N Peer ---M Port-type-config ---------------Codes:: p - PVLAN
show vlt role Displays the VLT peer status, role of the local VLT switch, VLT system MAC address and system priority, and the MAC address and priority of the local VLT device. Syntax show vlt role Default Not configured. Command Modes EXEC Command History Example Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Config Mismatch Errors: VLT MAC Statistics -------------------L2 Info Pkts sent:65, L2 Info Pkts Rcvd:82, L2 Reg Request sent:17 L2 Reg Request rcvd:15 14 L2 Mac-sync Pkts Sent:88 L2 Mac-sync Pkts Rcvd:61 L2 Reg Response sent:12 L2 Reg Response rcvd:11 VLT Igmp-Snooping Not Enabled VLT ARP Statistics -------------------ARP Tunnel Pkts sent:0 ARP Tunnel Pkts Rcvd:0 ARP Tunnel Pkts sent Non Vlt:0 ARP Tunnel Pkts Rcvd Non Vlt:0 ARP-sync Pkts Sent:0 ARP-sync Pkts Rcvd:0 ARP Reg Request sent:18 ARP Reg Reques
Defaults Automatically assigned based on the primary priority and MAC address of each VLT peer. Command Modes VLT DOMAIN Command History Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module. Usage Information When you create a VLT domain on a switch, the system automatically creates a VLTsystem MAC address used for internal system operations. To explicitly define the MAC address for the domain, use the system-mac command.
vlt domain Enable VLT on a switch, configure a VLT domain, and enter VLT-domain configuration mode. Syntax Parameters Command Modes Command History vlt domain domain-id domain-id Enter the Domain ID number. Configure the same domain ID on the peer switch. VLT uses the domain ID to automatically create a VLT MAC address for the domain. The range of domain IDs is from 1 to 1000. CONFIGURATION Version Description 9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
show vlt private-vlan Display the association of private VLAN (PVLAN) with the VLT LAG. You can configure VLT peer nodes in a PVLAN on the switch. Syntax show vlt private-vlan Command Modes EXEC Command History Version Description 9.3(0.0) Introduced on the MXL 10/40GbE Switch IO Module platform.
63 Virtual Router Redundancy Protocol (VRRP) Virtual router redundancy protocol (VRRP) is supported by the Dell Networking Operating System (OS) for IPv4 and IPv6. The following commands apply to both VRRP IPv4 and IPv6: • advertise-interval • description • disable • hold-time • preempt • priority • show config • track • virtual-address VRRP Ipv6 are in the VRRP for IPv6 Commands section.
• debug vrrp ipv6 • show vrrp ipv6 • vrrp-ipv6-group • version advertise-interval Set the time interval between VRRP advertisements. Syntax advertise-interval {seconds | centisecs centisecs} To return to the default settings, use the no advertise-interval command. Parameters seconds Enter a number of seconds. The range is from 1 to 255. The default is 1 second. centisecs centisecs Enter the keyword centisecs followed by the number of centisecs in multiple of 25 centisecs.
encryption-type password Defaults Not configured. Command Modes VRRP Command History (OPTIONAL) Enter one of the following numbers: • 0 (zero) specifies an un-encrypted authentication data follows. • 7 (seven) specifies a hidden authentication data follows. Enter a character string up to eight characters long as a password. If you do not enter an encryption-type, the password is stored as clear text. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
debug vrrp Allows you to enable debugging of VRRP. Syntax debug vrrp interface [vrrp-id] {all | packets | state | timer} To disable debugging, use the no debug vrrp interface [vrrp-id] {all | packets | state | timer} command. Parameters Command Modes Command History interface Enter the following keywords and slot/port or number information • For Port Channel interface types, enter the keywords port-channel then the number. The range is from 1 to 128.
description Configure a short text string describing the VRRP group. Syntax description text To delete a VRRP group description, use the no description command. Parameters text Defaults Not enabled. Command Modes VRRP Command History Enter a text string up to 80 characters long. Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. disable Disable a VRRP group. Syntax disable To re-enable a disabled VRRP group, use the no disable command. Defaults Enabled.
hold-time Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the initialization of the VRRP MASTER, the new switch can stabilize its routing tables. Syntax hold-time {seconds | centisecs centisecs} To return to the default value, use the no hold-time command. Parameters seconds Enter a number of seconds. The range is from 0 to 65535. The default is zero (0) seconds.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. priority Specify a VRRP priority value for the VRRP group. The VRRP protocol uses this value during the MASTER election process. Syntax priority priority To return to the default value, use the no priority command. Parameters priority Defaults 100 Command Modes VRRP Command History Enter a number as the priority.
Command Modes Command History Example VRRP Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Dell(conf-if-vrid-4)#show con vrrp-group 4 virtual-address 119.192.182.124 ! show vrrp View the VRRP groups that are active. If no VRRP groups are active, the system returns No Active VRRP group. Syntax Parameters show vrrp [vrrp-id] [interface] [brief] vrrp-id (OPTIONAL) Enter the Virtual Router Identifier for the VRRP group to view only that group. The range is from 1 to 255.
Item Description Interface Lists the interface type, slot and port on which the VRRP group is configured. Grp Displays the VRRP group ID. Pri Displays the priority value assigned to the interface. If the track command is configured to track that interface and the interface is disabled, the cost is subtracted from the priority value assigned to the interface. Pre States whether preempt is enabled on the interface. State Example (Brief) • Y = Preempt is enabled. • N = Preempt is not enabled.
Item Description the interface’s priority and the IP address of the MASTER. Hold Down:... Adv rcvd:... Example This line displays additional VRRP configuration information: • Hold Down displays the hold down timer interval in seconds. • Preempt displays TRUE if preempt is configured and FALSE if preempt is not configured. • AdvInt displays the Advertise Interval in seconds.
Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0 Virtual MAC address: 00:00:5e:00:01:02 Virtual IP address: 10.1.2.252 Authentication: (none) Tracking states for 2 interfaces: Up GigabitEthernet 2/1 priority-cost 10 Up GigabitEthernet 12/17 priority-cost 10 Dell> track Monitor an interface and lower the priority value of the VRRP group on that interface if it is disabled. Syntax track interface [priority-cost cost] To disable monitoring, use the no track interface command.
virtual-address Configure up to 12 IP addresses of virtual routers in the VRRP group. To start sending VRRP packets, set at least one virtual address for the VRRP group. Syntax virtual-address ip-address1 [... ip-address12] To delete one or more virtual IP addresses, use the no virtual-address ipaddress1 [... ip-address12] command. Parameters ip-address1 Enter an IP address of the virtual router in dotted decimal format. The IP address must be on the same subnet as the interface’s primary IP address. .
Parameters seconds Defaults 0 Command Modes INTERFACE Command History Enter the number of seconds for the delay for VRRP initialization after an interface becomes operational. The range is from 0 to 900 (0 indicates no delay). Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information This command applies to a single interface. When used with the vrrp delay reload CLI, the later timer rules the VRRP enabling.
• When an interface comes up, whether as part of a system reload or an interface reload, the system waits 300 seconds (5 minutes) to bring up VRRP on that interface. Save the configuration and reload the system for the delay timers to take effect. Related Command vrrp delay minimum — sets the delay time for VRRP initialization after a line card reboot. vrrp-group Assign a VRRP ID to an interface. You can configure up to 12 VRRP groups per interface.
Parameters vrid (OPTIONAL) Enter the number of an IPv6 VRRP group. The range is from 1 to 255. vrf instance (OPTIONAL) Enter the name of a VRF instance (32 characters maximum) to clear the counters of all IPv6 VRRP groups in the specified VRF. Defaults Not configured Command Modes INTERFACE Command History Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
timer Command Modes Command History Enter the keyword timer to enable debugging of the VRRP timer. EXEC Privilege Version Description 8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module. Usage Information If no options are specified, debug is active on all interfaces and all VRRP groups. show vrrp ipv6 View the IPv6 VRRP groups that are active. If no VRRP groups are active, the system returns No Active VRRP group.
Line Beginning Description with GigabitEthernet... Displays the Interface, the VRRP group ID, and the network address. If the interface is no sending VRRP packets, 0.0.0.0 appears as the network address. VRF VRF instance to which the interface (on which the VRRP group is configured) belongs. State: master... Displays the interface’s state: • Na/If (not available). • master (MASTER virtual router). • backup (BACKUP virtual router). the interface’s priority and the IP address of the MASTER.
Example Dell#show vrrp ipv6 -----------------GigabitEthernet 5/6, IPv6 VRID: 255, Version: 3, Net: fe80::201:e8ff:fe7a:6bb9 VRF: 0 default-vrf State: Master, Priority: 101, Master: fe80::201:e8ff:fe7a:6bb9 (local) Hold Down: 0 centisec, Preempt: TRUE, AdvInt: 100 centisec Accept Mode: FALSE, Master AdvInt: 100 centisec Adv rcvd: 0, Bad pkts rcvd: 0, Adv sent: 64 Virtual MAC address: 00:00:5e:00:02:ff Virtual IP address: 1::255 fe80::255 vrrp-ipv6-group Assign an interface to a VRRP group.
version Set the VRRP protocol version for the IPv4 group. Syntax version {2 | 3 | both} To return to the default setting, use the no version command. Parameters 2 Enter the keyword 2 to specify VRRP version 2 as defined by RFC 3768, Virtual Router Redundancy Protocol. 3 Enter the keyword 3 to specify VRRP version 3 as defined by RFC 5798, Virtual Router Redundancy Protocol. both Enter the keyword both for in-service migration from VRRP version 2 to VRRP version 3.
Example Virtual Router Redundancy Protocol (VRRP) 1567
64 ICMP Message Types This chapter lists and describes the possible ICMP message type resulting from a ping. The first three columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply from your ping. Table 3. ICMP Messages and Their Definitions Symbol Type Code . Query Error Timeout (no reply) ! 0 U 3 C Description 4 3 echo reply . destination unreachable: 0 network unreachable . 1 host unreachable . 2 protocol unreachable .
Symbol & Type Code Description 2 redirect for type-of-service and network . 3 redirect for type-of-service and host . 8 0 echo request . 9 0 router advertisement . 10 0 router solicitation . 11 Query Error time exceeded: 0 time-to-live equals 0 during transit . 1 time-to-live equals 0 during reassembly . 12 parameter problem: 1 IP header bad (catchall error) . 2 required option missing . 13 0 timestamp request . 14 0 timestamp reply .
65 SNMP Traps This chapter lists the traps sent by the Dell Networking Operating System (OS). Each trap is listed by the fields Message ID, Trap Type, and Trap Option. Table 4.
Message ID Trap Type Trap Option RMON_HC_RISHING_THRESHOLD SNMP NONE SNMP NONE NONE NONE ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON TEMP ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE ENVMON NONE %RPM0-P:CP %SNMP-4-RMON_HC_RISING_THRESHOLD: RMON high-capacity rising threshold alarm from SNMP OID RMON_HC_FALLING_THRESHOLD %RPM0-P:CP %SNMP-4-RMON_HC_FALLING_THRESHOLD: RMON high-capacity falling threshold alarm from SNMP OID RESV N/A CHM_MIN_ALRM_TEMP %CHM
Message ID Trap Type Trap Option ENVMON NONE PROTO NONE PROTO NONE PROTO NONE PROTO NONE PROTO NONE ETS NONE ETS NONE ETS NONE %CHMGR-5-MEM_THRESHOLD_CLR: Memory %s usage drops below threshold. MemUsage (%d) MACMGR_STN_MOVE %MACMGR-5-DETECT_STN_MOVE: Station Move threshold exceeded for Mac %s in vlan %d VRRP_BADAUTH %RPM1-P:RP2 %VRRP-3-VRRP_BAD_AUTH: vrid-1 on Gi 11/12 rcvd pkt with authentication type mismatch.
Message ID Trap Type Trap Option ETS_TRAP_TYPE_PEER_STATE_CHANGE ETS NONE PFC NONE PFC NONE PFC NONE PFC NONE FIPS NONE FIPS NONE FIPS NONE %DIFFSERV-5-ETS_TRAP_TYPE_PEER_STATE_CHANGE : ETS Peer state changed to enabled for port %s %DIFFSERV-5-ETS_TRAP_TYPE_PEER_STATE_CHANGE : ETS Peer state changed to disabled for port %s PFC_TRAP_TYPE_MODULE_STATUS_CHANGE %DIFFSERV-5-PFC_TRAP_TYPE_MODULE_STATUS_CHANGE: PFC Module status changed to enabled %DIFFSERV-5-PFC_TRAP_TYPE_MODULE_STATUS_CHANGE:
Message ID Trap Type Trap Option FIPS_FCF_DROP FIPS NONE FIPS NONE FIPS NONE FIPS NONE ENTITY NONE %FCOE-5-FCF_DROP: New FCF(%d,%s) discovered in Vlan %d is dropped as max-FCF-limit per VLAN is reached FIPS_ENODE_DROP %FCOE-5-ENODE_DROP: New ENode(%d,%s) discovered in interface %s dropped as max-ENode-limit in system reached FIPS_SESSION_DROP %FCOE-5-SESSION_DROP: New session(%d,%s) request in interface %s dropped as max-session-limit in system reached FIPS_ACL_INSTALL_FAIL %FCOE-5-ACL_INSTALL
66 FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module. Topics: • FC Flex IO Modules • Data Center Bridging (DCB) for FC Flex IO Modules • NPIV Proxy Gateway for FC Flex IO Modules FC Flex IO Modules This part provides a generic, broad-level description of the operations, capabilities, and configuration commands of the Fiber Channel (FC) Flex IO module.
NPIV Proxy Gateway for FC Flex IO Modules The N-port identifier virtualization (NPIV) Proxy Gateway (NPG) feature provides FCoE-FC bridging capability on the MXL 10/40GbE Switch with the FC Flex IO module switch, allowing server CNAs to communicate with SAN fabrics over the MXL 10/40GbE Switch with the FC Flex IO module.
fabric Apply an FCoE map on a fabric-facing Fibre Channel (FC) port. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters fabric map-name map-name Maximum: 32 alphanumeric characters. Defaults None Command Modes INTERFACE FIBRE_CHANNEL Command History Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Usage Information An FCoE map is a template used to map FCoE and FC parameters in a converged fabric.
fabric-id vlan In an FCoE map, configure the association between the dedicated VLAN used to carry FCoE traffic between servers and a SAN, and the fabric where the desired storage arrays are installed. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters fabric-id fabric-num vlan vlan-id fabric-id fabricnum Enter a fabric ID number that is the same as the ID number of the dedicated VLAN used to carry FCoE storage traffic to the fabric specified in the FCoE map.
fcf-priority In an FCoE map, configure the priority used by a server CNA to select an upstream FCoE forwarder (FCF). M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters fcf—priority priority priority Defaults 128 Command Modes FCOE MAP Command History Version 9.3(0.0) Enter the priority assigned to the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway, which appears to a downstream server CNA as an FCF.
The range of FC-MAP values is from 0EFC00 to 0EFCFF. Defaults None Command Modes FCoE MAP Command History Version Description 9.6(0.0) Supported on the FN 2210S Aggregator. 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Usage Information The FC-MAP value you enter must match the FC-MAP value used by an FC switch or FCoE forwarder (FCF) in the fabric. An FCF switch accepts only FCoE traffic that uses the correct FC-MAP value.
Defaults Command Modes None on the MXL 10/40GbE Switch with FC Flex IO modules. On the I/O Aggregator with FC Flex IO modules, the following parameters are applied on all the FC Flex IO module interfaces: • Description: SAN_FABRIC • Fabric-id: 1002 • Fcoe-vlan: 1002 • Fc-map: 0x0efc00 • Fcf-priority: 128 • Fka-adv-period: 8000mSec • Keepalive: enable • Vlan priority: 3 CONFIGURATION INTERFACE Command History Version 9.3(0.
fka-adv-period In an FCoE map, configure the time interval used to transmit FIP keepalive (FKA) advertisements. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters fka-adv-period seconds seconds Defaults 8 seconds Command Modes FCOE MAP Command History Version 9.3(0.0) Enter the time period (in seconds) used to send FIP keepalive messages to peer devices. The range is from 8 to 90 seconds.
Defaults Not configured. Command Modes CONFIGURATION Command History Version 9.3.0.0 Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module configured as an NPIV proxy gateway. Usage Information FCoE storage traffic received from servers on an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway is de-capsulated into Fibre Channel packets and forwarded over FC links to SAN switches in a specified fabric.
Command History Version 9.3(0.0) Introduced on the M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module. Usage Information FIP keepalive (FKA) messaging is used to detect if other FCoE devices are reachable. To remove FIP keepalive monitoring from an FCoE map, enter the no keepalive command. Related Commands fcoe-map — creates an FCoE map which contains the parameters used in the communication between servers and a SAN fabric.
In each FCoE map, the values for the fabric ID and FC-MAP that identify the SAN fabric to which FC storage traffic is sent, and the FCoE VLAN to be used must be unique. An FCoE map is used to identify the SAN fabric to which FCoE storage traffic is sent and to virtualize M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module FC ports so that they appear to downstream server CNA ports as FCoE Forwarder (FCF) ports on an FCoE network.
Example Field Description VLAN priority FCoE traffic uses VLAN priority 3. (This setting is not userconfigurable.) FC-MAP FCoE MAC address-prefix value - The unique 24-bit MAC address prefix that identifies a fabric. FKA-ADV-period Time interval (in seconds) used to transmit FIP keepalive advertisements. FCF Priority The priority used by a server to select an upstream FCoE forwarder.
show npiv devices Display the FCoE and FC devices currently logged in to an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway. M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module Syntax Parameters Command Modes Command History show npiv devices [brief] brief Displays an overview of current server CNA-fabric connections over an M I/O Aggregator and MXL 10/40GbE Switch with the FC Flex IO module NPIV proxy gateway.
Field Description FLOGI - ENode logged in using a fabric login (FLOGI). FDISC - ENode logged in using a fabric discovery (FDISC). Status Example Operational status of the link between a server CNA port and a SAN fabric: Logged In - Server has logged in to the fabric and is able to transmit FCoE traffic.
Example Related Commands Field Description LoginMethod Method used by the server CNA to log in to the fabric; for example, FLOGI or FDISC. Secs Number of seconds that the fabric connection is up. State Status of the fabric connection: logged in.
